0000000000000000 R09: 0000000000000000
[ 294.277034][ T4428] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 294.285024][ T4428] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 294.293017][ T4428]
[ 294.300392][ T4428] Uninit was stored to memory at:
[ 294.306150][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 294.311306][ T4428] get_compat_msghdr+0x108/0x2c0
[ 294.316423][ T4428] do_recvmmsg+0xd77/0x2120
[ 294.320982][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 294.325841][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 294.332345][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 294.337426][ T4428] do_fast_syscall_32+0x34/0x70
[ 294.342469][ T4428] do_SYSENTER_32+0x1b/0x20
[ 294.347027][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 294.353577][ T4428]
[ 294.355909][ T4428] Uninit was stored to memory at:
[ 294.360967][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 294.366282][ T4428] get_compat_msghdr+0x108/0x2c0
[ 294.371262][ T4428] do_recvmmsg+0xd77/0x2120
[ 294.375938][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 294.380667][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 294.387169][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 294.392364][ T4428] do_fast_syscall_32+0x34/0x70
[ 294.397273][ T4428] do_SYSENTER_32+0x1b/0x20
[ 294.401959][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 294.408524][ T4428]
[ 294.410855][ T4428] Uninit was stored to memory at:
[ 294.416071][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 294.421218][ T4428] get_compat_msghdr+0x108/0x2c0
[ 294.426369][ T4428] do_recvmmsg+0xd77/0x2120
[ 294.430924][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 294.435846][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 294.442311][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 294.447370][ T4428] do_fast_syscall_32+0x34/0x70
[ 294.452413][ T4428] do_SYSENTER_32+0x1b/0x20
[ 294.456967][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 294.463534][ T4428]
[ 294.465865][ T4428] Uninit was stored to memory at:
[ 294.471016][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 294.476287][ T4428] get_compat_msghdr+0x108/0x2c0
[ 294.481265][ T4428] do_recvmmsg+0xd77/0x2120
[ 294.485993][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 294.490726][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 294.497218][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 294.502419][ T4428] do_fast_syscall_32+0x34/0x70
[ 294.507319][ T4428] do_SYSENTER_32+0x1b/0x20
[ 294.511999][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 294.518389][ T4428]
[ 294.520720][ T4428] Uninit was stored to memory at:
[ 294.525930][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 294.531078][ T4428] get_compat_msghdr+0x108/0x2c0
[ 294.536231][ T4428] do_recvmmsg+0xd77/0x2120
[ 294.540788][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 294.545684][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 294.552194][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 294.557274][ T4428] do_fast_syscall_32+0x34/0x70
[ 294.562334][ T4428] do_SYSENTER_32+0x1b/0x20
[ 294.566886][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 294.573426][ T4428]
[ 294.575761][ T4428] Uninit was stored to memory at:
[ 294.580831][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 294.586101][ T4428] get_compat_msghdr+0x108/0x2c0
[ 294.591083][ T4428] do_recvmmsg+0xd77/0x2120
[ 294.595755][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 294.600481][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 294.606982][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 294.612187][ T4428] do_fast_syscall_32+0x34/0x70
[ 294.617087][ T4428] do_SYSENTER_32+0x1b/0x20
[ 294.621614][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 294.628145][ T4428]
[ 294.630480][ T4428] Uninit was stored to memory at:
[ 294.635701][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 294.640850][ T4428] get_compat_msghdr+0x108/0x2c0
[ 294.645996][ T4428] do_recvmmsg+0xd77/0x2120
[ 294.650554][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 294.655447][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 294.661948][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 294.667032][ T4428] do_fast_syscall_32+0x34/0x70
[ 294.672128][ T4428] do_SYSENTER_32+0x1b/0x20
[ 294.676684][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 294.683271][ T4428]
[ 294.685609][ T4428] Local variable msg_sys created at:
[ 294.691074][ T4428] do_recvmmsg+0xbb/0x2120
[ 294.695726][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 294.789917][ T4428] not chained 590000 origins
[ 294.794700][ T4428] CPU: 1 PID: 4428 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 294.803396][ T4428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 294.813480][ T4428] Call Trace:
[ 294.816758][ T4428]
[ 294.819707][ T4428] dump_stack_lvl+0x1ff/0x28e
[ 294.824437][ T4428] dump_stack+0x25/0x28
[ 294.828615][ T4428] kmsan_internal_chain_origin+0x78/0x110
[ 294.834372][ T4428] ? __local_bh_enable_ip+0xa4/0xe0
[ 294.839616][ T4428] ? _raw_spin_unlock_bh+0x4b/0x60
[ 294.844744][ T4428] ? release_sock+0x2b5/0x2e0
[ 294.849455][ T4428] ? kmsan_get_metadata+0x33/0x220
[ 294.854599][ T4428] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 294.860436][ T4428] ? should_fail+0x75/0x9c0
[ 294.864960][ T4428] ? kmsan_get_metadata+0x33/0x220
[ 294.870094][ T4428] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 294.876358][ T4428] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 294.882455][ T4428] ? kmsan_get_metadata+0x33/0x220
[ 294.887608][ T4428] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 294.893461][ T4428] __msan_chain_origin+0xbf/0x140
[ 294.898519][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 294.903675][ T4428] get_compat_msghdr+0x108/0x2c0
[ 294.908638][ T4428] ? __sys_recvmmsg+0x51c/0x6f0
[ 294.913522][ T4428] do_recvmmsg+0xd77/0x2120
[ 294.918078][ T4428] ? kmsan_get_metadata+0x33/0x220
[ 294.923218][ T4428] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 294.929490][ T4428] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 294.936014][ T4428] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 294.941850][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 294.946581][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 294.952944][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 294.958003][ T4428] do_fast_syscall_32+0x34/0x70
[ 294.962884][ T4428] do_SYSENTER_32+0x1b/0x20
[ 294.967440][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 294.973799][ T4428] RIP: 0023:0xf6f16549
[ 294.977889][ T4428] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 294.997873][ T4428] RSP: 002b:00000000f59105bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 295.006311][ T4428] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200045c0
[ 295.014293][ T4428] RDX: 0000000020000988 RSI: 0000000000000000 RDI: 0000000000000000
[ 295.022272][ T4428] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 295.030296][ T4428] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 295.038275][ T4428] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 295.046311][ T4428]
[ 295.053817][ T4428] Uninit was stored to memory at:
[ 295.058940][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 295.064786][ T4428] get_compat_msghdr+0x108/0x2c0
[ 295.069773][ T4428] do_recvmmsg+0xd77/0x2120
[ 295.074459][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 295.079187][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 295.085696][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 295.090783][ T4428] do_fast_syscall_32+0x34/0x70
[ 295.095874][ T4428] do_SYSENTER_32+0x1b/0x20
[ 295.100491][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 295.107055][ T4428]
[ 295.109437][ T4428] Uninit was stored to memory at:
[ 295.114657][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 295.119803][ T4428] get_compat_msghdr+0x108/0x2c0
[ 295.124976][ T4428] do_recvmmsg+0xd77/0x2120
[ 295.129545][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 295.134411][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 295.140795][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 295.145988][ T4428] do_fast_syscall_32+0x34/0x70
[ 295.150890][ T4428] do_SYSENTER_32+0x1b/0x20
[ 295.155617][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 295.162116][ T4428]
[ 295.164464][ T4428] Uninit was stored to memory at:
[ 295.169519][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 295.174836][ T4428] get_compat_msghdr+0x108/0x2c0
[ 295.179817][ T4428] do_recvmmsg+0xd77/0x2120
[ 295.184501][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 295.189346][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 295.195909][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 295.200989][ T4428] do_fast_syscall_32+0x34/0x70
[ 295.206095][ T4428] do_SYSENTER_32+0x1b/0x20
[ 295.210650][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 295.217429][ T4428]
[ 295.219770][ T4428] Uninit was stored to memory at:
[ 295.224957][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 295.230103][ T4428] get_compat_msghdr+0x108/0x2c0
[ 295.235252][ T4428] do_recvmmsg+0xd77/0x2120
[ 295.239801][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 295.244639][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 295.251024][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 295.256213][ T4428] do_fast_syscall_32+0x34/0x70
[ 295.261114][ T4428] do_SYSENTER_32+0x1b/0x20
[ 295.265830][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 295.272330][ T4428]
[ 295.274665][ T4428] Uninit was stored to memory at:
[ 295.279724][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 295.285032][ T4428] get_compat_msghdr+0x108/0x2c0
[ 295.290012][ T4428] do_recvmmsg+0xd77/0x2120
[ 295.294752][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 295.299482][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 295.306036][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 295.311112][ T4428] do_fast_syscall_32+0x34/0x70
[ 295.316125][ T4428] do_SYSENTER_32+0x1b/0x20
[ 295.320675][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 295.327174][ T4428]
[ 295.329516][ T4428] Uninit was stored to memory at:
[ 295.334774][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 295.339967][ T4428] get_compat_msghdr+0x108/0x2c0
[ 295.345086][ T4428] do_recvmmsg+0xd77/0x2120
[ 295.349642][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 295.354490][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 295.360866][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 295.366109][ T4428] do_fast_syscall_32+0x34/0x70
[ 295.371007][ T4428] do_SYSENTER_32+0x1b/0x20
[ 295.375668][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 295.382172][ T4428]
[ 295.384516][ T4428] Uninit was stored to memory at:
[ 295.389641][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 295.394977][ T4428] get_compat_msghdr+0x108/0x2c0
[ 295.399961][ T4428] do_recvmmsg+0xd77/0x2120
[ 295.404621][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 295.409431][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 295.415977][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 295.421055][ T4428] do_fast_syscall_32+0x34/0x70
[ 295.426144][ T4428] do_SYSENTER_32+0x1b/0x20
[ 295.430695][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 295.437189][ T4428]
[ 295.439526][ T4428] Local variable msg_sys created at:
[ 295.445009][ T4428] do_recvmmsg+0xbb/0x2120
[ 295.449470][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 295.544335][ T4428] not chained 600000 origins
[ 295.548999][ T4428] CPU: 1 PID: 4428 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 295.557691][ T4428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 295.567752][ T4428] Call Trace:
[ 295.571062][ T4428]
[ 295.573989][ T4428] dump_stack_lvl+0x1ff/0x28e
[ 295.578696][ T4428] dump_stack+0x25/0x28
[ 295.582867][ T4428] kmsan_internal_chain_origin+0x78/0x110
[ 295.588613][ T4428] ? __local_bh_enable_ip+0xa4/0xe0
[ 295.593845][ T4428] ? _raw_spin_unlock_bh+0x4b/0x60
[ 295.598982][ T4428] ? release_sock+0x2b5/0x2e0
[ 295.603701][ T4428] ? kmsan_get_metadata+0x33/0x220
[ 295.608840][ T4428] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 295.614762][ T4428] ? should_fail+0x75/0x9c0
[ 295.619286][ T4428] ? kmsan_get_metadata+0x33/0x220
[ 295.624421][ T4428] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 295.630688][ T4428] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 295.636783][ T4428] ? kmsan_get_metadata+0x33/0x220
[ 295.642003][ T4428] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 295.647837][ T4428] __msan_chain_origin+0xbf/0x140
[ 295.652882][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 295.658029][ T4428] get_compat_msghdr+0x108/0x2c0
[ 295.662985][ T4428] ? __sys_recvmmsg+0x51c/0x6f0
[ 295.667861][ T4428] do_recvmmsg+0xd77/0x2120
[ 295.672412][ T4428] ? kmsan_get_metadata+0x33/0x220
[ 295.677547][ T4428] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 295.684091][ T4428] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 295.690731][ T4428] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 295.696588][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 295.701328][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 295.707696][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 295.712752][ T4428] do_fast_syscall_32+0x34/0x70
[ 295.717630][ T4428] do_SYSENTER_32+0x1b/0x20
[ 295.722168][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 295.728525][ T4428] RIP: 0023:0xf6f16549
[ 295.732600][ T4428] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 295.752230][ T4428] RSP: 002b:00000000f59105bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 295.760664][ T4428] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200045c0
[ 295.768648][ T4428] RDX: 0000000020000988 RSI: 0000000000000000 RDI: 0000000000000000
[ 295.776664][ T4428] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 295.784644][ T4428] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 295.792622][ T4428] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 295.800621][ T4428]
[ 295.808138][ T4428] Uninit was stored to memory at:
[ 295.813903][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 295.819072][ T4428] get_compat_msghdr+0x108/0x2c0
[ 295.824174][ T4428] do_recvmmsg+0xd77/0x2120
[ 295.828737][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 295.833697][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 295.840075][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 295.845283][ T4428] do_fast_syscall_32+0x34/0x70
[ 295.850191][ T4428] do_SYSENTER_32+0x1b/0x20
[ 295.854959][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 295.861345][ T4428]
[ 295.863863][ T4428] Uninit was stored to memory at:
[ 295.868960][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 295.874305][ T4428] get_compat_msghdr+0x108/0x2c0
[ 295.879292][ T4428] do_recvmmsg+0xd77/0x2120
[ 295.884036][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 295.888760][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 295.895258][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 295.900331][ T4428] do_fast_syscall_32+0x34/0x70
[ 295.905410][ T4428] do_SYSENTER_32+0x1b/0x20
[ 295.910483][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 295.916983][ T4428]
[ 295.919317][ T4428] Uninit was stored to memory at:
[ 295.924523][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 295.929666][ T4428] get_compat_msghdr+0x108/0x2c0
[ 295.934812][ T4428] do_recvmmsg+0xd77/0x2120
[ 295.939375][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 295.944229][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 295.950608][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 295.955817][ T4428] do_fast_syscall_32+0x34/0x70
[ 295.960716][ T4428] do_SYSENTER_32+0x1b/0x20
[ 295.965443][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 295.971975][ T4428]
[ 295.974315][ T4428] Uninit was stored to memory at:
[ 295.979390][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 295.984923][ T4428] get_compat_msghdr+0x108/0x2c0
[ 295.989912][ T4428] do_recvmmsg+0xd77/0x2120
[ 295.994596][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 295.999326][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 296.005870][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 296.011053][ T4428] do_fast_syscall_32+0x34/0x70
[ 296.016091][ T4428] do_SYSENTER_32+0x1b/0x20
[ 296.020643][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 296.027148][ T4428]
[ 296.029486][ T4428] Uninit was stored to memory at:
[ 296.034744][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 296.039894][ T4428] get_compat_msghdr+0x108/0x2c0
[ 296.045146][ T4428] do_recvmmsg+0xd77/0x2120
[ 296.049701][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 296.054602][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 296.061026][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 296.066332][ T4428] do_fast_syscall_32+0x34/0x70
[ 296.071236][ T4428] do_SYSENTER_32+0x1b/0x20
[ 296.075906][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 296.082413][ T4428]
[ 296.084753][ T4428] Uninit was stored to memory at:
[ 296.089825][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 296.095085][ T4428] get_compat_msghdr+0x108/0x2c0
[ 296.100063][ T4428] do_recvmmsg+0xd77/0x2120
[ 296.104732][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 296.109456][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 296.116022][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 296.121124][ T4428] do_fast_syscall_32+0x34/0x70
[ 296.126147][ T4428] do_SYSENTER_32+0x1b/0x20
[ 296.130698][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 296.137208][ T4428]
[ 296.139553][ T4428] Uninit was stored to memory at:
[ 296.144810][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 296.149958][ T4428] get_compat_msghdr+0x108/0x2c0
[ 296.155107][ T4428] do_recvmmsg+0xd77/0x2120
[ 296.159657][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 296.164495][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 296.170871][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 296.176128][ T4428] do_fast_syscall_32+0x34/0x70
[ 296.181029][ T4428] do_SYSENTER_32+0x1b/0x20
[ 296.185769][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 296.192250][ T4428]
[ 296.194571][ T4428] Local variable msg_sys created at:
[ 296.199848][ T4428] do_recvmmsg+0xbb/0x2120
[ 296.204475][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 296.299758][ T4428] not chained 610000 origins
[ 296.304526][ T4428] CPU: 1 PID: 4428 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 296.313229][ T4428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 296.323583][ T4428] Call Trace:
[ 296.326863][ T4428]
[ 296.329792][ T4428] dump_stack_lvl+0x1ff/0x28e
[ 296.334501][ T4428] dump_stack+0x25/0x28
[ 296.338707][ T4428] kmsan_internal_chain_origin+0x78/0x110
[ 296.344482][ T4428] ? __local_bh_enable_ip+0xa4/0xe0
[ 296.349711][ T4428] ? _raw_spin_unlock_bh+0x4b/0x60
[ 296.354842][ T4428] ? release_sock+0x2b5/0x2e0
[ 296.359557][ T4428] ? kmsan_get_metadata+0x33/0x220
[ 296.364723][ T4428] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 296.370557][ T4428] ? should_fail+0x75/0x9c0
[ 296.375080][ T4428] ? kmsan_get_metadata+0x33/0x220
[ 296.380309][ T4428] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 296.386583][ T4428] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 296.392679][ T4428] ? kmsan_get_metadata+0x33/0x220
[ 296.397832][ T4428] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 296.404795][ T4428] __msan_chain_origin+0xbf/0x140
[ 296.409850][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 296.415009][ T4428] get_compat_msghdr+0x108/0x2c0
[ 296.419993][ T4428] ? __sys_recvmmsg+0x51c/0x6f0
[ 296.424874][ T4428] do_recvmmsg+0xd77/0x2120
[ 296.429436][ T4428] ? kmsan_get_metadata+0x33/0x220
[ 296.434573][ T4428] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 296.440866][ T4428] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 296.447483][ T4428] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 296.453320][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 296.458087][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 296.464465][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 296.469521][ T4428] do_fast_syscall_32+0x34/0x70
[ 296.474400][ T4428] do_SYSENTER_32+0x1b/0x20
[ 296.479726][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 296.486091][ T4428] RIP: 0023:0xf6f16549
[ 296.490164][ T4428] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 296.509793][ T4428] RSP: 002b:00000000f59105bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 296.518231][ T4428] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200045c0
[ 296.526248][ T4428] RDX: 0000000020000988 RSI: 0000000000000000 RDI: 0000000000000000
[ 296.534231][ T4428] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 296.542214][ T4428] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 296.550187][ T4428] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 296.558186][ T4428]
[ 296.565566][ T4428] Uninit was stored to memory at:
[ 296.570688][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 296.576597][ T4428] get_compat_msghdr+0x108/0x2c0
[ 296.581602][ T4428] do_recvmmsg+0xd77/0x2120
[ 296.586299][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 296.591126][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 296.597666][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 296.602854][ T4428] do_fast_syscall_32+0x34/0x70
[ 296.607761][ T4428] do_SYSENTER_32+0x1b/0x20
[ 296.612629][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 296.619051][ T4428]
[ 296.621391][ T4428] Uninit was stored to memory at:
[ 296.626617][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 296.631915][ T4428] get_compat_msghdr+0x108/0x2c0
[ 296.637031][ T4428] do_recvmmsg+0xd77/0x2120
[ 296.641562][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 296.646457][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 296.652931][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 296.657990][ T4428] do_fast_syscall_32+0x34/0x70
[ 296.663041][ T4428] do_SYSENTER_32+0x1b/0x20
[ 296.667596][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 296.674260][ T4428]
[ 296.676598][ T4428] Uninit was stored to memory at:
[ 296.681659][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 296.686984][ T4428] get_compat_msghdr+0x108/0x2c0
[ 296.692092][ T4428] do_recvmmsg+0xd77/0x2120
[ 296.696735][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 296.701450][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 296.707947][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 296.713105][ T4428] do_fast_syscall_32+0x34/0x70
[ 296.718075][ T4428] do_SYSENTER_32+0x1b/0x20
[ 296.722771][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 296.729269][ T4428]
[ 296.731863][ T4428] Uninit was stored to memory at:
[ 296.737043][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 296.742407][ T4428] get_compat_msghdr+0x108/0x2c0
[ 296.747388][ T4428] do_recvmmsg+0xd77/0x2120
[ 296.752104][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 296.756936][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 296.763458][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 296.768884][ T4428] do_fast_syscall_32+0x34/0x70
[ 296.774001][ T4428] do_SYSENTER_32+0x1b/0x20
[ 296.778555][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 296.785116][ T4428]
[ 296.787457][ T4428] Uninit was stored to memory at:
[ 296.792682][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 296.797843][ T4428] get_compat_msghdr+0x108/0x2c0
[ 296.802993][ T4428] do_recvmmsg+0xd77/0x2120
[ 296.807547][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 296.812397][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 296.818788][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 296.824035][ T4428] do_fast_syscall_32+0x34/0x70
[ 296.828964][ T4428] do_SYSENTER_32+0x1b/0x20
[ 296.833637][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 296.840016][ T4428]
[ 296.842512][ T4428] Uninit was stored to memory at:
[ 296.847602][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 296.852899][ T4428] get_compat_msghdr+0x108/0x2c0
[ 296.857924][ T4428] do_recvmmsg+0xd77/0x2120
[ 296.862591][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 296.867321][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 296.873861][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 296.878947][ T4428] do_fast_syscall_32+0x34/0x70
[ 296.883988][ T4428] do_SYSENTER_32+0x1b/0x20
[ 296.888541][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 296.895169][ T4428]
[ 296.897709][ T4428] Uninit was stored to memory at:
[ 296.902993][ T4428] __get_compat_msghdr+0x6e1/0x9d0
[ 296.908237][ T4428] get_compat_msghdr+0x108/0x2c0
[ 296.913414][ T4428] do_recvmmsg+0xd77/0x2120
[ 296.917973][ T4428] __sys_recvmmsg+0x51c/0x6f0
[ 296.922880][ T4428] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 296.929296][ T4428] __do_fast_syscall_32+0x96/0xf0
[ 296.934604][ T4428] do_fast_syscall_32+0x34/0x70
[ 296.939700][ T4428] do_SYSENTER_32+0x1b/0x20
[ 296.944451][ T4428] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 296.950931][ T4428]
[ 296.953400][ T4428] Local variable msg_sys created at:
[ 296.958771][ T4428] do_recvmmsg+0xbb/0x2120
[ 296.963433][ T4428] __sys_recvmmsg+0x51c/0x6f0
19:04:36 executing program 0:
r0 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0)
ftruncate(r0, 0x88001)
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket(0x11, 0x2, 0x0)
bind(r1, &(0x7f0000000100)=@generic={0x11, "8100010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b38360054a5b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8ef6b3327d3a09ffc2c654"}, 0x80)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0xffffffff00d)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0xfffffffc)
syz_open_procfs(0x0, &(0x7f0000000140)='net/nf_conntrack\x00')
19:04:36 executing program 5:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c47, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030022000502d25a80648c63940d1124fc6040080e401c000a00053582c137153e370248038047000000d1bd", 0x33fe0}], 0x1}, 0x0)
19:04:36 executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000006000)=[{{0x0, 0x0, &(0x7f0000000480)=[{0x0}, {0x0}], 0x2}}], 0x1, 0x0)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000000480)={{}, 0x0, 0x0, @inherit={0x48, &(0x7f0000000040)}, @devid})
sendmmsg$inet(r0, &(0x7f0000003f00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2a0}}], 0x500, 0x0)
19:04:36 executing program 3:
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000780)=[{&(0x7f0000000400)=""/42, 0x2a}], 0x1, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fdinfo/3\x00')
syz_io_uring_setup(0x77d5, 0x0, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x0, 0xfffffffdffffffff, 0xffffffffffffffff, 0x0)
fcntl$lock(r1, 0x0, 0x0)
fcntl$setstatus(r1, 0x4, 0x42800)
preadv(r0, &(0x7f0000000480), 0x10000000000002a1, 0x0, 0x0)
r2 = open(&(0x7f0000000200)='./file0\x00', 0x2001, 0x19)
ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x800)
r3 = socket(0x21, 0x5, 0x8)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r3, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)={0x38, 0x140f, 0x9, 0x70bd26, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x4}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_CHARDEV_TYPE={0xd, 0x45, 'opa_vnic\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x40844}, 0x24008000)
socket$inet_icmp(0x2, 0x2, 0x1)
19:04:36 executing program 1:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r1, 0x0)
preadv(r0, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='configfs\x00', 0x0, 0x0)
r2 = open(&(0x7f0000000340)='./file0\x00', 0x0, 0x0)
lseek(r2, 0x7, 0x0)
getdents64(r2, 0x0, 0x0)
19:04:36 executing program 4:
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000140)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000080)={@my=0x0})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, &(0x7f0000000000)={&(0x7f0000000180)={{@my=0x0}, {@my=0x0}, 0x400, "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"}, 0x418})
pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff})
dup3(r1, r0, 0x0)
[ 297.279296][ T4468] netlink: 210828 bytes leftover after parsing attributes in process `syz-executor.5'.
19:04:36 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040)=0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000280)={0x41, 0x0, 0x2}, 0x10)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000840))
timer_create(0x6, 0x0, &(0x7f00000008c0))
sendmsg$tipc(r2, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r2, 0x10f, 0x88)
19:04:36 executing program 5:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/icmp\x00')
read$FUSE(r0, &(0x7f00000041c0)={0x2020}, 0x2020)
19:04:36 executing program 3:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000001000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='sys_enter\x00', r0}, 0x10)
r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
futimesat(r1, 0x0, 0x0)
19:04:36 executing program 1:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000000000)={0xe, {"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", 0x1000}}, 0x1006)
[ 297.649522][ T24] audit: type=1804 audit(1641755076.705:17): pid=4473 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir281511801/syzkaller.0NZq3N/38/bus" dev="sda1" ino=1174 res=1 errno=0
19:04:36 executing program 5:
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$BLKRESETZONE(r0, 0x80041284, &(0x7f0000000000))
19:04:37 executing program 2:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, r1, 0xb01}, 0x14}}, 0x0)
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
19:04:37 executing program 3:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000001000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='sys_enter\x00', r0}, 0x10)
r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
futimesat(r1, 0x0, 0x0)
19:04:37 executing program 5:
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='configfs\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unshare(0x20600)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
unshare(0x8000000)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)
r1 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r2, 0x0)
chdir(0x0)
syz_mount_image$tmpfs(&(0x7f0000000180), 0x0, 0x0, 0x4, &(0x7f0000001640)=[{0x0}, {0x0}, {&(0x7f0000001380), 0x0, 0x9}, {&(0x7f0000001500)="0b4cc265d0d1ff42d394cd7f969aff15", 0x10}], 0x0, 0x0)
ioctl$LOOP_CTL_ADD(r0, 0x4c80, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000640), &(0x7f0000000680)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB='nr_blocks', @ANYRESHEX=0x0, @ANYBLOB=',nr_blocks=\x001H454P10,huge=always,mask=MAY_EXEC,eu', @ANYRESDEC=0x0])
19:04:37 executing program 0:
r0 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0)
ftruncate(r0, 0x88001)
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket(0x11, 0x2, 0x0)
bind(r1, &(0x7f0000000100)=@generic={0x11, "8100010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b38360054a5b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8ef6b3327d3a09ffc2c654"}, 0x80)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0xffffffff00d)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0xfffffffc)
syz_open_procfs(0x0, &(0x7f0000000140)='net/nf_conntrack\x00')
19:04:38 executing program 4:
r0 = syz_open_dev$sg(&(0x7f00000001c0), 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000200)={0x0, 0x0, 0xffffffb8})
19:04:38 executing program 3:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000001000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='sys_enter\x00', r0}, 0x10)
r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
futimesat(r1, 0x0, 0x0)
[ 299.498368][ T24] audit: type=1804 audit(1641755078.555:18): pid=4495 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir281511801/syzkaller.0NZq3N/39/bus" dev="sda1" ino=1159 res=1 errno=0
19:04:38 executing program 0:
r0 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0)
ftruncate(r0, 0x88001)
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket(0x11, 0x2, 0x0)
bind(r1, &(0x7f0000000100)=@generic={0x11, "8100010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b38360054a5b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8ef6b3327d3a09ffc2c654"}, 0x80)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0xffffffff00d)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0xfffffffc)
syz_open_procfs(0x0, &(0x7f0000000140)='net/nf_conntrack\x00')
19:04:38 executing program 5:
r0 = syz_open_dev$video4linux(&(0x7f0000000780), 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r0, 0xc040564a, &(0x7f0000000040)={0x1ff})
19:04:39 executing program 4:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xfffffeffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000040))
r1 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
r2 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write(r1, &(0x7f0000001400)="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"/3584, 0xe00)
perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x9, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x8088, 0x0, 0x7fffffff, 0x2, 0x0, 0x1ff, 0x8}, r0, 0x7, 0xffffffffffffffff, 0x0)
timer_create(0x0, 0x0, &(0x7f0000000340))
fallocate(0xffffffffffffffff, 0x4, 0x0, 0x2)
sendfile(r1, r2, 0x0, 0x11f08)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000700)={'wlan1\x00'})
fcntl$setstatus(r3, 0x4, 0x40000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
19:04:39 executing program 3:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000001000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='sys_enter\x00', r0}, 0x10)
r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
futimesat(r1, 0x0, 0x0)
[ 299.806949][ T4499] program syz-executor.4 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 300.307471][ T24] audit: type=1804 audit(1641755079.345:19): pid=4503 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir281511801/syzkaller.0NZq3N/40/bus" dev="sda1" ino=1178 res=1 errno=0
[ 300.555226][ T24] audit: type=1800 audit(1641755079.605:20): pid=4507 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=1187 res=0 errno=0
[ 300.662281][ T24] audit: type=1804 audit(1641755079.715:21): pid=4507 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir199025238/syzkaller.vuIkF2/46/file0" dev="sda1" ino=1187 res=1 errno=0
[ 301.153301][ T1057] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 301.318927][ T1057] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 301.519909][ T1057] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 301.696236][ T1057] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
19:04:42 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x803, 0x2)
connect$inet6(r0, &(0x7f0000000280)={0xa, 0x0, 0x0, @local, 0xb}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000540)={{{@in6=@local, @in=@private, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x80000000000001}, {{@in6=@empty, 0x0, 0x6c}, 0x2, @in6=@empty, 0x0, 0x4, 0x0, 0x2}}, 0xe8)
sendmmsg(r0, &(0x7f0000008440)=[{{0x0, 0x1aa, 0x0}}], 0x400000000000107, 0x0)
19:04:42 executing program 5:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmmsg$inet(r0, &(0x7f0000006000)=[{{&(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x40}}, 0x10, &(0x7f0000000480)=[{&(0x7f00000001c0)="12", 0x1}, {&(0x7f0000000200)="c62fd7091638681823df2971857e8e7cf0aef4fd3017e821e27691795a726398491d", 0x22}, {&(0x7f0000000240)="4785ad6225c79d4a1d187260868d356de5575640c37ef9fe8467a05738ff08af5d6cdf6314b4123780200058c9fcb803885662180bf154288e4434a5cc7b4fe24f9e1deedf157e2b23419ee16c2f6ed8abfafdd180ee40b63ed8c97575d0d15de49d8299b675b202d9458cdf9e44eae2d62bb0d6f1a38f7a841c682477eb8faad3cf36", 0x83}, {&(0x7f0000000300)="d094d8fd0c794c484c53ea0e8931d57c03cdac9d19d4189025743b4a35a64a05376977589abcd46bc11c0ee261bda109bb5e654d6e", 0x35}, {&(0x7f0000000340)="22b7cd1c86789fedb80fffe9451b5eaecc7c2a58ad1bf1d4b80ca91b637611817bd1d1774e54b3fd1befefea8b2b7faed3e17b6b89f8afd030e30076bdc1a966559381", 0x43}, {&(0x7f00000003c0)="5875e69a35abfc0ee1bd777572e479f6ebb8a80ef47722c2b375f214cf0761c0d37716", 0x23}, {&(0x7f0000000400)="3f28d562bc19d84d7c6cb34221923619f0481d1da3abe71b38f7c6c782567189ae703bf47322f197e40883389999b1cb808b75e87a1a466d39e96381253b0da57159d6", 0x43}], 0x7, &(0x7f0000000500)=[@ip_ttl={{0x14}}, @ip_ttl={{0x14}}], 0x30}}, {{&(0x7f0000000540)={0x2, 0x0, @local}, 0x10, &(0x7f0000000740)=[{&(0x7f0000000580)}, {0x0}], 0x2, &(0x7f0000003200)=[@ip_pktinfo={{0x178, 0x0, 0x8, {0x0, @loopback, @private}}}, @ip_ttl={{0x14}}, @ip_ttl={{0x14}}, @ip_ttl={{0x14}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @ip_retopts={{0x40, 0x0, 0x7, {[@lsrr={0x83, 0xb, 0x0, [@multicast2, @private]}, @cipso={0x86, 0x23, 0x0, [{0x0, 0xb, "6275712088c98838c5"}, {0x0, 0x12, "53884d5e82afd731a97f5e1e1c3a4a58"}]}]}}}, @ip_tos_u8={{0x11}}, @ip_tos_int={{0x14}}, @ip_ttl={{0x14}}, @ip_retopts={{0xd0, 0x0, 0x7, {[@timestamp_addr={0x44, 0x2c, 0x0, 0x1, 0x0, [{@dev}, {@local}, {@private}, {@private}, {@empty}]}, @timestamp_addr={0x44, 0x14, 0x0, 0x1, 0x0, [{}, {@local}]}, @cipso={0x86, 0x61, 0x0, [{0x0, 0x3, 'V'}, {0x0, 0x10, "c6c505e2efa759ae5524c2998830"}, {0x0, 0xf, "726b43cfbdf25798b29124dcbb"}, {0x0, 0xd, "528f9f2f0095f84bc23bc0"}, {0x0, 0xf, "047ba415f657ffe12df1f652d7"}, {0x0, 0x2}, {0x0, 0xd, "e24c2fb030042986771178"}, {0x0, 0x3, "da"}, {0x0, 0xb, "522b360f4249416403"}]}, @ssrr={0x89, 0x1b, 0x0, [@rand_addr, @multicast2, @broadcast, @empty, @rand_addr, @multicast1]}, @timestamp_addr={0x44, 0x4}]}}}], 0x1e0}}], 0x2, 0x0)
[ 303.704350][ T1057] device hsr_slave_0 left promiscuous mode
[ 303.750824][ T1057] device hsr_slave_1 left promiscuous mode
[ 303.784074][ T1057] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 303.794427][ T1057] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 303.866367][ T1057] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 303.874428][ T1057] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 303.965337][ T1057] device bridge_slave_1 left promiscuous mode
[ 303.972645][ T1057] bridge0: port 2(bridge_slave_1) entered disabled state
[ 304.052557][ T1057] device bridge_slave_0 left promiscuous mode
[ 304.059417][ T1057] bridge0: port 1(bridge_slave_0) entered disabled state
[ 304.173179][ T1057] device veth1_macvtap left promiscuous mode
[ 304.179357][ T1057] device veth0_macvtap left promiscuous mode
[ 304.186283][ T1057] device veth1_vlan left promiscuous mode
[ 304.192280][ T1057] device veth0_vlan left promiscuous mode
[ 305.398298][ T1057] team0 (unregistering): Port device team_slave_1 removed
[ 305.458719][ T1057] team0 (unregistering): Port device team_slave_0 removed
[ 305.500396][ T1057] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 305.559125][ T1057] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 305.745164][ T1057] bond0 (unregistering): Released all slaves
[ 307.121890][ T3543] Bluetooth: hci2: command 0x0406 tx timeout
[ 307.122766][ T3566] Bluetooth: hci0: command 0x0406 tx timeout
[ 307.132580][ T3543] Bluetooth: hci3: command 0x0406 tx timeout
[ 307.151986][ T3566] Bluetooth: hci1: command 0x0406 tx timeout
[ 307.169320][ T3566] Bluetooth: hci4: command 0x0406 tx timeout
[ 312.158347][ T4615] chnl_net:caif_netlink_parms(): no params data found
[ 312.447399][ T4615] bridge0: port 1(bridge_slave_0) entered blocking state
[ 312.454989][ T4615] bridge0: port 1(bridge_slave_0) entered disabled state
[ 312.464969][ T4615] device bridge_slave_0 entered promiscuous mode
[ 312.496028][ T4615] bridge0: port 2(bridge_slave_1) entered blocking state
[ 312.503995][ T4615] bridge0: port 2(bridge_slave_1) entered disabled state
[ 312.514305][ T4615] device bridge_slave_1 entered promiscuous mode
[ 312.602400][ T4615] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 312.633615][ T4615] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 312.728777][ T4615] team0: Port device team_slave_0 added
[ 312.743153][ T4615] team0: Port device team_slave_1 added
[ 312.813455][ T4615] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 312.820532][ T4615] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 312.847446][ T4615] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 312.865476][ T4615] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 312.872876][ T4615] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 312.899392][ T4615] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 313.001539][ T4615] device hsr_slave_0 entered promiscuous mode
[ 313.016089][ T4615] device hsr_slave_1 entered promiscuous mode
[ 313.026458][ T4615] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 313.034504][ T4615] Cannot create hsr debugfs directory
[ 313.526748][ T4615] 8021q: adding VLAN 0 to HW filter on device bond0
[ 313.567046][ T3558] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 313.576710][ T3558] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 313.596856][ T4615] 8021q: adding VLAN 0 to HW filter on device team0
[ 313.626894][ T3558] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 313.637680][ T3558] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 313.647492][ T3558] bridge0: port 1(bridge_slave_0) entered blocking state
[ 313.655095][ T3558] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 313.675398][ T3566] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 313.685350][ T3566] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 313.695861][ T3566] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 313.705587][ T3566] bridge0: port 2(bridge_slave_1) entered blocking state
[ 313.713000][ T3566] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 313.742939][ T116] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 313.776955][ T116] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 313.804870][ T116] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 313.816517][ T116] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 313.867575][ T4615] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 313.878345][ T4615] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 313.898063][ T3543] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 313.908458][ T3543] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 313.919958][ T3543] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 313.931899][ T3558] Bluetooth: hci5: command 0x0409 tx timeout
[ 313.934328][ T3543] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 313.949108][ T3543] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 313.960202][ T3543] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 313.970431][ T3543] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 313.998252][ T116] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 314.053973][ T3566] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 314.062720][ T3566] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 314.117122][ T4615] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 314.505586][ T3566] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 314.516230][ T3566] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 314.616775][ T3543] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 314.627114][ T3543] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 314.657863][ T3543] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 314.667736][ T3543] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 314.694878][ T4615] device veth0_vlan entered promiscuous mode
[ 314.742712][ T4615] device veth1_vlan entered promiscuous mode
[ 314.878648][ T3543] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 314.890652][ T3543] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 314.900592][ T3543] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 314.911072][ T3543] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 314.951456][ T4615] device veth0_macvtap entered promiscuous mode
[ 315.013308][ T4615] device veth1_macvtap entered promiscuous mode
[ 315.063201][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 315.073878][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 315.084199][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 315.094831][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 315.104806][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 315.115404][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 315.125446][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 315.136064][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 315.146153][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 315.158336][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 315.172496][ T4615] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 315.187287][ T116] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 315.197433][ T116] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 315.207478][ T116] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 315.217609][ T116] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 315.240380][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 315.251065][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 315.262757][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 315.274164][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 315.284228][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 315.294836][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 315.304828][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 315.315442][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 315.325469][ T4615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 315.336057][ T4615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 315.350099][ T4615] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 315.374222][ T3566] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 315.384754][ T3566] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 316.011836][ T3566] Bluetooth: hci5: command 0x041b tx timeout
[ 316.713756][ T8] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 316.721946][ T8] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 316.742608][ T3566] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 316.832627][ T8] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 316.840749][ T8] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 316.848826][ T116] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
19:04:56 executing program 2:
setuid(0xee01)
socketpair(0x2c, 0x0, 0x0, &(0x7f0000000200))
19:04:56 executing program 3:
perf_event_open(&(0x7f00000001c0)={0x2, 0x70, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
lseek(r0, 0x800002, 0x0)
write$binfmt_aout(r0, &(0x7f0000000580)=ANY=[], 0x23)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f00000000c0)={{0x0, 0x7fff, 0x40, 0x8, 0x69e1cb06, 0x6, 0x401, 0x0, 0x1, 0x0, 0x40000000}, 0x8, [0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f0000059000)={{0x0, 0x0, 0x1, 0x200, 0x0, 0x9, 0x0, 0x9, 0x9, 0x7, 0x0, 0x0, 0xaf91, 0x400}})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f000005a000)=ANY=[@ANYRES64=0x0, @ANYBLOB="7f00000000000000d70c0000000000000200000000000000060000000000bbd842a2000000000000b8ea0000000000000000000009000008000000000500000002000000000000000300000000000000ff0300000000000000000000000000001800"/124])
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r2, 0x89a1, &(0x7f0000000300)={@local})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f000005a0c0))
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, &(0x7f0000000000)={0x1, 0x1, 0x7})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r1)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x84042, 0x0)
sendfile(r1, r3, 0x0, 0x200004)
19:04:56 executing program 0:
r0 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0)
ftruncate(r0, 0x88001)
perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket(0x11, 0x2, 0x0)
bind(r1, &(0x7f0000000100)=@generic={0x11, "8100010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b38360054a5b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8ef6b3327d3a09ffc2c654"}, 0x80)
r2 = open(&(0x7f00000000c0)='./bus\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0xffffffff00d)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0xfffffffc)
syz_open_procfs(0x0, &(0x7f0000000140)='net/nf_conntrack\x00')
19:04:56 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x9)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
clone3(&(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x40)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000140)='wlan1\x00', 0x10)
connect$inet(r0, &(0x7f0000000340)={0x2, 0x0, @multicast2}, 0x10)
socket$packet(0x11, 0x3, 0x300)
sendmmsg(r0, &(0x7f0000007fc0), 0x400000000000070, 0x0)
19:04:56 executing program 5:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10, 0x91}, [@ldst={0x3, 0x0, 0x6}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000080), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x23)
19:04:56 executing program 1:
r0 = socket$inet6(0xa, 0x80003, 0x7)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000000c0)=0x27df, 0x4)
sendmmsg(r0, &(0x7f00000092c0), 0x3fffffffffffe9f, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fsetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2)
recvmmsg(r0, &(0x7f00000010c0)=[{{0x0, 0x0, 0x0}}], 0x300, 0xff00, 0x0)
[ 317.399351][ T24] audit: type=1804 audit(1641755096.455:22): pid=4746 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir281511801/syzkaller.0NZq3N/41/bus" dev="sda1" ino=1186 res=1 errno=0
19:04:56 executing program 5:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10, 0x91}, [@ldst={0x3, 0x0, 0x6}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000080), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x23)
[ 317.582158][ T24] audit: type=1800 audit(1641755096.565:23): pid=4748 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1187 res=0 errno=0
19:04:56 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
statx(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0)
lstat(0x0, 0x0)
syz_mount_image$afs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)={[{@dyn}]})
19:04:56 executing program 2:
r0 = socket(0x29, 0x5, 0x0)
setsockopt$CAN_RAW_FD_FRAMES(r0, 0x65, 0x5, 0x0, 0x0)
[ 318.088694][ T3566] Bluetooth: hci5: command 0x040f tx timeout
19:04:57 executing program 5:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10, 0x91}, [@ldst={0x3, 0x0, 0x6}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000080), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x23)
19:04:57 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f00000000c0)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000040)='net/fib_trie\x00')
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
openat$cgroup_freezer_state(r3, 0x0, 0x2, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r4, &(0x7f0000000100)=ANY=[], 0x6)
recvmmsg(r4, &(0x7f0000000600), 0x204083acb88ff8b, 0x2, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
getgid()
19:04:57 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
statx(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0)
lstat(0x0, 0x0)
syz_mount_image$afs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)={[{@dyn}]})
19:04:57 executing program 2:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000100)={'syz_tun\x00', &(0x7f0000002fc0)=@ethtool_cmd={0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}})
19:04:58 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000340)=0x3bca, 0x4)
r2 = dup2(r1, r1)
sendmmsg$inet(r1, &(0x7f0000000380)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="f7", 0x1}], 0x1}}], 0x1, 0x0)
sendfile(r2, r0, 0x0, 0xffffffff)
19:04:58 executing program 5:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10, 0x91}, [@ldst={0x3, 0x0, 0x6}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000080), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x23)
[ 319.957720][ T4785] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 320.166275][ T3566] Bluetooth: hci5: command 0x0419 tx timeout
[ 320.400845][ T4774] not chained 620000 origins
[ 320.417479][ T4774] CPU: 0 PID: 4774 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 320.426235][ T4774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 320.436332][ T4774] Call Trace:
[ 320.439631][ T4774]
[ 320.442573][ T4774] dump_stack_lvl+0x1ff/0x28e
[ 320.447315][ T4774] dump_stack+0x25/0x28
[ 320.451553][ T4774] kmsan_internal_chain_origin+0x78/0x110
[ 320.457332][ T4774] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 320.463451][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 320.468622][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 320.474493][ T4774] ? __unix_dgram_recvmsg+0x1a0b/0x1c20
[ 320.480161][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 320.485326][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 320.491192][ T4774] ? should_fail+0x75/0x9c0
[ 320.496189][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 320.501366][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 320.507660][ T4774] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 320.513786][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 320.519034][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 320.524899][ T4774] __msan_chain_origin+0xbf/0x140
[ 320.530147][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 320.535320][ T4774] get_compat_msghdr+0x108/0x2c0
[ 320.540307][ T4774] ? __sys_recvmmsg+0x51c/0x6f0
[ 320.545212][ T4774] do_recvmmsg+0xd77/0x2120
[ 320.549785][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 320.554957][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 320.561249][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 320.566529][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 320.572834][ T4774] ? fput+0x82/0x320
[ 320.576842][ T4774] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 320.583400][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 320.588145][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 320.594533][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 320.599621][ T4774] do_fast_syscall_32+0x34/0x70
[ 320.604523][ T4774] do_SYSENTER_32+0x1b/0x20
[ 320.609082][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 320.615463][ T4774] RIP: 0023:0xf6f26549
[ 320.619556][ T4774] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 320.639402][ T4774] RSP: 002b:00000000f58ff5bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 320.647906][ T4774] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 320.655918][ T4774] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 320.663927][ T4774] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 320.671936][ T4774] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 320.679949][ T4774] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 320.687979][ T4774]
[ 320.691258][ T4774] Uninit was stored to memory at:
[ 320.696447][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 320.701624][ T4774] get_compat_msghdr+0x108/0x2c0
[ 320.706701][ T4774] do_recvmmsg+0xd77/0x2120
[ 320.711278][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 320.716104][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 320.722578][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 320.727665][ T4774] do_fast_syscall_32+0x34/0x70
[ 320.732662][ T4774] do_SYSENTER_32+0x1b/0x20
[ 320.737229][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 320.743711][ T4774]
[ 320.746051][ T4774] Uninit was stored to memory at:
[ 320.751208][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 320.756468][ T4774] get_compat_msghdr+0x108/0x2c0
[ 320.761461][ T4774] do_recvmmsg+0xd77/0x2120
[ 320.766121][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 320.770851][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 320.777334][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 320.782515][ T4774] do_fast_syscall_32+0x34/0x70
[ 320.787420][ T4774] do_SYSENTER_32+0x1b/0x20
[ 320.792072][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 320.798459][ T4774]
[ 320.800803][ T4774] Uninit was stored to memory at:
[ 320.806003][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 320.811164][ T4774] get_compat_msghdr+0x108/0x2c0
[ 320.816269][ T4774] do_recvmmsg+0xd77/0x2120
[ 320.820829][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 320.825657][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 320.832144][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 320.837229][ T4774] do_fast_syscall_32+0x34/0x70
[ 320.842226][ T4774] do_SYSENTER_32+0x1b/0x20
[ 320.846785][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 320.853271][ T4774]
[ 320.855608][ T4774] Uninit was stored to memory at:
[ 320.860694][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 320.865948][ T4774] get_compat_msghdr+0x108/0x2c0
[ 320.870929][ T4774] do_recvmmsg+0xd77/0x2120
[ 320.875573][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 320.880309][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 320.886786][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 320.891952][ T4774] do_fast_syscall_32+0x34/0x70
[ 320.896855][ T4774] do_SYSENTER_32+0x1b/0x20
19:05:00 executing program 4:
r0 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$inet_group_source_req(r0, 0x0, 0x5, 0x0, 0x0)
19:05:00 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
statx(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0)
lstat(0x0, 0x0)
syz_mount_image$afs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)={[{@dyn}]})
[ 320.901406][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 320.907898][ T4774]
[ 320.910233][ T4774] Uninit was stored to memory at:
[ 320.915410][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 320.920562][ T4774] get_compat_msghdr+0x108/0x2c0
[ 320.925729][ T4774] do_recvmmsg+0xd77/0x2120
[ 320.930293][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 320.935130][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 320.941516][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 320.946705][ T4774] do_fast_syscall_32+0x34/0x70
[ 320.951625][ T4774] do_SYSENTER_32+0x1b/0x20
[ 320.956294][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 320.962769][ T4774]
[ 320.965105][ T4774] Uninit was stored to memory at:
[ 320.970189][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 320.975437][ T4774] get_compat_msghdr+0x108/0x2c0
[ 320.980419][ T4774] do_recvmmsg+0xd77/0x2120
[ 320.985096][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 320.989925][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 320.996416][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 321.001501][ T4774] do_fast_syscall_32+0x34/0x70
[ 321.006506][ T4774] do_SYSENTER_32+0x1b/0x20
[ 321.011081][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 321.017671][ T4774]
[ 321.020016][ T4774] Uninit was stored to memory at:
[ 321.025220][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 321.030375][ T4774] get_compat_msghdr+0x108/0x2c0
[ 321.035450][ T4774] do_recvmmsg+0xd77/0x2120
[ 321.040014][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 321.044934][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 321.051326][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 321.056505][ T4774] do_fast_syscall_32+0x34/0x70
[ 321.061419][ T4774] do_SYSENTER_32+0x1b/0x20
[ 321.066061][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 321.072536][ T4774]
[ 321.074879][ T4774] Local variable msg_sys created at:
[ 321.080173][ T4774] do_recvmmsg+0xbb/0x2120
[ 321.084808][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 321.938249][ T4774] not chained 630000 origins
[ 321.943275][ T4774] CPU: 0 PID: 4774 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 321.952010][ T4774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 321.962105][ T4774] Call Trace:
[ 321.965412][ T4774]
[ 321.968361][ T4774] dump_stack_lvl+0x1ff/0x28e
[ 321.973100][ T4774] dump_stack+0x25/0x28
[ 321.977306][ T4774] kmsan_internal_chain_origin+0x78/0x110
[ 321.983094][ T4774] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 321.989226][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 321.994387][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 322.000257][ T4774] ? __unix_dgram_recvmsg+0x1a0b/0x1c20
[ 322.005855][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 322.011032][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 322.016897][ T4774] ? should_fail+0x75/0x9c0
[ 322.021449][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 322.026624][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 322.032923][ T4774] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 322.039047][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 322.044213][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 322.050084][ T4774] __msan_chain_origin+0xbf/0x140
[ 322.055255][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 322.060625][ T4774] get_compat_msghdr+0x108/0x2c0
[ 322.065623][ T4774] ? __sys_recvmmsg+0x51c/0x6f0
[ 322.070538][ T4774] do_recvmmsg+0xd77/0x2120
[ 322.075114][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 322.080293][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 322.086601][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 322.091779][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 322.098088][ T4774] ? fput+0x82/0x320
[ 322.102048][ T4774] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 322.108616][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 322.113367][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 322.119849][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 322.124934][ T4774] do_fast_syscall_32+0x34/0x70
[ 322.129940][ T4774] do_SYSENTER_32+0x1b/0x20
[ 322.134500][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 322.141086][ T4774] RIP: 0023:0xf6f26549
[ 322.145189][ T4774] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 322.164850][ T4774] RSP: 002b:00000000f58ff5bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 322.173324][ T4774] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 322.181330][ T4774] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 322.189335][ T4774] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 322.197345][ T4774] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 322.205443][ T4774] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 322.213461][ T4774]
[ 322.220789][ T4774] Uninit was stored to memory at:
[ 322.227086][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 322.232362][ T4774] get_compat_msghdr+0x108/0x2c0
[ 322.237345][ T4774] do_recvmmsg+0xd77/0x2120
[ 322.241984][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 322.246709][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 322.253192][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 322.258280][ T4774] do_fast_syscall_32+0x34/0x70
[ 322.263453][ T4774] do_SYSENTER_32+0x1b/0x20
[ 322.268008][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 322.274499][ T4774]
[ 322.276836][ T4774] Uninit was stored to memory at:
[ 322.282068][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 322.287222][ T4774] get_compat_msghdr+0x108/0x2c0
[ 322.292358][ T4774] do_recvmmsg+0xd77/0x2120
[ 322.296920][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 322.301649][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 322.308187][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 322.313420][ T4774] do_fast_syscall_32+0x34/0x70
[ 322.318324][ T4774] do_SYSENTER_32+0x1b/0x20
[ 322.322976][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 322.329370][ T4774]
[ 322.331938][ T4774] Uninit was stored to memory at:
[ 322.337024][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 322.342322][ T4774] get_compat_msghdr+0x108/0x2c0
[ 322.347308][ T4774] do_recvmmsg+0xd77/0x2120
[ 322.352090][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 322.356827][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 322.363472][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 322.368555][ T4774] do_fast_syscall_32+0x34/0x70
[ 322.373624][ T4774] do_SYSENTER_32+0x1b/0x20
[ 322.378192][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 322.384736][ T4774]
[ 322.387073][ T4774] Uninit was stored to memory at:
[ 322.392314][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 322.397558][ T4774] get_compat_msghdr+0x108/0x2c0
[ 322.402698][ T4774] do_recvmmsg+0xd77/0x2120
[ 322.407257][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 322.412130][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 322.418514][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 322.423735][ T4774] do_fast_syscall_32+0x34/0x70
[ 322.428638][ T4774] do_SYSENTER_32+0x1b/0x20
[ 322.433282][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 322.439665][ T4774]
[ 322.442136][ T4774] Uninit was stored to memory at:
[ 322.447225][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 322.452530][ T4774] get_compat_msghdr+0x108/0x2c0
[ 322.457512][ T4774] do_recvmmsg+0xd77/0x2120
[ 322.462213][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 322.466939][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 322.473473][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 322.478644][ T4774] do_fast_syscall_32+0x34/0x70
[ 322.483702][ T4774] do_SYSENTER_32+0x1b/0x20
[ 322.488256][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 322.494730][ T4774]
[ 322.497065][ T4774] Uninit was stored to memory at:
[ 322.502368][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 322.507524][ T4774] get_compat_msghdr+0x108/0x2c0
[ 322.512686][ T4774] do_recvmmsg+0xd77/0x2120
[ 322.517250][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 322.522124][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 322.528500][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 322.533758][ T4774] do_fast_syscall_32+0x34/0x70
[ 322.538667][ T4774] do_SYSENTER_32+0x1b/0x20
[ 322.543369][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 322.549840][ T4774]
[ 322.552348][ T4774] Uninit was stored to memory at:
[ 322.557445][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 322.562746][ T4774] get_compat_msghdr+0x108/0x2c0
[ 322.567734][ T4774] do_recvmmsg+0xd77/0x2120
[ 322.572434][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 322.577165][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 322.583711][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 322.588797][ T4774] do_fast_syscall_32+0x34/0x70
[ 322.593877][ T4774] do_SYSENTER_32+0x1b/0x20
[ 322.598432][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 322.604971][ T4774]
[ 322.607312][ T4774] Local variable msg_sys created at:
[ 322.612854][ T4774] do_recvmmsg+0xbb/0x2120
[ 322.617322][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 322.938336][ T4774] not chained 640000 origins
[ 322.943105][ T4774] CPU: 0 PID: 4774 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 322.951826][ T4774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 322.961916][ T4774] Call Trace:
[ 322.965222][ T4774]
[ 322.968169][ T4774] dump_stack_lvl+0x1ff/0x28e
[ 322.972911][ T4774] dump_stack+0x25/0x28
[ 322.977129][ T4774] kmsan_internal_chain_origin+0x78/0x110
[ 322.983092][ T4774] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 322.989224][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 322.994386][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 323.000260][ T4774] ? __unix_dgram_recvmsg+0x1a0b/0x1c20
[ 323.005861][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 323.011029][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 323.016896][ T4774] ? should_fail+0x75/0x9c0
[ 323.021460][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 323.026627][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 323.032927][ T4774] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 323.039080][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 323.044250][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 323.050116][ T4774] __msan_chain_origin+0xbf/0x140
[ 323.055197][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 323.060383][ T4774] get_compat_msghdr+0x108/0x2c0
[ 323.065374][ T4774] ? __sys_recvmmsg+0x51c/0x6f0
[ 323.070290][ T4774] do_recvmmsg+0xd77/0x2120
[ 323.074863][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 323.080037][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 323.086338][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 323.091511][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 323.097820][ T4774] ? fput+0x82/0x320
[ 323.101765][ T4774] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 323.108327][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 323.113076][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 323.119643][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 323.124735][ T4774] do_fast_syscall_32+0x34/0x70
[ 323.129661][ T4774] do_SYSENTER_32+0x1b/0x20
[ 323.134213][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 323.140599][ T4774] RIP: 0023:0xf6f26549
[ 323.144726][ T4774] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 323.164387][ T4774] RSP: 002b:00000000f58ff5bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 323.173024][ T4774] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 323.181038][ T4774] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 323.189131][ T4774] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 323.197134][ T4774] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 323.205139][ T4774] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 323.213170][ T4774]
[ 323.218530][ T4774] Uninit was stored to memory at:
[ 323.223979][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 323.229142][ T4774] get_compat_msghdr+0x108/0x2c0
[ 323.234212][ T4774] do_recvmmsg+0xd77/0x2120
[ 323.238768][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 323.243584][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 323.249964][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 323.255151][ T4774] do_fast_syscall_32+0x34/0x70
[ 323.260076][ T4774] do_SYSENTER_32+0x1b/0x20
[ 323.264733][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 323.271119][ T4774]
[ 323.273548][ T4774] Uninit was stored to memory at:
[ 323.279070][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 323.284318][ T4774] get_compat_msghdr+0x108/0x2c0
[ 323.289299][ T4774] do_recvmmsg+0xd77/0x2120
[ 323.293948][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 323.298679][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 323.305152][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 323.310230][ T4774] do_fast_syscall_32+0x34/0x70
[ 323.315227][ T4774] do_SYSENTER_32+0x1b/0x20
[ 323.319780][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 323.326267][ T4774]
[ 323.328599][ T4774] Uninit was stored to memory at:
[ 323.333784][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 323.338935][ T4774] get_compat_msghdr+0x108/0x2c0
[ 323.344017][ T4774] do_recvmmsg+0xd77/0x2120
[ 323.348568][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 323.353400][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 323.359782][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 323.364950][ T4774] do_fast_syscall_32+0x34/0x70
[ 323.369859][ T4774] do_SYSENTER_32+0x1b/0x20
[ 323.374508][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 323.380891][ T4774]
[ 323.383328][ T4774] Uninit was stored to memory at:
[ 323.388409][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 323.393665][ T4774] get_compat_msghdr+0x108/0x2c0
[ 323.398650][ T4774] do_recvmmsg+0xd77/0x2120
[ 323.403297][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 323.408022][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 323.414493][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 323.419659][ T4774] do_fast_syscall_32+0x34/0x70
[ 323.424656][ T4774] do_SYSENTER_32+0x1b/0x20
[ 323.429219][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 323.435712][ T4774]
[ 323.438077][ T4774] Uninit was stored to memory at:
[ 323.443308][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 323.448458][ T4774] get_compat_msghdr+0x108/0x2c0
[ 323.453590][ T4774] do_recvmmsg+0xd77/0x2120
[ 323.458150][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 323.463035][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 323.469417][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 323.474660][ T4774] do_fast_syscall_32+0x34/0x70
[ 323.479565][ T4774] do_SYSENTER_32+0x1b/0x20
[ 323.484295][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 323.490785][ T4774]
[ 323.493290][ T4774] Uninit was stored to memory at:
[ 323.498383][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 323.503708][ T4774] get_compat_msghdr+0x108/0x2c0
[ 323.508694][ T4774] do_recvmmsg+0xd77/0x2120
[ 323.513422][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 323.518158][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 323.524723][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 323.529812][ T4774] do_fast_syscall_32+0x34/0x70
[ 323.534951][ T4774] do_SYSENTER_32+0x1b/0x20
[ 323.539503][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 323.545959][ T4774]
[ 323.548289][ T4774] Uninit was stored to memory at:
[ 323.553459][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 323.558613][ T4774] get_compat_msghdr+0x108/0x2c0
[ 323.563761][ T4774] do_recvmmsg+0xd77/0x2120
[ 323.568327][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 323.573227][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 323.579616][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 323.584883][ T4774] do_fast_syscall_32+0x34/0x70
[ 323.589816][ T4774] do_SYSENTER_32+0x1b/0x20
[ 323.594615][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 323.601010][ T4774]
[ 323.603510][ T4774] Local variable msg_sys created at:
[ 323.608810][ T4774] do_recvmmsg+0xbb/0x2120
[ 323.613446][ T4774] __sys_recvmmsg+0x51c/0x6f0
19:05:02 executing program 1:
perf_event_open(&(0x7f000025c000)={0x2, 0x7a, 0x15, 0x0, 0x0, 0x0, 0x0, 0x1, 0x824b0}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='coredump_filter\x00')
pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000000)='8', 0x1}, {&(0x7f0000000340)="02", 0x1}], 0x2, 0x0, 0x0)
19:05:02 executing program 5:
perf_event_open(&(0x7f0000000200)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000000180)={0x0, 0x600, &(0x7f00000000c0)={&(0x7f0000000100)={0x30, r1, 0x1, 0x0, 0x0, {{}, {}, {0x14}}}, 0x30}}, 0x0)
19:05:02 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}]}]}, 0x2c}}, 0x0)
19:05:02 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
statx(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0)
lstat(0x0, 0x0)
syz_mount_image$afs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)={[{@dyn}]})
19:05:02 executing program 4:
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
ioctl$BLKZEROOUT(r0, 0x127f, &(0x7f0000000080)={0x0, 0x82200})
[ 324.329392][ T4774] not chained 650000 origins
[ 324.334420][ T4774] CPU: 0 PID: 4774 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 324.343145][ T4774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 324.353231][ T4774] Call Trace:
[ 324.356533][ T4774]
[ 324.359493][ T4774] dump_stack_lvl+0x1ff/0x28e
[ 324.364235][ T4774] dump_stack+0x25/0x28
[ 324.368447][ T4774] kmsan_internal_chain_origin+0x78/0x110
[ 324.374228][ T4774] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 324.380441][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 324.385612][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 324.391504][ T4774] ? __unix_dgram_recvmsg+0x1a0b/0x1c20
[ 324.397111][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 324.402293][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 324.408179][ T4774] ? should_fail+0x75/0x9c0
[ 324.412743][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 324.417920][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 324.424236][ T4774] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 324.430377][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 324.435546][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 324.441422][ T4774] __msan_chain_origin+0xbf/0x140
[ 324.446508][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 324.451776][ T4774] get_compat_msghdr+0x108/0x2c0
[ 324.456768][ T4774] ? __sys_recvmmsg+0x51c/0x6f0
[ 324.461672][ T4774] do_recvmmsg+0xd77/0x2120
[ 324.466243][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 324.471423][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 324.477727][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 324.482899][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 324.489205][ T4774] ? fput+0x82/0x320
[ 324.493161][ T4774] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 324.499722][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 324.504458][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 324.510837][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 324.515910][ T4774] do_fast_syscall_32+0x34/0x70
[ 324.520804][ T4774] do_SYSENTER_32+0x1b/0x20
[ 324.525350][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 324.531726][ T4774] RIP: 0023:0xf6f26549
[ 324.535813][ T4774] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 324.555457][ T4774] RSP: 002b:00000000f58ff5bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 324.563904][ T4774] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 324.571903][ T4774] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 324.580332][ T4774] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 324.588330][ T4774] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 324.596323][ T4774] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 324.604330][ T4774]
[ 324.609720][ T4774] Uninit was stored to memory at:
[ 324.615318][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 324.620477][ T4774] get_compat_msghdr+0x108/0x2c0
[ 324.625560][ T4774] do_recvmmsg+0xd77/0x2120
[ 324.630219][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 324.635067][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 324.641473][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 324.646663][ T4774] do_fast_syscall_32+0x34/0x70
[ 324.651573][ T4774] do_SYSENTER_32+0x1b/0x20
[ 324.656228][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 324.662787][ T4774]
[ 324.665116][ T4774] Uninit was stored to memory at:
[ 324.670220][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 324.675484][ T4774] get_compat_msghdr+0x108/0x2c0
[ 324.680493][ T4774] do_recvmmsg+0xd77/0x2120
[ 324.685228][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 324.689963][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 324.696449][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 324.701547][ T4774] do_fast_syscall_32+0x34/0x70
[ 324.706564][ T4774] do_SYSENTER_32+0x1b/0x20
[ 324.711120][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 324.717610][ T4774]
[ 324.719943][ T4774] Uninit was stored to memory at:
[ 324.725122][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 324.730272][ T4774] get_compat_msghdr+0x108/0x2c0
[ 324.735346][ T4774] do_recvmmsg+0xd77/0x2120
[ 324.739919][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 324.744750][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 324.751188][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 324.756406][ T4774] do_fast_syscall_32+0x34/0x70
[ 324.761327][ T4774] do_SYSENTER_32+0x1b/0x20
[ 324.766155][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 324.772646][ T4774]
[ 324.774984][ T4774] Uninit was stored to memory at:
[ 324.780071][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 324.785321][ T4774] get_compat_msghdr+0x108/0x2c0
[ 324.790298][ T4774] do_recvmmsg+0xd77/0x2120
[ 324.794948][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 324.799679][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 324.806195][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 324.811289][ T4774] do_fast_syscall_32+0x34/0x70
[ 324.816320][ T4774] do_SYSENTER_32+0x1b/0x20
[ 324.821016][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 324.827520][ T4774]
[ 324.829860][ T4774] Uninit was stored to memory at:
[ 324.835044][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 324.840319][ T4774] get_compat_msghdr+0x108/0x2c0
[ 324.845396][ T4774] do_recvmmsg+0xd77/0x2120
[ 324.849947][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 324.854769][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 324.861148][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 324.866335][ T4774] do_fast_syscall_32+0x34/0x70
[ 324.871258][ T4774] do_SYSENTER_32+0x1b/0x20
[ 324.875899][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 324.882375][ T4774]
[ 324.884709][ T4774] Uninit was stored to memory at:
[ 324.889819][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 324.895081][ T4774] get_compat_msghdr+0x108/0x2c0
[ 324.900072][ T4774] do_recvmmsg+0xd77/0x2120
[ 324.904731][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 324.909465][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 324.915962][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 324.921044][ T4774] do_fast_syscall_32+0x34/0x70
[ 324.926049][ T4774] do_SYSENTER_32+0x1b/0x20
[ 324.930628][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 324.937109][ T4774]
[ 324.939438][ T4774] Uninit was stored to memory at:
[ 324.944633][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 324.949787][ T4774] get_compat_msghdr+0x108/0x2c0
[ 324.954882][ T4774] do_recvmmsg+0xd77/0x2120
[ 324.959742][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 324.964585][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 324.970998][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 324.976229][ T4774] do_fast_syscall_32+0x34/0x70
[ 324.981137][ T4774] do_SYSENTER_32+0x1b/0x20
[ 324.985851][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 324.992335][ T4774]
[ 324.994672][ T4774] Local variable msg_sys created at:
[ 324.999954][ T4774] do_recvmmsg+0xbb/0x2120
[ 325.004587][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 325.230163][ T4774] not chained 660000 origins
[ 325.235076][ T4774] CPU: 0 PID: 4774 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 325.243805][ T4774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 325.253900][ T4774] Call Trace:
[ 325.257201][ T4774]
[ 325.260154][ T4774] dump_stack_lvl+0x1ff/0x28e
[ 325.264896][ T4774] dump_stack+0x25/0x28
[ 325.269102][ T4774] kmsan_internal_chain_origin+0x78/0x110
[ 325.274909][ T4774] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 325.281041][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 325.286223][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 325.292098][ T4774] ? __unix_dgram_recvmsg+0x1a0b/0x1c20
[ 325.297696][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 325.302867][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 325.309222][ T4774] ? should_fail+0x75/0x9c0
[ 325.313780][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 325.318951][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 325.325259][ T4774] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 325.331395][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 325.336561][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 325.342432][ T4774] __msan_chain_origin+0xbf/0x140
[ 325.347521][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 325.352697][ T4774] get_compat_msghdr+0x108/0x2c0
[ 325.357693][ T4774] ? __sys_recvmmsg+0x51c/0x6f0
[ 325.362609][ T4774] do_recvmmsg+0xd77/0x2120
[ 325.367187][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 325.372371][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 325.378682][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 325.383857][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 325.390161][ T4774] ? fput+0x82/0x320
[ 325.394106][ T4774] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 325.400663][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 325.405407][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 325.411805][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 325.416896][ T4774] do_fast_syscall_32+0x34/0x70
[ 325.421890][ T4774] do_SYSENTER_32+0x1b/0x20
[ 325.426456][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 325.432849][ T4774] RIP: 0023:0xf6f26549
[ 325.437033][ T4774] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 325.456692][ T4774] RSP: 002b:00000000f58ff5bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 325.465158][ T4774] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 325.473178][ T4774] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 325.481186][ T4774] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 325.489191][ T4774] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 325.497195][ T4774] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 325.505220][ T4774]
[ 325.510566][ T4774] Uninit was stored to memory at:
[ 325.516044][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 325.521206][ T4774] get_compat_msghdr+0x108/0x2c0
[ 325.526284][ T4774] do_recvmmsg+0xd77/0x2120
[ 325.530845][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 325.535671][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 325.542156][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 325.547323][ T4774] do_fast_syscall_32+0x34/0x70
[ 325.552366][ T4774] do_SYSENTER_32+0x1b/0x20
[ 325.556934][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 325.563486][ T4774]
[ 325.565824][ T4774] Uninit was stored to memory at:
[ 325.570907][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 325.576229][ T4774] get_compat_msghdr+0x108/0x2c0
[ 325.581216][ T4774] do_recvmmsg+0xd77/0x2120
[ 325.585943][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 325.590674][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 325.597216][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 325.602399][ T4774] do_fast_syscall_32+0x34/0x70
[ 325.607306][ T4774] do_SYSENTER_32+0x1b/0x20
[ 325.612005][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 325.618397][ T4774]
[ 325.620732][ T4774] Uninit was stored to memory at:
[ 325.625990][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 325.631144][ T4774] get_compat_msghdr+0x108/0x2c0
[ 325.636275][ T4774] do_recvmmsg+0xd77/0x2120
[ 325.640833][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 325.645703][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 325.652172][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 325.657251][ T4774] do_fast_syscall_32+0x34/0x70
[ 325.662309][ T4774] do_SYSENTER_32+0x1b/0x20
[ 325.666862][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 325.673398][ T4774]
[ 325.675745][ T4774] Uninit was stored to memory at:
[ 325.680832][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 325.686154][ T4774] get_compat_msghdr+0x108/0x2c0
[ 325.691142][ T4774] do_recvmmsg+0xd77/0x2120
[ 325.695879][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 325.700626][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 325.707267][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 325.712432][ T4774] do_fast_syscall_32+0x34/0x70
[ 325.717341][ T4774] do_SYSENTER_32+0x1b/0x20
[ 325.722047][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 325.728427][ T4774]
[ 325.730760][ T4774] Uninit was stored to memory at:
[ 325.735951][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 325.741192][ T4774] get_compat_msghdr+0x108/0x2c0
[ 325.746503][ T4774] do_recvmmsg+0xd77/0x2120
[ 325.751172][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 325.756086][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 325.762580][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 325.767667][ T4774] do_fast_syscall_32+0x34/0x70
[ 325.772725][ T4774] do_SYSENTER_32+0x1b/0x20
[ 325.777285][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 325.783844][ T4774]
[ 325.786205][ T4774] Uninit was stored to memory at:
[ 325.791302][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 325.796649][ T4774] get_compat_msghdr+0x108/0x2c0
[ 325.801640][ T4774] do_recvmmsg+0xd77/0x2120
[ 325.806368][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 325.811101][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 325.817649][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 325.822829][ T4774] do_fast_syscall_32+0x34/0x70
[ 325.827733][ T4774] do_SYSENTER_32+0x1b/0x20
[ 325.832431][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 325.838825][ T4774]
[ 325.841168][ T4774] Uninit was stored to memory at:
[ 325.846419][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 325.851580][ T4774] get_compat_msghdr+0x108/0x2c0
[ 325.856740][ T4774] do_recvmmsg+0xd77/0x2120
[ 325.861304][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 325.866384][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 325.872861][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 325.877944][ T4774] do_fast_syscall_32+0x34/0x70
[ 325.883017][ T4774] do_SYSENTER_32+0x1b/0x20
[ 325.887675][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 325.894231][ T4774]
[ 325.896582][ T4774] Local variable msg_sys created at:
[ 325.902019][ T4774] do_recvmmsg+0xbb/0x2120
[ 325.906489][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 326.166846][ T4774] not chained 670000 origins
[ 326.171490][ T4774] CPU: 0 PID: 4774 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 326.180223][ T4774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 326.190322][ T4774] Call Trace:
[ 326.193708][ T4774]
[ 326.196659][ T4774] dump_stack_lvl+0x1ff/0x28e
[ 326.201400][ T4774] dump_stack+0x25/0x28
[ 326.205625][ T4774] kmsan_internal_chain_origin+0x78/0x110
[ 326.211407][ T4774] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 326.217630][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 326.222802][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 326.228680][ T4774] ? __unix_dgram_recvmsg+0x1a0b/0x1c20
[ 326.234281][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 326.239458][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 326.245343][ T4774] ? should_fail+0x75/0x9c0
[ 326.249911][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 326.255083][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 326.261391][ T4774] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 326.267521][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 326.272691][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 326.278560][ T4774] __msan_chain_origin+0xbf/0x140
[ 326.283638][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 326.288819][ T4774] get_compat_msghdr+0x108/0x2c0
[ 326.293811][ T4774] ? __sys_recvmmsg+0x51c/0x6f0
[ 326.298718][ T4774] do_recvmmsg+0xd77/0x2120
[ 326.303302][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 326.308481][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 326.314785][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 326.319948][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 326.326248][ T4774] ? fput+0x82/0x320
[ 326.330202][ T4774] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 326.336762][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 326.341513][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 326.347912][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 326.353009][ T4774] do_fast_syscall_32+0x34/0x70
[ 326.357922][ T4774] do_SYSENTER_32+0x1b/0x20
[ 326.362484][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 326.368881][ T4774] RIP: 0023:0xf6f26549
[ 326.372977][ T4774] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 326.392809][ T4774] RSP: 002b:00000000f58ff5bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 326.401271][ T4774] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 326.409288][ T4774] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 326.417296][ T4774] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 326.425302][ T4774] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 326.433321][ T4774] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 326.441345][ T4774]
[ 326.447459][ T4774] Uninit was stored to memory at:
[ 326.453199][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 326.458357][ T4774] get_compat_msghdr+0x108/0x2c0
[ 326.463448][ T4774] do_recvmmsg+0xd77/0x2120
[ 326.468009][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 326.472829][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 326.479204][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 326.484385][ T4774] do_fast_syscall_32+0x34/0x70
[ 326.489291][ T4774] do_SYSENTER_32+0x1b/0x20
[ 326.493948][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 326.500336][ T4774]
[ 326.502764][ T4774] Uninit was stored to memory at:
[ 326.508019][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 326.513262][ T4774] get_compat_msghdr+0x108/0x2c0
[ 326.518241][ T4774] do_recvmmsg+0xd77/0x2120
[ 326.522889][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 326.527621][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 326.534104][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 326.539189][ T4774] do_fast_syscall_32+0x34/0x70
[ 326.544189][ T4774] do_SYSENTER_32+0x1b/0x20
[ 326.548742][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 326.555239][ T4774]
[ 326.557577][ T4774] Uninit was stored to memory at:
[ 326.562809][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 326.567964][ T4774] get_compat_msghdr+0x108/0x2c0
[ 326.573101][ T4774] do_recvmmsg+0xd77/0x2120
[ 326.577665][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 326.582611][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 326.588994][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 326.594239][ T4774] do_fast_syscall_32+0x34/0x70
[ 326.599147][ T4774] do_SYSENTER_32+0x1b/0x20
[ 326.603854][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 326.610241][ T4774]
[ 326.612729][ T4774] Uninit was stored to memory at:
[ 326.617818][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 326.623123][ T4774] get_compat_msghdr+0x108/0x2c0
[ 326.628110][ T4774] do_recvmmsg+0xd77/0x2120
[ 326.632815][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 326.637543][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 326.643998][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 326.649077][ T4774] do_fast_syscall_32+0x34/0x70
[ 326.654137][ T4774] do_SYSENTER_32+0x1b/0x20
[ 326.658693][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 326.665241][ T4774]
[ 326.667578][ T4774] Uninit was stored to memory at:
[ 326.672911][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 326.678064][ T4774] get_compat_msghdr+0x108/0x2c0
[ 326.683287][ T4774] do_recvmmsg+0xd77/0x2120
[ 326.687846][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 326.692730][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 326.699113][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 326.704444][ T4774] do_fast_syscall_32+0x34/0x70
[ 326.709392][ T4774] do_SYSENTER_32+0x1b/0x20
[ 326.714100][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 326.720487][ T4774]
[ 326.722977][ T4774] Uninit was stored to memory at:
[ 326.728067][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 326.733311][ T4774] get_compat_msghdr+0x108/0x2c0
[ 326.738299][ T4774] do_recvmmsg+0xd77/0x2120
[ 326.742943][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 326.747678][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 326.754300][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 326.759385][ T4774] do_fast_syscall_32+0x34/0x70
[ 326.764459][ T4774] do_SYSENTER_32+0x1b/0x20
[ 326.769020][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 326.775578][ T4774]
[ 326.777920][ T4774] Uninit was stored to memory at:
[ 326.783167][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 326.788319][ T4774] get_compat_msghdr+0x108/0x2c0
[ 326.793455][ T4774] do_recvmmsg+0xd77/0x2120
[ 326.798011][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 326.802828][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 326.809204][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 326.814442][ T4774] do_fast_syscall_32+0x34/0x70
[ 326.819349][ T4774] do_SYSENTER_32+0x1b/0x20
[ 326.824060][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 326.830455][ T4774]
[ 326.832953][ T4774] Local variable msg_sys created at:
[ 326.838252][ T4774] do_recvmmsg+0xbb/0x2120
[ 326.842873][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 327.052260][ T4774] not chained 680000 origins
[ 327.056906][ T4774] CPU: 1 PID: 4774 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 327.065625][ T4774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 327.075716][ T4774] Call Trace:
[ 327.079035][ T4774]
[ 327.081989][ T4774] dump_stack_lvl+0x1ff/0x28e
[ 327.086733][ T4774] dump_stack+0x25/0x28
[ 327.090947][ T4774] kmsan_internal_chain_origin+0x78/0x110
[ 327.096738][ T4774] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 327.102870][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 327.108039][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 327.113905][ T4774] ? __unix_dgram_recvmsg+0x1a0b/0x1c20
[ 327.119507][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 327.124683][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 327.130554][ T4774] ? should_fail+0x75/0x9c0
[ 327.135117][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 327.140290][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 327.146602][ T4774] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 327.152737][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 327.157906][ T4774] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 327.163776][ T4774] __msan_chain_origin+0xbf/0x140
[ 327.168852][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 327.174030][ T4774] get_compat_msghdr+0x108/0x2c0
[ 327.179029][ T4774] ? __sys_recvmmsg+0x51c/0x6f0
[ 327.183932][ T4774] do_recvmmsg+0xd77/0x2120
[ 327.188515][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 327.193958][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 327.200262][ T4774] ? kmsan_get_metadata+0x33/0x220
[ 327.205429][ T4774] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 327.211727][ T4774] ? fput+0x82/0x320
[ 327.215932][ T4774] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 327.222491][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 327.227241][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 327.233633][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 327.238719][ T4774] do_fast_syscall_32+0x34/0x70
[ 327.243627][ T4774] do_SYSENTER_32+0x1b/0x20
[ 327.248191][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 327.254575][ T4774] RIP: 0023:0xf6f26549
[ 327.258674][ T4774] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 327.278326][ T4774] RSP: 002b:00000000f58ff5bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 327.286788][ T4774] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 327.294797][ T4774] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 327.302802][ T4774] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 327.310978][ T4774] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 327.318988][ T4774] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 327.327007][ T4774]
[ 327.334201][ T4774] Uninit was stored to memory at:
[ 327.343412][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 327.348575][ T4774] get_compat_msghdr+0x108/0x2c0
[ 327.354260][ T4774] do_recvmmsg+0xd77/0x2120
[ 327.358822][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 327.363687][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 327.370069][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 327.375277][ T4774] do_fast_syscall_32+0x34/0x70
[ 327.380206][ T4774] do_SYSENTER_32+0x1b/0x20
[ 327.384874][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 327.391260][ T4774]
[ 327.393737][ T4774] Uninit was stored to memory at:
[ 327.398829][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 327.404105][ T4774] get_compat_msghdr+0x108/0x2c0
[ 327.409084][ T4774] do_recvmmsg+0xd77/0x2120
[ 327.413766][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 327.418498][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 327.425011][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 327.430180][ T4774] do_fast_syscall_32+0x34/0x70
[ 327.435205][ T4774] do_SYSENTER_32+0x1b/0x20
[ 327.439760][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 327.446269][ T4774]
[ 327.448616][ T4774] Uninit was stored to memory at:
[ 327.453836][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 327.458989][ T4774] get_compat_msghdr+0x108/0x2c0
[ 327.464074][ T4774] do_recvmmsg+0xd77/0x2120
[ 327.468629][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 327.473481][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 327.479953][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 327.485151][ T4774] do_fast_syscall_32+0x34/0x70
[ 327.490058][ T4774] do_SYSENTER_32+0x1b/0x20
[ 327.494741][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 327.501125][ T4774]
[ 327.503582][ T4774] Uninit was stored to memory at:
[ 327.508676][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 327.513955][ T4774] get_compat_msghdr+0x108/0x2c0
[ 327.518939][ T4774] do_recvmmsg+0xd77/0x2120
[ 327.523623][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 327.528353][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 327.534938][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 327.540023][ T4774] do_fast_syscall_32+0x34/0x70
[ 327.545128][ T4774] do_SYSENTER_32+0x1b/0x20
[ 327.549685][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 327.556255][ T4774]
[ 327.558592][ T4774] Uninit was stored to memory at:
[ 327.563870][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 327.569027][ T4774] get_compat_msghdr+0x108/0x2c0
[ 327.574204][ T4774] do_recvmmsg+0xd77/0x2120
[ 327.578757][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 327.583665][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 327.590045][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 327.595316][ T4774] do_fast_syscall_32+0x34/0x70
[ 327.600225][ T4774] do_SYSENTER_32+0x1b/0x20
[ 327.604964][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 327.611450][ T4774]
[ 327.613978][ T4774] Uninit was stored to memory at:
[ 327.619070][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 327.624413][ T4774] get_compat_msghdr+0x108/0x2c0
[ 327.629398][ T4774] do_recvmmsg+0xd77/0x2120
[ 327.634167][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 327.638898][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 327.645469][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 327.650549][ T4774] do_fast_syscall_32+0x34/0x70
[ 327.655652][ T4774] do_SYSENTER_32+0x1b/0x20
[ 327.660207][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 327.666778][ T4774]
[ 327.669114][ T4774] Uninit was stored to memory at:
[ 327.674373][ T4774] __get_compat_msghdr+0x6e1/0x9d0
[ 327.679533][ T4774] get_compat_msghdr+0x108/0x2c0
[ 327.684710][ T4774] do_recvmmsg+0xd77/0x2120
[ 327.689271][ T4774] __sys_recvmmsg+0x51c/0x6f0
[ 327.694200][ T4774] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 327.700577][ T4774] __do_fast_syscall_32+0x96/0xf0
[ 327.705857][ T4774] do_fast_syscall_32+0x34/0x70
[ 327.710762][ T4774] do_SYSENTER_32+0x1b/0x20
[ 327.715502][ T4774] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 327.722011][ T4774]
[ 327.724348][ T4774] Local variable msg_sys created at:
[ 327.729655][ T4774] do_recvmmsg+0xbb/0x2120
[ 327.734312][ T4774] __sys_recvmmsg+0x51c/0x6f0
19:05:06 executing program 3:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)="688e66495a1216307cc95d83cbf6a899", 0x10}}, 0x0)
19:05:06 executing program 4:
r0 = syz_mount_image$exfat(&(0x7f00000001c0), &(0x7f0000000100)='./file0\x00', 0x0, 0xd, &(0x7f0000000200)=[{&(0x7f0000000040)="eb769045584641542020200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000010000000000008000000008000000880000000f00000005000000341234120001000009030180", 0x70}, {&(0x7f00000000c0)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x1e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x3e0}, {&(0x7f0000010300)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x5e0}, {&(0x7f0000010400)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x7e0}, {&(0x7f0000010500)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x9e0}, {&(0x7f0000010600)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xbe0}, {&(0x7f0000010700)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xde0}, {&(0x7f0000010800)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xfe0}, {&(0x7f0000010900)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x11e0}, {&(0x7f0000010a00)="00ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac1911", 0x200, 0x1600}, {&(0x7f0000011800)="f8ffffffffffffffffffffff04000000ffffffffffffffff", 0x18, 0x10000}, {&(0x7f0000013100)="030000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000200000002", 0x39, 0x14000}], 0x0, &(0x7f0000000140)={[{@fmask}]})
getdents64(r0, &(0x7f0000000000)=""/46, 0x2e)
19:05:06 executing program 5:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c40}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000240), 0x68902, 0x0)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
19:05:06 executing program 2:
unshare(0x2c040400)
r0 = fsopen(&(0x7f0000000100)='hugetlbfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
mknodat(r1, &(0x7f00000000c0)='./file\x00', 0x0, 0x0)
19:05:06 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
r1 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0xbe, 0xe8, 0x3e, 0x20, 0x13d3, 0x3224, 0xb066, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x7f, 0xc6, 0xe9}}]}}]}}, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000000d00)={0x2c, &(0x7f0000000b00)={0x0, 0x0, 0xc, "e74b4d7094048338cb0f4913"}, 0x0, 0x0, 0x0, 0x0})
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
19:05:06 executing program 1:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDGKBLED(r0, 0x4b64, &(0x7f0000000080))
[ 328.021041][ T4874] loop4: detected capacity change from 0 to 320
19:05:07 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000300)=ANY=[])
r1 = syz_open_dev$vcsn(&(0x7f0000000140), 0x100000000, 0x400003)
pwritev2(r1, 0x0, 0x63, 0x3, 0x5, 0x9)
getsockname(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket(0x400000000000010, 0x2, 0x0)
write(r2, &(0x7f00000008c0)="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", 0x16c)
statfs(&(0x7f0000000080)='./file0\x00', 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r')
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x8923, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8010}, 0x0)
getsockname$packet(r3, &(0x7f0000000400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000440)=0x14)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x19, 0x3, &(0x7f0000000100)=ANY=[@ANYRES64], &(0x7f0000000240)='syzkaller\x00', 0x1, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x8, '\x00', 0x0, 0x16, 0xffffffffffffffff, 0x8, &(0x7f0000000040), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x78)
[ 328.273917][ T19] usb 1-1: new high-speed USB device number 4 using dummy_hcd
19:05:07 executing program 4:
r0 = syz_mount_image$exfat(&(0x7f00000001c0), &(0x7f0000000100)='./file0\x00', 0x0, 0xd, &(0x7f0000000200)=[{&(0x7f0000000040)="eb769045584641542020200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000010000000000008000000008000000880000000f00000005000000341234120001000009030180", 0x70}, {&(0x7f00000000c0)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x1e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x3e0}, {&(0x7f0000010300)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x5e0}, {&(0x7f0000010400)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x7e0}, {&(0x7f0000010500)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x9e0}, {&(0x7f0000010600)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xbe0}, {&(0x7f0000010700)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xde0}, {&(0x7f0000010800)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xfe0}, {&(0x7f0000010900)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x11e0}, {&(0x7f0000010a00)="00ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac1911", 0x200, 0x1600}, {&(0x7f0000011800)="f8ffffffffffffffffffffff04000000ffffffffffffffff", 0x18, 0x10000}, {&(0x7f0000013100)="030000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000200000002", 0x39, 0x14000}], 0x0, &(0x7f0000000140)={[{@fmask}]})
getdents64(r0, &(0x7f0000000000)=""/46, 0x2e)
19:05:07 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x58, 0x2, 0x6, 0x101, 0xf0ffff, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x4}]}]}, 0x58}}, 0x0)
[ 328.522297][ T19] usb 1-1: Using ep0 maxpacket: 32
[ 328.644093][ T19] usb 1-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=b0.66
[ 328.653789][ T19] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 328.791314][ T19] usb 1-1: config 0 descriptor??
[ 328.852376][ T4887] ieee802154 phy0 wpan0: encryption failed: -22
[ 328.853830][ T19] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state.
19:05:08 executing program 3:
sendmsg$DEVLINK_CMD_GET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0xa8, 0x0, 0x10, 0x70bd28, 0x25dfdbfc, {}, [@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @pci={{0x8}, {0x11}}, @pci={{0x8}, {0x11}}, @pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0xa8}, 0x1, 0x0, 0x0, 0x4040}, 0x5)
sendmsg$DEVLINK_CMD_TRAP_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x13c, 0x0, 0x8, 0x70bd25, 0x25dfdbfe, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}, {@pci={{0x8}, {0x11}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}]}, 0x13c}, 0x1, 0x0, 0x0, 0x4000000}, 0x40)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)={0xb4, 0x2, 0x1, 0x801, 0x0, 0x0, {0x2, 0x0, 0x6}, [@CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x6}, @CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x1}, @CTA_TUPLE_ORIG={0x4c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x8, 0x2, @empty}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}, @CTA_SEQ_ADJ_REPLY={0x34, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x42cd26ca}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x5}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x10001}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x1}]}, @CTA_LABELS_MASK={0x8, 0x17, [0x1]}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x1}]}, 0xb4}, 0x1, 0x0, 0x0, 0x44801}, 0x810)
ioctl$EVIOCRMFF(0xffffffffffffffff, 0x40044581, &(0x7f0000000500)=0x6)
r1 = dup3(r0, r0, 0x80000)
r2 = pidfd_getfd(r1, 0xffffffffffffffff, 0x0)
ioctl$MON_IOCQ_RING_SIZE(r2, 0x9205)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000540)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f00000005c0), r1)
sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r3, &(0x7f00000007c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000780)={&(0x7f0000000600)={0x14c, r4, 0x8, 0x70bd2c, 0x25dfdbfb, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}]}, 0x14c}, 0x1, 0x0, 0x0, 0x24000097}, 0x8009)
getpeername(r3, &(0x7f0000000800)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @loopback}}}, &(0x7f0000000880)=0x80)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000900), r3)
sendmsg$DEVLINK_CMD_SB_POOL_GET(r5, &(0x7f0000000a40)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000940)={0x9c, r6, 0x200, 0x4, 0x25dfdbfb, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x7f}, {0x6, 0x11, 0x3}}, {@pci={{0x8}, {0x11}}, {0x8}, {0x6, 0x11, 0xb4}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xfff}, {0x6, 0x11, 0xff}}]}, 0x9c}, 0x1, 0x0, 0x0, 0x10000}, 0x24008004)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r2, &(0x7f0000000c40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000c00)={&(0x7f0000000ac0)={0x120, r4, 0x200, 0x70bd28, 0x25dfdbfb, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0xc3}, {0x6, 0x11, 0x1}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x62d}, {0x6, 0x11, 0x4}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x9b}, {0x6, 0x11, 0xff}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x7fffffff}, {0x6, 0x11, 0x4}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0xffffff88}, {0x6, 0x11, 0x200}}]}, 0x120}}, 0x40001)
syz_usb_connect$cdc_ncm(0x3, 0x88, &(0x7f0000000c80)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x76, 0x2, 0x1, 0x0, 0x20, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x6, 0x24, 0x6, 0x0, 0x1, "ea"}, {0x5, 0x24, 0x0, 0xc7a6}, {0xd, 0x24, 0xf, 0x1, 0xffffffff, 0x7a3d, 0x1, 0x5}, {0x6, 0x24, 0x1a, 0x3}, [@obex={0x5, 0x24, 0x15, 0x2}, @call_mgmt={0x5, 0x24, 0x1, 0x2, 0x3}, @dmm={0x7, 0x24, 0x14, 0xe88, 0x8}, @mbim_extended={0x8, 0x24, 0x1c, 0x3, 0x1f}]}, {{0x9, 0x5, 0x81, 0x3, 0x8, 0x2, 0xb8, 0x1}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x10, 0x1f, 0x8f, 0x7f}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0x41, 0x5, 0x81}}}}}}}]}}, &(0x7f0000000fc0)={0xa, &(0x7f0000000d40)={0xa, 0x6, 0x110, 0x20, 0x0, 0x5, 0xff, 0x5}, 0x10, &(0x7f0000000d80)={0x5, 0xf, 0x10, 0x1, [@wireless={0xb, 0x10, 0x1, 0x4, 0x81, 0x80, 0x0, 0x8}]}, 0x5, [{0x62, &(0x7f0000000dc0)=@string={0x62, 0x3, "15625a5ec1db80eb5d0cfc4cae66ee4315e3b081246df8b8f09d706db1b600669476157adf7174d5392065da7b092f4ddf3bb8c5b5c8fd5baad37c60fd5f9da2d5467c45cffecad8bcdab0cdd265c48b8fb1cf588e34bd9fcadc0fcbf58b0a20"}}, {0x4, &(0x7f0000000e40)=@lang_id={0x4, 0x3, 0x300a}}, {0x4, &(0x7f0000000e80)=@lang_id={0x4, 0x3, 0x430}}, {0x95, &(0x7f0000000ec0)=@string={0x95, 0x3, "c028f9a2818491f19a8b21d30f6eeb4a27379f173159fce77879f33fe41152243eb22c15f7701f4c1db41e9c49f3bda37a6cb80180e39737ca3560cf0c409d5f4bb0b895a6b95cf6a0f10bc59eb088cb86f5a75152eba3b449ada9a46fdd37870661d2ea668cbb4a9e862ea1169ff6221937d899a9767dec27226957d67a840c01711f3f807687afe017bd361561a0b684a200"}}, {0x4, &(0x7f0000000f80)=@lang_id={0x4, 0x3, 0x820}}]})
r7 = syz_open_dev$evdev(&(0x7f0000001040), 0x300000, 0x400)
ioctl$EVIOCRMFF(r7, 0x40044581, &(0x7f0000001080)=0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
[ 329.178769][ T4894] loop4: detected capacity change from 0 to 320
19:05:08 executing program 2:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@migrate={0xa0, 0x21, 0xd39, 0x0, 0x0, {{@in6=@loopback}, 0x0, 0x3}, [@migrate={0x50, 0x11, [{@in6=@mcast1, @in=@broadcast, @in6=@rand_addr=' \x01\x00', @in=@dev}]}]}, 0xa0}}, 0x0)
[ 329.312239][ T19] vp7045: USB control message 'in' went wrong.
[ 329.318673][ T19] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
19:05:08 executing program 1:
r0 = openat$userio(0xffffffffffffff9c, &(0x7f0000000040), 0x2402, 0x0)
write$USERIO_CMD_SET_PORT_TYPE(r0, &(0x7f0000000000)={0x1, 0x5}, 0x2)
write$USERIO_CMD_REGISTER(r0, &(0x7f0000000080), 0x2)
write$USERIO_CMD_SEND_INTERRUPT(r0, &(0x7f00000000c0), 0x2)
[ 329.416800][ T19] dvbdev: DVB: registering new adapter (DigitalNow TinyUSB 2 DVB-t Receiver)
[ 329.426402][ T19] usb 1-1: media controller created
19:05:08 executing program 4:
r0 = syz_mount_image$exfat(&(0x7f00000001c0), &(0x7f0000000100)='./file0\x00', 0x0, 0xd, &(0x7f0000000200)=[{&(0x7f0000000040)="eb769045584641542020200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000010000000000008000000008000000880000000f00000005000000341234120001000009030180", 0x70}, {&(0x7f00000000c0)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x1e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x3e0}, {&(0x7f0000010300)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x5e0}, {&(0x7f0000010400)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x7e0}, {&(0x7f0000010500)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x9e0}, {&(0x7f0000010600)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xbe0}, {&(0x7f0000010700)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xde0}, {&(0x7f0000010800)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xfe0}, {&(0x7f0000010900)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x11e0}, {&(0x7f0000010a00)="00ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac1911", 0x200, 0x1600}, {&(0x7f0000011800)="f8ffffffffffffffffffffff04000000ffffffffffffffff", 0x18, 0x10000}, {&(0x7f0000013100)="030000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000200000002", 0x39, 0x14000}], 0x0, &(0x7f0000000140)={[{@fmask}]})
getdents64(r0, &(0x7f0000000000)=""/46, 0x2e)
[ 329.692557][ T19] vp7045: USB control message 'in' went wrong.
[ 329.702778][ T19] dvb-usb: MAC address reading failed.
[ 329.767427][ T19] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 329.863734][ T118] usb 4-1: new high-speed USB device number 2 using dummy_hcd
19:05:09 executing program 2:
perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pkey_mprotect(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x5, 0xffffffffffffffff)
ioctl$BLKTRACESTOP(0xffffffffffffffff, 0x1275, 0x0)
r0 = shmget$private(0x0, 0x400000, 0x0, &(0x7f0000c00000/0x400000)=nil)
shmat(r0, &(0x7f0000ce9000/0x1000)=nil, 0x7000)
r1 = socket(0x40000000015, 0x805, 0x0)
getsockopt(r1, 0x114, 0x271f, &(0x7f0000000440)=""/102400, &(0x7f00000000c0)=0x19000)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
socket$l2tp(0x2, 0x2, 0x73)
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f0000000080)={{0x0, 0x3ff, 0x0, 0x10001, 0x10000, 0xf799, 0x2d, 0x5, 0x7ff, 0x0, 0x800, 0x0, 0x0, 0x101, 0x10000}})
r2 = socket(0x40000000015, 0x805, 0x0)
getsockopt(r2, 0x114, 0x271f, &(0x7f0000000440)=""/102400, &(0x7f00000000c0)=0x19000)
sendmsg$NFT_MSG_GETRULE(r2, 0x0, 0x408d4)
[ 330.083035][ T19] vp7045: USB control message 'out' went wrong.
[ 330.122902][ T19] vp7045: USB control message 'out' went wrong.
[ 330.172318][ T19] vp7045: USB control message 'out' went wrong.
[ 330.178822][ T19] usb 1-1: DVB: registering adapter 1 frontend 0 (Twinhan VP7045/46 USB DVB-T)...
[ 330.189056][ T19] dvbdev: dvb_create_media_entity: media entity 'Twinhan VP7045/46 USB DVB-T' registered.
[ 330.247860][ T4909] loop4: detected capacity change from 0 to 320
[ 330.403042][ T118] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 16
[ 330.415368][ T118] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 8
[ 330.623274][ T118] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 330.632579][ T118] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 330.640709][ T118] usb 4-1: Product: а
[ 330.645065][ T118] usb 4-1: Manufacturer: 《
[ 330.649781][ T118] usb 4-1: SerialNumber: ⣀ꋹè’讚팡æ¸ä««ãœ§ážŸå¤±îŸ¼ç¥¸ã¿³á‡¤â‘’눾ᔬ烷䰟ëé°žï‰êŽ½æ±ºÆ¸îŽ€ãž—ã—Šì½ ä€Œå¾ë‹é–¸ë¦¦ï™œï† 씋낞쮈冧î’뒣굉꒩蜷愆豦䪻蚞ꄮ鼖⋶㜙駘皩∧å©ç«–಄ç„ã¼Ÿçš€ê¾‡áŸ ãš½æ„•ëš êŠ„
[ 330.684128][ T1201] ieee802154 phy0 wpan0: encryption failed: -22
[ 330.690637][ T1201] ieee802154 phy1 wpan1: encryption failed: -22
[ 330.742278][ T19] rc_core: IR keymap rc-twinhan1027 not found
[ 330.748559][ T19] Registered IR keymap rc-empty
[ 330.763597][ T19] rc rc0: DigitalNow TinyUSB 2 DVB-t Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/rc/rc0
[ 330.776443][ T19] input: DigitalNow TinyUSB 2 DVB-t Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/rc/rc0/input6
[ 330.906378][ T19] dvb-usb: schedule remote query interval to 400 msecs.
[ 330.940785][ T19] vp7045: USB control message 'out' went wrong.
[ 330.947476][ T19] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver successfully initialized and connected.
[ 331.080823][ T19] usb 1-1: USB disconnect, device number 4
[ 331.212378][ T118] cdc_ncm 4-1:1.0: bind() failure
[ 331.227005][ T118] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[ 331.235488][ T118] cdc_ncm 4-1:1.1: bind() failure
[ 331.355527][ T118] usb 4-1: USB disconnect, device number 2
[ 331.844403][ T19] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver successfully deinitialized and disconnected.
19:05:11 executing program 5:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c40}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000240), 0x68902, 0x0)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
19:05:11 executing program 0:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0xaa409, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffdffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, 0x200000000011, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
readv(r2, &(0x7f0000001900)=[{&(0x7f0000000080)=""/54, 0x36}, {&(0x7f0000000400)=""/111, 0x6f}, {&(0x7f0000000480)=""/82, 0x52}, {&(0x7f0000000500)=""/71, 0x47}, {&(0x7f0000000580)=""/107, 0x6b}, {&(0x7f0000000600)=""/240, 0xfffffd74}, {&(0x7f0000000700)=""/4096, 0x1002}, {&(0x7f00000001c0)=""/63, 0x3f}, {&(0x7f0000001700)=""/236, 0xec}, {&(0x7f0000001800)=""/254, 0xfe}], 0xa)
19:05:11 executing program 1:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c42}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x4000010006dfd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x3d, &(0x7f00000012c0)={&(0x7f0000000040)=ANY=[], 0x1}}, 0x0)
r0 = fork()
r1 = syz_open_procfs(r0, &(0x7f0000000000)='io\x00')
exit(0x0)
preadv(r1, &(0x7f0000000500), 0x37d, 0x0, 0x0)
ioctl$SCSI_IOCTL_START_UNIT(0xffffffffffffffff, 0x5)
19:05:11 executing program 2:
r0 = socket(0x11, 0xa, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'team0\x00', &(0x7f0000000100)=@ethtool_drvinfo={0x3, "787f0117c8fef0c55423b0289bc2c2b3000b3e5092fd851bf004ff1aee48da8d", "db5bb2ea45d7cc245bccc16c181b148383e4632b963458e3d88530976797d21e", "cd1c13048a7456da00c164d22420f9869d2542385c31b4902ab0b0a85000", "d1fdbd5611dc829506db755e66ff0a54cd19985206bbf39cbdac65807c52ed87", "a297acaf6d44be3f06866d8bbe75765104c49e82a822c9c19b2614e00b32a2c5", "00000b020000000001494a00"}})
19:05:11 executing program 4:
r0 = syz_mount_image$exfat(&(0x7f00000001c0), &(0x7f0000000100)='./file0\x00', 0x0, 0xd, &(0x7f0000000200)=[{&(0x7f0000000040)="eb769045584641542020200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000010000000000008000000008000000880000000f00000005000000341234120001000009030180", 0x70}, {&(0x7f00000000c0)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x1e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x3e0}, {&(0x7f0000010300)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x5e0}, {&(0x7f0000010400)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x7e0}, {&(0x7f0000010500)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x9e0}, {&(0x7f0000010600)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xbe0}, {&(0x7f0000010700)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xde0}, {&(0x7f0000010800)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0xfe0}, {&(0x7f0000010900)="00000000000000000000000000000000000000000000000000000000000055aa", 0x20, 0x11e0}, {&(0x7f0000010a00)="00ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac191100ac1911", 0x200, 0x1600}, {&(0x7f0000011800)="f8ffffffffffffffffffffff04000000ffffffffffffffff", 0x18, 0x10000}, {&(0x7f0000013100)="030000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000200000002", 0x39, 0x14000}], 0x0, &(0x7f0000000140)={[{@fmask}]})
getdents64(r0, &(0x7f0000000000)=""/46, 0x2e)
19:05:11 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000040)='./file0\x00', 0x407fffffff, 0x0, &(0x7f0000000280), 0x0, &(0x7f00000009c0)=ANY=[])
mkdirat(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1}, 0x0, 0xf7ffffffffffffff, 0xffffffffffffffff, 0x0)
syz_80211_join_ibss(&(0x7f0000000140)='wlan1\x00', &(0x7f0000000040)=@random="c9", 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_SET_LINK_TOL(r0, &(0x7f00000046c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000380)={&(0x7f0000000440)={0x68, 0x0, 0x8, 0x709d28, 0x0, {{}, {}, {0x4c, 0x18, {0x3, @link='broadcast-link\x00'}}}, ["", ""]}, 0x68}}, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0)
[ 332.277243][ T4937] loop4: detected capacity change from 0 to 320
[ 332.314287][ T4938] loop3: detected capacity change from 0 to 264192
19:05:11 executing program 2:
pipe(&(0x7f0000000940))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080), 0xc, &(0x7f0000000280)={0x0, 0x28}}, 0x400c044)
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xb40e800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000400)={0x80, r0, 0x20, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0xe, 0x33, @ctrl_frame=@ack={{}, {0x6}, @device_b}}, @NL80211_ATTR_FRAME={0x3c, 0x33, @data_frame={@qos_ht={{{@type01={{0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1}, {0x9}, @device_a, @random="400590df42f5", @broadcast, {0xc, 0x7}}, {0x8, 0x0, 0x0, 0x0, 0x67}}, {@type00={{0x0, 0x2, 0xb}}, {0x4, 0x1, 0x1, 0x1, 0x86}}}, @ver_80211n={0x0, 0x0, 0x1, 0x1}}, @a_msdu}}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x80}}, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x2000007, 0x6031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1}, 0x0, 0xffbfffffffffffff, 0xffffffffffffffff, 0x0)
recvfrom$unix(0xffffffffffffffff, 0x0, 0x0, 0x10002, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000005d000/0x400000)=nil, 0x402c04, 0x0, 0x392d6ad36ec2c8b2, 0xffffffffffffffff, 0x0)
pkey_mprotect(&(0x7f0000587000/0x2000)=nil, 0x2000, 0x1000000, 0xffffffffffffffff)
19:05:11 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000003980)=@newtaction={0x48, 0x31, 0x727, 0x0, 0x0, {0x2}, [{0x34, 0x1, [@m_skbedit={0x30, 0x1, 0x0, 0x0, {{0xc}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x48}}, 0x0)
19:05:11 executing program 0:
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x2c, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x20, 0x1, 0x2, "aeb2"}, 0x0})
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10000000140, 0x1294, 0x1320, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x4}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, 0x0, 0x0, &(0x7f0000000340)={0x0, 0x22, 0x56, {[@global]}}, 0x0}, 0x0)
19:05:11 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f00000047c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)={0x198, 0x18, 0x1, 0x0, 0x0, "", [@nested={0x10a, 0x0, 0x0, 0x1, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @generic="f800055263bafcd380b69bc384f95d8d126c328bd06df3710943c071f91367ad876b3c41f5b381d855b007812874be9add047722998096a3932819689ddee40333344e5656b1b7c00d2b72d16a5e548e165c2041705c201e005aa9d68186161bf28f395a65d38a638d6daa798680f2269a10bf51827b970322d3706d3bc9f6f3fb04603ac47469377f97c25157c5242f80f719f58509c9ec2d069220c41e8f8d5a9020b1105253ee54105fbb47a47faff658381144b0ab0791844e17ff5e9ca0cf8e3dae4e8a2383bce59cb6b2872822739ab6c110fb5d8b9b2933fdadc28647a1c2b9221703c1618ccc88c8c3515622afb7", @typed={0x4}, @typed={0x8, 0x78, 0x0, 0x0, @fd}]}, @nested={0x6d, 0x0, 0x0, 0x1, [@generic="5980cd5cb0672568ece4ccf011eb10bf7a2b02ddbcdae6f04f10b35eda5172ec14fcfdfef57f040edf0d3c8ae9a816a18b87477478ea8ee2876fdfd99dc0fb7b6efee8b92c0315ab3ada9b07b1434e634044c50629e4f1fe0d32e55d292bf683e0f56700642656479a"]}, @nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0x66, 0x0, 0x0, @uid}]}]}, 0x198}], 0x1}, 0x0)
19:05:12 executing program 5:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c40}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000240), 0x68902, 0x0)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
19:05:12 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0xc, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x3}, 0x0)
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f00000003c0)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a020002740ef801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[])
chdir(&(0x7f0000000000)='./file1\x00')
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x1013c1, 0x0)
syz_mount_image$romfs(&(0x7f0000000180), &(0x7f0000000240)='./file0\x00', 0x9, 0x3, &(0x7f0000000a40)=[{&(0x7f00000007c0)}, {0x0, 0x0, 0x59a4}, {&(0x7f0000000a00)="7cc82ce76a918831248016aa267a70af8adaf5c919edd348ac766fbabd2dc14048df7eebdcc23b46533c48f252b68bb9d2cfa5683b425f4d23ccef7f2f4632", 0x3f, 0x200}], 0x2000008, &(0x7f0000000c00)={[{'/dev/vcsu#\x00'}, {'huge=never'}, {'defcontext'}, {'*:^'}], [{@uid_eq}, {@fsname={'fsname', 0x3d, 'huge=never'}}, {@fowner_gt={'fowner>', 0xee00}}, {@smackfstransmute={'smackfstransmute', 0x3d, '$\x9e-'}}]})
r1 = open$dir(&(0x7f0000000380)='./file0\x00', 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000440)={0x4, 0x70, 0x6, 0x3, 0x5, 0x0, 0x0, 0x1, 0x42000, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x80000001, 0x2, 0x0, 0x4300, 0x601e, 0x7, 0x9, 0xffff, 0xc7f}, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x2)
write$9p(r0, &(0x7f0000001400)="3b27a4b46ee92b4a59073c369a5e19f9db153c4fdbc76aa2a4bb9f3e5e1aa197a9e97d1016c01813792e50c2692c175aad715d110a892949ccc6e2e54c2d5c8f0b7932b69797f217168b0c1feb128ae34f0daf487a70b5c117acd43725fe17993634f1695dabd7f998cd55e9d5bd911e86aa7a4ad75a574bb96951d6018b25d942a9544bca1ebb0e8d10c092cdcb85797673972099e4041aaf8d636f66cb1103ef2050ad28fabaed33d6927889d97f4b5ce0de71d3fd832980f4f088d0d824e20549b4bbd906ffa51ce9de54d779eb4de462faac20a3ab0ed9934373ca22cea5454f4c2a740cd461e39956bb5f98df2aebc60cf32623adbffbcc378fa7250b6a3fc863dadcf6d4f8b855c4e70f0796eee6218445dad2811dd6b540ff52efa2f167dd9c1b8b016268d37db430983fefc0645d20614c8df2eb0872c58e09664e672b0b6a9970fec199257e1c606ec3e364c66a0f4d258c74accd43b987c756d602fd8787fed3aa43fd8d84e9656d4a413fa9a423bc54b873583d6d497005e54712fafc71384988d80134fbf84f53fdd74b354848006b8b5b67e7cc5a472475d3ae545ca1fcf7628b873e31ba83a98a7ad5b0cfbe9711b517a9a1388ad0efa2a3b4e22152021d631b731e2e100a9831111db7acce948bb5deeea260463c140ac929e77c58402776caf85d4569a75dde2f64c4491508afb541ed9b2c81fc95c06706235f383e31cf662c95b1e49cfd94871e22720a41535756e419b271276941692bd023dd9c9dbec4f7db1e5c00d8b3be7b8e826a6aadd001edd0dfeb00f8048442b5c48456fd642e629dcb2ff55592665ff491cd832672ce4d999da186db2c3a1f8b6b1f7d3750d7cdb3097954e6e14fb2183ad662c63d4ce8b82dc2487f0fe2ea2827b53a7c6dcced878d2fb29c1d3ff583570e7bc172d1a5c7", 0x299)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000500)={{{@in=@empty, @in6=@mcast2}}, {{@in=@remote}, 0x0, @in6=@local}}, 0x0)
sendfile(r0, r1, 0x0, 0x1c500)
socket$unix(0x1, 0x0, 0x0)
r2 = syz_open_dev$vcsu(&(0x7f0000000400), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, r2, 0x1)
io_submit(0x0, 0x0, &(0x7f0000000200))
[ 333.340826][ T4963] loop4: detected capacity change from 0 to 264192
[ 333.409942][ T4964] IPv6: NLM_F_CREATE should be specified when creating new route
19:05:12 executing program 1:
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x149802, 0x0)
r1 = dup(r0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendfile(r0, r1, 0x0, 0x80006)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x28011, r1, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000481000/0x3000)=nil, 0x3000, 0x2, 0x0, 0x100000001, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/bus/input/handlers\x00', 0x0, 0x0)
setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000000080), 0x4)
[ 333.499360][ T24] audit: type=1804 audit(1641755112.555:24): pid=4967 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir199025238/syzkaller.vuIkF2/54/file1/file0" dev="sda1" ino=1192 res=1 errno=0
[ 333.525959][ T19] usb 1-1: new full-speed USB device number 5 using dummy_hcd
19:05:12 executing program 5:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c40}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000240), 0x68902, 0x0)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
19:05:12 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000003e00)={0x0, 0x0, &(0x7f0000003dc0)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000090000000a20000000000a05140000000000000000010000000900010073797a300000000058000000160a03000900000000000000010000000900010073797a30000000000900020073797a32000000002c00038018000380150001006d6163736563300000000000000000000800024000000000080001400000000014000000110001"], 0xa0}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={{0x14}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x309}], {0x14}}, 0x3c}}, 0x0)
[ 333.902221][ T19] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 333.913664][ T19] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 333.925352][ T19] usb 1-1: New USB device found, idVendor=1294, idProduct=1320, bcdDevice= 0.40
[ 333.934903][ T19] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
19:05:13 executing program 4:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@volatile={0x0, 0x0, 0x0, 0x9, 0x2}, @struct, @struct]}}, &(0x7f0000000140)=""/179, 0x3e, 0xb3, 0x1}, 0x20)
[ 334.158966][ T19] usb 1-1: config 0 descriptor??
19:05:13 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000003e00)={0x0, 0x0, &(0x7f0000003dc0)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000090000000a20000000000a05140000000000000000010000000900010073797a300000000058000000160a03000900000000000000010000000900010073797a30000000000900020073797a32000000002c00038018000380150001006d6163736563300000000000000000000800024000000000080001400000000014000000110001"], 0xa0}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={{0x14}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x309}], {0x14}}, 0x3c}}, 0x0)
19:05:13 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "800000000000f47dbe217661c3b800"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000000)=0x7)
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r1, 0x8926, 0x53b000)
[ 334.655966][ T19] hid-led 0003:1294:1320.0001: hidraw0: USB HID v0.00 Device [HID 1294:1320] on usb-dummy_hcd.0-1/input0
[ 334.673423][ T19] hid-led 0003:1294:1320.0001: Riso Kagaku Webmail Notifier initialized
[ 334.750825][ T4985] sp0: Synchronizing with TNC
[ 334.963876][ T19] usb 1-1: USB disconnect, device number 5
[ 335.022128][ T3567] leds riso_kagaku0:blue: Setting an LED's brightness failed (-38)
[ 335.042209][ T3567] leds riso_kagaku0:green: Setting an LED's brightness failed (-38)
[ 335.109939][ T3567] leds riso_kagaku0:red: Setting an LED's brightness failed (-38)
19:05:15 executing program 2:
pipe(&(0x7f0000000940))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080), 0xc, &(0x7f0000000280)={0x0, 0x28}}, 0x400c044)
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xb40e800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000400)={0x80, r0, 0x20, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0xe, 0x33, @ctrl_frame=@ack={{}, {0x6}, @device_b}}, @NL80211_ATTR_FRAME={0x3c, 0x33, @data_frame={@qos_ht={{{@type01={{0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1}, {0x9}, @device_a, @random="400590df42f5", @broadcast, {0xc, 0x7}}, {0x8, 0x0, 0x0, 0x0, 0x67}}, {@type00={{0x0, 0x2, 0xb}}, {0x4, 0x1, 0x1, 0x1, 0x86}}}, @ver_80211n={0x0, 0x0, 0x1, 0x1}}, @a_msdu}}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x80}}, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x2000007, 0x6031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1}, 0x0, 0xffbfffffffffffff, 0xffffffffffffffff, 0x0)
recvfrom$unix(0xffffffffffffffff, 0x0, 0x0, 0x10002, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000005d000/0x400000)=nil, 0x402c04, 0x0, 0x392d6ad36ec2c8b2, 0xffffffffffffffff, 0x0)
pkey_mprotect(&(0x7f0000587000/0x2000)=nil, 0x2000, 0x1000000, 0xffffffffffffffff)
19:05:15 executing program 4:
add_key(0x0, &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000680), 0x0, 0xfffffffffffffffb)
socket$unix(0x1, 0x0, 0x0)
set_tid_address(&(0x7f0000000280))
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c4b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
clone(0x8100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f00000003c0)=@raw={'raw\x00', 0x8, 0x3, 0x270, 0x64000000, 0x4, 0xd0e01a8, 0x0, 0x100, 0x1d8, 0x1d8, 0x190, 0x1d8, 0x1d8, 0x3, 0x0, {[{{@ip={@multicast1, @multicast1, 0x0, 0x0, 'veth0_macvtap\x00', '\x00', {}, {}, 0x1}, 0x0, 0xd8, 0x100, 0x0, {}, [@common=@icmp={{0x28}, {0x0, "a7a9"}}, @common=@unspec=@connlimit={{0x40}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x3, {0x0, 0xe303}}}, {{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x1a030000, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x31f)
19:05:15 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000003e00)={0x0, 0x0, &(0x7f0000003dc0)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000090000000a20000000000a05140000000000000000010000000900010073797a300000000058000000160a03000900000000000000010000000900010073797a30000000000900020073797a32000000002c00038018000380150001006d6163736563300000000000000000000800024000000000080001400000000014000000110001"], 0xa0}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={{0x14}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x309}], {0x14}}, 0x3c}}, 0x0)
19:05:15 executing program 5:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0x12, &(0x7f00000001c0), 0x4)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r1, 0x107, 0x12, &(0x7f00000001c0), 0x4)
setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
19:05:15 executing program 1:
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
connect$x25(r0, &(0x7f0000003980)={0x2, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x0}}, 0x12)
19:05:15 executing program 0:
io_setup(0x800, &(0x7f0000000140)=0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f00000001c0), 0x10)
io_submit(r0, 0x1, &(0x7f0000000240)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x8, 0x0, r1, 0x0}])
19:05:15 executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
ioctl$UI_BEGIN_FF_ERASE(0xffffffffffffffff, 0xc00c55ca, &(0x7f0000000040)={0x41, 0x10001})
write$bt_hci(r0, &(0x7f0000000040)=ANY=[], 0x7)
perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0xb)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
recvmmsg(0xffffffffffffffff, &(0x7f0000001d00), 0x0, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
19:05:15 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff})
close(r0)
r1 = perf_event_open(&(0x7f000001d000)={0x0, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x11, r1, 0x0)
io_setup(0x4, &(0x7f0000000080)=0x0)
io_submit(r2, 0x1, &(0x7f0000000040)=[&(0x7f0000000000)={0x2, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
r3 = perf_event_open(&(0x7f000001d000)={0x0, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x11, r3, 0x0)
19:05:15 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000003e00)={0x0, 0x0, &(0x7f0000003dc0)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000090000000a20000000000a05140000000000000000010000000900010073797a300000000058000000160a03000900000000000000010000000900010073797a30000000000900020073797a32000000002c00038018000380150001006d6163736563300000000000000000000800024000000000080001400000000014000000110001"], 0xa0}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)={{0x14}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x309}], {0x14}}, 0x3c}}, 0x0)
19:05:15 executing program 5:
r0 = syz_open_dev$video4linux(&(0x7f0000000180), 0x0, 0x0)
ioctl$VIDIOC_QBUF(r0, 0xc0905664, &(0x7f00000001c0))
19:05:15 executing program 4:
r0 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040))
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r2, 0x40184150, &(0x7f0000000080))
19:05:16 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
syz_open_dev$vcsu(&(0x7f0000000040), 0x1, 0x0)
eventfd(0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$RTC_EPOCH_READ(0xffffffffffffffff, 0x8008700d, &(0x7f0000000080))
pipe(&(0x7f0000000880)={0xffffffffffffffff, 0xffffffffffffffff})
name_to_handle_at(r0, &(0x7f0000000340)='\x00', 0x0, 0x0, 0x1000)
19:05:17 executing program 2:
pipe(&(0x7f0000000940))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080), 0xc, &(0x7f0000000280)={0x0, 0x28}}, 0x400c044)
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xb40e800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000400)={0x80, r0, 0x20, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0xe, 0x33, @ctrl_frame=@ack={{}, {0x6}, @device_b}}, @NL80211_ATTR_FRAME={0x3c, 0x33, @data_frame={@qos_ht={{{@type01={{0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1}, {0x9}, @device_a, @random="400590df42f5", @broadcast, {0xc, 0x7}}, {0x8, 0x0, 0x0, 0x0, 0x67}}, {@type00={{0x0, 0x2, 0xb}}, {0x4, 0x1, 0x1, 0x1, 0x86}}}, @ver_80211n={0x0, 0x0, 0x1, 0x1}}, @a_msdu}}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x80}}, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x2000007, 0x6031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1}, 0x0, 0xffbfffffffffffff, 0xffffffffffffffff, 0x0)
recvfrom$unix(0xffffffffffffffff, 0x0, 0x0, 0x10002, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000005d000/0x400000)=nil, 0x402c04, 0x0, 0x392d6ad36ec2c8b2, 0xffffffffffffffff, 0x0)
pkey_mprotect(&(0x7f0000587000/0x2000)=nil, 0x2000, 0x1000000, 0xffffffffffffffff)
19:05:17 executing program 0:
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='sched\x00')
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff})
write$binfmt_misc(r0, &(0x7f0000000000)=ANY=[], 0xfffffecc)
sendmsg$IPVS_CMD_DEL_SERVICE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x24040084}, 0x1)
perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x0)
pipe(&(0x7f0000000100))
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x25309, &(0x7f0000000140)={&(0x7f0000000540)=@newlink={0x50, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x10, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_EGRESS_QOS={0x4}]}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x50}}, 0x0)
19:05:17 executing program 3:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000100), 0x0)
listen(r1, 0x8002)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x40042409, 0x1)
sendto$inet6(r0, 0x0, 0x0, 0x20000004, &(0x7f0000000280)={0xa, 0x100000004e22, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000080), 0x152)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f00000000c0)=@gcm_256={{0x303}, "9efa620a9c14898b", "0a1a555d81566a270fe9bf3bb290d56449a61b4b26d700", "7e2b8382", "e5d7c972fee205f7"}, 0x38)
perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x70, 0x5, 0x0, 0x80, 0x3f, 0x0, 0x0, 0x20000, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, 0x9, 0x0, 0x2, 0x0, 0x60}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000166000/0x2000)=nil, 0x2000, 0x200000f, 0x13, r1, 0x0)
sendto$inet6(r0, &(0x7f00000005c0), 0xe0ffffff, 0x0, 0x0, 0xd8)
19:05:17 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x20, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x2, 'ib\x00'}]}]}, 0x20}}, 0x0)
19:05:17 executing program 1:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000300)="66530700ae897094e71b0fb1f147a825d86800278dcff4", 0x17}], 0x4, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x5)
tkill(r0, 0x34)
ptrace$cont(0x18, r0, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000080)="4dc3", 0x2}], 0x1}, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYRESDEC], 0x1000001bd)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
exit_group(0x0)
19:05:17 executing program 4:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @any, 0x203}, 0xe)
19:05:17 executing program 1:
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8008}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x10)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x0, 0x1, &(0x7f0000000640)=@raw=[@alu={0x4, 0x0, 0x0, 0x2, 0x1, 0x10, 0xfffffffffffffffc}], &(0x7f0000000680)='GPL\x00', 0x5, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000740), 0x8, 0x10, 0x0}, 0x78)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x0)
bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0)
close(0xffffffffffffffff)
sendmsg$kcm(r0, &(0x7f0000000180)={0x0, 0x14, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000038000511d25a80648c63940d0124fc602f6e35400c0002000200000037153e370a00018025641d00d1bd", 0x2e}], 0x1}, 0x0)
19:05:17 executing program 5:
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000140)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f00000000c0)={@host})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, &(0x7f0000000000)={{@any, 0xffffffff}, @host})
19:05:17 executing program 4:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xde, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff})
vmsplice(r0, &(0x7f00000000c0)=[{&(0x7f0000000180)='w', 0x1}], 0x1, 0x0)
[ 339.171015][ T5080] netlink: 'syz-executor.1': attribute type 2 has an invalid length.
[ 339.179713][ T5080] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
19:05:18 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
getpgrp(0x0)
sendmsg$netlink(r0, &(0x7f00000051c0)={0x0, 0x0, &(0x7f0000004e80)=[{&(0x7f0000000280)={0x24, 0x11, 0x1, 0x0, 0x0, "", [@nested={0x14, 0x0, 0x0, 0x1, [@typed={0xd, 0x0, 0x0, 0x0, @binary="b9617abbfd79e9a789"}]}]}, 0x24}], 0x1}, 0x0)
19:05:18 executing program 5:
openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x800000c004500a, &(0x7f0000000300))
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000001c0))
socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000200)="d800000018008100e00f80ecdb4cb904021d65ef0b007c06e87c55a1bc000900b8000699030007000500124001008178a800160044000100e558110000000100000e006f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee48100000000000000d9d322fe04000000730d16a4683e4f6d0200003f5aeb4edbb57a5025ccca9e00360db798262f3d08fad95667e04adcdf634c1f215ce3bb53b409d5e1ca4e81ed0b7fece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92307f27260e9703", 0xd8}], 0x1}, 0x0)
clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0})
pselect6(0x40, &(0x7f00000000c0)={0x0, 0x0, 0x1}, 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, &(0x7f0000000200)={0x0, r1+30000000}, 0x0)
19:05:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, 0x0)
setsockopt$TIPC_SRC_DROPPABLE(r3, 0x10f, 0x80, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg(r3, &(0x7f0000005440)=[{{0x0, 0xfffffffffffffcfb, 0x0}}], 0xfb93a852dd518c, 0x0)
close(r4)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x1b000})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
[ 339.704238][ T5090] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 339.714142][ T5090] device bridge_slave_1 left promiscuous mode
[ 339.720929][ T5090] bridge0: port 2(bridge_slave_1) entered disabled state
[ 339.833229][ T5090] device bridge_slave_0 left promiscuous mode
[ 339.840017][ T5090] bridge0: port 1(bridge_slave_0) entered disabled state
19:05:20 executing program 2:
pipe(&(0x7f0000000940))
vmsplice(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080), 0xc, &(0x7f0000000280)={0x0, 0x28}}, 0x400c044)
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xb40e800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000400)={0x80, r0, 0x20, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME={0xe, 0x33, @ctrl_frame=@ack={{}, {0x6}, @device_b}}, @NL80211_ATTR_FRAME={0x3c, 0x33, @data_frame={@qos_ht={{{@type01={{0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1}, {0x9}, @device_a, @random="400590df42f5", @broadcast, {0xc, 0x7}}, {0x8, 0x0, 0x0, 0x0, 0x67}}, {@type00={{0x0, 0x2, 0xb}}, {0x4, 0x1, 0x1, 0x1, 0x86}}}, @ver_80211n={0x0, 0x0, 0x1, 0x1}}, @a_msdu}}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x80}}, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x2000007, 0x6031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1}, 0x0, 0xffbfffffffffffff, 0xffffffffffffffff, 0x0)
recvfrom$unix(0xffffffffffffffff, 0x0, 0x0, 0x10002, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f000005d000/0x400000)=nil, 0x402c04, 0x0, 0x392d6ad36ec2c8b2, 0xffffffffffffffff, 0x0)
pkey_mprotect(&(0x7f0000587000/0x2000)=nil, 0x2000, 0x1000000, 0xffffffffffffffff)
19:05:20 executing program 1:
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cpuacct.usage_percpu_user\x00', 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000000000000000000005650020850000002c0000009500000000000000"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x18)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newlink={0x34, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r2}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
19:05:20 executing program 3:
r0 = epoll_create1(0x0)
r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040))
r2 = syz_io_uring_setup(0x76d4, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000100)=0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000080)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x7}, 0x0)
io_uring_enter(r2, 0x3f, 0x0, 0x0, 0x0, 0x0)
19:05:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, 0x0)
setsockopt$TIPC_SRC_DROPPABLE(r3, 0x10f, 0x80, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg(r3, &(0x7f0000005440)=[{{0x0, 0xfffffffffffffcfb, 0x0}}], 0xfb93a852dd518c, 0x0)
close(r4)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x1b000})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
19:05:20 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
io_setup(0x200, &(0x7f0000000000)=0x0)
io_destroy(r0)
19:05:20 executing program 4:
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000040), 0x10)
ioctl$int_in(r0, 0x5421, &(0x7f00000000c0)=0x3)
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x10)
[ 341.376309][ T5118] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 341.408260][ T5118] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 341.416428][ T5118] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 341.439267][ T5118] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
19:05:20 executing program 3:
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
perf_event_open(&(0x7f000025c000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
chdir(&(0x7f00000001c0)='./file0\x00')
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r1)
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
mount(&(0x7f0000000080)=ANY=[@ANYBLOB="f3c73d07a3f87cfe"], &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='efivarfs\x00', 0x108002, &(0x7f0000000180)='{@%.[,$\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, 0x0, 0x0)
chdir(&(0x7f0000000200)='.\x00')
rmdir(&(0x7f0000000000)='./file0\x00')
socket$xdp(0x2c, 0x3, 0x0)
19:05:20 executing program 4:
unshare(0x8000400)
r0 = mq_open(&(0x7f0000000000)='m$\x00', 0x6e93ebbbcc0884ee, 0x0, 0x0)
mq_notify(r0, &(0x7f00000004c0))
mq_notify(r0, 0x0)
19:05:20 executing program 5:
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = gettid()
process_vm_writev(r1, &(0x7f0000c22000)=[{&(0x7f000034afa4)=""/1, 0x1f80}], 0x2, &(0x7f0000c22fa0)=[{&(0x7f0000000080)=""/1, 0x2034afa5}], 0x1, 0x0)
perf_event_open(&(0x7f0000000000)={0x3, 0x70, 0x81, 0x6, 0x7, 0xba, 0x0, 0x7fffffff, 0x4000, 0xf, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x1, 0x0, 0x0, 0x2, 0xfffffff8, 0x6, 0x7, 0xfffffffd, 0x8001}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
r2 = gettid()
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000180), 0x2d1ee37)
process_vm_writev(r2, &(0x7f0000c22000)=[{&(0x7f000034afa4)=""/1, 0x1f80}], 0x2, &(0x7f0000c22fa0)=[{&(0x7f0000000080)=""/1, 0x2034afa5}], 0x19, 0x0)
19:05:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, 0x0)
setsockopt$TIPC_SRC_DROPPABLE(r3, 0x10f, 0x80, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg(r3, &(0x7f0000005440)=[{{0x0, 0xfffffffffffffcfb, 0x0}}], 0xfb93a852dd518c, 0x0)
close(r4)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x1b000})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
19:05:21 executing program 4:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r1 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
setsockopt$llc_int(r1, 0x10c, 0x2, &(0x7f0000000000), 0x4)
19:05:21 executing program 3:
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x1411, 0x1}, 0x10}}, 0x0)
19:05:22 executing program 2:
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r0, &(0x7f0000000080)={{0x6, @rose}, [@bcast, @null, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}, 0x48)
listen(r0, 0x40)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r2, &(0x7f0000000200), 0xf000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
connect$inet(r2, &(0x7f0000000340)={0x2, 0x4e20, @local}, 0x10)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000180)={&(0x7f00005bc000/0x1000)=nil, &(0x7f0000415000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f000009c000/0x2000)=nil, &(0x7f0000259000/0x3000)=nil, &(0x7f0000366000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000280000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000240)="52bdbc3c29961bb2aa9736b751c80983c56288d45937629e05fa3c212a4283692135b6cc4f8a55dbc6a474eb3c2827d786295ec6813cf543d21a605ee5ef8d10969c29a79df86690612f878424f644d9421ca114b05e371983556d183e6b6921c90b90b1e0a26619eeaebe330b06c8cb82a93329ab3dea4d2f6b3d3edb3106baf84d8fc9a020e0d18ce517e0f1dd32f6efe8c712e50611d348e0d4b69f21ab061c5753488064c79546acdcaf55c5562c8deb98b314c8ce159b4b2d4c6703613c2eef155cb11b244fe458f0f318153cac9cf7b6810fcb8d9dc2da7242037c6023c6a162db63aa9435bc95ac481ed5e1293cc0", 0xf2}, 0x68)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
fcntl$F_GET_FILE_RW_HINT(r2, 0x40d, 0x0)
r4 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000100), 0x2c0540, 0x0)
read$FUSE(r4, &(0x7f00000005c0)={0x2020}, 0x2020)
sendfile(r2, r1, 0x0, 0x800000000000c)
socket(0x0, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000000540)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x5dd, 0x40012062, 0x0)
r5 = ioctl$NS_GET_PARENT(r1, 0xb702, 0x0)
mmap(&(0x7f00005eb000/0x4000)=nil, 0x4000, 0x0, 0x10, r5, 0xc58eb000)
19:05:22 executing program 1:
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xff7fffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r4, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB], 0x48}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000340)=@newlink={0x64, 0x10, 0x705, 0x0, 0x0, {0x2, 0x0, 0x0, r4}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x20, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR={0xa, 0x4, @local}, @IFLA_MACVLAN_MODE={0x8, 0x1, 0x10}, @IFLA_MACVLAN_MACADDR_MODE={0x8}]}}}, @IFLA_ADDRESS={0xa, 0x5}, @IFLA_MASTER={0x8}]}, 0x64}}, 0x0)
19:05:22 executing program 4:
unshare(0x2000400)
syz_open_dev$admmidi(&(0x7f0000000000), 0x200, 0x0)
select(0x40, &(0x7f00000000c0), &(0x7f0000000080)={0x9}, 0x0, 0x0)
19:05:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, 0x0)
setsockopt$TIPC_SRC_DROPPABLE(r3, 0x10f, 0x80, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg(r3, &(0x7f0000005440)=[{{0x0, 0xfffffffffffffcfb, 0x0}}], 0xfb93a852dd518c, 0x0)
close(r4)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x1b000})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
19:05:22 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x80})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb})
19:05:22 executing program 5:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000080)={0x0, 0x200, 0x0, 0x4}, 0xc)
bind$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @any, 0x8e9}, 0xe)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xfd}, 0xe)
sendmsg$sock(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000140)="1e", 0x1}], 0x1}, 0x0)
19:05:23 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
sched_setattr(r0, &(0x7f0000000240)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x208}, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff})
recvmmsg(r4, &(0x7f0000002a40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002940)=""/233, 0xe9}}], 0x1, 0x0, 0x0)
sendmsg(r3, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[], 0x208}, 0x0)
19:05:23 executing program 4:
r0 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380), 0x0, 0x0, 0xffffffffffffffff)
r1 = add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x1}, 0x0, 0x0, r0)
r2 = add_key$user(&(0x7f0000000180), &(0x7f0000000300)={'syz', 0x2}, &(0x7f00000004c0)='X', 0x1, r1)
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000080)="4a7307438336b9adacb2d371b7889b9e58a901d2f03a8397dafc4951fd2cccf5dc2ef12718ec44315c8054dd624d950d103668fe02f8465e3fd96ef731a05a223ef47fbc295e7506325cfcc0db32fecfdac311", 0x53, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r2, r3, r3}, 0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)={'xcbc(anubis-generic)\x00'}})
add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffb)
19:05:23 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)={0x18, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x4}]}, 0x18}}, 0x0)
[ 344.443291][ T5189] netlink: 'syz-executor.1': attribute type 5 has an invalid length.
19:05:23 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet(r0, &(0x7f0000006580)=[{{&(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x26}}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000100)='Z', 0x1}], 0x1}}, {{&(0x7f0000000580)={0x2, 0x0, @rand_addr=0x64010101}, 0x10, &(0x7f0000001980)=[{&(0x7f00000005c0)="daee19d226cfe96646783bbae020a42e9789d41dc815f7276ee095c926ab807516d2f6836faa1fb281970aa8b3859953e63bb23c457aa91a4920ee1166f76605ceb757b30a16e641f168c4b920ffa6725c2d2b89c15b9b0be44781ac1a9f97e58b440d44e62f932aa31599180876d205912e2ae6d7ef6fadb5ecb24e82b37baba7f5582633d7c5407c2e8ebbb5e634dbff863e528731f00f8a9ef3ae774a17822100092beba54dcbf2f32bd6e1e9b2a9e3", 0xb1}, {&(0x7f0000000780)="c8", 0x1}, {&(0x7f0000000900)="d7db0ede69f31cf88a04490080a51e20fd332199d7792f26b49c1bbaed24b4e405d3af00b88ba99d9b115541145e21fe13c39331b95a3d76441a991aa5ef67d9e591baee49869d7e6719b97b6000da07bcafa48f6f61234a6b127728e868160607e201f9decc41c5eb8e57a95ea329e47927c13bf5e9b67e40e23f5e20ac605e3d7ed57022fd93bba82b6dd08cb9323e25f070a85b7237610ac0e1444db0b4797d5bf8ecc959b3f94b41dc11c289ce26ab32b439f3f31ebe55154e4fe71ccc93b68df55004bcb1ea58a30e31b79e50cb1fcd46c07e22c3d6ccfd128293e46e72c778d6c2ac53fd7f77d9c9e40a8b120595cebec3d308a4672a9685ebce1d3a530d65729fc5761a4ab2febf8ee6d4a6f4970c35431135277329bac797c8ca64bd27dd910077dbc0d9e5e9bd05e17d92c36a2dfe998c8b33dbe9fdc11f76e55e7923bcfa0750e9debec47505133294971800ec0b3e5d8c24ef79e5e6e3eeda08b60222ae587e19e730aa70196701cee7ab6380699c93f0c95f6cb5589e493ab6e34cbf3bcdad793aa440799e7c1c165562820644ba493f1c03eff42d3c42c9ff725e1c5bab9720ea75c68e05769e49c93e05741118e4e93b629caaa12076d299fb041f9361ab0ef0c505c1e92c15702ca3d9c07608e8bab88951dd86e16d0ae900294eac87b838d1663a0b236dfb4eea173147a085b4d478ad19b2e244f4ee8e1f465cca586fe4f7a2cc6763035f9500e58242f52af3ac08c5553916e94fe72c3b7dea860a225f4b7bb96c51804c96e4dbb3e2c905c597d171485c3fde967a692dfe7a18861f2443228fe17a11809142a3df8d4c600f9abe78d82aae676151166ff40fcb74317984aef4c3e567880cfa05e923bb85d1ae3f9cccc62a078cb5b3ec7e138022283c8e6570c2f76dfc6b39c9a7dff1f427eaf07ebeda93436b84f03af33df58d40e7bd841da96f8e3c1dd1bc2102abca0cba6a55883db7eedeb450d121066eefe525ae27f0f45400c39fb61323c55b884b628c31a745200ad876ce6922af3098067b7660b4beae129b9f480ff19af608faef9adc271c50711dafc867722a3469de67cec4eff5c3a4cdc3153a51fa95be4c8da24db81bb74b202c28b7727892fae7a4966069646acd87a0b24c08c3aa052ce6351778cceee465bb09ab538aa57659c316484a11414a6aa980fffcbd3eeb8fc38b6db915cd492ebae44f09512d12d629e5707698b9953c0745ad7b2a52dcaa58edad69bb5bae32edc921e37a233361928724868acc0b841f791d1a7dac0cae5b18776332e16d525be55c86a1e742dd06a9b4f4c4eec6d8039df127ff7c521a65d73769048c5d6845d4d3dfcf5b2ae3f4eb15c5a1a5b8bcc660b4518ba301e0af841bdd48939d3b798202d25e9209028507cdaa46c13d202dd8517066697ad7227f6554e2faf1dc9b12a62c4c468e29e465616b2d93eebbe6eecddc8442185319c96a6e9115397666", 0x41e}], 0x3}}], 0x2, 0x0)
19:05:23 executing program 1:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r3, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000980)=ANY=[@ANYBLOB="3c0000001000850600000000fe612231c24a0008", @ANYRES32=r4, @ANYBLOB="2277f292252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x3c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
19:05:23 executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x7, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x63, 0x11, 0x4}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0xac, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70)
19:05:24 executing program 3:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x78)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0), 0x40)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240), &(0x7f0000000000), 0x80000001, r1}, 0x38)
signalfd(0xffffffffffffffff, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet(0x2, 0x2, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
pwritev(r0, &(0x7f0000000000)=[{0x0}], 0x1, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x19, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140), &(0x7f0000000540), 0xbcc6, r1}, 0x38)
19:05:24 executing program 0:
gettid()
r0 = perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000340)='bpf\x00', 0x2102400, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000200)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x41}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70)
bpf$BPF_PROG_TEST_RUN(0xf, &(0x7f0000000000)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000200)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x41}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70)
bpf$BPF_PROG_TEST_RUN(0xf, &(0x7f0000000000)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="cc4b9ec2480059a311f58b9c47c979786264c4fc6f3f1bea4e8f65", @ANYRES16, @ANYRESHEX=r0, @ANYRES32, @ANYBLOB="c6590e5ffa", @ANYRES64=r2, @ANYRESDEC=0x0])
open(&(0x7f0000000240)='./file2\x00', 0x308541, 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0x51022, &(0x7f00000003c0)=ANY=[])
mount$overlay(0x0, &(0x7f0000000040)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='upperdir=./bus,workdir=./file1,lowerdir=./'])
[ 345.236300][ T5212] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
[ 345.399773][ T5212] device bond1 entered promiscuous mode
19:05:24 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)={0x38, r1, 0x35, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_SETUP={0x10, 0x70, [@NL80211_MESH_SETUP_USERSPACE_MPM={0x4}, @NL80211_MESH_SETUP_AUTH_PROTOCOL={0x5}]}]}, 0x38}}, 0x0)
19:05:24 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80000000000a01, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xffffff78)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x2)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000200))
r1 = syz_open_pts(r0, 0x0)
readv(r1, &(0x7f0000000500)=[{&(0x7f0000001940)=""/4066, 0xfe2}], 0x1)
ioctl$TCSETS(r1, 0x5402, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "85bcdf000000977c984be8cc0ffc00"})
19:05:24 executing program 2:
r0 = syz_open_dev$video4linux(&(0x7f00000002c0), 0x5, 0x0)
ioctl$VIDIOC_SUBDEV_S_CROP(r0, 0xc038563c, &(0x7f0000000000)={0x1, 0x0, {0x80000001, 0x4c3, 0xfffffffa}})
19:05:24 executing program 1:
r0 = syz_open_dev$vim2m(&(0x7f0000000180), 0x80ffffffff, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0285629, &(0x7f00000001c0)={0x3, @win={{0x1}, 0x0, 0x0, &(0x7f0000000080), 0x0, 0x0}})
[ 346.040599][ T5226] overlayfs: unrecognized mount option "ÌKžÂH" or missing value
[ 346.105736][ T5234] overlayfs: failed to resolve './file1': -2
[ 346.309227][ T5200] not chained 690000 origins
[ 346.314400][ T5200] CPU: 1 PID: 5200 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 346.323130][ T5200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 346.333221][ T5200] Call Trace:
[ 346.336522][ T5200]
[ 346.339463][ T5200] dump_stack_lvl+0x1ff/0x28e
[ 346.344193][ T5200] dump_stack+0x25/0x28
[ 346.348389][ T5200] kmsan_internal_chain_origin+0x78/0x110
[ 346.354160][ T5200] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 346.360272][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 346.365426][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 346.371287][ T5200] ? __unix_dgram_recvmsg+0x1a0b/0x1c20
[ 346.376872][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 346.382033][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 346.387888][ T5200] ? should_fail+0x75/0x9c0
[ 346.392437][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 346.397680][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 346.404088][ T5200] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 346.410227][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 346.415393][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 346.421283][ T5200] __msan_chain_origin+0xbf/0x140
[ 346.426380][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 346.431556][ T5200] get_compat_msghdr+0x108/0x2c0
[ 346.436533][ T5200] ? __sys_recvmmsg+0x51c/0x6f0
[ 346.441430][ T5200] do_recvmmsg+0xd77/0x2120
[ 346.445998][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 346.451162][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 346.457451][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 346.462611][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 346.468900][ T5200] ? fput+0x82/0x320
[ 346.472838][ T5200] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 346.479387][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 346.484135][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 346.490515][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 346.495587][ T5200] do_fast_syscall_32+0x34/0x70
[ 346.500483][ T5200] do_SYSENTER_32+0x1b/0x20
[ 346.505032][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 346.511405][ T5200] RIP: 0023:0xf6f01549
[ 346.515499][ T5200] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 346.535145][ T5200] RSP: 002b:00000000f58da5bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 346.543600][ T5200] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 346.551598][ T5200] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 346.559592][ T5200] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 346.567586][ T5200] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 346.575575][ T5200] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 346.583669][ T5200]
[ 346.588960][ T5200] Uninit was stored to memory at:
[ 346.594179][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 346.599335][ T5200] get_compat_msghdr+0x108/0x2c0
[ 346.604444][ T5200] do_recvmmsg+0xd77/0x2120
[ 346.609013][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 346.613866][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 346.620338][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 346.625560][ T5200] do_fast_syscall_32+0x34/0x70
[ 346.630472][ T5200] do_SYSENTER_32+0x1b/0x20
[ 346.635184][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 346.641578][ T5200]
[ 346.644046][ T5200] Uninit was stored to memory at:
[ 346.649130][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 346.654404][ T5200] get_compat_msghdr+0x108/0x2c0
[ 346.659388][ T5200] do_recvmmsg+0xd77/0x2120
[ 346.664074][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 346.668802][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 346.675318][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 346.680409][ T5200] do_fast_syscall_32+0x34/0x70
[ 346.685516][ T5200] do_SYSENTER_32+0x1b/0x20
[ 346.690078][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 346.696673][ T5200]
[ 346.699017][ T5200] Uninit was stored to memory at:
[ 346.704289][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 346.709458][ T5200] get_compat_msghdr+0x108/0x2c0
[ 346.714648][ T5200] do_recvmmsg+0xd77/0x2120
[ 346.719221][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 346.724116][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 346.730598][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 346.735880][ T5200] do_fast_syscall_32+0x34/0x70
[ 346.740797][ T5200] do_SYSENTER_32+0x1b/0x20
[ 346.745550][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 346.752072][ T5200]
[ 346.754412][ T5200] Uninit was stored to memory at:
[ 346.759513][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 346.764874][ T5200] get_compat_msghdr+0x108/0x2c0
[ 346.769867][ T5200] do_recvmmsg+0xd77/0x2120
[ 346.774630][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 346.779369][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 346.785972][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 346.791088][ T5200] do_fast_syscall_32+0x34/0x70
[ 346.796214][ T5200] do_SYSENTER_32+0x1b/0x20
[ 346.800776][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 346.807371][ T5200]
[ 346.809719][ T5200] Uninit was stored to memory at:
[ 346.814991][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 346.820155][ T5200] get_compat_msghdr+0x108/0x2c0
[ 346.825434][ T5200] do_recvmmsg+0xd77/0x2120
[ 346.830001][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 346.834938][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 346.841319][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 346.846614][ T5200] do_fast_syscall_32+0x34/0x70
[ 346.851532][ T5200] do_SYSENTER_32+0x1b/0x20
[ 346.856298][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 346.862798][ T5200]
[ 346.865138][ T5200] Uninit was stored to memory at:
[ 346.870231][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 346.875565][ T5200] get_compat_msghdr+0x108/0x2c0
[ 346.880550][ T5200] do_recvmmsg+0xd77/0x2120
[ 346.885299][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 346.890031][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 346.896602][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 346.901852][ T5200] do_fast_syscall_32+0x34/0x70
[ 346.906799][ T5200] do_SYSENTER_32+0x1b/0x20
[ 346.911363][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 346.917951][ T5200]
[ 346.920290][ T5200] Uninit was stored to memory at:
[ 346.925571][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 346.930729][ T5200] get_compat_msghdr+0x108/0x2c0
[ 346.935921][ T5200] do_recvmmsg+0xd77/0x2120
[ 346.940487][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 346.945416][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 346.951919][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 346.957002][ T5200] do_fast_syscall_32+0x34/0x70
[ 346.962071][ T5200] do_SYSENTER_32+0x1b/0x20
[ 346.966621][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 346.973200][ T5200]
[ 346.975543][ T5200] Local variable msg_sys created at:
[ 346.980843][ T5200] do_recvmmsg+0xbb/0x2120
[ 346.985516][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 347.306568][ T5200] not chained 700000 origins
[ 347.311320][ T5200] CPU: 1 PID: 5200 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 347.320047][ T5200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 347.330143][ T5200] Call Trace:
[ 347.333445][ T5200]
[ 347.336394][ T5200] dump_stack_lvl+0x1ff/0x28e
[ 347.341133][ T5200] dump_stack+0x25/0x28
[ 347.345360][ T5200] kmsan_internal_chain_origin+0x78/0x110
[ 347.351142][ T5200] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 347.357269][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 347.362440][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 347.368320][ T5200] ? __unix_dgram_recvmsg+0x1a0b/0x1c20
[ 347.374013][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 347.379178][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 347.385047][ T5200] ? should_fail+0x75/0x9c0
[ 347.389619][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 347.394810][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 347.401121][ T5200] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 347.407264][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 347.412433][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 347.418302][ T5200] __msan_chain_origin+0xbf/0x140
[ 347.423384][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 347.428568][ T5200] get_compat_msghdr+0x108/0x2c0
[ 347.433566][ T5200] ? __sys_recvmmsg+0x51c/0x6f0
[ 347.438479][ T5200] do_recvmmsg+0xd77/0x2120
[ 347.443057][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 347.448318][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 347.454618][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 347.459786][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 347.467656][ T5200] ? fput+0x82/0x320
[ 347.471627][ T5200] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 347.478214][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 347.482964][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 347.489355][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 347.494444][ T5200] do_fast_syscall_32+0x34/0x70
[ 347.499354][ T5200] do_SYSENTER_32+0x1b/0x20
[ 347.503921][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 347.510313][ T5200] RIP: 0023:0xf6f01549
[ 347.514412][ T5200] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 347.534075][ T5200] RSP: 002b:00000000f58da5bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 347.542544][ T5200] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 347.550647][ T5200] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 347.558667][ T5200] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 347.566683][ T5200] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 347.575919][ T5200] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 347.583945][ T5200]
[ 347.587588][ T5200] Uninit was stored to memory at:
[ 347.592825][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 347.597976][ T5200] get_compat_msghdr+0x108/0x2c0
[ 347.603139][ T5200] do_recvmmsg+0xd77/0x2120
[ 347.607696][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 347.612558][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 347.618959][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 347.624197][ T5200] do_fast_syscall_32+0x34/0x70
[ 347.629103][ T5200] do_SYSENTER_32+0x1b/0x20
[ 347.633788][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 347.640185][ T5200]
[ 347.642835][ T5200] Uninit was stored to memory at:
[ 347.647922][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 347.653194][ T5200] get_compat_msghdr+0x108/0x2c0
[ 347.658182][ T5200] do_recvmmsg+0xd77/0x2120
[ 347.662913][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 347.667644][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 347.674373][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 347.679467][ T5200] do_fast_syscall_32+0x34/0x70
[ 347.685698][ T5200] do_SYSENTER_32+0x1b/0x20
[ 347.690272][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 347.696887][ T5200]
[ 347.699230][ T5200] Uninit was stored to memory at:
[ 347.704451][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 347.709611][ T5200] get_compat_msghdr+0x108/0x2c0
[ 347.714826][ T5200] do_recvmmsg+0xd77/0x2120
[ 347.719470][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 347.724337][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 347.730728][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 347.735952][ T5200] do_fast_syscall_32+0x34/0x70
[ 347.740950][ T5200] do_SYSENTER_32+0x1b/0x20
[ 347.745720][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 347.752242][ T5200]
[ 347.754585][ T5200] Uninit was stored to memory at:
[ 347.759682][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 347.765037][ T5200] get_compat_msghdr+0x108/0x2c0
[ 347.770026][ T5200] do_recvmmsg+0xd77/0x2120
[ 347.774773][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 347.779505][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 347.786086][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 347.791172][ T5200] do_fast_syscall_32+0x34/0x70
[ 347.796289][ T5200] do_SYSENTER_32+0x1b/0x20
[ 347.800858][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 347.807452][ T5200]
[ 347.809792][ T5200] Uninit was stored to memory at:
[ 347.815222][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 347.820386][ T5200] get_compat_msghdr+0x108/0x2c0
[ 347.825569][ T5200] do_recvmmsg+0xd77/0x2120
[ 347.830135][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 347.835055][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 347.841443][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 347.846879][ T5200] do_fast_syscall_32+0x34/0x70
[ 347.851906][ T5200] do_SYSENTER_32+0x1b/0x20
[ 347.856467][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 347.863028][ T5200]
[ 347.865365][ T5200] Uninit was stored to memory at:
[ 347.870453][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 347.875810][ T5200] get_compat_msghdr+0x108/0x2c0
[ 347.880890][ T5200] do_recvmmsg+0xd77/0x2120
[ 347.885643][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 347.890380][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 347.896942][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 347.902151][ T5200] do_fast_syscall_32+0x34/0x70
[ 347.907060][ T5200] do_SYSENTER_32+0x1b/0x20
[ 347.911869][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 347.918262][ T5200]
[ 347.920602][ T5200] Uninit was stored to memory at:
[ 347.925882][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 347.931048][ T5200] get_compat_msghdr+0x108/0x2c0
[ 347.936225][ T5200] do_recvmmsg+0xd77/0x2120
[ 347.940793][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 347.945734][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 347.952874][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 347.957960][ T5200] do_fast_syscall_32+0x34/0x70
[ 347.963048][ T5200] do_SYSENTER_32+0x1b/0x20
[ 347.967616][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 347.974217][ T5200]
[ 347.976560][ T5200] Local variable msg_sys created at:
[ 347.982020][ T5200] do_recvmmsg+0xbb/0x2120
[ 347.986508][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 348.201388][ T5200] not chained 710000 origins
[ 348.206333][ T5200] CPU: 1 PID: 5200 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 348.215326][ T5200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 348.225420][ T5200] Call Trace:
[ 348.228732][ T5200]
[ 348.232123][ T5200] dump_stack_lvl+0x1ff/0x28e
[ 348.236865][ T5200] dump_stack+0x25/0x28
[ 348.241076][ T5200] kmsan_internal_chain_origin+0x78/0x110
[ 348.246855][ T5200] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 348.252982][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 348.258151][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 348.264028][ T5200] ? __unix_dgram_recvmsg+0x1a0b/0x1c20
[ 348.269633][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 348.274911][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 348.280791][ T5200] ? should_fail+0x75/0x9c0
[ 348.285529][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 348.290963][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 348.297273][ T5200] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 348.303405][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 348.308578][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 348.314451][ T5200] __msan_chain_origin+0xbf/0x140
[ 348.319637][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 348.324824][ T5200] get_compat_msghdr+0x108/0x2c0
[ 348.329826][ T5200] ? __sys_recvmmsg+0x51c/0x6f0
[ 348.334765][ T5200] do_recvmmsg+0xd77/0x2120
[ 348.339356][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 348.344529][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 348.350878][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 348.356222][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 348.362621][ T5200] ? fput+0x82/0x320
[ 348.366580][ T5200] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 348.373152][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 348.377909][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 348.384315][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 348.389412][ T5200] do_fast_syscall_32+0x34/0x70
[ 348.394336][ T5200] do_SYSENTER_32+0x1b/0x20
[ 348.398900][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 348.405290][ T5200] RIP: 0023:0xf6f01549
[ 348.409395][ T5200] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 348.429062][ T5200] RSP: 002b:00000000f58da5bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 348.437542][ T5200] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 348.445647][ T5200] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 348.453663][ T5200] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 348.461674][ T5200] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 348.469817][ T5200] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 348.477847][ T5200]
[ 348.481424][ T5200] Uninit was stored to memory at:
[ 348.486672][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 348.491974][ T5200] get_compat_msghdr+0x108/0x2c0
[ 348.497568][ T5200] do_recvmmsg+0xd77/0x2120
[ 348.502281][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 348.507021][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 348.513570][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 348.518654][ T5200] do_fast_syscall_32+0x34/0x70
[ 348.523860][ T5200] do_SYSENTER_32+0x1b/0x20
[ 348.528434][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 348.535271][ T5200]
[ 348.537617][ T5200] Uninit was stored to memory at:
[ 348.542897][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 348.548054][ T5200] get_compat_msghdr+0x108/0x2c0
[ 348.553261][ T5200] do_recvmmsg+0xd77/0x2120
[ 348.557838][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 348.563223][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 348.569617][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 348.574929][ T5200] do_fast_syscall_32+0x34/0x70
[ 348.579855][ T5200] do_SYSENTER_32+0x1b/0x20
[ 348.584637][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 348.591030][ T5200]
[ 348.593564][ T5200] Uninit was stored to memory at:
[ 348.598657][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 348.603993][ T5200] get_compat_msghdr+0x108/0x2c0
[ 348.608974][ T5200] do_recvmmsg+0xd77/0x2120
[ 348.613643][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 348.618370][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 348.624895][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 348.629990][ T5200] do_fast_syscall_32+0x34/0x70
[ 348.635022][ T5200] do_SYSENTER_32+0x1b/0x20
[ 348.639580][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 348.646178][ T5200]
[ 348.648513][ T5200] Uninit was stored to memory at:
[ 348.653809][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 348.658964][ T5200] get_compat_msghdr+0x108/0x2c0
[ 348.664121][ T5200] do_recvmmsg+0xd77/0x2120
[ 348.668727][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 348.673683][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 348.680086][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 348.685372][ T5200] do_fast_syscall_32+0x34/0x70
[ 348.690289][ T5200] do_SYSENTER_32+0x1b/0x20
[ 348.695044][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 348.701436][ T5200]
[ 348.703954][ T5200] Uninit was stored to memory at:
[ 348.709050][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 348.714392][ T5200] get_compat_msghdr+0x108/0x2c0
[ 348.719396][ T5200] do_recvmmsg+0xd77/0x2120
[ 348.724148][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 348.728882][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 348.735544][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 348.740634][ T5200] do_fast_syscall_32+0x34/0x70
[ 348.745669][ T5200] do_SYSENTER_32+0x1b/0x20
[ 348.750227][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 348.756826][ T5200]
[ 348.759167][ T5200] Uninit was stored to memory at:
[ 348.764482][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 348.769665][ T5200] get_compat_msghdr+0x108/0x2c0
[ 348.774846][ T5200] do_recvmmsg+0xd77/0x2120
[ 348.779412][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 348.784336][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 348.790722][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 348.796129][ T5200] do_fast_syscall_32+0x34/0x70
[ 348.801036][ T5200] do_SYSENTER_32+0x1b/0x20
[ 348.805793][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 348.812299][ T5200]
[ 348.814643][ T5200] Uninit was stored to memory at:
[ 348.819818][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 348.825160][ T5200] get_compat_msghdr+0x108/0x2c0
[ 348.830150][ T5200] do_recvmmsg+0xd77/0x2120
[ 348.834841][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 348.839574][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 348.846133][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 348.851246][ T5200] do_fast_syscall_32+0x34/0x70
[ 348.856277][ T5200] do_SYSENTER_32+0x1b/0x20
[ 348.860844][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 348.867414][ T5200]
[ 348.869771][ T5200] Local variable msg_sys created at:
[ 348.875247][ T5200] do_recvmmsg+0xbb/0x2120
[ 348.879716][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 349.089255][ T5200] not chained 720000 origins
[ 349.094153][ T5200] CPU: 1 PID: 5200 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 349.102879][ T5200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 349.112967][ T5200] Call Trace:
[ 349.116277][ T5200]
[ 349.119231][ T5200] dump_stack_lvl+0x1ff/0x28e
[ 349.123968][ T5200] dump_stack+0x25/0x28
[ 349.128177][ T5200] kmsan_internal_chain_origin+0x78/0x110
[ 349.133958][ T5200] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 349.140087][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 349.145262][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 349.151234][ T5200] ? __unix_dgram_recvmsg+0x1a0b/0x1c20
[ 349.156924][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 349.162109][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 349.167988][ T5200] ? should_fail+0x75/0x9c0
[ 349.172545][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 349.177725][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 349.184024][ T5200] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 349.190163][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 349.195348][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 349.201222][ T5200] __msan_chain_origin+0xbf/0x140
[ 349.206309][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 349.211748][ T5200] get_compat_msghdr+0x108/0x2c0
[ 349.216735][ T5200] ? __sys_recvmmsg+0x51c/0x6f0
[ 349.221650][ T5200] do_recvmmsg+0xd77/0x2120
[ 349.226228][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 349.231407][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 349.237742][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 349.243786][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 349.250114][ T5200] ? fput+0x82/0x320
[ 349.254071][ T5200] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 349.260638][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 349.265392][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 349.271788][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 349.276885][ T5200] do_fast_syscall_32+0x34/0x70
[ 349.281810][ T5200] do_SYSENTER_32+0x1b/0x20
[ 349.286371][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 349.292809][ T5200] RIP: 0023:0xf6f01549
[ 349.297176][ T5200] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 349.317017][ T5200] RSP: 002b:00000000f58da5bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 349.325490][ T5200] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 349.333505][ T5200] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 349.341616][ T5200] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 349.349757][ T5200] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 349.357776][ T5200] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 349.365804][ T5200]
[ 349.369575][ T5200] Uninit was stored to memory at:
[ 349.375472][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 349.380626][ T5200] get_compat_msghdr+0x108/0x2c0
[ 349.385756][ T5200] do_recvmmsg+0xd77/0x2120
[ 349.390311][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 349.395207][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 349.401593][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 349.406910][ T5200] do_fast_syscall_32+0x34/0x70
[ 349.412123][ T5200] do_SYSENTER_32+0x1b/0x20
[ 349.416676][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 349.423344][ T5200]
[ 349.425696][ T5200] Uninit was stored to memory at:
[ 349.430871][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 349.436222][ T5200] get_compat_msghdr+0x108/0x2c0
[ 349.441211][ T5200] do_recvmmsg+0xd77/0x2120
[ 349.445931][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 349.450669][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 349.457185][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 349.462402][ T5200] do_fast_syscall_32+0x34/0x70
[ 349.467307][ T5200] do_SYSENTER_32+0x1b/0x20
[ 349.472020][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 349.478500][ T5200]
[ 349.480836][ T5200] Uninit was stored to memory at:
[ 349.486123][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 349.491283][ T5200] get_compat_msghdr+0x108/0x2c0
[ 349.496392][ T5200] do_recvmmsg+0xd77/0x2120
[ 349.500946][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 349.505821][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 349.512446][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 349.517528][ T5200] do_fast_syscall_32+0x34/0x70
[ 349.522570][ T5200] do_SYSENTER_32+0x1b/0x20
[ 349.527124][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 349.533627][ T5200]
[ 349.535967][ T5200] Uninit was stored to memory at:
[ 349.541052][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 349.546506][ T5200] get_compat_msghdr+0x108/0x2c0
[ 349.551490][ T5200] do_recvmmsg+0xd77/0x2120
[ 349.556264][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 349.560997][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 349.567703][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 349.572996][ T5200] do_fast_syscall_32+0x34/0x70
[ 349.577909][ T5200] do_SYSENTER_32+0x1b/0x20
[ 349.582692][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 349.589081][ T5200]
[ 349.591420][ T5200] Uninit was stored to memory at:
[ 349.596656][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 349.602006][ T5200] get_compat_msghdr+0x108/0x2c0
[ 349.607000][ T5200] do_recvmmsg+0xd77/0x2120
[ 349.611555][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 349.616436][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 349.622974][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 349.628060][ T5200] do_fast_syscall_32+0x34/0x70
[ 349.633105][ T5200] do_SYSENTER_32+0x1b/0x20
[ 349.637720][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 349.644281][ T5200]
[ 349.646622][ T5200] Uninit was stored to memory at:
[ 349.651841][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 349.656999][ T5200] get_compat_msghdr+0x108/0x2c0
[ 349.662215][ T5200] do_recvmmsg+0xd77/0x2120
[ 349.666772][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 349.671503][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 349.678043][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 349.683262][ T5200] do_fast_syscall_32+0x34/0x70
[ 349.688170][ T5200] do_SYSENTER_32+0x1b/0x20
[ 349.692887][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 349.699277][ T5200]
[ 349.701622][ T5200] Uninit was stored to memory at:
[ 349.706869][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 349.712143][ T5200] get_compat_msghdr+0x108/0x2c0
[ 349.717124][ T5200] do_recvmmsg+0xd77/0x2120
[ 349.721875][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 349.726612][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 349.733143][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 349.738245][ T5200] do_fast_syscall_32+0x34/0x70
[ 349.743407][ T5200] do_SYSENTER_32+0x1b/0x20
[ 349.747970][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 349.754512][ T5200]
[ 349.756853][ T5200] Local variable msg_sys created at:
[ 349.763216][ T5200] do_recvmmsg+0xbb/0x2120
[ 349.767778][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 349.968752][ T5200] not chained 730000 origins
[ 349.973637][ T5200] CPU: 1 PID: 5200 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 349.982371][ T5200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 349.992468][ T5200] Call Trace:
[ 349.995774][ T5200]
[ 349.998729][ T5200] dump_stack_lvl+0x1ff/0x28e
[ 350.003474][ T5200] dump_stack+0x25/0x28
[ 350.007706][ T5200] kmsan_internal_chain_origin+0x78/0x110
[ 350.013492][ T5200] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 350.019621][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 350.024793][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 350.030718][ T5200] ? __unix_dgram_recvmsg+0x1a0b/0x1c20
[ 350.036324][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 350.041489][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 350.047393][ T5200] ? should_fail+0x75/0x9c0
[ 350.051950][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 350.057112][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 350.063411][ T5200] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 350.069534][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 350.074696][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 350.080563][ T5200] __msan_chain_origin+0xbf/0x140
[ 350.085646][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 350.090830][ T5200] get_compat_msghdr+0x108/0x2c0
[ 350.095824][ T5200] ? __sys_recvmmsg+0x51c/0x6f0
[ 350.100740][ T5200] do_recvmmsg+0xd77/0x2120
[ 350.105412][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 350.110599][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 350.116908][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 350.122082][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 350.128475][ T5200] ? fput+0x82/0x320
[ 350.132425][ T5200] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 350.138987][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 350.143748][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 350.150155][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 350.155248][ T5200] do_fast_syscall_32+0x34/0x70
[ 350.160173][ T5200] do_SYSENTER_32+0x1b/0x20
[ 350.164763][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 350.171310][ T5200] RIP: 0023:0xf6f01549
[ 350.175408][ T5200] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 350.195249][ T5200] RSP: 002b:00000000f58da5bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 350.203714][ T5200] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 350.211902][ T5200] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 350.219920][ T5200] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 350.227934][ T5200] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 350.235943][ T5200] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 350.243968][ T5200]
[ 350.247657][ T5200] Uninit was stored to memory at:
[ 350.253145][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 350.258295][ T5200] get_compat_msghdr+0x108/0x2c0
[ 350.263444][ T5200] do_recvmmsg+0xd77/0x2120
[ 350.268012][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 350.272861][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 350.279238][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 350.284485][ T5200] do_fast_syscall_32+0x34/0x70
[ 350.289386][ T5200] do_SYSENTER_32+0x1b/0x20
[ 350.294156][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 350.300549][ T5200]
[ 350.303097][ T5200] Uninit was stored to memory at:
[ 350.308622][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 350.316530][ T5200] get_compat_msghdr+0x108/0x2c0
[ 350.321525][ T5200] do_recvmmsg+0xd77/0x2120
[ 350.326489][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 350.331230][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 350.337766][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 350.342985][ T5200] do_fast_syscall_32+0x34/0x70
[ 350.347894][ T5200] do_SYSENTER_32+0x1b/0x20
[ 350.352571][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 350.358976][ T5200]
[ 350.361307][ T5200] Uninit was stored to memory at:
[ 350.366598][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 350.371903][ T5200] get_compat_msghdr+0x108/0x2c0
[ 350.376882][ T5200] do_recvmmsg+0xd77/0x2120
[ 350.381516][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 350.386394][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 350.392962][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 350.398040][ T5200] do_fast_syscall_32+0x34/0x70
[ 350.403085][ T5200] do_SYSENTER_32+0x1b/0x20
[ 350.407979][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 350.414527][ T5200]
[ 350.416863][ T5200] Uninit was stored to memory at:
[ 350.422300][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 350.427456][ T5200] get_compat_msghdr+0x108/0x2c0
[ 350.432675][ T5200] do_recvmmsg+0xd77/0x2120
[ 350.437227][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 350.442098][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 350.448472][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 350.453752][ T5200] do_fast_syscall_32+0x34/0x70
[ 350.458664][ T5200] do_SYSENTER_32+0x1b/0x20
[ 350.463449][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 350.469837][ T5200]
[ 350.472345][ T5200] Uninit was stored to memory at:
[ 350.477429][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 350.482732][ T5200] get_compat_msghdr+0x108/0x2c0
[ 350.487718][ T5200] do_recvmmsg+0xd77/0x2120
[ 350.492445][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 350.497175][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 350.503711][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 350.508790][ T5200] do_fast_syscall_32+0x34/0x70
[ 350.513896][ T5200] do_SYSENTER_32+0x1b/0x20
[ 350.518454][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 350.525149][ T5200]
[ 350.527489][ T5200] Uninit was stored to memory at:
[ 350.532756][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 350.537920][ T5200] get_compat_msghdr+0x108/0x2c0
[ 350.543100][ T5200] do_recvmmsg+0xd77/0x2120
[ 350.547659][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 350.552573][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 350.558961][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 350.564250][ T5200] do_fast_syscall_32+0x34/0x70
[ 350.569164][ T5200] do_SYSENTER_32+0x1b/0x20
[ 350.573914][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 350.580302][ T5200]
[ 350.582811][ T5200] Uninit was stored to memory at:
[ 350.587900][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 350.593173][ T5200] get_compat_msghdr+0x108/0x2c0
[ 350.598161][ T5200] do_recvmmsg+0xd77/0x2120
[ 350.602830][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 350.607557][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 350.614997][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 350.620082][ T5200] do_fast_syscall_32+0x34/0x70
[ 350.625170][ T5200] do_SYSENTER_32+0x1b/0x20
[ 350.629788][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 350.636368][ T5200]
[ 350.638704][ T5200] Local variable msg_sys created at:
[ 350.644153][ T5200] do_recvmmsg+0xbb/0x2120
[ 350.648710][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 350.824028][ T5200] not chained 740000 origins
[ 350.828848][ T5200] CPU: 1 PID: 5200 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 350.837571][ T5200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 350.847746][ T5200] Call Trace:
[ 350.851053][ T5200]
[ 350.854105][ T5200] dump_stack_lvl+0x1ff/0x28e
[ 350.858856][ T5200] dump_stack+0x25/0x28
[ 350.863075][ T5200] kmsan_internal_chain_origin+0x78/0x110
[ 350.868863][ T5200] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 350.875012][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 350.880198][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 350.886086][ T5200] ? __unix_dgram_recvmsg+0x1a0b/0x1c20
[ 350.892542][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 350.897719][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 350.903600][ T5200] ? should_fail+0x75/0x9c0
[ 350.908165][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 350.913350][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 350.919654][ T5200] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 350.925796][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 350.930973][ T5200] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 350.936933][ T5200] __msan_chain_origin+0xbf/0x140
[ 350.942124][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 350.947308][ T5200] get_compat_msghdr+0x108/0x2c0
[ 350.952309][ T5200] ? __sys_recvmmsg+0x51c/0x6f0
[ 350.957234][ T5200] do_recvmmsg+0xd77/0x2120
[ 350.961816][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 350.967001][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 350.973394][ T5200] ? kmsan_get_metadata+0x33/0x220
[ 350.978568][ T5200] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 350.984875][ T5200] ? fput+0x82/0x320
[ 350.988830][ T5200] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 350.995385][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 351.000141][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 351.006635][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 351.011731][ T5200] do_fast_syscall_32+0x34/0x70
[ 351.016651][ T5200] do_SYSENTER_32+0x1b/0x20
[ 351.021224][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 351.027732][ T5200] RIP: 0023:0xf6f01549
[ 351.031831][ T5200] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 351.051486][ T5200] RSP: 002b:00000000f58da5bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 351.059959][ T5200] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[ 351.067984][ T5200] RDX: 0000000000010106 RSI: 0000000000000002 RDI: 0000000000000000
[ 351.076089][ T5200] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 351.084191][ T5200] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 351.092322][ T5200] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 351.100349][ T5200]
[ 351.105533][ T5200] Uninit was stored to memory at:
[ 351.110635][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 351.115910][ T5200] get_compat_msghdr+0x108/0x2c0
[ 351.120898][ T5200] do_recvmmsg+0xd77/0x2120
[ 351.125647][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 351.130372][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 351.136877][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 351.142088][ T5200] do_fast_syscall_32+0x34/0x70
[ 351.146997][ T5200] do_SYSENTER_32+0x1b/0x20
[ 351.151557][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 351.158135][ T5200]
[ 351.160484][ T5200] Uninit was stored to memory at:
[ 351.165813][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 351.170967][ T5200] get_compat_msghdr+0x108/0x2c0
[ 351.176196][ T5200] do_recvmmsg+0xd77/0x2120
[ 351.180846][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 351.185777][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 351.192282][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 351.197454][ T5200] do_fast_syscall_32+0x34/0x70
[ 351.202526][ T5200] do_SYSENTER_32+0x1b/0x20
[ 351.207090][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 351.213606][ T5200]
[ 351.215957][ T5200] Uninit was stored to memory at:
[ 351.221043][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 351.226378][ T5200] get_compat_msghdr+0x108/0x2c0
[ 351.231360][ T5200] do_recvmmsg+0xd77/0x2120
[ 351.236099][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 351.240829][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 351.247340][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 351.252578][ T5200] do_fast_syscall_32+0x34/0x70
[ 351.257492][ T5200] do_SYSENTER_32+0x1b/0x20
[ 351.262218][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 351.268604][ T5200]
[ 351.270945][ T5200] Uninit was stored to memory at:
[ 351.276229][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 351.281386][ T5200] get_compat_msghdr+0x108/0x2c0
[ 351.286557][ T5200] do_recvmmsg+0xd77/0x2120
[ 351.291111][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 351.296032][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 351.302540][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 351.307622][ T5200] do_fast_syscall_32+0x34/0x70
[ 351.312703][ T5200] do_SYSENTER_32+0x1b/0x20
[ 351.317259][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 351.323765][ T5200]
[ 351.326099][ T5200] Uninit was stored to memory at:
[ 351.331179][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 351.336520][ T5200] get_compat_msghdr+0x108/0x2c0
[ 351.341508][ T5200] do_recvmmsg+0xd77/0x2120
[ 351.346252][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 351.350983][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 351.357544][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 351.362721][ T5200] do_fast_syscall_32+0x34/0x70
[ 351.367627][ T5200] do_SYSENTER_32+0x1b/0x20
[ 351.372361][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 351.378847][ T5200]
[ 351.381181][ T5200] Uninit was stored to memory at:
[ 351.386464][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 351.391619][ T5200] get_compat_msghdr+0x108/0x2c0
[ 351.396776][ T5200] do_recvmmsg+0xd77/0x2120
[ 351.401331][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 351.406266][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 351.412773][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 351.417856][ T5200] do_fast_syscall_32+0x34/0x70
[ 351.422941][ T5200] do_SYSENTER_32+0x1b/0x20
[ 351.427492][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 351.434257][ T5200]
[ 351.436595][ T5200] Uninit was stored to memory at:
[ 351.441849][ T5200] __get_compat_msghdr+0x6e1/0x9d0
[ 351.447009][ T5200] get_compat_msghdr+0x108/0x2c0
[ 351.452162][ T5200] do_recvmmsg+0xd77/0x2120
[ 351.456721][ T5200] __sys_recvmmsg+0x51c/0x6f0
[ 351.461451][ T5200] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 351.468038][ T5200] __do_fast_syscall_32+0x96/0xf0
[ 351.473227][ T5200] do_fast_syscall_32+0x34/0x70
[ 351.478130][ T5200] do_SYSENTER_32+0x1b/0x20
[ 351.482913][ T5200] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 351.489398][ T5200]
[ 351.491907][ T5200] Local variable msg_sys created at:
[ 351.497210][ T5200] do_recvmmsg+0xbb/0x2120
[ 351.501864][ T5200] __sys_recvmmsg+0x51c/0x6f0
19:05:30 executing program 5:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setxattr$trusted_overlay_redirect(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_UNEXPECTED_FRAME(r0, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="08002abd7000fedbdf255300000008000300", @ANYRES32=0x0, @ANYBLOB="c48b89d259f7677fdd44d8bfffbc47336421fc8cc7b7c61365466f629b079fe9360d1d90"], 0x1c}, 0x1, 0x0, 0x0, 0x4008881}, 0x20040000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x100)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'bond0\x00', 0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
writev(r1, &(0x7f0000000280)=[{&(0x7f00000008c0)="110eaa1a9896d57019effc8c79961d0f73ccf3afca3754e2e7a31f536bcb7204bed59311e29c96e1c2b663d61e5b0c0a76ea50cbddaa69f578b8600f77cf1a538ac900673696245b6de4283c979a2eccd71f9583dacf650575d1398678895da32663735b4d0cabfe7e972e59c2b4b4c9c89d0b82ca2267ad5062303e8abcb79600010506702eb912e3957e507aec4e2180699a738f6753509a12282a1d7181887f6c2e03de1da0dfe3b4efbb10e9b59301b4ef8a1d", 0xb5}, {&(0x7f0000000980)="34c30d95766fefbb7bdc40a3242505587bbc8584c2bc2003185f5ce116eea020efa91e2aae1eae2b8e848ac13c3dcedbbbc82adb1e70be8eecedba37be82545f2abda4f0a0e0fd0edd6bd03bb8e9bb91c39a2c828511aef3e684ad4c21ec0c146b9570139e31cd", 0x67}], 0x2)
socket$nl_route(0x10, 0x3, 0x0)
mount$9p_rdma(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x200086, &(0x7f0000000600)=ANY=[@ANYBLOB="7472616e733d72646d612c706f894d4768bb72743d3078303030303030303030303030346532312c66736d616769633d30783030303030303030376666666666666617646566636f6e746578743d73797361646d5f752c6f626a5f72653d766c616e002c726f6f74636f6e742457c08f9cbe78981fb018cdcf264b6578743d756e636f6e66696e65645f752c636f6e746578743d8f5040656e66696e650000"])
r4 = socket(0x1, 0x803, 0x0)
connect(0xffffffffffffffff, &(0x7f00000006c0)=@rc={0x1f, @any, 0x81}, 0x80)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000440)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000400)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3c000000020601020000000000000000070000081c000780080006400000000908001740fffffffb08000a40ae0300000000000073797a3200000000114713464d23568d7f7308f439322a737502b97e3a4d36e2cd9ec14133aca64e77e1e789c4b21b43400ef6a0b000e7abe979ced23e3300bf13ce1c77c538a674dddc56d1b028168c379be8f6f1237b00000000770bf3905db589bca1f47aa38bbf0f95bbc90b9a1b4c6cefb14516ecc93303b29f5b06e6afd76d8b75bfe39e0b083dcaf4890c85f76e0a538c7038b73e01a6fd4414a97fb0cf19309482b1ae57000dabae00"], 0x3c}, 0x1, 0x0, 0x0, 0x10000080}, 0x8000)
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8936, &(0x7f0000000080)={@local, 0x44, r3})
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
r6 = socket(0x10, 0x8000000803, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newlink={0xb4, 0x10, 0x401, 0x0, 0x4, {0x0, 0x0, 0x0, 0x0, 0x242b8, 0x42a0a}, [@IFLA_LINKINFO={0x84, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x74, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_INGRESS_QOS={0x4}, @IFLA_VLAN_EGRESS_QOS={0x64, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0x2be5}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0x80000000}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x2, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x3000}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x2ed8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x1, 0xa}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xad4c, 0x4}}]}]}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0xb4}}, 0x0)
19:05:30 executing program 4:
r0 = memfd_create(&(0x7f0000000280)='X\xe6\xab\x00\x1e\x91~\xf4\x8cR\xf1\xcf\xd7Oi}-\x0f\xfa\xb6\x03\x00\x00\x00\x00\x00\x00\x00v4/\x81\x00\x00ignonneled\x00\x00\x18\x00\xc4\xb7l~\xf7\xc3\x8a\xdf\xa8KFF\xc3\xce\x95\x0f\x9cE\x88\xa1/\xc3\xe0\x827\xa0G\xa1\x0e\x8b\fe2\x89\xb3}\x17', 0x0)
mmap(&(0x7f0000000000/0xaa2000)=nil, 0xaa2000, 0x5, 0x11, r0, 0x0)
rt_sigaction(0x7, &(0x7f0000b4a000)={0x0, 0x1c000002, 0x0}, 0x0, 0x8, &(0x7f0000000040))
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='map_files\x00')
19:05:30 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x10)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="fe", 0x1}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f00000033c0)=[{{0x0, 0x0, 0x0}}], 0x1f8, 0x122, 0x0)
19:05:30 executing program 0:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
write$FUSE_GETXATTR(r0, &(0x7f00000000c0)={0x18}, 0xffffff54)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000100))
ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3f7d)
fcntl$setsig(r2, 0xa, 0x12)
poll(&(0x7f0000000000)=[{r3}], 0x1, 0xfffffffffffffff8)
dup2(r2, r3)
fcntl$setown(r3, 0x8, r1)
tkill(r1, 0x14)
19:05:30 executing program 1:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x11a20100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000bc0)=ANY=[@ANYBLOB="61128c000000000061138c0000000000bf2000000000000015000000080000002d0301000000000095000000000000006916000000000000bf67000000000000350600000fff07006706000002000000070300000ee60060bf050000000000004f650000000000006507f9ff01000000070700004c0000001f75000000000000bf54000000000000070400000400f9ffad4301000000000095000000000000000500000000000000950000000000000032ed3c5be9525db67754bb1271056db5250f11ec5f3df3bd49c6c3feffffff8ecf264e0f8492b80482f48821a0d2d17f2f1754558f2278af6d71d79a5ed8a5d4601d295c45a6a0b9bdb7dd399703d6c4f6f3ffff369289aa6812b8e007e733aba459788b9c37931bdba010fb94fe9de56c9d8a814261bdb94a05000000c6c60bf70d742a81762bab8395fa64810b5b40d893ea8fe0185473d51b546cad3f1d5af65727546e7c955cfa1f6ab689fde4de4e63ede20271a51445dc8da39e5b0ab70100010000000000d04acd6002d4519af619e3cca4d69e0dee5eb106774a8f3e6916df85aaf34c4756ad3a6d75ec88158f0200000000c8fb735fd552bdbcfdcc39598068551a7c291c3770e335c251a5500e0743eb2dc819b6cf5c8ac8038a297dff0445a13d0045fb3cda32a673a6bb55d8c85f21dce431e56723888fb126a163f16fb2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20f00297b19815a5b96d6470fa9f81179fce2ac16f64ea7b0ef3b3a6aa57f1ad2e99e0e67a993716dbf580469f0f53acbb40b401c37382700600d362ed834f2af97787f696649a462e7ecebcf8b07a10d6735154beb4000000000000000000000000000000bc00f674629709e7e78f4ddc211bc3ebf0bd9d42ca019dd1d022cf74686e9fbe2562671cd47840a7afaab43176e65ec1118d46d1e827f3472f44450c487434d253887a5ad103649afa17690884f9d2001e038451bb96589a7eab04871bc47207cd313f00000000000000407d000000000000a0ee4a082ec29816fb0000000000007d55bb83f984769994cf005f37d83f84e98a523d80bd0d0d703f37ca363f601ae899a53f6715a0a61434b0c94cce699452050000000000000026a0f6a5480a55c22fe394ac000000000000000000000000000000437d57defb79ea6a58bc3eeed729a2f95e1d6a1fc357b27990f51d33cd1bdf3dbcdf1c2cbb82ce8605abd094d3c495483186eef5cb247aa410dd86f07ea7ba1b5cded1f8fc47de13d2ba17b1e608cc3067aa5e2460900d472c275cc1dcd46a6321be36dd5342da5989dcc8c1e9ed32eb08bfbd9f7a4a1c63020a8d6d9662b3bc89140a6a36413f13d9536247ba66eb701a30744debfe69126c3f54250d7b3639e13f8df6ff262b2ce045b032abe1e891c50201e194e8c2ac0c274597e183953d823bc92acff3fbeb58c4ea7a9eb3c19ed60100010000857bbdf0ce8de1a9cd0645eca62e4645f0c4d6c2ad442750967460a332c6319a90db3fd9cec540b6080b7406111830fc3b08bcf5b811142ecbfc03293a2cd6ee3e3dbe0a8be3160ecda98cafb2f1de8296c01496a0915c822a44abff226c2414a747a0f12e3ee80124b5e8091af7c8db82d64e0f060a78694987c74db193ab6b2be3badbb046def0c06610f5c092a84d303f21a02319da4cc063a2e28a79ca4376b6f4fc3df47d87"], &(0x7f0000000100)='GPL\x00'}, 0x48)
ppoll(0x0, 0x0, 0x0, 0x0, 0x1aa8)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f00000003c0)={0x0, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @private0}}}, 0x108)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
openat$proc_capi20(0xffffffffffffff9c, 0x0, 0x0, 0x0)
19:05:30 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0)
clone(0x21b02100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x300, 0x0, 0xc8, 0x0, 0x160, 0x5803, 0x230, 0x2e8, 0x2e8, 0x230, 0x2e8, 0x3, 0x0, {[{{@ipv6={@ipv4, @mcast2, [], [], 'bridge0\x00', 'geneve1\x00'}, 0x0, 0xf8, 0x160, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@addrtype1={{0x28}, {0x8}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz0\x00'}}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @private}, @loopback, [], [], 'veth0_to_team\x00', 'netdevsim0\x00'}, 0x0, 0xa8, 0xd0}, @common=@inet=@SYNPROXY={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x360)
19:05:31 executing program 3:
r0 = syz_open_dev$vim2m(&(0x7f0000000300), 0x95, 0x2)
readv(r0, &(0x7f0000000480)=[{&(0x7f0000000340)=""/36, 0x24}], 0x1)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
dup3(r1, r0, 0x0)
19:05:31 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = creat(&(0x7f00000002c0)='./bus\x00', 0x0)
r2 = open(&(0x7f0000000780)='./bus\x00', 0x14117e, 0x0)
r3 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
lseek(r3, 0x7ffffc, 0x0)
write$binfmt_elf64(r3, &(0x7f00000002c0)=ANY=[], 0x1a0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r2, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611)
19:05:31 executing program 2:
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x3c42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0x1}}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0), 0xffffffffffffffff)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
unshare(0x20000)
r2 = syz_open_procfs$namespace(0x0, &(0x7f00000005c0)='ns/mnt\x00')
sched_setattr(0x0, &(0x7f0000000580)={0x38, 0x1, 0x0, 0x800, 0xfffd, 0x7, 0x7, 0x80, 0x4}, 0x0)
copy_file_range(0xffffffffffffffff, &(0x7f0000000400)=0xbf3, 0xffffffffffffffff, 0x0, 0x7, 0x0)
getpid()
migrate_pages(0x0, 0x5, &(0x7f0000000140)=0x7fff, &(0x7f0000000540)=0x1)
setns(r2, 0x20000)
r3 = gettid()
ptrace(0x10, r3)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1000000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d202020202020202020202020202020202020202020202020202020fffffff600000000b91e1d14000001b9000000000000000000000000000000000000000000000000000000000000000001000001010000010008", 0x82, 0x8000}, {&(0x7f0000000600)="0243443030310100004c0049004e0055005800200020002000200020002000200020002000200020004300440052004f004d002000200020002000200020002000200020002000200000000000000000b9010000000001b9252f4500000000000000000000000000000000000000000000000000000000000100000101000001000808001c0000000000001c1101000000000000000001130000000022001701", 0xa0, 0x8800}, {&(0x7f0000014600)="2200170100000000011700080000000008007809140b2a3a0802", 0x1a, 0x8b800}], 0x0, &(0x7f0000000340)={[{@iocharset={'iocharset', 0x3d, 'cp874'}}, {@map_acorn}, {}]})
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0x38, r1, 0x200, 0x70bd2b, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @broadcast}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x10001}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x80000000}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv0\x00', 0x0})
sendmsg$BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)={0x1c, r1, 0x711, 0x0, 0x0, {0x8}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}]}, 0x1c}}, 0x0)
pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff})
connect$inet6(r5, &(0x7f0000000240)={0xa, 0x4e21, 0xffffff81, @loopback, 0x2}, 0x1c)
19:05:31 executing program 1:
r0 = syz_io_uring_setup(0x884, &(0x7f0000000080), &(0x7f0000ee7000/0x2000)=nil, &(0x7f00006d3000/0x4000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000040)=0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4)
r3 = socket$rxrpc(0x21, 0x2, 0xa)
syz_io_uring_submit(r1, r2, &(0x7f0000000400)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=ANY=[], 0x10}}, 0x0)
connect$rxrpc(r3, &(0x7f0000000100)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xff7fffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x688c, 0x0, 0x0, 0x0, 0x0)
19:05:31 executing program 3:
r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0)
io_setup(0x1, &(0x7f0000000180)=0x0)
r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r0)
io_submit(r1, 0x2, &(0x7f0000000340)=[&(0x7f00000000c0)={0x0, 0x400000000000, 0x0, 0x1, 0x0, r0, 0x0}, &(0x7f0000000040)={0x0, 0x0, 0x8, 0x0, 0x0, r3, 0x0}])
19:05:32 executing program 0:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
write$FUSE_GETXATTR(r0, &(0x7f00000000c0)={0x18}, 0xffffff54)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000100))
ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3f7d)
fcntl$setsig(r2, 0xa, 0x12)
poll(&(0x7f0000000000)=[{r3}], 0x1, 0xfffffffffffffff8)
dup2(r2, r3)
fcntl$setown(r3, 0x8, r1)
tkill(r1, 0x14)
[ 353.055008][ T5348] loop2: detected capacity change from 0 to 32768
19:05:32 executing program 5:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setxattr$trusted_overlay_redirect(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_UNEXPECTED_FRAME(r0, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="08002abd7000fedbdf255300000008000300", @ANYRES32=0x0, @ANYBLOB="c48b89d259f7677fdd44d8bfffbc47336421fc8cc7b7c61365466f629b079fe9360d1d90"], 0x1c}, 0x1, 0x0, 0x0, 0x4008881}, 0x20040000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x100)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'bond0\x00', 0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
writev(r1, &(0x7f0000000280)=[{&(0x7f00000008c0)="110eaa1a9896d57019effc8c79961d0f73ccf3afca3754e2e7a31f536bcb7204bed59311e29c96e1c2b663d61e5b0c0a76ea50cbddaa69f578b8600f77cf1a538ac900673696245b6de4283c979a2eccd71f9583dacf650575d1398678895da32663735b4d0cabfe7e972e59c2b4b4c9c89d0b82ca2267ad5062303e8abcb79600010506702eb912e3957e507aec4e2180699a738f6753509a12282a1d7181887f6c2e03de1da0dfe3b4efbb10e9b59301b4ef8a1d", 0xb5}, {&(0x7f0000000980)="34c30d95766fefbb7bdc40a3242505587bbc8584c2bc2003185f5ce116eea020efa91e2aae1eae2b8e848ac13c3dcedbbbc82adb1e70be8eecedba37be82545f2abda4f0a0e0fd0edd6bd03bb8e9bb91c39a2c828511aef3e684ad4c21ec0c146b9570139e31cd", 0x67}], 0x2)
socket$nl_route(0x10, 0x3, 0x0)
mount$9p_rdma(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x200086, &(0x7f0000000600)=ANY=[@ANYBLOB="7472616e733d72646d612c706f894d4768bb72743d3078303030303030303030303030346532312c66736d616769633d30783030303030303030376666666666666617646566636f6e746578743d73797361646d5f752c6f626a5f72653d766c616e002c726f6f74636f6e742457c08f9cbe78981fb018cdcf264b6578743d756e636f6e66696e65645f752c636f6e746578743d8f5040656e66696e650000"])
r4 = socket(0x1, 0x803, 0x0)
connect(0xffffffffffffffff, &(0x7f00000006c0)=@rc={0x1f, @any, 0x81}, 0x80)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000440)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000400)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3c000000020601020000000000000000070000081c000780080006400000000908001740fffffffb08000a40ae0300000000000073797a3200000000114713464d23568d7f7308f439322a737502b97e3a4d36e2cd9ec14133aca64e77e1e789c4b21b43400ef6a0b000e7abe979ced23e3300bf13ce1c77c538a674dddc56d1b028168c379be8f6f1237b00000000770bf3905db589bca1f47aa38bbf0f95bbc90b9a1b4c6cefb14516ecc93303b29f5b06e6afd76d8b75bfe39e0b083dcaf4890c85f76e0a538c7038b73e01a6fd4414a97fb0cf19309482b1ae57000dabae00"], 0x3c}, 0x1, 0x0, 0x0, 0x10000080}, 0x8000)
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8936, &(0x7f0000000080)={@local, 0x44, r3})
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
r6 = socket(0x10, 0x8000000803, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newlink={0xb4, 0x10, 0x401, 0x0, 0x4, {0x0, 0x0, 0x0, 0x0, 0x242b8, 0x42a0a}, [@IFLA_LINKINFO={0x84, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x74, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_INGRESS_QOS={0x4}, @IFLA_VLAN_EGRESS_QOS={0x64, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0x2be5}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0x80000000}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x2, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x3000}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x2ed8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x1, 0xa}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xad4c, 0x4}}]}]}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0xb4}}, 0x0)
19:05:32 executing program 4:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
write$FUSE_GETXATTR(r0, &(0x7f00000000c0)={0x18}, 0xffffff54)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000100))
ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3f7d)
fcntl$setsig(r2, 0xa, 0x12)
poll(&(0x7f0000000000)=[{r3}], 0x1, 0xfffffffffffffff8)
dup2(r2, r3)
fcntl$setown(r3, 0x8, r1)
tkill(r1, 0x14)
19:05:33 executing program 2:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
write$FUSE_GETXATTR(r0, &(0x7f00000000c0)={0x18}, 0xffffff54)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000100))
ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3f7d)
fcntl$setsig(r2, 0xa, 0x12)
poll(&(0x7f0000000000)=[{r3}], 0x1, 0xfffffffffffffff8)
dup2(r2, r3)
fcntl$setown(r3, 0x8, r1)
tkill(r1, 0x14)
19:05:33 executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x7, 0x1ff}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x3}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4cb]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_user\x00', 0x275a, 0x0)
write$FUSE_INTERRUPT(r3, &(0x7f0000000080)={0x10}, 0x10)
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7fffff, 0x40000000011, r3, 0x0)
sendmsg$AUDIT_GET_FEATURE(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x10, 0x3fb, 0x0, 0x70bd2b, 0x25dfdbfb}, 0x10}}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0)
19:05:33 executing program 0:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
write$FUSE_GETXATTR(r0, &(0x7f00000000c0)={0x18}, 0xffffff54)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000100))
ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3f7d)
fcntl$setsig(r2, 0xa, 0x12)
poll(&(0x7f0000000000)=[{r3}], 0x1, 0xfffffffffffffff8)
dup2(r2, r3)
fcntl$setown(r3, 0x8, r1)
tkill(r1, 0x14)
19:05:33 executing program 1:
syz_emit_ethernet(0x46, &(0x7f00000000c0)={@multicast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @loopback, @multicast2}, "0100798f15010009"}}}}}, 0x0)
19:05:34 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000880)=[{{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000280)="00f13ee17238527117e2a3", 0xb}], 0x1}}], 0x1, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc], 0x100000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
19:05:34 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_ctr_aes128\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
19:05:34 executing program 4:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
write$FUSE_GETXATTR(r0, &(0x7f00000000c0)={0x18}, 0xffffff54)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000100))
ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3f7d)
fcntl$setsig(r2, 0xa, 0x12)
poll(&(0x7f0000000000)=[{r3}], 0x1, 0xfffffffffffffff8)
dup2(r2, r3)
fcntl$setown(r3, 0x8, r1)
tkill(r1, 0x14)
19:05:34 executing program 2:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
write$FUSE_GETXATTR(r0, &(0x7f00000000c0)={0x18}, 0xffffff54)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000100))
ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3f7d)
fcntl$setsig(r2, 0xa, 0x12)
poll(&(0x7f0000000000)=[{r3}], 0x1, 0xfffffffffffffff8)
dup2(r2, r3)
fcntl$setown(r3, 0x8, r1)
tkill(r1, 0x14)
19:05:34 executing program 5:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setxattr$trusted_overlay_redirect(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_UNEXPECTED_FRAME(r0, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="08002abd7000fedbdf255300000008000300", @ANYRES32=0x0, @ANYBLOB="c48b89d259f7677fdd44d8bfffbc47336421fc8cc7b7c61365466f629b079fe9360d1d90"], 0x1c}, 0x1, 0x0, 0x0, 0x4008881}, 0x20040000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x100)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'bond0\x00', 0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
writev(r1, &(0x7f0000000280)=[{&(0x7f00000008c0)="110eaa1a9896d57019effc8c79961d0f73ccf3afca3754e2e7a31f536bcb7204bed59311e29c96e1c2b663d61e5b0c0a76ea50cbddaa69f578b8600f77cf1a538ac900673696245b6de4283c979a2eccd71f9583dacf650575d1398678895da32663735b4d0cabfe7e972e59c2b4b4c9c89d0b82ca2267ad5062303e8abcb79600010506702eb912e3957e507aec4e2180699a738f6753509a12282a1d7181887f6c2e03de1da0dfe3b4efbb10e9b59301b4ef8a1d", 0xb5}, {&(0x7f0000000980)="34c30d95766fefbb7bdc40a3242505587bbc8584c2bc2003185f5ce116eea020efa91e2aae1eae2b8e848ac13c3dcedbbbc82adb1e70be8eecedba37be82545f2abda4f0a0e0fd0edd6bd03bb8e9bb91c39a2c828511aef3e684ad4c21ec0c146b9570139e31cd", 0x67}], 0x2)
socket$nl_route(0x10, 0x3, 0x0)
mount$9p_rdma(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x200086, &(0x7f0000000600)=ANY=[@ANYBLOB="7472616e733d72646d612c706f894d4768bb72743d3078303030303030303030303030346532312c66736d616769633d30783030303030303030376666666666666617646566636f6e746578743d73797361646d5f752c6f626a5f72653d766c616e002c726f6f74636f6e742457c08f9cbe78981fb018cdcf264b6578743d756e636f6e66696e65645f752c636f6e746578743d8f5040656e66696e650000"])
r4 = socket(0x1, 0x803, 0x0)
connect(0xffffffffffffffff, &(0x7f00000006c0)=@rc={0x1f, @any, 0x81}, 0x80)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000440)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000400)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3c000000020601020000000000000000070000081c000780080006400000000908001740fffffffb08000a40ae0300000000000073797a3200000000114713464d23568d7f7308f439322a737502b97e3a4d36e2cd9ec14133aca64e77e1e789c4b21b43400ef6a0b000e7abe979ced23e3300bf13ce1c77c538a674dddc56d1b028168c379be8f6f1237b00000000770bf3905db589bca1f47aa38bbf0f95bbc90b9a1b4c6cefb14516ecc93303b29f5b06e6afd76d8b75bfe39e0b083dcaf4890c85f76e0a538c7038b73e01a6fd4414a97fb0cf19309482b1ae57000dabae00"], 0x3c}, 0x1, 0x0, 0x0, 0x10000080}, 0x8000)
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8936, &(0x7f0000000080)={@local, 0x44, r3})
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
r6 = socket(0x10, 0x8000000803, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newlink={0xb4, 0x10, 0x401, 0x0, 0x4, {0x0, 0x0, 0x0, 0x0, 0x242b8, 0x42a0a}, [@IFLA_LINKINFO={0x84, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x74, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_INGRESS_QOS={0x4}, @IFLA_VLAN_EGRESS_QOS={0x64, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0x2be5}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0x80000000}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x2, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x3000}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x2ed8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x1, 0xa}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xad4c, 0x4}}]}]}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0xb4}}, 0x0)
19:05:35 executing program 0:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
write$FUSE_GETXATTR(r0, &(0x7f00000000c0)={0x18}, 0xffffff54)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000100))
ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3f7d)
fcntl$setsig(r2, 0xa, 0x12)
poll(&(0x7f0000000000)=[{r3}], 0x1, 0xfffffffffffffff8)
dup2(r2, r3)
fcntl$setown(r3, 0x8, r1)
tkill(r1, 0x14)
19:05:35 executing program 3:
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x4007fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mount(&(0x7f0000000480)=ANY=[@ANYBLOB='[d::]:'], &(0x7f00000000c0)='./file0\x00', &(0x7f0000000040)='ceph\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000140)='./bus\x00', 0x141042, 0x0)
write$UHID_INPUT(r0, &(0x7f0000000580)={0x8, {'\x00\x00\x00\x00\x00\x00\x00?\x00'}}, 0x10000005c)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
19:05:35 executing program 4:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
write$FUSE_GETXATTR(r0, &(0x7f00000000c0)={0x18}, 0xffffff54)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000100))
ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3f7d)
fcntl$setsig(r2, 0xa, 0x12)
poll(&(0x7f0000000000)=[{r3}], 0x1, 0xfffffffffffffff8)
dup2(r2, r3)
fcntl$setown(r3, 0x8, r1)
tkill(r1, 0x14)
19:05:35 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000240)='\x103q}2\x9a\xce\xaf\x03\x86\xe7\xc0\x14\x8f\xf8\xd28\xf4\x1c\xc0\xf9\x1c\xa6\xab\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xeb\xcd\t\x00\x90k\xd6\x05\r\x84\x87\x1c\b\x8c`\xea\x13A\x90m\xb6&\xd0\x9daA\xc5\xb8_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\xc0\x8b\x19\x17\xb7Rvd\xcb:\b', 0x0)
ftruncate(r0, 0x80079a0)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0x0, 0x2012, r0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x12, r1, 0x0)
madvise(&(0x7f00002fb000/0x2000)=nil, 0x2000, 0xa)
openat$uhid(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
19:05:36 executing program 5:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setxattr$trusted_overlay_redirect(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_UNEXPECTED_FRAME(r0, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000340)={&(0x7f0000000480)=ANY=[@ANYBLOB, @ANYRES16=0x0, @ANYBLOB="08002abd7000fedbdf255300000008000300", @ANYRES32=0x0, @ANYBLOB="c48b89d259f7677fdd44d8bfffbc47336421fc8cc7b7c61365466f629b079fe9360d1d90"], 0x1c}, 0x1, 0x0, 0x0, 0x4008881}, 0x20040000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0, 0x100)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'bond0\x00', 0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @local}, 0x14)
writev(r1, &(0x7f0000000280)=[{&(0x7f00000008c0)="110eaa1a9896d57019effc8c79961d0f73ccf3afca3754e2e7a31f536bcb7204bed59311e29c96e1c2b663d61e5b0c0a76ea50cbddaa69f578b8600f77cf1a538ac900673696245b6de4283c979a2eccd71f9583dacf650575d1398678895da32663735b4d0cabfe7e972e59c2b4b4c9c89d0b82ca2267ad5062303e8abcb79600010506702eb912e3957e507aec4e2180699a738f6753509a12282a1d7181887f6c2e03de1da0dfe3b4efbb10e9b59301b4ef8a1d", 0xb5}, {&(0x7f0000000980)="34c30d95766fefbb7bdc40a3242505587bbc8584c2bc2003185f5ce116eea020efa91e2aae1eae2b8e848ac13c3dcedbbbc82adb1e70be8eecedba37be82545f2abda4f0a0e0fd0edd6bd03bb8e9bb91c39a2c828511aef3e684ad4c21ec0c146b9570139e31cd", 0x67}], 0x2)
socket$nl_route(0x10, 0x3, 0x0)
mount$9p_rdma(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x200086, &(0x7f0000000600)=ANY=[@ANYBLOB="7472616e733d72646d612c706f894d4768bb72743d3078303030303030303030303030346532312c66736d616769633d30783030303030303030376666666666666617646566636f6e746578743d73797361646d5f752c6f626a5f72653d766c616e002c726f6f74636f6e742457c08f9cbe78981fb018cdcf264b6578743d756e636f6e66696e65645f752c636f6e746578743d8f5040656e66696e650000"])
r4 = socket(0x1, 0x803, 0x0)
connect(0xffffffffffffffff, &(0x7f00000006c0)=@rc={0x1f, @any, 0x81}, 0x80)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000440)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000400)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3c000000020601020000000000000000070000081c000780080006400000000908001740fffffffb08000a40ae0300000000000073797a3200000000114713464d23568d7f7308f439322a737502b97e3a4d36e2cd9ec14133aca64e77e1e789c4b21b43400ef6a0b000e7abe979ced23e3300bf13ce1c77c538a674dddc56d1b028168c379be8f6f1237b00000000770bf3905db589bca1f47aa38bbf0f95bbc90b9a1b4c6cefb14516ecc93303b29f5b06e6afd76d8b75bfe39e0b083dcaf4890c85f76e0a538c7038b73e01a6fd4414a97fb0cf19309482b1ae57000dabae00"], 0x3c}, 0x1, 0x0, 0x0, 0x10000080}, 0x8000)
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8936, &(0x7f0000000080)={@local, 0x44, r3})
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
r6 = socket(0x10, 0x8000000803, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newlink={0xb4, 0x10, 0x401, 0x0, 0x4, {0x0, 0x0, 0x0, 0x0, 0x242b8, 0x42a0a}, [@IFLA_LINKINFO={0x84, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x74, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_INGRESS_QOS={0x4}, @IFLA_VLAN_EGRESS_QOS={0x64, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0x2be5}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0x80000000}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x2, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x3000}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x2ed8}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x1, 0xa}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xad4c, 0x4}}]}]}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0xb4}}, 0x0)
[ 357.176488][ T19] libceph: connect (1)[d::]:6789 error -101
[ 357.182994][ T19] libceph: mon0 (1)[d::]:6789 connect error
[ 357.263990][ T5430] ceph: No mds server is up or the cluster is laggy
19:05:36 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$sock_int(r0, 0x1, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(0xffffffffffffffff, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x402}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x5, &(0x7f0000000380))
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000023c0)=[@text32={0x20, 0x0, 0x2d}], 0x1, 0x0, 0x0, 0x59)
openat$cgroup_ro(r1, &(0x7f0000002340)='memory.stat\x00', 0x0, 0x0)
sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)={0x24, 0x0, 0xf, 0x0, 0x0, {0xf}, [@BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x2}]}, 0x24}}, 0x0)
sendmsg$BATADV_CMD_SET_VLAN(0xffffffffffffffff, 0x0, 0x810)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000180)="b9800000c03500400000665c0f5d0202f513559afff39aff35c5e17de7a54b49064900c42e660f3881b7c7000000b80100000066baf80cb878a84186ef66bafc0cb80b000000ef0fbcf726660f388077694f4f0f5c19db3af5f342d8868680000066b82001c6460d91854f4a4a66420fc73326650fae15fbffffffed", 0x7c}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r5, 0x4080aebf, &(0x7f0000000280)={{0x0, 0x0, 0x80}, "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", "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"})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
19:05:36 executing program 2:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x82, 0x0)
write$FUSE_GETXATTR(r0, &(0x7f00000000c0)={0x18}, 0xffffff54)
ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0)
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000029000)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000100))
ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3f7d)
fcntl$setsig(r2, 0xa, 0x12)
poll(&(0x7f0000000000)=[{r3}], 0x1, 0xfffffffffffffff8)
dup2(r2, r3)
fcntl$setown(r3, 0x8, r1)
tkill(r1, 0x14)
19:05:36 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r1 = openat$cgroup(r0, &(0x7f0000000000)='syz0\x00', 0x200002, 0x0)
openat$cgroup_ro(r1, &(0x7f0000000040)='cpuset.memory_pressure\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpuacct.stat\x00', 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700)
r4 = perf_event_open(&(0x7f0000000100)={0x3, 0x70, 0x8, 0x3, 0xc3, 0x0, 0x0, 0x401, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x2, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x100, 0x7fff, 0x9, 0x0, 0x3, 0x34}, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x1)
write$cgroup_int(0xffffffffffffffff, 0x0, 0xffffffffffffff37)
perf_event_open(&(0x7f00000015c0)={0x2, 0x70, 0xce}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={0xffffffffffffffff, r2, 0x7}, 0x10)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x88040}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0)
write$cgroup_subtree(r3, 0x0, 0x81000)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='cpuacct.usage_percpu\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r5, 0xc0185879, &(0x7f0000000080))
r6 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='cpuacct.usage_percpu_user\x00', 0x0, 0x0)
r7 = getpid()
perf_event_open(&(0x7f0000001880)={0x4, 0x70, 0x2, 0x18, 0x2, 0xfc, 0x0, 0x2, 0x82000, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x9, 0x1, 0x0, 0x10004, 0x7, 0x4, 0x5, 0x7, 0xffd}, r7, 0x0, 0xffffffffffffffff, 0x8)
perf_event_open(0x0, r7, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3b, 0x0, 0x6, 0x8, 0x0, 0x1ff, 0xa2004, 0x8, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x8, 0x0, 0x0, 0x830, 0x9, 0x0, 0x3, 0x2, 0x9, 0x7f}, r7, 0x2, r4, 0x9)
openat$cgroup_ro(r6, 0x0, 0x0, 0x0)
19:05:38 executing program 0:
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = getpid()
rt_tgsigqueueinfo(r0, r0, 0x10000000016, &(0x7f0000000040))
ptrace(0x10, r0)
ptrace$getregset(0x420f, r0, 0x0, 0x0)
19:05:38 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x100000000003, 0x42)
ioctl$USBDEVFS_CONTROL(r0, 0x5522, 0x0)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
19:05:38 executing program 3:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0xed, &(0x7f0000000340)="c4c691019919da078a0098d1e0a593b040f762910000000000000022addee07bee0d6333b5cacd893169b618322ff6602022511253508b5a4496728c2a46e1bc340e29b9ab9b7136283e350808ffdb2dbea7410b363de4fb357baa16dacdcfac32957dc8bb44e203c4b1bc83d8c0b29f75bcf2e3482945fef116371f8c8c0c4db583a208718e3cccd9dd3bf7a0b9daf36c29d2d3e73af34a91a4a8844ee497e66452419a30843900bb4ff9a7df5ee0fdbb6e3a288594f90399ef71d1fa7b32513f49d5135aea235f80005999dd604f5f3bcdc9ded4aad49dc3d25b919b831d2c8e6845a80deedf485234af0e73"}}], 0x1c)
wait4(0x0, 0x0, 0x80000000, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}, {&(0x7f0000000000)="0832f497d38350418e4bb321019511dc5df26e9a0b7ecb6974f527cc14538d1efb1ffe03284f6d33265be9c604b293f20e96beeb2aa4c457ac37a3a3f1ce8682500fcecd80", 0x45}], 0x2, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x17)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
r1 = gettid()
tkill(r1, 0x40)
19:05:38 executing program 5:
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x926)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0xb)
r0 = socket$inet6(0xa, 0x802, 0x88)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
sendmmsg(r0, &(0x7f0000002cc0), 0x1a3, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x328, 0x0, 0x17c, 0x17c, 0x0, 0x5, 0x260, 0x260, 0x260, 0x260, 0x260, 0x3, 0x0, {[{{@uncond, 0x0, 0x114, 0x17c, 0x52020000, {}, [@common=@unspec=@time={{0x38}}, @common=@unspec=@statistic={{0x38}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}, {{@ipv6={@mcast2, @empty, [], [], 'ip6tnl0\x00', 'veth1_to_batadv\x00'}, 0x0, 0xa4, 0xe4}, @common=@inet=@TCPOPTSTRIP={0x40}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x384)
[ 359.562242][ T5481] xt_CT: You must specify a L4 protocol and not use inversions on it
19:05:38 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$key(r0, &(0x7f0000000000)={0x400000000000000, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020300090a0000000001000000000000030006000000000002000000e0000009000000000000000002000100000000000000000200000000030005000016000002"], 0x50}}, 0x0)
19:05:38 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0)
fcntl$setsig(r1, 0xa, 0x11)
fcntl$setlease(r1, 0x400, 0x1)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x42203, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
19:05:39 executing program 0:
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = getpid()
rt_tgsigqueueinfo(r0, r0, 0x10000000016, &(0x7f0000000040))
ptrace(0x10, r0)
ptrace$getregset(0x420f, r0, 0x0, 0x0)
19:05:39 executing program 4:
ioctl$UI_SET_LEDBIT(0xffffffffffffffff, 0x40045569, 0x0)
syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000180)='./file1\x00', 0xaea1, 0x1, &(0x7f0000000300)=[{&(0x7f0000000140)="040005090000000066617400040409000200027400f801", 0x17}], 0x0, &(0x7f0000000080)=ANY=[])
chdir(&(0x7f0000000000)='./file1\x00')
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6900)
ftruncate(r0, 0x800)
lseek(r0, 0x200, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r0, r1, 0x0, 0x8400fffffffa)
getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(0xffffffffffffffff, 0x84, 0x8, 0xffffffffffffffff, &(0x7f00000000c0))
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x34}, 0x1, 0xffffff7f0e000000}, 0x0)
write$binfmt_misc(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1004)
19:05:39 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$key(r0, &(0x7f0000000000)={0x400000000000000, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020300090a0000000001000000000000030006000000000002000000e0000009000000000000000002000100000000000000000200000000030005000016000002"], 0x50}}, 0x0)
[ 360.599070][ T5492] loop4: detected capacity change from 0 to 87
[ 360.710895][ T24] audit: type=1804 audit(1641755139.765:25): pid=5492 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir199025238/syzkaller.vuIkF2/72/file1/bus" dev="loop4" ino=1048600 res=1 errno=0
19:05:40 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$key(r0, &(0x7f0000000000)={0x400000000000000, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020300090a0000000001000000000000030006000000000002000000e0000009000000000000000002000100000000000000000200000000030005000016000002"], 0x50}}, 0x0)
19:05:40 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x6e, 0x0, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000001840)={'vcan0\x00', 0x0})
bind$can_j1939(r1, &(0x7f0000000240)={0x1d, r3}, 0x18)
sendmsg$can_j1939(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x1d, 0x0, 0x0, {}, 0xfe}, 0x20000058, &(0x7f0000000080)={&(0x7f00000000c0)='4', 0x6fffff9}}, 0xee)
pipe(&(0x7f0000000480)={0xffffffffffffffff})
dup3(r4, r1, 0x0)
19:05:40 executing program 5:
syz_open_procfs(0x0, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$qnx6(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0, 0x100000, &(0x7f0000000640)=ANY=[@ANYBLOB="66326673002c66326673002c85592c66326673002c2d2829", @ANYRESDEC, @ANYRESDEC=0xee00, @ANYBLOB])
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x58}}, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000005c0), r2)
sendmsg$IEEE802154_LLSEC_ADD_DEV(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)={0x48, r3, 0x19f5f12f9c51c605, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x48}}, 0x0)
syz_mount_image$nfs4(0x0, &(0x7f00000007c0)='./mnt\x00', 0x100000001, 0x0, 0x0, 0x10048, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000100)='./mnt\x00', 0x0, 0xd, &(0x7f0000000200)=[{&(0x7f0000010000)="1020f5f201000e0209000000030000000c000000090000000100000001000000000000000040000000000000180000001f0000000200000002000000020000000100000018000000000200000002000000060000000a0000000e000000100000030000000100000002", 0x69, 0x400}, {&(0x7f00000106c0)="0bd03b7500000000001000000000000002000000000000000d0000001000000012000000000000000100000002000000ffffffffffffffffffffffffffffffffffffffff01000000000000000000000000000000030000000b00000005000000ffffffffffffffffffffffffffffffffffffffff010000000000000000000000000000008501000006000000010000000100000001000000040000004000000040000000fc0f", 0xa6, 0x200000}, {&(0x7f0000010780)="00000000000000000000000000000000000000000000000000000000d9fa28d501000300000000030000000010", 0x2d, 0x200fe0}, {&(0x7f0000000600)="000000000000000000000000000000000000000000000000000000060000000000010c80", 0x24, 0x2011e0}, {&(0x7f0000010800)="000000000000000000000001", 0xc, 0x201240}, {&(0x7f0000010820)="0000000000000000000000000000000000000000000000000002", 0x1a, 0x201280}, {&(0x7f0000010840)="0000000000000003", 0x8, 0x2012e0}, {&(0x7f0000010860)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\v', 0x16, 0x201320}, {&(0x7f0000010880)="00000005", 0x4, 0x201380}, {&(0x7f0000010920)="00000000000000000000000000000000000000000000000000000001000000000bd03b7500000000001000000000000002000000000000000d0000001000000012000000000000000100000002000000ffffffffffffffffffffffffffffffffffffffff01000000000000000000000000000000030000000b00000005000000ffffffffffffffffffffffffffffffffffffffff010000000000000000000000000000008501000006000000010000000100000001000000040000004000000040000000fc0f", 0xc6, 0x204fe0}, {&(0x7f0000010a00)="00000000000000000000000000000000000000000000000000000000d9fa28d5", 0x20, 0x205fe0}, {&(0x7f0000000480)="ed410000e8030000e803000002000000001000000000000002", 0x19, 0x1000000}, {&(0x7f0000010d20)="00000000000000000300000003", 0xd, 0x1000fe0}], 0x0, &(0x7f0000010da0))
ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0xad3)
19:05:40 executing program 0:
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = getpid()
rt_tgsigqueueinfo(r0, r0, 0x10000000016, &(0x7f0000000040))
ptrace(0x10, r0)
ptrace$getregset(0x420f, r0, 0x0, 0x0)
19:05:40 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0)
fcntl$setsig(r1, 0xa, 0x11)
fcntl$setlease(r1, 0x400, 0x1)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x42203, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
19:05:40 executing program 4:
ioctl$UI_SET_LEDBIT(0xffffffffffffffff, 0x40045569, 0x0)
syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000180)='./file1\x00', 0xaea1, 0x1, &(0x7f0000000300)=[{&(0x7f0000000140)="040005090000000066617400040409000200027400f801", 0x17}], 0x0, &(0x7f0000000080)=ANY=[])
chdir(&(0x7f0000000000)='./file1\x00')
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6900)
ftruncate(r0, 0x800)
lseek(r0, 0x200, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r0, r1, 0x0, 0x8400fffffffa)
getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(0xffffffffffffffff, 0x84, 0x8, 0xffffffffffffffff, &(0x7f00000000c0))
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x34}, 0x1, 0xffffff7f0e000000}, 0x0)
write$binfmt_misc(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1004)
[ 361.538682][ T5502] loop5: detected capacity change from 0 to 65551
19:05:40 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$key(r0, &(0x7f0000000000)={0x400000000000000, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="020300090a0000000001000000000000030006000000000002000000e0000009000000000000000002000100000000000000000200000000030005000016000002"], 0x50}}, 0x0)
[ 361.591613][ T5502] F2FS-fs (loop5): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 361.600083][ T5502] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[ 361.720148][ T5502] F2FS-fs (loop5): invalid crc_offset: 0
[ 361.873037][ T5502] F2FS-fs (loop5): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 0)
[ 361.940525][ T5517] loop4: detected capacity change from 0 to 87
[ 361.948535][ T5502] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[ 361.958314][ T5502] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[ 362.175685][ T24] audit: type=1804 audit(1641755141.235:26): pid=5520 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir199025238/syzkaller.vuIkF2/73/bus" dev="sda1" ino=1199 res=1 errno=0
[ 362.237246][ T5502] F2FS-fs (loop5): Try to recover 2th superblock, ret: 0
[ 362.246287][ T5502] F2FS-fs (loop5): Mounted with checkpoint version = 753bd00b
19:05:41 executing program 3:
r0 = getpgid(0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff})
write(0xffffffffffffffff, &(0x7f0000000000)="1f0000000104fffffd3b000007110600f30501", 0x13)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
write(r2, &(0x7f0000000080)="1f0000000104ff00fd4354c007110000f305010008000100010423dcffdf00", 0x1f)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff)
write$binfmt_misc(r2, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r1, 0x0, r3, 0x0, 0x4ffe0, 0x0)
19:05:41 executing program 0:
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = getpid()
rt_tgsigqueueinfo(r0, r0, 0x10000000016, &(0x7f0000000040))
ptrace(0x10, r0)
ptrace$getregset(0x420f, r0, 0x0, 0x0)
19:05:41 executing program 5:
syz_open_procfs(0x0, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$qnx6(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0, 0x100000, &(0x7f0000000640)=ANY=[@ANYBLOB="66326673002c66326673002c85592c66326673002c2d2829", @ANYRESDEC, @ANYRESDEC=0xee00, @ANYBLOB])
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x58}}, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000005c0), r2)
sendmsg$IEEE802154_LLSEC_ADD_DEV(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)={0x48, r3, 0x19f5f12f9c51c605, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x48}}, 0x0)
syz_mount_image$nfs4(0x0, &(0x7f00000007c0)='./mnt\x00', 0x100000001, 0x0, 0x0, 0x10048, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000100)='./mnt\x00', 0x0, 0xd, &(0x7f0000000200)=[{&(0x7f0000010000)="1020f5f201000e0209000000030000000c000000090000000100000001000000000000000040000000000000180000001f0000000200000002000000020000000100000018000000000200000002000000060000000a0000000e000000100000030000000100000002", 0x69, 0x400}, {&(0x7f00000106c0)="0bd03b7500000000001000000000000002000000000000000d0000001000000012000000000000000100000002000000ffffffffffffffffffffffffffffffffffffffff01000000000000000000000000000000030000000b00000005000000ffffffffffffffffffffffffffffffffffffffff010000000000000000000000000000008501000006000000010000000100000001000000040000004000000040000000fc0f", 0xa6, 0x200000}, {&(0x7f0000010780)="00000000000000000000000000000000000000000000000000000000d9fa28d501000300000000030000000010", 0x2d, 0x200fe0}, {&(0x7f0000000600)="000000000000000000000000000000000000000000000000000000060000000000010c80", 0x24, 0x2011e0}, {&(0x7f0000010800)="000000000000000000000001", 0xc, 0x201240}, {&(0x7f0000010820)="0000000000000000000000000000000000000000000000000002", 0x1a, 0x201280}, {&(0x7f0000010840)="0000000000000003", 0x8, 0x2012e0}, {&(0x7f0000010860)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\v', 0x16, 0x201320}, {&(0x7f0000010880)="00000005", 0x4, 0x201380}, {&(0x7f0000010920)="00000000000000000000000000000000000000000000000000000001000000000bd03b7500000000001000000000000002000000000000000d0000001000000012000000000000000100000002000000ffffffffffffffffffffffffffffffffffffffff01000000000000000000000000000000030000000b00000005000000ffffffffffffffffffffffffffffffffffffffff010000000000000000000000000000008501000006000000010000000100000001000000040000004000000040000000fc0f", 0xc6, 0x204fe0}, {&(0x7f0000010a00)="00000000000000000000000000000000000000000000000000000000d9fa28d5", 0x20, 0x205fe0}, {&(0x7f0000000480)="ed410000e8030000e803000002000000001000000000000002", 0x19, 0x1000000}, {&(0x7f0000010d20)="00000000000000000300000003", 0xd, 0x1000fe0}], 0x0, &(0x7f0000010da0))
ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0xad3)
19:05:41 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0)
fcntl$setsig(r1, 0xa, 0x11)
fcntl$setlease(r1, 0x400, 0x1)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x42203, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
[ 362.697820][ C0] vcan0: j1939_tp_rxtimer: 0xffff88809909ce00: rx timeout, send abort
19:05:41 executing program 4:
ioctl$UI_SET_LEDBIT(0xffffffffffffffff, 0x40045569, 0x0)
syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000180)='./file1\x00', 0xaea1, 0x1, &(0x7f0000000300)=[{&(0x7f0000000140)="040005090000000066617400040409000200027400f801", 0x17}], 0x0, &(0x7f0000000080)=ANY=[])
chdir(&(0x7f0000000000)='./file1\x00')
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6900)
ftruncate(r0, 0x800)
lseek(r0, 0x200, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r0, r1, 0x0, 0x8400fffffffa)
getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(0xffffffffffffffff, 0x84, 0x8, 0xffffffffffffffff, &(0x7f00000000c0))
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x34}, 0x1, 0xffffff7f0e000000}, 0x0)
write$binfmt_misc(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1004)
[ 362.748815][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88809909ce00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 362.914490][ T5531] netlink: 3 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 362.991358][ T5531] netlink: 11 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 363.194863][ T5535] loop4: detected capacity change from 0 to 87
[ 363.340522][ T24] audit: type=1804 audit(1641755142.395:27): pid=5535 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir199025238/syzkaller.vuIkF2/74/file1/bus" dev="sda1" ino=1182 res=1 errno=0
19:05:42 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x6e, 0x0, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000001840)={'vcan0\x00', 0x0})
bind$can_j1939(r1, &(0x7f0000000240)={0x1d, r3}, 0x18)
sendmsg$can_j1939(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x1d, 0x0, 0x0, {}, 0xfe}, 0x20000058, &(0x7f0000000080)={&(0x7f00000000c0)='4', 0x6fffff9}}, 0xee)
pipe(&(0x7f0000000480)={0xffffffffffffffff})
dup3(r4, r1, 0x0)
19:05:42 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x67)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001b00), 0x40)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0), &(0x7f0000000180), 0x400, r2}, 0x38)
19:05:42 executing program 0:
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
mknod(0x0, 0x40, 0x7)
open(0x0, 0x0, 0x42)
r0 = open(&(0x7f00000001c0)='./bus\x00', 0x3498c1, 0x0)
sendfile(r0, 0xffffffffffffffff, &(0x7f0000000000), 0x101)
readv(0xffffffffffffffff, &(0x7f0000000180), 0x0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
openat(r0, &(0x7f0000000040)='./bus\x00', 0x440001, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x400, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x3200c}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x5b)
mprotect(&(0x7f0000005000/0x3000)=nil, 0x3000, 0x4)
ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000080)={0x750, {}, {0x2, 0x1, @local}, {0x2, 0x4e22, @empty}, 0x0, 0x0, 0x2, 0x46a, 0x3a4, 0x0, 0x0, 0x0, 0x3f})
sendmmsg(0xffffffffffffffff, &(0x7f0000001400)=[{{0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f00000014c0)=ANY=[], 0x4d8}}, {{&(0x7f0000000480)=@ieee802154={0x24, @short={0x2, 0x1ffff}}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000500)="2015bca4d60f0ffd0fafa7eb92362b7f07f9452f3d5a995b702d309bc64d11c8f4ab7e8a63160eeb06e7dc6cef59bbe44d605d7e1eb6d5eb6b09a0838639bbc1b8f9f19d1d3e8c5e5c6296", 0x4b}, {0x0}, {&(0x7f0000000180)="f3f6e5a24c3acc22fc5f9c5bd8ebdfc0de0f52daa4", 0x15}], 0x3, &(0x7f0000000740)=ANY=[], 0x420}}], 0x2, 0x0)
r2 = add_key$keyring(&(0x7f0000000240), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$set_timeout(0xf, r2, 0xfffffffffff)
write$P9_RSTAT(0xffffffffffffffff, 0x0, 0xbf)
unshare(0x60000000)
19:05:43 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x102440, 0x0)
fcntl$setsig(r1, 0xa, 0x11)
fcntl$setlease(r1, 0x400, 0x1)
open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
open(&(0x7f0000000080)='./file0\x00', 0x42203, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
[ 363.906464][ T5539] loop5: detected capacity change from 0 to 65551
19:05:43 executing program 4:
ioctl$UI_SET_LEDBIT(0xffffffffffffffff, 0x40045569, 0x0)
syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000180)='./file1\x00', 0xaea1, 0x1, &(0x7f0000000300)=[{&(0x7f0000000140)="040005090000000066617400040409000200027400f801", 0x17}], 0x0, &(0x7f0000000080)=ANY=[])
chdir(&(0x7f0000000000)='./file1\x00')
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6900)
ftruncate(r0, 0x800)
lseek(r0, 0x200, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r0, r1, 0x0, 0x8400fffffffa)
getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(0xffffffffffffffff, 0x84, 0x8, 0xffffffffffffffff, &(0x7f00000000c0))
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x34}, 0x1, 0xffffff7f0e000000}, 0x0)
write$binfmt_misc(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1004)
[ 364.007824][ T5539] F2FS-fs (loop5): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 364.017836][ T5539] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[ 364.076758][ T5539] F2FS-fs (loop5): invalid crc_offset: 0
[ 364.133988][ T5539] F2FS-fs (loop5): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 0)
[ 364.183339][ T5539] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[ 364.193273][ T5539] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
19:05:43 executing program 3:
syz_usb_connect(0x0, 0x24, &(0x7f00000001c0)=ANY=[@ANYBLOB="1201000066fe2210c2154400596e0102030109021200010400000509047c"], 0x0)
[ 364.590074][ T5539] F2FS-fs (loop5): Try to recover 2th superblock, ret: 0
[ 364.597899][ T5539] F2FS-fs (loop5): Mounted with checkpoint version = 753bd00b
[ 364.703144][ T5554] loop4: detected capacity change from 0 to 87
19:05:44 executing program 5:
syz_open_procfs(0x0, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$qnx6(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0, 0x100000, &(0x7f0000000640)=ANY=[@ANYBLOB="66326673002c66326673002c85592c66326673002c2d2829", @ANYRESDEC, @ANYRESDEC=0xee00, @ANYBLOB])
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x58}}, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000005c0), r2)
sendmsg$IEEE802154_LLSEC_ADD_DEV(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)={0x48, r3, 0x19f5f12f9c51c605, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x48}}, 0x0)
syz_mount_image$nfs4(0x0, &(0x7f00000007c0)='./mnt\x00', 0x100000001, 0x0, 0x0, 0x10048, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000100)='./mnt\x00', 0x0, 0xd, &(0x7f0000000200)=[{&(0x7f0000010000)="1020f5f201000e0209000000030000000c000000090000000100000001000000000000000040000000000000180000001f0000000200000002000000020000000100000018000000000200000002000000060000000a0000000e000000100000030000000100000002", 0x69, 0x400}, {&(0x7f00000106c0)="0bd03b7500000000001000000000000002000000000000000d0000001000000012000000000000000100000002000000ffffffffffffffffffffffffffffffffffffffff01000000000000000000000000000000030000000b00000005000000ffffffffffffffffffffffffffffffffffffffff010000000000000000000000000000008501000006000000010000000100000001000000040000004000000040000000fc0f", 0xa6, 0x200000}, {&(0x7f0000010780)="00000000000000000000000000000000000000000000000000000000d9fa28d501000300000000030000000010", 0x2d, 0x200fe0}, {&(0x7f0000000600)="000000000000000000000000000000000000000000000000000000060000000000010c80", 0x24, 0x2011e0}, {&(0x7f0000010800)="000000000000000000000001", 0xc, 0x201240}, {&(0x7f0000010820)="0000000000000000000000000000000000000000000000000002", 0x1a, 0x201280}, {&(0x7f0000010840)="0000000000000003", 0x8, 0x2012e0}, {&(0x7f0000010860)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\v', 0x16, 0x201320}, {&(0x7f0000010880)="00000005", 0x4, 0x201380}, {&(0x7f0000010920)="00000000000000000000000000000000000000000000000000000001000000000bd03b7500000000001000000000000002000000000000000d0000001000000012000000000000000100000002000000ffffffffffffffffffffffffffffffffffffffff01000000000000000000000000000000030000000b00000005000000ffffffffffffffffffffffffffffffffffffffff010000000000000000000000000000008501000006000000010000000100000001000000040000004000000040000000fc0f", 0xc6, 0x204fe0}, {&(0x7f0000010a00)="00000000000000000000000000000000000000000000000000000000d9fa28d5", 0x20, 0x205fe0}, {&(0x7f0000000480)="ed410000e8030000e803000002000000001000000000000002", 0x19, 0x1000000}, {&(0x7f0000010d20)="00000000000000000300000003", 0xd, 0x1000fe0}], 0x0, &(0x7f0000010da0))
ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0xad3)
[ 364.990502][ T24] audit: type=1804 audit(1641755144.005:28): pid=5558 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir199025238/syzkaller.vuIkF2/75/file1/bus" dev="sda1" ino=1201 res=1 errno=0
19:05:44 executing program 0:
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r2 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
io_setup(0x2, &(0x7f00000000c0)=0x0)
r5 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0})
bind$can_raw(r3, &(0x7f0000000080)={0x1d, r6}, 0x10)
io_submit(r4, 0x1, &(0x7f0000001440)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, r3, 0x0, 0x10}])
[ 365.202788][ T118] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[ 365.277697][ C1] vcan0: j1939_tp_rxtimer: 0xffff88809907c800: rx timeout, send abort
19:05:44 executing program 1:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
chown(0x0, 0x0, 0x0)
write$P9_RMKDIR(0xffffffffffffffff, 0x0, 0x0)
mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000080)=""/164)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.stat\x00', 0x275a, 0x0)
r2 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x2000402)
fallocate(r1, 0x0, 0x0, 0x110001)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x15, r2})
renameat2(r2, &(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00', 0x6)
[ 365.315046][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88809907c800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 365.453599][ T118] usb 4-1: Using ep0 maxpacket: 16
[ 365.583320][ T118] usb 4-1: config 4 has an invalid interface number: 124 but max is 0
[ 365.591841][ T118] usb 4-1: config 4 has no interface number 0
[ 365.637486][ T24] audit: type=1800 audit(1641755144.695:29): pid=5562 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1185 res=0 errno=0
[ 365.659167][ T24] audit: type=1800 audit(1641755144.695:30): pid=5562 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1185 res=0 errno=0
[ 365.773513][ T118] usb 4-1: New USB device found, idVendor=15c2, idProduct=0044, bcdDevice=6e.59
[ 365.783332][ T118] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 365.791493][ T118] usb 4-1: Product: syz
[ 365.795928][ T118] usb 4-1: Manufacturer: syz
[ 365.801092][ T118] usb 4-1: SerialNumber: syz
19:05:45 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x6e, 0x0, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000001840)={'vcan0\x00', 0x0})
bind$can_j1939(r1, &(0x7f0000000240)={0x1d, r3}, 0x18)
sendmsg$can_j1939(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x1d, 0x0, 0x0, {}, 0xfe}, 0x20000058, &(0x7f0000000080)={&(0x7f00000000c0)='4', 0x6fffff9}}, 0xee)
pipe(&(0x7f0000000480)={0xffffffffffffffff})
dup3(r4, r1, 0x0)
19:05:45 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000200)={0x1, 0x0, [{0x0, 0x4, 0x0, 0x0, @irqchip={0x7}}]})
[ 366.120539][ T118] imon 4-1:4.124: unable to register, err -19
19:05:45 executing program 1:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
chown(0x0, 0x0, 0x0)
write$P9_RMKDIR(0xffffffffffffffff, 0x0, 0x0)
mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000080)=""/164)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.stat\x00', 0x275a, 0x0)
r2 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x2000402)
fallocate(r1, 0x0, 0x0, 0x110001)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x15, r2})
renameat2(r2, &(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00', 0x6)
[ 366.302328][ T19] usb 4-1: USB disconnect, device number 3
19:05:45 executing program 0:
r0 = socket$kcm(0x2, 0x200000000000001, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x200408c4)
sendmsg$kcm(r0, &(0x7f0000001400)={0x0, 0x80040200, &(0x7f00000025c0)=[{&(0x7f00000000c0)="b8", 0x7ffff000}], 0x4, 0x0, 0x0, 0x40020a00}, 0x6d70)
[ 366.424947][ T5569] loop5: detected capacity change from 0 to 65551
19:05:45 executing program 4:
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xff7fffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$loop(&(0x7f0000000180), 0x0, 0x107382)
r1 = memfd_create(&(0x7f0000000240)='.^\xc5', 0x0)
r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000380), 0xca00, 0x0)
ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r1)
pwritev(r1, &(0x7f0000000540)=[{&(0x7f0000000000)='B', 0x1}], 0x1, 0x81805, 0x0)
ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1)
pwritev(r1, &(0x7f0000000880)=[{&(0x7f0000000280)="3d72ab14714f2118d3840cb8bba7fc540423c6e85c02de609c75d89b18498a047f4328736ab3f3338e100914dcf643022eb135359cf621727bc999c3f5d6223031d985fd5bfe1942a96ae60b17ea719f5ab095b89e1a121daed912b06cc909145dc6535cf0b1d728c9b50600b2a231c0c196eea40b21c1ee5a004137caa1e0a30f4ce9059d30f44e06140b055dc3ca2f16d16f56a2f7096fd960362767833eb204f172e07c158dd6d881df890d1945c8267cc68f600000008085bb9fd3b8687f1cd00cd9", 0xc4}, {&(0x7f00000001c0)="e9b5fff881680cd204cf7fa3a3a6378a0029eab246420c83856098526df6a94b0ae8b063229ec462b70e37b586c18ccfd22baff8f3f17a566a1329912a46ef716f2c187f0b7e29154e15a6c6b1c27e2e8cba30ab419d7efefcabdcf5ff62a6e659bf", 0x62}, {&(0x7f0000000400)="58f0b177e88af8761fe84c1b7dd0bc5199c54bae3e92e47ac1caac53f40c2f5e50ed9d3db553e448d7b3de7aaa03a88f4471e7e4d0d498ff4af272d62ea4508a90b7009c512b5089f27c37173b0f1f23fb92bc50a0f6799b223b7bd80677a05d3dbf8867134e98c563c2a97a5fe2e0871fcb477cb5142dc5434a187163080fef3103ff9a", 0x84}, {&(0x7f0000000080)="f6b069119a2621d6c2ba9e6071f501f3c7b1700d18acff38b6b7658baf2c326c6d18a5e1fc0541499695", 0x2a}, {&(0x7f0000000600)="8a0cbc45be1690a248c23f52e94d7a28d0584bc4b9ba8b45514cd31073b40283630ac98355fc86675c9abaf27d4e85b4cec64df4f8bffea4ade7890e7d7f5b4d13f5784a0e17d91edbac0b4f5035a15eba21fae65af7a5c105b1bf1ae3bb55ee101096dc0ed2dd77cefb7bac49951dce9e1c24cc20098746a41d81029561e3defeb194f9ed2f0c149495aff84911f2cc15e2f40082a23e5fb00ae3c7cbc55800302044f2dd7d6df42899f3d342ed54d6ba13201fd2dba7974e8a71", 0xbb}, {&(0x7f0000000780)="f4e44207da20413d2a7ea628d5b7c7ab3deb962df4f7a2e024a770c36673e4fd9058111b8e8b3a31924c220bda87ea4833114046510fab8879e1444324103e29925d4c838ffc71dc0f7adf6ebe784ac2a1404e65f92a0a48f3afb300bf8ae8b581b0064f3441395d44f4c4ff3eff70a6278224b28314e16bb05fe1404f6f4b90ae64757f084c088fb56451dbb6f541b40c0c0a41c91d3c56af06a58f7b46adc92ce7f91211ab5d42829e37259a0c35608b113faad6e28a4d64c2f290c627ff3da24d2cee0ac10ad65d6c8f7bd15f7c40658b6e43227bddbd04a514df8721cf78b54256a59af49dd4ce8e", 0xea}], 0x6, 0x7f, 0x5)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000ffffffff00000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="0000000000020000000000000000000000fd00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001d00"/112], 0xb8}}, 0x0)
sendfile(r0, r0, 0x0, 0x24002da8)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
r4 = syz_open_dev$usbfs(&(0x7f00000004c0), 0x200000077, 0x1)
ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)
ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000380))
ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r4)
r5 = creat(0x0, 0x0)
dup2(r5, 0xffffffffffffffff)
[ 366.493953][ T5569] F2FS-fs (loop5): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 366.502834][ T5569] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[ 366.567874][ T5569] F2FS-fs (loop5): invalid crc_offset: 0
[ 366.737887][ T5569] F2FS-fs (loop5): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 0)
[ 366.831098][ T5569] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[ 366.841341][ T5569] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
19:05:46 executing program 4:
syz_emit_ethernet(0x3a, &(0x7f00000004c0)={@local, @link_local, @val={@void}, {@ipv4={0x800, @tcp={{0x5, 0x6, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr, @multicast2}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)
19:05:46 executing program 1:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
chown(0x0, 0x0, 0x0)
write$P9_RMKDIR(0xffffffffffffffff, 0x0, 0x0)
mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000080)=""/164)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.stat\x00', 0x275a, 0x0)
r2 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x2000402)
fallocate(r1, 0x0, 0x0, 0x110001)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x15, r2})
renameat2(r2, &(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00', 0x6)
19:05:46 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000005000), 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000240)={0x53, 0x0, 0x6, 0x0, @buffer={0x2, 0x0, 0x0}, &(0x7f0000000100)="1a9801008b44", 0x0, 0x0, 0x0, 0x0, 0x0})
19:05:46 executing program 0:
r0 = socket$kcm(0x2, 0x200000000000001, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x200408c4)
sendmsg$kcm(r0, &(0x7f0000001400)={0x0, 0x80040200, &(0x7f00000025c0)=[{&(0x7f00000000c0)="b8", 0x7ffff000}], 0x4, 0x0, 0x0, 0x40020a00}, 0x6d70)
[ 367.274495][ T5569] F2FS-fs (loop5): Try to recover 2th superblock, ret: 0
[ 367.282140][ T5569] F2FS-fs (loop5): Mounted with checkpoint version = 753bd00b
19:05:46 executing program 5:
syz_open_procfs(0x0, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$qnx6(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0, 0x100000, &(0x7f0000000640)=ANY=[@ANYBLOB="66326673002c66326673002c85592c66326673002c2d2829", @ANYRESDEC, @ANYRESDEC=0xee00, @ANYBLOB])
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x58}}, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000005c0), r2)
sendmsg$IEEE802154_LLSEC_ADD_DEV(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)={0x48, r3, 0x19f5f12f9c51c605, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x48}}, 0x0)
syz_mount_image$nfs4(0x0, &(0x7f00000007c0)='./mnt\x00', 0x100000001, 0x0, 0x0, 0x10048, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000100)='./mnt\x00', 0x0, 0xd, &(0x7f0000000200)=[{&(0x7f0000010000)="1020f5f201000e0209000000030000000c000000090000000100000001000000000000000040000000000000180000001f0000000200000002000000020000000100000018000000000200000002000000060000000a0000000e000000100000030000000100000002", 0x69, 0x400}, {&(0x7f00000106c0)="0bd03b7500000000001000000000000002000000000000000d0000001000000012000000000000000100000002000000ffffffffffffffffffffffffffffffffffffffff01000000000000000000000000000000030000000b00000005000000ffffffffffffffffffffffffffffffffffffffff010000000000000000000000000000008501000006000000010000000100000001000000040000004000000040000000fc0f", 0xa6, 0x200000}, {&(0x7f0000010780)="00000000000000000000000000000000000000000000000000000000d9fa28d501000300000000030000000010", 0x2d, 0x200fe0}, {&(0x7f0000000600)="000000000000000000000000000000000000000000000000000000060000000000010c80", 0x24, 0x2011e0}, {&(0x7f0000010800)="000000000000000000000001", 0xc, 0x201240}, {&(0x7f0000010820)="0000000000000000000000000000000000000000000000000002", 0x1a, 0x201280}, {&(0x7f0000010840)="0000000000000003", 0x8, 0x2012e0}, {&(0x7f0000010860)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\v', 0x16, 0x201320}, {&(0x7f0000010880)="00000005", 0x4, 0x201380}, {&(0x7f0000010920)="00000000000000000000000000000000000000000000000000000001000000000bd03b7500000000001000000000000002000000000000000d0000001000000012000000000000000100000002000000ffffffffffffffffffffffffffffffffffffffff01000000000000000000000000000000030000000b00000005000000ffffffffffffffffffffffffffffffffffffffff010000000000000000000000000000008501000006000000010000000100000001000000040000004000000040000000fc0f", 0xc6, 0x204fe0}, {&(0x7f0000010a00)="00000000000000000000000000000000000000000000000000000000d9fa28d5", 0x20, 0x205fe0}, {&(0x7f0000000480)="ed410000e8030000e803000002000000001000000000000002", 0x19, 0x1000000}, {&(0x7f0000010d20)="00000000000000000300000003", 0xd, 0x1000fe0}], 0x0, &(0x7f0000010da0))
ioctl$PERF_EVENT_IOC_REFRESH(r1, 0x2402, 0xad3)
19:05:46 executing program 3:
openat(0xffffffffffffffff, &(0x7f0000000400)='./file0\x00', 0x2002, 0x40)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000012c0)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
open(0x0, 0x14103e, 0x0)
[ 367.684792][ C1] vcan0: j1939_tp_rxtimer: 0xffff888099074c00: rx timeout, send abort
[ 367.695118][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888099074c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
19:05:46 executing program 4:
r0 = syz_open_dev$loop(&(0x7f0000009c40), 0x0, 0x0)
ioctl$BLKIOOPT(r0, 0x1279, &(0x7f0000002880))
19:05:47 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x6e, 0x0, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000001840)={'vcan0\x00', 0x0})
bind$can_j1939(r1, &(0x7f0000000240)={0x1d, r3}, 0x18)
sendmsg$can_j1939(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x1d, 0x0, 0x0, {}, 0xfe}, 0x20000058, &(0x7f0000000080)={&(0x7f00000000c0)='4', 0x6fffff9}}, 0xee)
pipe(&(0x7f0000000480)={0xffffffffffffffff})
dup3(r4, r1, 0x0)
19:05:47 executing program 0:
r0 = socket$kcm(0x2, 0x200000000000001, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x200408c4)
sendmsg$kcm(r0, &(0x7f0000001400)={0x0, 0x80040200, &(0x7f00000025c0)=[{&(0x7f00000000c0)="b8", 0x7ffff000}], 0x4, 0x0, 0x0, 0x40020a00}, 0x6d70)
19:05:47 executing program 1:
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
chown(0x0, 0x0, 0x0)
write$P9_RMKDIR(0xffffffffffffffff, 0x0, 0x0)
mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000080)=""/164)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.stat\x00', 0x275a, 0x0)
r2 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x2000402)
fallocate(r1, 0x0, 0x0, 0x110001)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x15, r2})
renameat2(r2, &(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00', 0x6)
19:05:47 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f0000000540)=[{&(0x7f00000000c0)="39000000130009006900000000000000ab008000200000004600010707000014190001001000000800005068230000000000ef38bf461e59d7", 0x39}], 0x1)
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="390000001000090468fe07002b0068fe0100ee002000000045000c070307001404001800120004001404000001000000000000000000000020", 0x39}], 0x1)
19:05:47 executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x26e1, 0x0)
close(r0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x32600)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xda00)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x283, &(0x7f0000000780)='bdev!)-%+wlan\x00p\x00\x00\x01\x00Mx_dxl_accesszQ\tU\x97\x12=J\xd5\x8b;YE\x8c;\xf7\xcc\xa7\x8b6\n\xbe\x01\x01\xae\xb6\f4\x87\xd9j\xd8\x0e\xc2\x10\xb1\x7f\x95\x01fE\xaea\x10\x8f\xac\xa9+V\x863Hhk{2\x00\x14I\xf7\xd6\xcd)\x05\x87q6\xed~\xd0\xb2\xf8\x8d\xaa\b\xe4\"\x1c\xbf\x8f_[\x17@\xe5\xec\x10\a\xb95w\x8by}/\x8cw\xe6\x99\xfe \x84]8\x940U\xb3B\xd9\x06\xf2\n\xf7\x1f\xd8v\x7fD\xf2\x87\xf7}V\x89}\xf0\xb7\x8d\x85\xf6\x9b\xcc\xd3Lh.\r\xd3J\"\x1f\xdeW;F.\xdf$\xee\x18\x0e\xad\xa1\xfcN\x88`\xbbj\x9b\xf0\xccr\xc1\xa8\x85E\x85p+\xd1\xbe\x10\rgx\xb8\x93k\x8c\x1dTi\xafq\xde\x06/ \x93O.\xe5<0\xfa\b\x82\xe4c&\x99\xd6psf\xa8\xacjh9\x8bk\x8f\n$\xf2\x06#\xc8\xd2\x00\x00w\x03,\xbb\xed\xf1o\xd8\x19\xd2\r\xbb\xd3\x18E\x0e&\x83\xdfWL?P$\xb4a\f\x154\xdd\xacx\x91<\x97\x13\xab\xe2\xdd\n\x13\x19\xb9U\n\xb5\xb6\xffBQ\x80\xe6\xe6\xaf\xc8\x15_>\xe6\xfc\xb9R\x06\xcd/\x87\xeaP\x9b\xdf5\xcc\xa4RDx\xad\xc0\x8f|\xe3u\xbe\x1e\xd5\xa6\xcc\xb8\x86\x8b0\'\xcc\x01\x9bQ/\xf9\xa7vfa\xdf!\x1axt\xd1\r\xd9&MC\xcc,2\xce\xd2kCJ\x10\x88\xc5#\x92\xa3\xf52)2\xd3\xa02q\xdb\xe4\xe3\x97\x9d\xbc\xc9\xf8\x00\x00\x00\x00\x00\xcbxak\x9f-\xee\x8d\xd4\xc42\xa7\xe1#\\B\xb9\xdf\xd8\xda\xa8k\x8eV\xeau\r\x017\xb66\xb1\x00\x1a!\xb5\xc9\xd5\x06\xf2\xd5\xf8\xc3\xea\xcdZ+\xcd\xa2\xb7@\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00U\xdd6\x8d\xd0\x01\x05\x19\xc9(\xb5\xe6^\xb0\xf1\xdd4\x16\xcc\x9f\x01j\xf7Q\xdf\x985\xc3F\x04\xfb\x10\xd8\x0e\x1f!-\x04d\xfb\x13q\x7f\xfb\xb9\x81\xe8\x7f\xe9\x01\xd3\xd0\x88a\xd09-\xf5\xf6\xca\x9c\"\xec\xc4\xd4\x950*\x91PDL\xd5@\xcda_\xdb\xebff\xafd\xb7z\x1d\x99\xbd\xc6P\xfa\x99\x04$\xb2\xcf0#\x84\x91\f\xf4\x17m\a-Gr)\x7f\x92-M\x19IQ%&\xed\xe90\xc0k\xd3\"\xee\xe7\xa4\xd84d$\t\xa9\n\x90\x1dE\xb2\xb2\x00\x1c\x97A\xde\xf8\xe2W%\xe9\xca\xd5\xf58)f\x85\x13|u\xa1%\xbd\xcf\xfe \x99\xb0C\xf5\xf2\xbf\x96el\x00'}, 0xfecf)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x4030582a, &(0x7f0000000040)=0x10030000000000)
[ 368.776553][ T5615] loop5: detected capacity change from 0 to 65551
19:05:47 executing program 0:
r0 = socket$kcm(0x2, 0x200000000000001, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x200408c4)
sendmsg$kcm(r0, &(0x7f0000001400)={0x0, 0x80040200, &(0x7f00000025c0)=[{&(0x7f00000000c0)="b8", 0x7ffff000}], 0x4, 0x0, 0x0, 0x40020a00}, 0x6d70)
[ 368.907711][ T5615] F2FS-fs (loop5): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[ 368.916324][ T5615] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[ 369.006643][ T5615] F2FS-fs (loop5): invalid crc_offset: 0
19:05:48 executing program 1:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000200)={'xfrm0\x00', &(0x7f00000001c0)=@ethtool_channels={0x3c}})
[ 369.207353][ T5614] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[ 369.216094][ T5614] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 369.249746][ T5614] A link change request failed with some changes committed already. Interface veth1_to_bond may have been left with an inconsistent configuration, please check.
[ 369.267063][ T116] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 369.289486][ T5615] F2FS-fs (loop5): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 0)
[ 369.375091][ T5615] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[ 369.385007][ T5615] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
19:05:48 executing program 3:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r1, 0x0)
preadv(r0, &(0x7f0000000280)=[{0x0}], 0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0)
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)="0f34", 0x2}], 0x1, 0x0)
ptrace$setopts(0x4206, r2, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f00000002c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xcc, 0xcc, 0x2, [@ptr, @const, @ptr, @const, @func_proto, @restrict, @array, @func_proto={0x0, 0xa, 0x0, 0xd, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, @var]}}, 0x0, 0xe6}, 0x20)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f00000193c0)=""/102389, 0x18ff5}], 0x0, 0x0, 0x0, 0x0)
tkill(r2, 0x40)
wait4(0x0, 0x0, 0x0, 0x0)
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080))
r3 = gettid()
rt_sigqueueinfo(r3, 0x3c, &(0x7f0000000040))
19:05:48 executing program 4:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000180)="66530700ae897094e79f37b15b628cc462364602812c66538d750f6ee1d001f43f0500bb9fb045f2d1eaa302abea0d8c5dcb9d7c5fb74163e3d56c2fef2308003ea1315b9532f3af2f5e153eb78020fa00eb298802d8f6c1f3b18d6d352507f7018b31a53bad1ec3533c791a753a1fef2c560001000000000000fb8005128e7e4d939955f8ac396203784000400f573fbf000000000000000761f35e959f130dec95128ce7ec033dc0a380543bfc99320be1c1bb99bb063f2701d9d14a3f3109d666578cc0266bce7860eaaf305a0ee2af0f82dfefd5e00d421b0000000000", 0xdf}], 0x4, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x5)
tkill(r0, 0x3e)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x78)
ptrace$cont(0x18, r0, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000080)="4dc3", 0x2}], 0x1}, 0x0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
exit_group(0x0)
[ 370.035302][ C1] vcan0: j1939_tp_rxtimer: 0xffff888099075800: rx timeout, send abort
[ 370.045283][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888099075800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
19:05:49 executing program 0:
r0 = socket$kcm(0x29, 0x2, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x42, &(0x7f0000006100)={0x0, 0x2710}, 0x10)
recvmmsg(r0, &(0x7f0000006ec0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
19:05:49 executing program 1:
syz_mount_image$minix(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000010000)="40000000000001000100080000000000ffffff7f200000005a4d", 0x1a, 0x400}, {0x0, 0x0, 0x800}], 0x0, &(0x7f0000000080))
19:05:49 executing program 3:
perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x417f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone(0x3a3dd4008400af01, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff})
setsockopt$sock_int(r1, 0x1, 0x10, &(0x7f0000000180)=0xffff, 0x4)
recvmmsg(r1, &(0x7f0000001140)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff87}, 0x9}], 0x700, 0x2, 0x0)
write$binfmt_misc(r0, &(0x7f00000002c0)=ANY=[], 0x4)
clone(0x400, &(0x7f00000001c0), 0x0, &(0x7f0000000140), 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, 0xffffffffffffffff)
[ 370.527456][ T5636] loop1: detected capacity change from 0 to 8
19:05:49 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f0000000040)=[{&(0x7f00000003c0)="290000005200190f00003fffffffc20602000f0000e80001ec040000040d000a00ea11000000050000", 0x29}], 0x1)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x1, 0x0, 0x0)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f0000000000))
recvmmsg(r0, &(0x7f0000000340)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
19:05:49 executing program 5:
r0 = syz_io_uring_setup(0x87, &(0x7f0000000080), &(0x7f0000ee7000/0x2000)=nil, &(0x7f00006d4000/0x4000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000040)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000003a40)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x80280}, 0xffff)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_ASYNC_CANCEL, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_enter(r0, 0x450c, 0x0, 0x0, 0x0, 0x0)
[ 370.696012][ T5636] Unable to read inode block
[ 370.700848][ T5636] MINIX-fs: get root inode failed
19:05:49 executing program 2:
r0 = timerfd_create(0x9, 0x0)
timerfd_settime(r0, 0x1, &(0x7f0000000080)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
timerfd_gettime(r0, &(0x7f0000000040))
[ 371.021456][ T5639] not chained 750000 origins
[ 371.026388][ T5639] CPU: 1 PID: 5639 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 371.035122][ T5639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 371.045220][ T5639] Call Trace:
[ 371.048529][ T5639]
[ 371.051489][ T5639] dump_stack_lvl+0x1ff/0x28e
[ 371.056334][ T5639] dump_stack+0x25/0x28
[ 371.060556][ T5639] kmsan_internal_chain_origin+0x78/0x110
[ 371.066341][ T5639] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 371.072484][ T5639] ? kmsan_get_metadata+0x33/0x220
[ 371.077670][ T5639] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 371.083560][ T5639] ? __unix_dgram_recvmsg+0x1a0b/0x1c20
[ 371.089166][ T5639] ? kmsan_get_metadata+0x33/0x220
[ 371.099037][ T5639] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 371.105206][ T5639] ? should_fail+0x75/0x9c0
[ 371.109778][ T5639] ? kmsan_get_metadata+0x33/0x220
[ 371.114953][ T5639] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 371.121351][ T5639] ? kmsan_internal_unpoison_memory+0x10/0x20
[ 371.128543][ T5639] ? kmsan_get_metadata+0x33/0x220
[ 371.133722][ T5639] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 371.139601][ T5639] __msan_chain_origin+0xbf/0x140
[ 371.144688][ T5639] __get_compat_msghdr+0x6e1/0x9d0
[ 371.149876][ T5639] get_compat_msghdr+0x108/0x2c0
[ 371.154876][ T5639] ? __sys_recvmmsg+0x51c/0x6f0
[ 371.159795][ T5639] do_recvmmsg+0xd77/0x2120
[ 371.164386][ T5639] ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 371.170376][ T5639] ? kmsan_get_metadata+0x33/0x220
[ 371.175560][ T5639] ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 371.181967][ T5639] ? __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 371.188537][ T5639] __sys_recvmmsg+0x51c/0x6f0
[ 371.193320][ T5639] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 371.199725][ T5639] __do_fast_syscall_32+0x96/0xf0
[ 371.204920][ T5639] do_fast_syscall_32+0x34/0x70
[ 371.209931][ T5639] do_SYSENTER_32+0x1b/0x20
[ 371.214496][ T5639] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 371.220905][ T5639] RIP: 0023:0xf6f26549
[ 371.225008][ T5639] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00
[ 371.244842][ T5639] RSP: 002b:00000000f59205bc EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[ 371.253306][ T5639] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000020001140
[ 371.261306][ T5639] RDX: 0000000000000700 RSI: 0000000000000002 RDI: 0000000000000000
[ 371.269294][ T5639] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 371.277458][ T5639] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 371.285455][ T5639] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 371.293646][ T5639]
[ 371.297450][ T5639] Uninit was stored to memory at:
[ 371.302750][ T5639] __get_compat_msghdr+0x6e1/0x9d0
[ 371.307943][ T5639] get_compat_msghdr+0x108/0x2c0
[ 371.313149][ T5639] do_recvmmsg+0xd77/0x2120
[ 371.317708][ T5639] __sys_recvmmsg+0x51c/0x6f0
[ 371.322574][ T5639] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 371.328958][ T5639] __do_fast_syscall_32+0x96/0xf0
[ 371.334182][ T5639] do_fast_syscall_32+0x34/0x70
[ 371.339095][ T5639] do_SYSENTER_32+0x1b/0x20
[ 371.343771][ T5639] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 371.350156][ T5639]
[ 371.352618][ T5639] Uninit was stored to memory at:
[ 371.357706][ T5639] __get_compat_msghdr+0x6e1/0x9d0
[ 371.362993][ T5639] get_compat_msghdr+0x108/0x2c0
[ 371.367979][ T5639] do_recvmmsg+0xd77/0x2120
[ 371.372757][ T5639] __sys_recvmmsg+0x51c/0x6f0
[ 371.377490][ T5639] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 371.384085][ T5639] __do_fast_syscall_32+0x96/0xf0
[ 371.389165][ T5639] do_fast_syscall_32+0x34/0x70
[ 371.394202][ T5639] do_SYSENTER_32+0x1b/0x20
[ 371.398759][ T5639] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 371.405277][ T5639]
[ 371.407640][ T5639] Uninit was stored to memory at:
[ 371.412858][ T5639] __get_compat_msghdr+0x6e1/0x9d0
[ 371.418017][ T5639] get_compat_msghdr+0x108/0x2c0
[ 371.423122][ T5639] do_recvmmsg+0xd77/0x2120
[ 371.427675][ T5639] __sys_recvmmsg+0x51c/0x6f0
[ 371.432534][ T5639] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 371.438919][ T5639] __do_fast_syscall_32+0x96/0xf0
[ 371.444221][ T5639] do_fast_syscall_32+0x34/0x70
[ 371.449133][ T5639] do_SYSENTER_32+0x1b/0x20
[ 371.453896][ T5639] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 371.460381][ T5639]
[ 371.462915][ T5639] Uninit was stored to memory at:
[ 371.468010][ T5639] __get_compat_msghdr+0x6e1/0x9d0
[ 371.473391][ T5639] get_compat_msghdr+0x108/0x2c0
[ 371.478468][ T5639] do_recvmmsg+0xd77/0x2120
[ 371.483205][ T5639] __sys_recvmmsg+0x51c/0x6f0
[ 371.487956][ T5639] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 371.494509][ T5639] __do_fast_syscall_32+0x96/0xf0
[ 371.499587][ T5639] do_fast_syscall_32+0x34/0x70
[ 371.504685][ T5639] do_SYSENTER_32+0x1b/0x20
[ 371.509330][ T5639] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 371.515918][ T5639]
[ 371.518263][ T5639] Uninit was stored to memory at:
[ 371.523539][ T5639] __get_compat_msghdr+0x6e1/0x9d0
[ 371.528703][ T5639] get_compat_msghdr+0x108/0x2c0
[ 371.534327][ T5639] do_recvmmsg+0xd77/0x2120
[ 371.538887][ T5639] __sys_recvmmsg+0x51c/0x6f0
[ 371.543802][ T5639] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 371.550185][ T5639] __do_fast_syscall_32+0x96/0xf0
[ 371.555552][ T5639] do_fast_syscall_32+0x34/0x70
[ 371.560476][ T5639] do_SYSENTER_32+0x1b/0x20
[ 371.565218][ T5639] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 371.571607][ T5639]
[ 371.574143][ T5639] Uninit was stored to memory at:
[ 371.579250][ T5639] __get_compat_msghdr+0x6e1/0x9d0
[ 371.584591][ T5639] get_compat_msghdr+0x108/0x2c0
[ 371.589705][ T5639] do_recvmmsg+0xd77/0x2120
[ 371.594457][ T5639] __sys_recvmmsg+0x51c/0x6f0
[ 371.599189][ T5639] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 371.605767][ T5639] __do_fast_syscall_32+0x96/0xf0
[ 371.610852][ T5639] do_fast_syscall_32+0x34/0x70
[ 371.615953][ T5639] do_SYSENTER_32+0x1b/0x20
[ 371.620512][ T5639] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 371.627089][ T5639]
[ 371.629426][ T5639] Uninit was stored to memory at:
[ 371.634704][ T5639] __get_compat_msghdr+0x6e1/0x9d0
[ 371.639861][ T5639] get_compat_msghdr+0x108/0x2c0
[ 371.645034][ T5639] do_recvmmsg+0xd77/0x2120
[ 371.649592][ T5639] __sys_recvmmsg+0x51c/0x6f0
[ 371.654527][ T5639] __ia32_compat_sys_recvmmsg_time32+0x16e/0x1d0
[ 371.660910][ T5639] __do_fast_syscall_32+0x96/0xf0
[ 371.666180][ T5639] do_fast_syscall_32+0x34/0x70
19:05:50 executing program 5:
r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f000005d100)={{0x0, 0x9, 0x0, 0x0, 0x0, 0x7}})
r3 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x1)
ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect={0x0, 0x5517, 0x48000000})
ioctl$USBDEVFS_IOCTL(r3, 0x8108551b, &(0x7f0000000380))
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f000005a700)={0x0, ""/256, 0x0, 0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005a900)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {0x0, 0x0}, {0x0}, {}, {0x0, 0x0}, {}, {0x0}, {0x0}, {0x0, 0x0}, {}, {}, {}, {0x0}, {}, {0x0}, {0x0, 0x0}, {0x0, 0x0}, {}, {}, {0x0, 0x0}, {0x0}, {0x0}, {}, {}, {}, {}, {}, {0x0}, {0x0, 0x0}, {0x0}, {0x0, 0x0}, {}, {0x0}, {0x0}, {}, {0x0}, {0x0, 0x0}, {}, {}, {}, {}, {r4}, {}, {}, {0x0}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {0x0}, {0x0}, {0x0, 0x0}, {0x0, 0x0}, {0x0}, {}, {}, {}, {0x0}, {}, {0x0, 0x0}, {}, {0x0}, {0x0}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {0x0}, {}, {}, {0x0, 0x0}, {0x0, r5}, {}, {}, {0x0, 0x0}, {}, {0x0, 0x0}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {0x0, 0x0}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {0x0, 0x0}, {}, {}, {0x0}, {}, {}, {0x0}, {}, {}, {}, {0x0}, {0x0}, {0x0}, {}, {0x0, 0x0}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {0x0, 0x0}, {0x0, 0x0}, {}, {}, {0x0, 0x0}, {}, {}, {0x0}, {0x0, 0x0}, {}, {0x0, 0x0}, {0x0}, {}, {}, {0x0, 0x0}, {}, {0x0}, {}, {0x0}, {0x0, 0x0}, {}, {}, {}, {}, {0x0}, {}, {0x0}, {}, {0x0}, {}, {0x0, 0x0}, {}, {}, {}, {}, {0x0}, {0x0}, {}, {}, {}, {0x0}, {0x0, 0x0}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {0x0, 0x0}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {0x0, 0x0}, {0x0}, {}, {}, {}, {}, {}, {0x0}, {}, {0x0, 0x0}, {0x0, 0x0}, {0x0}, {}, {0x0}, {0x0, 0x0}, {0x0, 0x0}, {}, {0x0, 0x0}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {0x0}, {0x0, 0x0}, {0x0}, {}, {}, {}, {}, {0x0, 0x0}, {0x0}, {}, {0x0, 0x0}, {0x0, 0x0}, {0x0, r5}], 0xfd, "d4c90300"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f000005f100)={0x0, [{}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {0x0, r30}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {0x0}, {}, {0x0, 0x0}, {}, {}, {0x0, 0x0}, {0x0, r60}, {0x0, 0x0}, {}, {0x0}, {0x0, 0x0}, {0x0, 0x0}, {}, {}, {0x0}, {0x0, 0x0}, {}, {}, {}, {0x0}, {0x0, 0x0}, {}, {}, {}, {}, {0x0}, {}, {}, {0x0, 0x0}, {}, {0x0}, {0x0, 0x0}, {}, {0x0, 0x0}, {}, {0x0}, {}, {}, {}, {0x0}, {}, {}, {0x0}, {}, {0x0, 0x0}, {0x0}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {0x0}, {0x0, 0x0}, {}, {}, {0x0, 0x0}, {0x0, 0x0}, {0x0}, {}, {0x0, 0x0}, {}, {}, {}, {}, {0x0, 0x0}, {0x0}, {}, {}, {}, {}, {0x0, 0x0}, {}, {0x0}, {0x0, r61}, {r68}, {}, {0x0}, {}, {0x0}, {}, {0x0}, {}, {}, {}, {0x0}, {0x0}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {0x0, 0x0}, {}, {}, {}, {}, {0x0}, {0x0, 0x0}, {}, {0x0, 0x0}, {0x0, 0x0}, {}, {0x0, 0x0}, {}, {0x0}, {}, {}, {}, {0x0}, {0x0}, {0x0}, {0x0, 0x0}, {}, {}, {0x0}, {}, {}, {}, {}, {0x0, 0x0}, {0x0}, {0x0, 0x0}, {}, {}, {}, {}, {0x0,