0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x1) r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r1, 0x200002) sendfile(r0, r1, 0x0, 0x80001d00c0d0) 19:13:42 executing program 3: 19:13:42 executing program 1: 19:13:42 executing program 5: 19:13:42 executing program 0: 19:13:42 executing program 2: 19:13:43 executing program 3: 19:13:43 executing program 1: 19:13:43 executing program 5: 19:13:43 executing program 2: 19:13:43 executing program 0: 19:13:43 executing program 1: 19:13:43 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x1) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:13:43 executing program 3: 19:13:43 executing program 2: 19:13:43 executing program 5: 19:13:43 executing program 0: 19:13:43 executing program 1: 19:13:43 executing program 3: 19:13:43 executing program 2: 19:13:43 executing program 5: 19:13:43 executing program 0: 19:13:44 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x1) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:13:44 executing program 1: 19:13:44 executing program 3: 19:13:44 executing program 2: 19:13:44 executing program 5: 19:13:44 executing program 0: 19:13:44 executing program 1: 19:13:44 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x1) r0 = socket$inet6(0xa, 0x400000000001, 0x0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:13:44 executing program 3: 19:13:44 executing program 0: 19:13:44 executing program 2: 19:13:44 executing program 5: 19:13:44 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x1) close(0xffffffffffffffff) r0 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r1, 0x200002) sendfile(0xffffffffffffffff, r1, 0x0, 0x80001d00c0d0) 19:13:44 executing program 0: 19:13:44 executing program 1: 19:13:44 executing program 3: 19:13:44 executing program 2: 19:13:45 executing program 5: 19:13:45 executing program 0: 19:13:45 executing program 1: 19:13:45 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x1) close(0xffffffffffffffff) r0 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r1, 0x200002) sendfile(0xffffffffffffffff, r1, 0x0, 0x80001d00c0d0) 19:13:45 executing program 2: 19:13:45 executing program 3: 19:13:45 executing program 5: 19:13:45 executing program 1: 19:13:45 executing program 0: 19:13:45 executing program 3: 19:13:45 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(0x0, 0x0, 0x1) close(0xffffffffffffffff) r0 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r1, 0x200002) sendfile(0xffffffffffffffff, r1, 0x0, 0x80001d00c0d0) 19:13:45 executing program 2: 19:13:45 executing program 5: 19:13:45 executing program 0: 19:13:45 executing program 1: 19:13:45 executing program 3: 19:13:46 executing program 2: 19:13:46 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:13:46 executing program 5: 19:13:46 executing program 1: 19:13:46 executing program 0: 19:13:46 executing program 3: 19:13:46 executing program 2: 19:13:46 executing program 5: 19:13:46 executing program 1: 19:13:46 executing program 0: 19:13:46 executing program 3: 19:13:46 executing program 2: 19:13:46 executing program 5: 19:13:47 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:13:47 executing program 1: 19:13:47 executing program 0: 19:13:47 executing program 2: 19:13:47 executing program 3: 19:13:47 executing program 5: 19:13:47 executing program 0: 19:13:47 executing program 5: 19:13:47 executing program 1: 19:13:47 executing program 3: 19:13:47 executing program 2: 19:13:47 executing program 0: 19:13:48 executing program 4: r0 = socket$inet6(0xa, 0x0, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:13:48 executing program 5: 19:13:48 executing program 1: 19:13:48 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x122]}) 19:13:48 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0010141, 0x0, 0x3, 0x8, 0x17b]}) 19:13:48 executing program 0: openat$vga_arbiter(0xffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x0, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) eventfd(0x0) ioctl$FIONCLEX(0xffffffffffffffff, 0x5450) write(r1, &(0x7f00000001c0), 0xfffffef3) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, &(0x7f0000000200)={0x0, r2+30000000}, 0x0) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528ac06}], 0x1, 0x0) r3 = open(&(0x7f0000000400)='./bus\x00', 0x0, 0x0) read(r3, 0x0, 0x0) 19:13:48 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4040aea0, &(0x7f00000000c0)={0x3, 0x0, [0x10a, 0x0, 0x3, 0x8, 0x17b]}) dup2(r5, r4) 19:13:48 executing program 1: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='clear_refs\x00') r1 = syz_open_procfs(0x0, &(0x7f0000000040)='sessionid\x00') sendfile(r0, r1, 0x0, 0x600) 19:13:48 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x41a0ae8d, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d03]}) 19:13:48 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x5000aea5, &(0x7f00000000c0)={0x0, 0x0, [0x174, 0x0, 0x3, 0x8, 0xfdfdffff]}) [ 966.299796][T21668] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. 19:13:48 executing program 4: r0 = socket$inet6(0xa, 0x0, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) [ 966.398470][T21679] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. 19:13:48 executing program 2: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$setstatus(r0, 0x4, 0x42000) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcsa\x00', 0x40280, 0x0) r2 = creat(0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r2, 0xc05812fe, &(0x7f00000002c0)=ANY=[@ANYBLOB]) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000240)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b9d7f9fdd70f01c10f01fb26d9fa360f787d03da52b90f2087a0dfd6660f2186670f01c56766c7442400b86e00006766c74424028c3f5ba16766c744240600000000670f011c24", 0x4e}], 0x1, 0x10, &(0x7f0000000280)=[@cstype3={0x5, 0x8}, @cr4={0x1, 0x640182}], 0x2) ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, &(0x7f0000000080)=0xbe) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x6, [@var={0x4}]}, {0x0, [0x48, 0x0, 0x0, 0x5f]}}, &(0x7f0000000340)=""/142, 0x2e, 0x8e, 0x8}, 0x20) 19:13:49 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0xc008ae88, &(0x7f00000000c0)={0x3, 0x0, [0xc0000100, 0x0, 0x3, 0x8, 0xfdfdffff]}) dup2(r5, r4) [ 966.731691][T21706] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. 19:13:49 executing program 0: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() tkill(r0, 0x37) clone(0x2000000002000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() r2 = perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$setstatus(r3, 0x4, 0x42000) dup(r3) r4 = inotify_init1(0x0) fcntl$setown(r4, 0x8, 0xffffffffffffffff) fcntl$getownex(r4, 0x10, &(0x7f0000000180)={0x0, 0x0}) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r5, 0x0, r2, 0x0) tkill(r1, 0x4) ptrace$setopts(0x4206, r1, 0x0, 0x0) wait4(0x0, 0x0, 0x0, 0x0) 19:13:49 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:13:49 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0xc008ae88, &(0x7f00000000c0)={0x3, 0x0, [0x10a, 0x0, 0x3, 0x8, 0x17b]}) dup2(r5, r4) 19:13:49 executing program 4: r0 = socket$inet6(0xa, 0x0, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:13:49 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = eventfd(0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = dup2(r3, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000100)={0x0, 0x0, 0x0, r2, 0x3e7}) 19:13:49 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0010141, 0x0, 0x3, 0x8, 0x17b]}) dup2(r5, r4) 19:13:49 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$setstatus(r0, 0x4, 0x42000) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcsa\x00', 0x40280, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc05812fe, &(0x7f00000002c0)=ANY=[@ANYBLOB]) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000240)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b9d7f9fdd70f01c10f01fb26d9fa360f787d03da52b90f2087a0dfd6660f2186670f01c56766c7442400b86e00006766c74424028c3f5ba16766c744240600000000670f011c24", 0x4e}], 0x1, 0x10, &(0x7f0000000280)=[@cstype3={0x5, 0x8}, @cr4={0x1, 0x640182}], 0x2) ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, &(0x7f0000000080)=0xbe) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x5, [@var]}, {0x0, [0x0, 0x0, 0x0]}}, &(0x7f0000000340)=""/142, 0x2d, 0x8e, 0x8}, 0x20) [ 967.115014][T21719] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. [ 967.250394][T21744] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. 19:13:49 executing program 1: pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="f00800002a00f7ee17c5fb480dff72000000023d", @ANYRES32], 0x2}}, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000000)={@mcast2}, 0x14) r2 = socket$inet(0x10, 0x2, 0x0) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x847fda, 0x0) 19:13:49 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(0xffffffffffffffff) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:13:50 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:13:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae9c, &(0x7f00000000c0)={0x3, 0x0, [0x10a, 0x0, 0x3, 0x8, 0x17b]}) dup2(r5, r4) 19:13:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) getpid() sched_setscheduler(0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000100)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000f9], 0x100000}) connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}, 0x1c) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:13:50 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/kvm\x00', 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000016000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000100)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000f9], 0x100000}) connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}, 0x1c) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 967.874215][T21775] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. 19:13:50 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(0xffffffffffffffff) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:13:50 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0xc008ae88, &(0x7f00000000c0)={0x3, 0x0, [0x48, 0x0, 0x3, 0x8, 0x4b564d03]}) dup2(0xffffffffffffffff, 0xffffffffffffffff) 19:13:50 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:13:50 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f0000000280)={0xf, 0x4, 0x4, 0x400, 0x0, 0x1}, 0x40) socket$nl_netfilter(0x10, 0x3, 0xc) socket$xdp(0x2c, 0x3, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x5}, 0x40) r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x80000000000000a, 0x2, 0x0) connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}, 0x1c) setsockopt$inet6_MCAST_MSFILTER(r2, 0x29, 0x31, 0x0, 0x90) 19:13:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0x48, 0x0, 0x3, 0x8, 0x17b]}) dup2(r5, r4) 19:13:50 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(0xffffffffffffffff) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) [ 968.571741][T21823] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. 19:13:51 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:13:51 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x181) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) 19:13:51 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:13:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x181) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) 19:13:51 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x0, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) [ 968.904529][T21834] kvm: vcpu 385: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. [ 968.967581][T21847] kvm: vcpu 385: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. 19:13:51 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:13:51 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, 0x0, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:13:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4d0]}) 19:13:51 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = eventfd(0x0) socket$inet(0x10, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = dup2(r3, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000100)={0x0, 0x0, 0x0, r2}) 19:13:51 executing program 0: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() tkill(r0, 0x37) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) gettid() r1 = inotify_init1(0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0xc) r3 = perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xfffffffeffffffff, 0xffffffffffffffff, 0x0) fcntl$setstatus(r3, 0x4, 0x42000) ppoll(&(0x7f0000000080)=[{0xffffffffffffffff, 0x31a1}, {0xffffffffffffffff, 0x6c8}, {}, {r2}, {r3}, {0xffffffffffffffff, 0x2000}], 0x6, 0x0, &(0x7f0000000100), 0x8) fcntl$setown(r1, 0x8, 0xffffffffffffffff) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) tkill(0x0, 0x4) wait4(0x0, 0x0, 0x0, 0x0) 19:13:51 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:13:52 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, 0x0, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:13:52 executing program 3: r0 = gettid() socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x6) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ptrace$getsig(0x4202, 0x0, 0x0, &(0x7f0000000100)) fcntl$setsig(r1, 0xa, 0x12) recvmmsg(r2, &(0x7f0000002bc0)=[{{0x0, 0xfffffffffffffd10, 0x0, 0x0, 0x0, 0xfffffffffffffde4}}], 0x40000fd, 0x0, 0x0) dup2(r1, r2) fcntl$setown(r1, 0x8, r0) tkill(r0, 0x16) 19:13:52 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x0, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:13:52 executing program 2: r0 = gettid() socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x6) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$setsig(r1, 0xa, 0x12) recvmmsg(r2, &(0x7f0000002bc0)=[{{0x0, 0xfffffffffffffd10, 0x0, 0x0, 0x0, 0xfffffffffffffde4}}], 0x40000fd, 0x0, 0x0) dup2(r1, r2) fcntl$setown(r1, 0x8, r0) tkill(r0, 0x16) 19:13:52 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:13:52 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) [ 970.265237][T21911] not chained 30000 origins [ 970.269802][T21911] CPU: 0 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 970.278481][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 970.289066][T21911] Call Trace: [ 970.292380][T21911] dump_stack+0x1df/0x240 [ 970.296743][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 970.302488][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 970.307618][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 970.313536][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 970.318838][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 970.324065][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 970.329890][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 970.335972][T21911] ? kfree+0x61/0x30f0 [ 970.340059][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 970.345187][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 970.352309][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 970.358407][T21911] ? _copy_from_user+0x15b/0x260 [ 970.363364][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 970.368489][T21911] __msan_chain_origin+0x50/0x90 [ 970.373448][T21911] do_recvmmsg+0x105a/0x1ee0 [ 970.378442][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 970.383748][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 970.388795][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 970.393835][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 970.399757][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 970.404727][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 970.409597][T21911] do_syscall_64+0xb0/0x150 [ 970.414470][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 970.420368][T21911] RIP: 0033:0x45c1d9 [ 970.424257][T21911] Code: Bad RIP value. [ 970.428582][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 970.437004][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 970.444987][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 970.452992][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 970.461053][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 970.469029][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 970.477012][T21911] Uninit was stored to memory at: [ 970.482048][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 970.487863][T21911] __msan_chain_origin+0x50/0x90 [ 970.493086][T21911] do_recvmmsg+0x105a/0x1ee0 [ 970.497683][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 970.502627][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 970.507489][T21911] do_syscall_64+0xb0/0x150 [ 970.512004][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 970.517887][T21911] [ 970.520211][T21911] Uninit was stored to memory at: [ 970.525243][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 970.530972][T21911] __msan_chain_origin+0x50/0x90 [ 970.535914][T21911] do_recvmmsg+0x105a/0x1ee0 [ 970.540510][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 970.545455][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 970.550310][T21911] do_syscall_64+0xb0/0x150 [ 970.554822][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 970.560710][T21911] [ 970.562619][T21909] not chained 40000 origins [ 970.563040][T21911] Uninit was stored to memory at: [ 970.567537][T21909] CPU: 1 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 970.572539][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 970.581171][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 970.586886][T21911] __msan_chain_origin+0x50/0x90 [ 970.597016][T21909] Call Trace: [ 970.601952][T21911] do_recvmmsg+0x105a/0x1ee0 [ 970.605224][T21909] dump_stack+0x1df/0x240 [ 970.609806][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 970.614113][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 970.619029][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 970.624721][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 970.629571][T21911] do_syscall_64+0xb0/0x150 [ 970.634658][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 970.639154][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 970.645016][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 970.650882][T21911] [ 970.656148][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 970.658441][T21911] Uninit was stored to memory at: [ 970.663622][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 970.668619][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 970.674401][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 970.680092][T21911] __msan_chain_origin+0x50/0x90 [ 970.686143][T21909] ? kfree+0x61/0x30f0 [ 970.691055][T21911] do_recvmmsg+0x105a/0x1ee0 [ 970.695096][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 970.699673][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 970.705280][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 970.710190][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 970.715715][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 970.720534][T21911] do_syscall_64+0xb0/0x150 [ 970.726573][T21909] ? _copy_from_user+0x15b/0x260 [ 970.731047][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 970.735956][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 970.741808][T21911] [ 970.746900][T21909] __msan_chain_origin+0x50/0x90 [ 970.749195][T21911] Uninit was stored to memory at: [ 970.754116][T21909] do_recvmmsg+0x105a/0x1ee0 [ 970.759207][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 970.763801][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 970.769470][T21911] __msan_chain_origin+0x50/0x90 [ 970.775527][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 970.780442][T21911] do_recvmmsg+0x105a/0x1ee0 [ 970.785445][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 970.790619][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 970.795616][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 970.800537][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 970.806406][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 970.811231][T21911] do_syscall_64+0xb0/0x150 [ 970.816149][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 970.820620][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 970.825442][T21909] do_syscall_64+0xb0/0x150 [ 970.831296][T21911] [ 970.835788][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 970.838081][T21911] Uninit was stored to memory at: [ 970.843953][T21909] RIP: 0033:0x45c1d9 [ 970.848956][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 970.852827][T21909] Code: Bad RIP value. [ 970.858524][T21911] __msan_chain_origin+0x50/0x90 [ 970.862561][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 970.867479][T21911] do_recvmmsg+0x105a/0x1ee0 [ 970.875857][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 970.880428][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 970.888370][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 970.893289][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 970.901235][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 970.906061][T21911] do_syscall_64+0xb0/0x150 [ 970.914004][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 970.918484][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 970.926612][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 970.932471][T21911] [ 970.940426][T21909] Uninit was stored to memory at: [ 970.942736][T21911] Uninit was stored to memory at: [ 970.947746][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 970.952744][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 970.958438][T21909] __msan_chain_origin+0x50/0x90 [ 970.964128][T21911] __msan_chain_origin+0x50/0x90 [ 970.969041][T21909] do_recvmmsg+0x105a/0x1ee0 [ 970.973953][T21911] do_recvmmsg+0x105a/0x1ee0 [ 970.978517][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 970.983078][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 970.988006][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 970.992928][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 970.997741][T21909] do_syscall_64+0xb0/0x150 [ 970.997762][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 971.002583][T21911] do_syscall_64+0xb0/0x150 [ 971.007057][T21909] [ 971.012941][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 971.017404][T21909] Uninit was stored to memory at: [ 971.019709][T21911] [ 971.025593][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 971.030581][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 971.032893][T21909] __msan_chain_origin+0x50/0x90 [ 971.038585][T21911] do_recvmmsg+0xc5/0x1ee0 [ 971.045246][T21909] do_recvmmsg+0x105a/0x1ee0 [ 971.050155][T21911] do_recvmmsg+0xc5/0x1ee0 [ 971.054546][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 971.068526][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 971.073415][T21909] do_syscall_64+0xb0/0x150 [ 971.077908][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 971.083776][T21909] [ 971.086090][T21909] Uninit was stored to memory at: [ 971.091097][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 971.096799][T21909] __msan_chain_origin+0x50/0x90 [ 971.101722][T21909] do_recvmmsg+0x105a/0x1ee0 [ 971.106296][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 971.111218][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 971.116057][T21909] do_syscall_64+0xb0/0x150 [ 971.120544][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 971.126412][T21909] [ 971.128719][T21909] Uninit was stored to memory at: [ 971.133728][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 971.139432][T21909] __msan_chain_origin+0x50/0x90 [ 971.144353][T21909] do_recvmmsg+0x105a/0x1ee0 [ 971.148928][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 971.153861][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 971.158695][T21909] do_syscall_64+0xb0/0x150 [ 971.163626][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 971.169492][T21909] [ 971.171800][T21909] Uninit was stored to memory at: [ 971.176809][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 971.182512][T21909] __msan_chain_origin+0x50/0x90 [ 971.187434][T21909] do_recvmmsg+0x105a/0x1ee0 [ 971.192015][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 971.196952][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 971.201799][T21909] do_syscall_64+0xb0/0x150 [ 971.206291][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 971.212159][T21909] [ 971.214468][T21909] Uninit was stored to memory at: [ 971.219475][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 971.225176][T21909] __msan_chain_origin+0x50/0x90 [ 971.230098][T21909] do_recvmmsg+0x105a/0x1ee0 [ 971.234676][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 971.239595][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 971.244444][T21909] do_syscall_64+0xb0/0x150 [ 971.248932][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 971.254800][T21909] [ 971.257111][T21909] Uninit was stored to memory at: [ 971.262119][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 971.267821][T21909] __msan_chain_origin+0x50/0x90 [ 971.272749][T21909] do_recvmmsg+0x105a/0x1ee0 [ 971.277324][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 971.282248][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 971.287083][T21909] do_syscall_64+0xb0/0x150 [ 971.291572][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 971.297438][T21909] [ 971.299745][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 971.306675][T21909] do_recvmmsg+0xc5/0x1ee0 [ 971.311074][T21909] do_recvmmsg+0xc5/0x1ee0 19:13:53 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, 0x0, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:13:53 executing program 0: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42000) r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcsa\x00', 0x40280, 0x0) r1 = creat(0x0, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000240)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b9d7f9fdd70f01c10f01fb26d9fa360f787d03da52b90f2087a0dfd6660f2186670f01c56766c7442400b86e00006766c74424028c3f5ba16766c744240600000000670f011c24", 0x4e}], 0x1, 0x10, &(0x7f0000000280)=[@cstype3={0x5, 0x8}, @cr4={0x1, 0x640182}], 0x2) ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, &(0x7f0000000080)=0xbe) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x6, [@var={0x4}]}, {0x0, [0x48, 0x0, 0x0, 0x5f]}}, &(0x7f0000000340)=""/142, 0x2e, 0x8e, 0x8}, 0x20) [ 971.583830][T21918] not chained 50000 origins [ 971.588378][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 971.597049][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 971.607293][T21918] Call Trace: [ 971.610608][T21918] dump_stack+0x1df/0x240 [ 971.614955][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 971.620683][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 971.625810][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 971.631725][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 971.637036][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 971.642251][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 971.648080][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 971.654166][T21918] ? kfree+0x61/0x30f0 [ 971.658252][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 971.663379][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 971.668941][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 971.675028][T21918] ? _copy_from_user+0x15b/0x260 19:13:54 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) [ 971.679975][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 971.685096][T21918] __msan_chain_origin+0x50/0x90 [ 971.690048][T21918] do_recvmmsg+0x105a/0x1ee0 [ 971.694684][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 971.699985][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 971.705016][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 971.710032][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 971.715915][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 971.720848][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 971.725686][T21918] do_syscall_64+0xb0/0x150 [ 971.730183][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 971.736062][T21918] RIP: 0033:0x45c1d9 [ 971.739939][T21918] Code: Bad RIP value. [ 971.743994][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 971.752387][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 971.760342][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 971.768316][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 971.776302][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 971.784275][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 971.792251][T21918] Uninit was stored to memory at: [ 971.797268][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 971.802984][T21918] __msan_chain_origin+0x50/0x90 [ 971.807907][T21918] do_recvmmsg+0x105a/0x1ee0 [ 971.812479][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 971.817401][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 971.822335][T21918] do_syscall_64+0xb0/0x150 [ 971.826837][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 971.832791][T21918] [ 971.835100][T21918] Uninit was stored to memory at: [ 971.840108][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 971.845809][T21918] __msan_chain_origin+0x50/0x90 [ 971.850729][T21918] do_recvmmsg+0x105a/0x1ee0 [ 971.855323][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 971.860246][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 971.865094][T21918] do_syscall_64+0xb0/0x150 [ 971.869584][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 971.875637][T21918] [ 971.877956][T21918] Uninit was stored to memory at: [ 971.882983][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 971.888688][T21918] __msan_chain_origin+0x50/0x90 [ 971.893609][T21918] do_recvmmsg+0x105a/0x1ee0 [ 971.898184][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 971.903105][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 971.907945][T21918] do_syscall_64+0xb0/0x150 [ 971.912434][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 971.918299][T21918] [ 971.920615][T21918] Uninit was stored to memory at: [ 971.925647][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 971.932491][T21918] __msan_chain_origin+0x50/0x90 [ 971.937412][T21918] do_recvmmsg+0x105a/0x1ee0 [ 971.941985][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 971.946908][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 971.951745][T21918] do_syscall_64+0xb0/0x150 [ 971.956235][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 971.962115][T21918] [ 971.964423][T21918] Uninit was stored to memory at: [ 971.969431][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 971.975137][T21918] __msan_chain_origin+0x50/0x90 [ 971.980058][T21918] do_recvmmsg+0x105a/0x1ee0 [ 971.984631][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 971.989552][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 971.994390][T21918] do_syscall_64+0xb0/0x150 [ 971.998879][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 972.004748][T21918] [ 972.007057][T21918] Uninit was stored to memory at: [ 972.012065][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 972.018244][T21918] __msan_chain_origin+0x50/0x90 [ 972.023165][T21918] do_recvmmsg+0x105a/0x1ee0 [ 972.027912][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 972.032834][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 972.037670][T21918] do_syscall_64+0xb0/0x150 [ 972.042159][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 972.048026][T21918] [ 972.050332][T21918] Uninit was stored to memory at: [ 972.055341][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 972.061045][T21918] __msan_chain_origin+0x50/0x90 [ 972.065970][T21918] do_recvmmsg+0x105a/0x1ee0 [ 972.070544][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 972.075467][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 972.080323][T21918] do_syscall_64+0xb0/0x150 19:13:54 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x0, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) [ 972.084813][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 972.090679][T21918] [ 972.092989][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 972.099647][T21918] do_recvmmsg+0xc5/0x1ee0 [ 972.104047][T21918] do_recvmmsg+0xc5/0x1ee0 19:13:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x49]}) [ 972.471707][T21909] not chained 60000 origins [ 972.476343][T21909] CPU: 1 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 972.485029][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 972.495088][T21909] Call Trace: [ 972.498401][T21909] dump_stack+0x1df/0x240 [ 972.502746][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 972.508479][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 972.513600][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 972.519503][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 972.524782][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 972.529966][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 972.535759][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 972.541827][T21909] ? kfree+0x61/0x30f0 [ 972.545883][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 972.550991][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 972.556541][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 972.562605][T21909] ? _copy_from_user+0x15b/0x260 [ 972.567552][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 972.572655][T21909] __msan_chain_origin+0x50/0x90 [ 972.577612][T21909] do_recvmmsg+0x105a/0x1ee0 [ 972.582228][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 972.587507][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 972.592514][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 972.597526][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 972.603425][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 972.608370][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 972.613250][T21909] do_syscall_64+0xb0/0x150 [ 972.617787][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 972.623671][T21909] RIP: 0033:0x45c1d9 [ 972.627546][T21909] Code: Bad RIP value. [ 972.631593][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 972.640008][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 972.647967][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 972.655925][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 972.663880][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 972.671838][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 972.679802][T21909] Uninit was stored to memory at: [ 972.684815][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 972.690522][T21909] __msan_chain_origin+0x50/0x90 [ 972.695451][T21909] do_recvmmsg+0x105a/0x1ee0 [ 972.700024][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 972.704948][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 972.710130][T21909] do_syscall_64+0xb0/0x150 [ 972.714621][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 972.720490][T21909] [ 972.722797][T21909] Uninit was stored to memory at: [ 972.727806][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 972.733507][T21909] __msan_chain_origin+0x50/0x90 [ 972.738436][T21909] do_recvmmsg+0x105a/0x1ee0 [ 972.743048][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 972.747969][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 972.752804][T21909] do_syscall_64+0xb0/0x150 [ 972.757294][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 972.763163][T21909] [ 972.765471][T21909] Uninit was stored to memory at: [ 972.770476][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 972.776352][T21909] __msan_chain_origin+0x50/0x90 [ 972.781296][T21909] do_recvmmsg+0x105a/0x1ee0 [ 972.785879][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 972.790805][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 972.795645][T21909] do_syscall_64+0xb0/0x150 [ 972.800134][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 972.806004][T21909] [ 972.808317][T21909] Uninit was stored to memory at: [ 972.813330][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 972.819035][T21909] __msan_chain_origin+0x50/0x90 [ 972.824048][T21909] do_recvmmsg+0x105a/0x1ee0 [ 972.828631][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 972.833564][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 972.838406][T21909] do_syscall_64+0xb0/0x150 [ 972.843430][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 972.849301][T21909] [ 972.851610][T21909] Uninit was stored to memory at: [ 972.856625][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 972.862332][T21909] __msan_chain_origin+0x50/0x90 [ 972.867263][T21909] do_recvmmsg+0x105a/0x1ee0 [ 972.871839][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 972.876763][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 972.881601][T21909] do_syscall_64+0xb0/0x150 [ 972.886091][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 972.891960][T21909] [ 972.894712][T21909] Uninit was stored to memory at: [ 972.899723][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 972.905438][T21909] __msan_chain_origin+0x50/0x90 [ 972.910368][T21909] do_recvmmsg+0x105a/0x1ee0 [ 972.914944][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 972.919868][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 972.924707][T21909] do_syscall_64+0xb0/0x150 [ 972.929202][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 972.935076][T21909] [ 972.937386][T21909] Uninit was stored to memory at: [ 972.942400][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 972.948106][T21909] __msan_chain_origin+0x50/0x90 [ 972.953050][T21909] do_recvmmsg+0x105a/0x1ee0 [ 972.957627][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 972.962565][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 972.967406][T21909] do_syscall_64+0xb0/0x150 19:13:55 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) [ 972.971919][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 972.977790][T21909] [ 972.980101][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 972.986763][T21909] do_recvmmsg+0xc5/0x1ee0 [ 972.991166][T21909] do_recvmmsg+0xc5/0x1ee0 19:13:55 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00'}) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) [ 973.308941][T21918] not chained 70000 origins [ 973.313490][T21918] CPU: 1 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 973.322155][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 973.332227][T21918] Call Trace: [ 973.335789][T21918] dump_stack+0x1df/0x240 [ 973.340140][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 973.345868][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 973.350986][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 973.356888][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 973.362183][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 973.367390][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 973.374261][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 973.380353][T21918] ? kfree+0x61/0x30f0 [ 973.384435][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 973.389635][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 973.395190][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 973.401270][T21918] ? _copy_from_user+0x15b/0x260 [ 973.406230][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 973.411351][T21918] __msan_chain_origin+0x50/0x90 [ 973.416305][T21918] do_recvmmsg+0x105a/0x1ee0 [ 973.420934][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 973.426235][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 973.431262][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 973.436289][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 973.442198][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 973.447155][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 973.452019][T21918] do_syscall_64+0xb0/0x150 [ 973.456532][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 973.462422][T21918] RIP: 0033:0x45c1d9 [ 973.466307][T21918] Code: Bad RIP value. [ 973.470374][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 973.478787][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 973.486764][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 973.494736][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 973.502707][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 973.510684][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 973.518669][T21918] Uninit was stored to memory at: [ 973.523705][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 973.529430][T21918] __msan_chain_origin+0x50/0x90 [ 973.534373][T21918] do_recvmmsg+0x105a/0x1ee0 [ 973.538966][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 973.543908][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 973.548759][T21918] do_syscall_64+0xb0/0x150 [ 973.553259][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 973.559135][T21918] [ 973.561451][T21918] Uninit was stored to memory at: [ 973.566477][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 973.570218][T21911] not chained 80000 origins [ 973.572199][T21918] __msan_chain_origin+0x50/0x90 [ 973.576698][T21911] CPU: 0 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 973.581608][T21918] do_recvmmsg+0x105a/0x1ee0 [ 973.590245][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 973.594819][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 973.604846][T21911] Call Trace: [ 973.610120][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 973.613385][T21911] dump_stack+0x1df/0x240 [ 973.618324][T21918] do_syscall_64+0xb0/0x150 [ 973.622641][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 973.627154][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 973.632857][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 973.638721][T21918] [ 973.643827][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 973.646232][T21918] Uninit was stored to memory at: [ 973.652108][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 973.657107][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 973.662539][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 973.668319][T21918] __msan_chain_origin+0x50/0x90 [ 973.673493][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 973.678417][T21918] do_recvmmsg+0x105a/0x1ee0 [ 973.684895][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 973.689464][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 973.695505][T21911] ? kfree+0x61/0x30f0 [ 973.700418][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 973.704477][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 973.709304][T21918] do_syscall_64+0xb0/0x150 [ 973.714389][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 973.718871][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 973.724391][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 973.730251][T21918] [ 973.736332][T21911] ? _copy_from_user+0x15b/0x260 [ 973.738642][T21918] Uninit was stored to memory at: [ 973.743567][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 973.748568][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 973.753657][T21911] __msan_chain_origin+0x50/0x90 [ 973.759353][T21918] __msan_chain_origin+0x50/0x90 [ 973.764267][T21911] do_recvmmsg+0x105a/0x1ee0 [ 973.769176][T21918] do_recvmmsg+0x105a/0x1ee0 [ 973.773768][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 973.778310][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 973.783591][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 973.788508][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 973.793509][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 973.798424][T21918] do_syscall_64+0xb0/0x150 [ 973.803424][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 973.807907][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 973.813811][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 973.819694][T21918] [ 973.824622][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 973.826914][T21918] Uninit was stored to memory at: [ 973.831753][T21911] do_syscall_64+0xb0/0x150 [ 973.836751][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 973.841235][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 973.846922][T21918] __msan_chain_origin+0x50/0x90 [ 973.852797][T21911] RIP: 0033:0x45c1d9 [ 973.857715][T21918] do_recvmmsg+0x105a/0x1ee0 [ 973.861576][T21911] Code: Bad RIP value. [ 973.866152][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 973.870190][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 973.875110][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 973.883518][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 973.888349][T21918] do_syscall_64+0xb0/0x150 [ 973.896295][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 973.900783][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 973.908756][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 973.914618][T21918] [ 973.922589][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 973.924893][T21918] Uninit was stored to memory at: [ 973.932849][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 973.937857][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 973.945804][T21911] Uninit was stored to memory at: [ 973.951503][T21918] __msan_chain_origin+0x50/0x90 [ 973.956505][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 973.961423][T21918] do_recvmmsg+0x105a/0x1ee0 [ 973.967118][T21911] __msan_chain_origin+0x50/0x90 [ 973.972227][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 973.977172][T21911] do_recvmmsg+0x105a/0x1ee0 [ 973.982089][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 973.986655][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 973.991511][T21918] do_syscall_64+0xb0/0x150 [ 973.996421][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 974.000922][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 974.005751][T21911] do_syscall_64+0xb0/0x150 [ 974.011609][T21918] [ 974.016100][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 974.018395][T21918] Uninit was stored to memory at: [ 974.024408][T21911] [ 974.029457][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 974.031752][T21911] Uninit was stored to memory at: [ 974.037460][T21918] __msan_chain_origin+0x50/0x90 [ 974.042461][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 974.047375][T21918] do_recvmmsg+0x105a/0x1ee0 [ 974.053067][T21911] __msan_chain_origin+0x50/0x90 [ 974.057652][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 974.062572][T21911] do_recvmmsg+0x105a/0x1ee0 [ 974.067487][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 974.072149][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 974.077068][T21918] do_syscall_64+0xb0/0x150 [ 974.081980][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 974.086478][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 974.091309][T21911] do_syscall_64+0xb0/0x150 [ 974.097256][T21918] [ 974.101748][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 974.104048][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 974.109914][T21911] [ 974.116581][T21918] do_recvmmsg+0xc5/0x1ee0 [ 974.118880][T21911] Uninit was stored to memory at: [ 974.123279][T21918] do_recvmmsg+0xc5/0x1ee0 [ 974.128283][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 974.138390][T21911] __msan_chain_origin+0x50/0x90 [ 974.143339][T21911] do_recvmmsg+0x105a/0x1ee0 [ 974.147934][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 974.152870][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 974.157728][T21911] do_syscall_64+0xb0/0x150 [ 974.162242][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 974.168120][T21911] [ 974.170432][T21911] Uninit was stored to memory at: [ 974.175446][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 974.181152][T21911] __msan_chain_origin+0x50/0x90 [ 974.186076][T21911] do_recvmmsg+0x105a/0x1ee0 [ 974.190654][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 974.195585][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 974.200425][T21911] do_syscall_64+0xb0/0x150 [ 974.204918][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 974.210791][T21911] [ 974.213109][T21911] Uninit was stored to memory at: [ 974.218122][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 974.223830][T21911] __msan_chain_origin+0x50/0x90 [ 974.228761][T21911] do_recvmmsg+0x105a/0x1ee0 [ 974.233342][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 974.238268][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 974.243109][T21911] do_syscall_64+0xb0/0x150 [ 974.247609][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 974.253480][T21911] [ 974.255793][T21911] Uninit was stored to memory at: [ 974.260805][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 974.266509][T21911] __msan_chain_origin+0x50/0x90 [ 974.271519][T21911] do_recvmmsg+0x105a/0x1ee0 [ 974.276101][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 974.281026][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 974.285866][T21911] do_syscall_64+0xb0/0x150 [ 974.290380][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 974.296268][T21911] [ 974.298582][T21911] Uninit was stored to memory at: [ 974.303595][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 974.309302][T21911] __msan_chain_origin+0x50/0x90 [ 974.314229][T21911] do_recvmmsg+0x105a/0x1ee0 [ 974.318807][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 974.323750][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 974.328588][T21911] do_syscall_64+0xb0/0x150 [ 974.333081][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 974.338952][T21911] [ 974.341264][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 974.347924][T21911] do_recvmmsg+0xc5/0x1ee0 [ 974.352327][T21911] do_recvmmsg+0xc5/0x1ee0 [ 974.670073][T21909] not chained 90000 origins [ 974.674628][T21909] CPU: 1 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 974.683297][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 974.693359][T21909] Call Trace: [ 974.696671][T21909] dump_stack+0x1df/0x240 [ 974.701013][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 974.706745][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 974.711862][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 974.717766][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 974.723062][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 974.728354][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 974.734172][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 974.740247][T21909] ? kfree+0x61/0x30f0 [ 974.744324][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 974.749438][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 974.755251][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 974.761327][T21909] ? _copy_from_user+0x15b/0x260 [ 974.766269][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 974.771472][T21909] __msan_chain_origin+0x50/0x90 [ 974.776562][T21909] do_recvmmsg+0x105a/0x1ee0 [ 974.781204][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 974.786507][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 974.791640][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 974.796677][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 974.802582][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 974.807686][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 974.812553][T21909] do_syscall_64+0xb0/0x150 [ 974.817071][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 974.822968][T21909] RIP: 0033:0x45c1d9 [ 974.826855][T21909] Code: Bad RIP value. [ 974.830920][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 974.839334][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 974.847307][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 974.855284][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 974.863261][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 974.871238][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 974.879225][T21909] Uninit was stored to memory at: [ 974.884260][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 974.889996][T21909] __msan_chain_origin+0x50/0x90 [ 974.894965][T21909] do_recvmmsg+0x105a/0x1ee0 [ 974.899562][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 974.904534][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 974.909389][T21909] do_syscall_64+0xb0/0x150 [ 974.913899][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 974.919780][T21909] [ 974.922101][T21909] Uninit was stored to memory at: [ 974.927128][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 974.932851][T21909] __msan_chain_origin+0x50/0x90 [ 974.937794][T21909] do_recvmmsg+0x105a/0x1ee0 [ 974.942386][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 974.947330][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 974.952181][T21909] do_syscall_64+0xb0/0x150 [ 974.956692][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 974.962580][T21909] [ 974.964900][T21909] Uninit was stored to memory at: [ 974.969929][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 974.976175][T21909] __msan_chain_origin+0x50/0x90 [ 974.981115][T21909] do_recvmmsg+0x105a/0x1ee0 [ 974.985715][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 974.990671][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 974.995531][T21909] do_syscall_64+0xb0/0x150 [ 975.000051][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 975.005933][T21909] [ 975.008256][T21909] Uninit was stored to memory at: [ 975.013291][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 975.019011][T21909] __msan_chain_origin+0x50/0x90 [ 975.023956][T21909] do_recvmmsg+0x105a/0x1ee0 [ 975.028548][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 975.033488][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 975.038343][T21909] do_syscall_64+0xb0/0x150 [ 975.043023][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 975.048905][T21909] [ 975.051226][T21909] Uninit was stored to memory at: [ 975.056255][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 975.061981][T21909] __msan_chain_origin+0x50/0x90 [ 975.066923][T21909] do_recvmmsg+0x105a/0x1ee0 [ 975.071514][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 975.076458][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 975.081395][T21909] do_syscall_64+0xb0/0x150 [ 975.085900][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 975.091780][T21909] [ 975.094100][T21909] Uninit was stored to memory at: [ 975.099134][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 975.104855][T21909] __msan_chain_origin+0x50/0x90 [ 975.109792][T21909] do_recvmmsg+0x105a/0x1ee0 [ 975.114388][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 975.119331][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 975.124194][T21909] do_syscall_64+0xb0/0x150 [ 975.128697][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 975.134599][T21909] [ 975.136921][T21909] Uninit was stored to memory at: [ 975.141947][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 975.147672][T21909] __msan_chain_origin+0x50/0x90 [ 975.152609][T21909] do_recvmmsg+0x105a/0x1ee0 [ 975.157201][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 975.162140][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 975.166995][T21909] do_syscall_64+0xb0/0x150 [ 975.171502][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 975.177503][T21909] [ 975.179826][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 975.186506][T21909] do_recvmmsg+0xc5/0x1ee0 [ 975.190923][T21909] do_recvmmsg+0xc5/0x1ee0 [ 975.292143][T21909] not chained 100000 origins [ 975.296816][T21909] CPU: 1 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 975.305486][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 975.315539][T21909] Call Trace: [ 975.318837][T21909] dump_stack+0x1df/0x240 [ 975.323261][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 975.329078][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 975.334201][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 975.340108][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 975.345398][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 975.350600][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 975.356413][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 975.362482][T21909] ? kfree+0x61/0x30f0 [ 975.366560][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 975.371676][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 975.377227][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 975.383306][T21909] ? _copy_from_user+0x15b/0x260 [ 975.388243][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 975.393358][T21909] __msan_chain_origin+0x50/0x90 [ 975.398312][T21909] do_recvmmsg+0x105a/0x1ee0 [ 975.402944][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 975.408673][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 975.413704][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 975.418730][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 975.424633][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 975.429580][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 975.434439][T21909] do_syscall_64+0xb0/0x150 [ 975.438952][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 975.444845][T21909] RIP: 0033:0x45c1d9 [ 975.448731][T21909] Code: Bad RIP value. [ 975.452792][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 975.461204][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 975.469179][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 975.477154][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 975.485145][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 975.493123][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 975.501134][T21909] Uninit was stored to memory at: [ 975.506169][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 975.511894][T21909] __msan_chain_origin+0x50/0x90 [ 975.516842][T21909] do_recvmmsg+0x105a/0x1ee0 [ 975.521436][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 975.526385][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 975.531254][T21909] do_syscall_64+0xb0/0x150 [ 975.535774][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 975.541667][T21909] [ 975.544011][T21909] Uninit was stored to memory at: [ 975.549038][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 975.554761][T21909] __msan_chain_origin+0x50/0x90 [ 975.559696][T21909] do_recvmmsg+0x105a/0x1ee0 [ 975.564291][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 975.569230][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 975.574087][T21909] do_syscall_64+0xb0/0x150 [ 975.576670][T21918] not chained 110000 origins [ 975.578593][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 975.583164][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 975.589166][T21909] [ 975.597945][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 975.600251][T21909] Uninit was stored to memory at: [ 975.610459][T21918] Call Trace: [ 975.615474][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 975.618733][T21918] dump_stack+0x1df/0x240 [ 975.624427][T21909] __msan_chain_origin+0x50/0x90 [ 975.628738][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 975.633652][T21909] do_recvmmsg+0x105a/0x1ee0 [ 975.639348][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 975.643915][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 975.649093][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 975.654007][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 975.659875][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 975.664701][T21909] do_syscall_64+0xb0/0x150 [ 975.669959][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 975.674444][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 975.679615][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 975.685472][T21909] [ 975.691523][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 975.693823][T21909] Uninit was stored to memory at: [ 975.699897][T21918] ? kfree+0x61/0x30f0 [ 975.704911][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 975.708985][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 975.714691][T21909] __msan_chain_origin+0x50/0x90 [ 975.719865][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 975.725389][T21909] do_recvmmsg+0x105a/0x1ee0 [ 975.730997][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 975.735565][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 975.741607][T21918] ? _copy_from_user+0x15b/0x260 [ 975.746521][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 975.751478][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 975.756317][T21909] do_syscall_64+0xb0/0x150 [ 975.761402][T21918] __msan_chain_origin+0x50/0x90 [ 975.765884][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 975.770800][T21918] do_recvmmsg+0x105a/0x1ee0 [ 975.776657][T21909] [ 975.781262][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 975.783536][T21909] Uninit was stored to memory at: [ 975.788829][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 975.793844][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 975.798848][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 975.804541][T21909] __msan_chain_origin+0x50/0x90 [ 975.809544][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 975.814456][T21909] do_recvmmsg+0x105a/0x1ee0 [ 975.820327][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 975.824893][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 975.829811][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 975.834720][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 975.839563][T21918] do_syscall_64+0xb0/0x150 [ 975.844389][T21909] do_syscall_64+0xb0/0x150 [ 975.848874][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 975.853357][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 975.859219][T21918] RIP: 0033:0x45c1d9 [ 975.865078][T21909] [ 975.868951][T21918] Code: Bad RIP value. [ 975.871256][T21909] Uninit was stored to memory at: [ 975.875317][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 975.880340][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 975.888721][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 975.894423][T21909] __msan_chain_origin+0x50/0x90 [ 975.902366][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 975.907287][T21909] do_recvmmsg+0x105a/0x1ee0 [ 975.915231][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 975.919806][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 975.927754][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 975.932674][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 975.940621][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 975.945460][T21909] do_syscall_64+0xb0/0x150 [ 975.953405][T21918] Uninit was stored to memory at: [ 975.957908][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 975.962910][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 975.968769][T21909] [ 975.974475][T21918] __msan_chain_origin+0x50/0x90 [ 975.976773][T21909] Uninit was stored to memory at: [ 975.981694][T21918] do_recvmmsg+0x105a/0x1ee0 [ 975.986704][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 975.991356][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 975.997137][T21909] __msan_chain_origin+0x50/0x90 [ 976.002053][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 976.006968][T21909] do_recvmmsg+0x105a/0x1ee0 [ 976.011793][T21918] do_syscall_64+0xb0/0x150 [ 976.016359][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 976.020841][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.025753][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 976.031610][T21918] [ 976.036447][T21909] do_syscall_64+0xb0/0x150 [ 976.038760][T21918] Uninit was stored to memory at: [ 976.043249][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.048247][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 976.054110][T21909] [ 976.059813][T21918] __msan_chain_origin+0x50/0x90 [ 976.062111][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 976.067051][T21918] do_recvmmsg+0x105a/0x1ee0 [ 976.073708][T21909] do_recvmmsg+0xc5/0x1ee0 [ 976.078285][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 976.082675][T21909] do_recvmmsg+0xc5/0x1ee0 [ 976.087587][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 976.096877][T21918] do_syscall_64+0xb0/0x150 [ 976.101410][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.107295][T21918] [ 976.109627][T21918] Uninit was stored to memory at: [ 976.114658][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 976.120389][T21918] __msan_chain_origin+0x50/0x90 [ 976.125682][T21918] do_recvmmsg+0x105a/0x1ee0 [ 976.130290][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 976.135226][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 976.140152][T21918] do_syscall_64+0xb0/0x150 [ 976.144646][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.150516][T21918] [ 976.152831][T21918] Uninit was stored to memory at: [ 976.157843][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 976.163566][T21918] __msan_chain_origin+0x50/0x90 [ 976.168487][T21918] do_recvmmsg+0x105a/0x1ee0 [ 976.173064][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 976.177987][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 976.182826][T21918] do_syscall_64+0xb0/0x150 [ 976.187438][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.193420][T21918] [ 976.195744][T21918] Uninit was stored to memory at: [ 976.201285][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 976.207001][T21918] __msan_chain_origin+0x50/0x90 [ 976.211928][T21918] do_recvmmsg+0x105a/0x1ee0 [ 976.216502][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 976.221425][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 976.227046][T21918] do_syscall_64+0xb0/0x150 [ 976.231558][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.237428][T21918] [ 976.239766][T21918] Uninit was stored to memory at: [ 976.244776][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 976.250478][T21918] __msan_chain_origin+0x50/0x90 [ 976.255405][T21918] do_recvmmsg+0x105a/0x1ee0 [ 976.259987][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 976.264914][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 976.269751][T21918] do_syscall_64+0xb0/0x150 [ 976.274240][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.280109][T21918] [ 976.282416][T21918] Uninit was stored to memory at: [ 976.287432][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 976.293154][T21918] __msan_chain_origin+0x50/0x90 [ 976.298080][T21918] do_recvmmsg+0x105a/0x1ee0 [ 976.302655][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 976.307583][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 976.312442][T21918] do_syscall_64+0xb0/0x150 [ 976.316953][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.322834][T21918] [ 976.325153][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 976.331845][T21918] do_recvmmsg+0xc5/0x1ee0 [ 976.336247][T21918] do_recvmmsg+0xc5/0x1ee0 [ 976.436118][T21918] not chained 120000 origins [ 976.440754][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 976.449426][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 976.460785][T21918] Call Trace: [ 976.464071][T21918] dump_stack+0x1df/0x240 [ 976.468393][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 976.474101][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 976.479257][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 976.485139][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 976.490413][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 976.495600][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 976.501413][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 976.507468][T21918] ? kfree+0x61/0x30f0 [ 976.511529][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 976.516644][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 976.522195][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 976.528256][T21918] ? _copy_from_user+0x15b/0x260 [ 976.533182][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 976.538285][T21918] __msan_chain_origin+0x50/0x90 [ 976.543217][T21918] do_recvmmsg+0x105a/0x1ee0 [ 976.547911][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 976.553188][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 976.558200][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 976.563242][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 976.569169][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 976.574391][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 976.579236][T21918] do_syscall_64+0xb0/0x150 [ 976.583731][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.589624][T21918] RIP: 0033:0x45c1d9 [ 976.593514][T21918] Code: Bad RIP value. [ 976.597571][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 976.606013][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 976.613974][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 976.622045][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 976.630012][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 976.637975][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 976.645957][T21918] Uninit was stored to memory at: [ 976.650978][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 976.656686][T21918] __msan_chain_origin+0x50/0x90 [ 976.661609][T21918] do_recvmmsg+0x105a/0x1ee0 [ 976.666186][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 976.671109][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 976.675949][T21918] do_syscall_64+0xb0/0x150 [ 976.680453][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.686757][T21918] [ 976.689068][T21918] Uninit was stored to memory at: [ 976.694113][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 976.699819][T21918] __msan_chain_origin+0x50/0x90 [ 976.704743][T21918] do_recvmmsg+0x105a/0x1ee0 [ 976.709320][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 976.714243][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 976.719081][T21918] do_syscall_64+0xb0/0x150 [ 976.723573][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.729443][T21918] [ 976.731752][T21918] Uninit was stored to memory at: [ 976.736764][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 976.742471][T21918] __msan_chain_origin+0x50/0x90 [ 976.747417][T21918] do_recvmmsg+0x105a/0x1ee0 [ 976.752022][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 976.756967][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 976.761820][T21918] do_syscall_64+0xb0/0x150 [ 976.766312][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.772186][T21918] [ 976.774497][T21918] Uninit was stored to memory at: [ 976.779520][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 976.785227][T21918] __msan_chain_origin+0x50/0x90 [ 976.790152][T21918] do_recvmmsg+0x105a/0x1ee0 [ 976.794728][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 976.799651][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 976.804486][T21918] do_syscall_64+0xb0/0x150 [ 976.808979][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.814849][T21918] [ 976.817160][T21918] Uninit was stored to memory at: [ 976.822178][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 976.827895][T21918] __msan_chain_origin+0x50/0x90 [ 976.832824][T21918] do_recvmmsg+0x105a/0x1ee0 [ 976.837401][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 976.842323][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 976.847159][T21918] do_syscall_64+0xb0/0x150 [ 976.851662][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.857532][T21918] [ 976.859928][T21918] Uninit was stored to memory at: [ 976.864939][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 976.870642][T21918] __msan_chain_origin+0x50/0x90 [ 976.875582][T21918] do_recvmmsg+0x105a/0x1ee0 [ 976.880256][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 976.885180][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 976.890023][T21918] do_syscall_64+0xb0/0x150 [ 976.894517][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.900386][T21918] [ 976.902696][T21918] Uninit was stored to memory at: [ 976.907707][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 976.913412][T21918] __msan_chain_origin+0x50/0x90 [ 976.918356][T21918] do_recvmmsg+0x105a/0x1ee0 [ 976.922962][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 976.927886][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 976.932722][T21918] do_syscall_64+0xb0/0x150 [ 976.937645][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 976.943532][T21918] [ 976.945846][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 976.952508][T21918] do_recvmmsg+0xc5/0x1ee0 [ 976.956912][T21918] do_recvmmsg+0xc5/0x1ee0 [ 977.105874][T21911] not chained 130000 origins [ 977.110505][T21911] CPU: 0 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 977.119176][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 977.129231][T21911] Call Trace: [ 977.132619][T21911] dump_stack+0x1df/0x240 [ 977.136963][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 977.142687][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 977.147803][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 977.153796][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 977.159090][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 977.165858][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 977.171667][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 977.177736][T21911] ? kfree+0x61/0x30f0 [ 977.181815][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 977.186928][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 977.192478][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 977.198552][T21911] ? _copy_from_user+0x15b/0x260 [ 977.203494][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 977.208612][T21911] __msan_chain_origin+0x50/0x90 [ 977.213560][T21911] do_recvmmsg+0x105a/0x1ee0 [ 977.218187][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 977.223485][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 977.228514][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 977.233540][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 977.239435][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 977.244512][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 977.249367][T21911] do_syscall_64+0xb0/0x150 [ 977.253879][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 977.259770][T21911] RIP: 0033:0x45c1d9 [ 977.263778][T21911] Code: Bad RIP value. [ 977.267844][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 977.276257][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 977.284227][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 977.292201][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 977.300174][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 977.308180][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 977.316168][T21911] Uninit was stored to memory at: [ 977.321201][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 977.326924][T21911] __msan_chain_origin+0x50/0x90 [ 977.331861][T21911] do_recvmmsg+0x105a/0x1ee0 [ 977.336456][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 977.341394][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 977.346259][T21911] do_syscall_64+0xb0/0x150 [ 977.350769][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 977.356650][T21911] [ 977.358969][T21911] Uninit was stored to memory at: [ 977.364009][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 977.369734][T21911] __msan_chain_origin+0x50/0x90 [ 977.374673][T21911] do_recvmmsg+0x105a/0x1ee0 [ 977.379267][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 977.384203][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 977.389075][T21911] do_syscall_64+0xb0/0x150 [ 977.393593][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 977.399475][T21911] [ 977.401794][T21911] Uninit was stored to memory at: [ 977.406831][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 977.412550][T21911] __msan_chain_origin+0x50/0x90 [ 977.417489][T21911] do_recvmmsg+0x105a/0x1ee0 [ 977.422080][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 977.427021][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 977.431875][T21911] do_syscall_64+0xb0/0x150 [ 977.436384][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 977.442265][T21911] [ 977.444589][T21911] Uninit was stored to memory at: [ 977.449620][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 977.455340][T21911] __msan_chain_origin+0x50/0x90 [ 977.460291][T21911] do_recvmmsg+0x105a/0x1ee0 [ 977.464880][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 977.469820][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 977.474675][T21911] do_syscall_64+0xb0/0x150 [ 977.479183][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 977.485062][T21911] [ 977.487382][T21911] Uninit was stored to memory at: [ 977.492405][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 977.498128][T21911] __msan_chain_origin+0x50/0x90 [ 977.503068][T21911] do_recvmmsg+0x105a/0x1ee0 [ 977.507835][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 977.512772][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 977.517629][T21911] do_syscall_64+0xb0/0x150 [ 977.522135][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 977.528014][T21911] [ 977.530336][T21911] Uninit was stored to memory at: [ 977.535362][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 977.541082][T21911] __msan_chain_origin+0x50/0x90 [ 977.546022][T21911] do_recvmmsg+0x105a/0x1ee0 [ 977.550613][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 977.555550][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 977.560405][T21911] do_syscall_64+0xb0/0x150 [ 977.564916][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 977.570794][T21911] [ 977.573113][T21911] Uninit was stored to memory at: [ 977.578143][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 977.583864][T21911] __msan_chain_origin+0x50/0x90 [ 977.588801][T21911] do_recvmmsg+0x105a/0x1ee0 [ 977.593392][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 977.598333][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 977.603182][T21911] do_syscall_64+0xb0/0x150 [ 977.607686][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 977.613578][T21911] [ 977.615904][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 977.622687][T21911] do_recvmmsg+0xc5/0x1ee0 [ 977.627113][T21911] do_recvmmsg+0xc5/0x1ee0 [ 977.724537][T21918] not chained 140000 origins [ 977.729166][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 977.737836][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 977.747907][T21918] Call Trace: [ 977.751204][T21918] dump_stack+0x1df/0x240 [ 977.756591][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 977.762326][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 977.767446][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 977.773349][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 977.778661][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 977.783966][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 977.789908][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 977.795985][T21918] ? kfree+0x61/0x30f0 [ 977.800062][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 977.805181][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 977.810731][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 977.817006][T21918] ? _copy_from_user+0x15b/0x260 [ 977.821948][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 977.827051][T21918] __msan_chain_origin+0x50/0x90 [ 977.832017][T21918] do_recvmmsg+0x105a/0x1ee0 [ 977.836635][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 977.841920][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 977.846930][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 977.851942][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 977.857916][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 977.862847][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 977.867697][T21918] do_syscall_64+0xb0/0x150 [ 977.872191][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 977.878069][T21918] RIP: 0033:0x45c1d9 [ 977.881941][T21918] Code: Bad RIP value. [ 977.885993][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 977.894393][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 977.902358][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 977.910315][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 977.918274][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 977.926232][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 977.934812][T21918] Uninit was stored to memory at: [ 977.939829][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 977.945531][T21918] __msan_chain_origin+0x50/0x90 [ 977.950465][T21918] do_recvmmsg+0x105a/0x1ee0 [ 977.955041][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 977.959963][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 977.964800][T21918] do_syscall_64+0xb0/0x150 [ 977.969301][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 977.975168][T21918] [ 977.977476][T21918] Uninit was stored to memory at: [ 977.982488][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 977.988196][T21918] __msan_chain_origin+0x50/0x90 [ 977.993120][T21918] do_recvmmsg+0x105a/0x1ee0 [ 977.997710][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 978.002631][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 978.007466][T21918] do_syscall_64+0xb0/0x150 [ 978.011953][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 978.017830][T21918] [ 978.020155][T21918] Uninit was stored to memory at: [ 978.025166][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 978.030868][T21918] __msan_chain_origin+0x50/0x90 [ 978.035792][T21918] do_recvmmsg+0x105a/0x1ee0 [ 978.040366][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 978.045309][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 978.050143][T21918] do_syscall_64+0xb0/0x150 [ 978.054631][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 978.060498][T21918] [ 978.062807][T21918] Uninit was stored to memory at: [ 978.067815][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 978.073517][T21918] __msan_chain_origin+0x50/0x90 [ 978.078440][T21918] do_recvmmsg+0x105a/0x1ee0 [ 978.083015][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 978.087937][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 978.092773][T21918] do_syscall_64+0xb0/0x150 [ 978.097263][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 978.103132][T21918] [ 978.105441][T21918] Uninit was stored to memory at: [ 978.110450][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 978.116157][T21918] __msan_chain_origin+0x50/0x90 [ 978.121083][T21918] do_recvmmsg+0x105a/0x1ee0 [ 978.125656][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 978.130577][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 978.135414][T21918] do_syscall_64+0xb0/0x150 [ 978.139905][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 978.145771][T21918] [ 978.148081][T21918] Uninit was stored to memory at: [ 978.153091][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 978.158805][T21918] __msan_chain_origin+0x50/0x90 [ 978.163727][T21918] do_recvmmsg+0x105a/0x1ee0 [ 978.168302][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 978.173224][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 978.178060][T21918] do_syscall_64+0xb0/0x150 [ 978.182548][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 978.188417][T21918] [ 978.190727][T21918] Uninit was stored to memory at: [ 978.195740][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 978.201440][T21918] __msan_chain_origin+0x50/0x90 [ 978.206362][T21918] do_recvmmsg+0x105a/0x1ee0 [ 978.211022][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 978.215948][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 978.220803][T21918] do_syscall_64+0xb0/0x150 [ 978.225294][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 978.231164][T21918] [ 978.233474][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 978.240145][T21918] do_recvmmsg+0xc5/0x1ee0 [ 978.244547][T21918] do_recvmmsg+0xc5/0x1ee0 [ 978.404520][T21911] not chained 150000 origins [ 978.409150][T21911] CPU: 0 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 978.418073][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 978.428126][T21911] Call Trace: [ 978.431424][T21911] dump_stack+0x1df/0x240 [ 978.435766][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 978.441485][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 978.446623][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 978.452524][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 978.457817][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 978.463716][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 978.469522][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 978.475588][T21911] ? kfree+0x61/0x30f0 [ 978.479663][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 978.484777][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 978.490415][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 978.496488][T21911] ? _copy_from_user+0x15b/0x260 [ 978.501425][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 978.506535][T21911] __msan_chain_origin+0x50/0x90 [ 978.511479][T21911] do_recvmmsg+0x105a/0x1ee0 [ 978.516103][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 978.521388][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 978.526411][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 978.531432][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 978.537329][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 978.542276][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 978.547131][T21911] do_syscall_64+0xb0/0x150 [ 978.551639][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 978.557539][T21911] RIP: 0033:0x45c1d9 [ 978.561422][T21911] Code: Bad RIP value. [ 978.565480][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 978.573888][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 978.581858][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 978.589830][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 978.597803][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 978.605771][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 978.613751][T21911] Uninit was stored to memory at: [ 978.618791][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 978.624515][T21911] __msan_chain_origin+0x50/0x90 [ 978.629458][T21911] do_recvmmsg+0x105a/0x1ee0 [ 978.634053][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 978.638988][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 978.643841][T21911] do_syscall_64+0xb0/0x150 [ 978.648411][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 978.654287][T21911] [ 978.656603][T21911] Uninit was stored to memory at: [ 978.661626][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 978.667346][T21911] __msan_chain_origin+0x50/0x90 [ 978.672292][T21911] do_recvmmsg+0x105a/0x1ee0 [ 978.676881][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 978.681816][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 978.686669][T21911] do_syscall_64+0xb0/0x150 [ 978.691169][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 978.697568][T21911] [ 978.699887][T21911] Uninit was stored to memory at: [ 978.704912][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 978.710627][T21911] __msan_chain_origin+0x50/0x90 [ 978.715566][T21911] do_recvmmsg+0x105a/0x1ee0 [ 978.720155][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 978.725206][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 978.730058][T21911] do_syscall_64+0xb0/0x150 [ 978.734563][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 978.740443][T21911] [ 978.742757][T21911] Uninit was stored to memory at: [ 978.747782][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 978.753498][T21911] __msan_chain_origin+0x50/0x90 [ 978.758431][T21911] do_recvmmsg+0x105a/0x1ee0 [ 978.763017][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 978.767973][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 978.772823][T21911] do_syscall_64+0xb0/0x150 [ 978.777325][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 978.783206][T21911] [ 978.785526][T21911] Uninit was stored to memory at: [ 978.790558][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 978.796281][T21911] __msan_chain_origin+0x50/0x90 [ 978.801219][T21911] do_recvmmsg+0x105a/0x1ee0 [ 978.805848][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 978.810785][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 978.815639][T21911] do_syscall_64+0xb0/0x150 [ 978.818858][T21918] not chained 160000 origins [ 978.820142][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 978.824735][T21918] CPU: 1 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 978.830588][T21911] [ 978.839233][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 978.841536][T21911] Uninit was stored to memory at: [ 978.851565][T21918] Call Trace: [ 978.856572][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 978.859832][T21918] dump_stack+0x1df/0x240 [ 978.865539][T21911] __msan_chain_origin+0x50/0x90 [ 978.869843][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 978.874767][T21911] do_recvmmsg+0x105a/0x1ee0 [ 978.880469][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 978.885048][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 978.890130][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 978.895056][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 978.900921][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 978.905745][T21911] do_syscall_64+0xb0/0x150 [ 978.911003][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 978.915482][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 978.920651][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 978.926500][T21911] [ 978.932292][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 978.934589][T21911] Uninit was stored to memory at: [ 978.940639][T21918] ? kfree+0x61/0x30f0 [ 978.945632][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 978.949675][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 978.955365][T21911] __msan_chain_origin+0x50/0x90 [ 978.960449][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 978.965359][T21911] do_recvmmsg+0x105a/0x1ee0 [ 978.970885][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 978.975447][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 978.981495][T21918] ? _copy_from_user+0x15b/0x260 [ 978.986404][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 978.991312][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 978.996136][T21911] do_syscall_64+0xb0/0x150 [ 979.001219][T21918] __msan_chain_origin+0x50/0x90 [ 979.005694][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 979.010621][T21918] do_recvmmsg+0x105a/0x1ee0 [ 979.016483][T21911] [ 979.021081][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 979.023355][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 979.028622][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 979.035271][T21911] do_recvmmsg+0xc5/0x1ee0 [ 979.040269][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 979.044743][T21911] do_recvmmsg+0xc5/0x1ee0 [ 979.049742][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 979.060004][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 979.064962][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 979.069802][T21918] do_syscall_64+0xb0/0x150 [ 979.074296][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 979.080171][T21918] RIP: 0033:0x45c1d9 [ 979.084046][T21918] Code: Bad RIP value. [ 979.088098][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 979.096502][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 979.104471][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 979.112430][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 979.120388][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 979.128345][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 979.136323][T21918] Uninit was stored to memory at: [ 979.141335][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 979.147040][T21918] __msan_chain_origin+0x50/0x90 [ 979.151979][T21918] do_recvmmsg+0x105a/0x1ee0 [ 979.156558][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 979.161478][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 979.166315][T21918] do_syscall_64+0xb0/0x150 [ 979.170805][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 979.176672][T21918] [ 979.178982][T21918] Uninit was stored to memory at: [ 979.183994][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 979.189696][T21918] __msan_chain_origin+0x50/0x90 [ 979.194792][T21918] do_recvmmsg+0x105a/0x1ee0 [ 979.199362][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 979.204282][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 979.209114][T21918] do_syscall_64+0xb0/0x150 [ 979.213599][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 979.219463][T21918] [ 979.221771][T21918] Uninit was stored to memory at: [ 979.226781][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 979.232487][T21918] __msan_chain_origin+0x50/0x90 [ 979.237413][T21918] do_recvmmsg+0x105a/0x1ee0 [ 979.241988][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 979.246910][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 979.251759][T21918] do_syscall_64+0xb0/0x150 [ 979.256245][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 979.262111][T21918] [ 979.264420][T21918] Uninit was stored to memory at: [ 979.269440][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 979.275143][T21918] __msan_chain_origin+0x50/0x90 [ 979.280066][T21918] do_recvmmsg+0x105a/0x1ee0 [ 979.284642][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 979.289564][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 979.294399][T21918] do_syscall_64+0xb0/0x150 [ 979.298888][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 979.304755][T21918] [ 979.307061][T21918] Uninit was stored to memory at: [ 979.312069][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 979.317773][T21918] __msan_chain_origin+0x50/0x90 [ 979.322694][T21918] do_recvmmsg+0x105a/0x1ee0 [ 979.327267][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 979.332189][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 979.337029][T21918] do_syscall_64+0xb0/0x150 [ 979.341519][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 979.347384][T21918] [ 979.349691][T21918] Uninit was stored to memory at: [ 979.354715][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 979.360419][T21918] __msan_chain_origin+0x50/0x90 [ 979.365354][T21918] do_recvmmsg+0x105a/0x1ee0 [ 979.369928][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 979.374847][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 979.379689][T21918] do_syscall_64+0xb0/0x150 [ 979.384183][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 979.390066][T21918] [ 979.392383][T21918] Uninit was stored to memory at: [ 979.397390][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 979.403092][T21918] __msan_chain_origin+0x50/0x90 [ 979.408011][T21918] do_recvmmsg+0x105a/0x1ee0 [ 979.412591][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 979.417511][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 979.422342][T21918] do_syscall_64+0xb0/0x150 [ 979.426829][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 979.432716][T21918] [ 979.435027][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 979.441683][T21918] do_recvmmsg+0xc5/0x1ee0 [ 979.446082][T21918] do_recvmmsg+0xc5/0x1ee0 [ 979.548930][T21909] not chained 170000 origins [ 979.553561][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 979.562225][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 979.572281][T21909] Call Trace: [ 979.575583][T21909] dump_stack+0x1df/0x240 [ 979.579920][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 979.585651][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 979.590766][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 979.596678][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 979.601969][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 979.607172][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 979.612981][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 979.619063][T21909] ? kfree+0x61/0x30f0 [ 979.623146][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 979.628264][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 979.633825][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 979.639902][T21909] ? _copy_from_user+0x15b/0x260 [ 979.644849][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 979.649962][T21909] __msan_chain_origin+0x50/0x90 [ 979.654911][T21909] do_recvmmsg+0x105a/0x1ee0 [ 979.659539][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 979.664831][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 979.669946][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 979.674976][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 979.680879][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 979.685839][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 979.690693][T21909] do_syscall_64+0xb0/0x150 [ 979.695214][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 979.701100][T21909] RIP: 0033:0x45c1d9 [ 979.704984][T21909] Code: Bad RIP value. [ 979.709046][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 979.717456][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 979.725427][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 979.733395][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 979.741367][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 979.749340][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 979.757414][T21909] Uninit was stored to memory at: [ 979.762437][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 979.768146][T21909] __msan_chain_origin+0x50/0x90 [ 979.773071][T21909] do_recvmmsg+0x105a/0x1ee0 [ 979.777646][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 979.782568][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 979.787414][T21909] do_syscall_64+0xb0/0x150 [ 979.791919][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 979.797789][T21909] [ 979.800099][T21909] Uninit was stored to memory at: [ 979.805111][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 979.810827][T21909] __msan_chain_origin+0x50/0x90 [ 979.815764][T21909] do_recvmmsg+0x105a/0x1ee0 [ 979.820354][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 979.825273][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 979.830108][T21909] do_syscall_64+0xb0/0x150 [ 979.834599][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 979.840465][T21909] [ 979.842773][T21909] Uninit was stored to memory at: [ 979.847800][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 979.853500][T21909] __msan_chain_origin+0x50/0x90 [ 979.858443][T21909] do_recvmmsg+0x105a/0x1ee0 [ 979.863032][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 979.867954][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 979.872788][T21909] do_syscall_64+0xb0/0x150 [ 979.877288][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 979.883153][T21909] [ 979.885473][T21909] Uninit was stored to memory at: [ 979.890481][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 979.896182][T21909] __msan_chain_origin+0x50/0x90 [ 979.901105][T21909] do_recvmmsg+0x105a/0x1ee0 [ 979.905678][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 979.910599][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 979.915435][T21909] do_syscall_64+0xb0/0x150 [ 979.919925][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 979.925792][T21909] [ 979.928119][T21909] Uninit was stored to memory at: [ 979.933131][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 979.938832][T21909] __msan_chain_origin+0x50/0x90 [ 979.943760][T21909] do_recvmmsg+0x105a/0x1ee0 [ 979.948456][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 979.953393][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 979.958236][T21909] do_syscall_64+0xb0/0x150 [ 979.962729][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 979.968595][T21909] [ 979.970911][T21909] Uninit was stored to memory at: [ 979.975922][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 979.981637][T21909] __msan_chain_origin+0x50/0x90 [ 979.986560][T21909] do_recvmmsg+0x105a/0x1ee0 [ 979.991131][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 979.996070][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 980.001686][T21909] do_syscall_64+0xb0/0x150 [ 980.006173][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 980.012040][T21909] [ 980.014347][T21909] Uninit was stored to memory at: [ 980.019372][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 980.025089][T21909] __msan_chain_origin+0x50/0x90 [ 980.030012][T21909] do_recvmmsg+0x105a/0x1ee0 [ 980.034587][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 980.039510][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 980.044345][T21909] do_syscall_64+0xb0/0x150 [ 980.048832][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 980.054700][T21909] [ 980.057045][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 980.063716][T21909] do_recvmmsg+0xc5/0x1ee0 [ 980.068115][T21909] do_recvmmsg+0xc5/0x1ee0 [ 980.204461][T21911] not chained 180000 origins [ 980.209091][T21911] CPU: 0 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 980.217771][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 980.227826][T21911] Call Trace: [ 980.231123][T21911] dump_stack+0x1df/0x240 [ 980.235462][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 980.241182][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 980.246297][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 980.252213][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 980.257488][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 980.262673][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 980.268473][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 980.274526][T21911] ? kfree+0x61/0x30f0 [ 980.278594][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 980.283690][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 980.289219][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 980.295279][T21911] ? _copy_from_user+0x15b/0x260 [ 980.300204][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 980.305297][T21911] __msan_chain_origin+0x50/0x90 [ 980.310225][T21911] do_recvmmsg+0x105a/0x1ee0 [ 980.314828][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 980.320101][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 980.325110][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 980.330119][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 980.336000][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 980.340934][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 980.345774][T21911] do_syscall_64+0xb0/0x150 [ 980.350278][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 980.356154][T21911] RIP: 0033:0x45c1d9 [ 980.360025][T21911] Code: Bad RIP value. [ 980.364085][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 980.372478][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 980.380458][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 980.388423][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 980.396382][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 980.404339][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 980.412320][T21911] Uninit was stored to memory at: [ 980.417332][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 980.423036][T21911] __msan_chain_origin+0x50/0x90 [ 980.427970][T21911] do_recvmmsg+0x105a/0x1ee0 [ 980.432544][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 980.437463][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 980.442301][T21911] do_syscall_64+0xb0/0x150 [ 980.446791][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 980.452658][T21911] [ 980.454965][T21911] Uninit was stored to memory at: [ 980.459974][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 980.465677][T21911] __msan_chain_origin+0x50/0x90 [ 980.470596][T21911] do_recvmmsg+0x105a/0x1ee0 [ 980.475170][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 980.480089][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 980.484920][T21911] do_syscall_64+0xb0/0x150 [ 980.489410][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 980.495278][T21911] [ 980.497587][T21911] Uninit was stored to memory at: [ 980.502613][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 980.508328][T21911] __msan_chain_origin+0x50/0x90 [ 980.513249][T21911] do_recvmmsg+0x105a/0x1ee0 [ 980.518258][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 980.523179][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 980.528011][T21911] do_syscall_64+0xb0/0x150 [ 980.532499][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 980.538363][T21911] [ 980.540666][T21911] Uninit was stored to memory at: [ 980.545675][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 980.551376][T21911] __msan_chain_origin+0x50/0x90 [ 980.556314][T21911] do_recvmmsg+0x105a/0x1ee0 [ 980.560906][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 980.565836][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 980.570674][T21911] do_syscall_64+0xb0/0x150 [ 980.575163][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 980.581035][T21911] [ 980.583343][T21911] Uninit was stored to memory at: [ 980.588351][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 980.594053][T21911] __msan_chain_origin+0x50/0x90 [ 980.598973][T21911] do_recvmmsg+0x105a/0x1ee0 [ 980.603548][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 980.608469][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 980.613303][T21911] do_syscall_64+0xb0/0x150 [ 980.617919][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 980.623790][T21911] [ 980.626106][T21911] Uninit was stored to memory at: [ 980.631123][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 980.636829][T21911] __msan_chain_origin+0x50/0x90 [ 980.641752][T21911] do_recvmmsg+0x105a/0x1ee0 [ 980.646325][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 980.651246][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 980.656081][T21911] do_syscall_64+0xb0/0x150 [ 980.660569][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 980.666436][T21911] [ 980.668742][T21911] Uninit was stored to memory at: [ 980.673749][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 980.679451][T21911] __msan_chain_origin+0x50/0x90 [ 980.684479][T21911] do_recvmmsg+0x105a/0x1ee0 [ 980.689068][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 980.693990][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 980.698826][T21911] do_syscall_64+0xb0/0x150 [ 980.703314][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 980.709180][T21911] [ 980.711491][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 980.718148][T21911] do_recvmmsg+0xc5/0x1ee0 [ 980.722561][T21911] do_recvmmsg+0xc5/0x1ee0 [ 980.878251][T21909] not chained 190000 origins [ 980.882890][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 980.891557][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 980.901716][T21909] Call Trace: [ 980.905013][T21909] dump_stack+0x1df/0x240 [ 980.909362][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 980.915089][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 980.920203][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 980.926101][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 980.931392][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 980.936594][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 980.942399][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 980.948491][T21909] ? kfree+0x61/0x30f0 [ 980.952565][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 980.957678][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 980.963235][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 980.969305][T21909] ? _copy_from_user+0x15b/0x260 [ 980.974247][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 980.979368][T21909] __msan_chain_origin+0x50/0x90 [ 980.984312][T21909] do_recvmmsg+0x105a/0x1ee0 [ 980.988940][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 980.994255][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 980.999278][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 981.004304][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 981.010205][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 981.015158][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 981.020011][T21909] do_syscall_64+0xb0/0x150 [ 981.024519][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 981.030407][T21909] RIP: 0033:0x45c1d9 [ 981.034292][T21909] Code: Bad RIP value. [ 981.038353][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 981.046763][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 981.054736][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 981.062711][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 981.070680][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 981.078657][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 981.086644][T21909] Uninit was stored to memory at: [ 981.091674][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 981.097406][T21909] __msan_chain_origin+0x50/0x90 [ 981.102344][T21909] do_recvmmsg+0x105a/0x1ee0 [ 981.106932][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 981.111868][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 981.116728][T21909] do_syscall_64+0xb0/0x150 [ 981.121230][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 981.127112][T21909] [ 981.129431][T21909] Uninit was stored to memory at: [ 981.134457][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 981.140174][T21909] __msan_chain_origin+0x50/0x90 [ 981.145115][T21909] do_recvmmsg+0x105a/0x1ee0 [ 981.149706][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 981.154645][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 981.159495][T21909] do_syscall_64+0xb0/0x150 [ 981.163996][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 981.169875][T21909] [ 981.172196][T21909] Uninit was stored to memory at: [ 981.177229][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 981.182952][T21909] __msan_chain_origin+0x50/0x90 [ 981.187888][T21909] do_recvmmsg+0x105a/0x1ee0 [ 981.192480][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 981.197426][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 981.202276][T21909] do_syscall_64+0xb0/0x150 [ 981.206871][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 981.212757][T21909] [ 981.215078][T21909] Uninit was stored to memory at: [ 981.220109][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 981.225829][T21909] __msan_chain_origin+0x50/0x90 [ 981.230765][T21909] do_recvmmsg+0x105a/0x1ee0 [ 981.235357][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 981.240297][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 981.245148][T21909] do_syscall_64+0xb0/0x150 [ 981.249650][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 981.255533][T21909] [ 981.257853][T21909] Uninit was stored to memory at: [ 981.262876][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 981.268595][T21909] __msan_chain_origin+0x50/0x90 [ 981.273532][T21909] do_recvmmsg+0x105a/0x1ee0 [ 981.278118][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 981.283049][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 981.287888][T21909] do_syscall_64+0xb0/0x150 [ 981.292374][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 981.298251][T21909] [ 981.300561][T21909] Uninit was stored to memory at: [ 981.305580][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 981.311294][T21909] __msan_chain_origin+0x50/0x90 [ 981.316216][T21909] do_recvmmsg+0x105a/0x1ee0 [ 981.320791][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 981.325713][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 981.330549][T21909] do_syscall_64+0xb0/0x150 [ 981.335049][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 981.341524][T21909] [ 981.343833][T21909] Uninit was stored to memory at: [ 981.348841][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 981.354547][T21909] __msan_chain_origin+0x50/0x90 [ 981.359467][T21909] do_recvmmsg+0x105a/0x1ee0 [ 981.364043][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 981.368964][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 981.373797][T21909] do_syscall_64+0xb0/0x150 [ 981.378286][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 981.384155][T21909] [ 981.386467][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 981.393153][T21909] do_recvmmsg+0xc5/0x1ee0 [ 981.397551][T21909] do_recvmmsg+0xc5/0x1ee0 [ 981.538631][T21911] not chained 200000 origins [ 981.543269][T21911] CPU: 0 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 981.551937][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 981.561991][T21911] Call Trace: [ 981.565278][T21911] dump_stack+0x1df/0x240 [ 981.569601][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 981.575307][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 981.580406][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 981.586288][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 981.591561][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 981.596745][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 981.602537][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 981.608592][T21911] ? kfree+0x61/0x30f0 [ 981.612651][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 981.617759][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 981.623313][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 981.629643][T21911] ? _copy_from_user+0x15b/0x260 [ 981.634575][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 981.639674][T21911] __msan_chain_origin+0x50/0x90 [ 981.644603][T21911] do_recvmmsg+0x105a/0x1ee0 [ 981.649204][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 981.654478][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 981.659490][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 981.664501][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 981.670380][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 981.675309][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 981.680163][T21911] do_syscall_64+0xb0/0x150 [ 981.684678][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 981.690553][T21911] RIP: 0033:0x45c1d9 [ 981.694511][T21911] Code: Bad RIP value. [ 981.698556][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 981.706949][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 981.714903][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 981.722867][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 981.730823][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 981.738867][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 981.746830][T21911] Uninit was stored to memory at: [ 981.751842][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 981.757544][T21911] __msan_chain_origin+0x50/0x90 [ 981.762465][T21911] do_recvmmsg+0x105a/0x1ee0 [ 981.767175][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 981.772108][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 981.776946][T21911] do_syscall_64+0xb0/0x150 [ 981.781436][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 981.787305][T21911] [ 981.789614][T21911] Uninit was stored to memory at: [ 981.794627][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 981.800340][T21911] __msan_chain_origin+0x50/0x90 [ 981.805265][T21911] do_recvmmsg+0x105a/0x1ee0 [ 981.809982][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 981.814910][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 981.819763][T21911] do_syscall_64+0xb0/0x150 [ 981.824252][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 981.830137][T21911] [ 981.832448][T21911] Uninit was stored to memory at: [ 981.837457][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 981.843178][T21911] __msan_chain_origin+0x50/0x90 [ 981.848112][T21911] do_recvmmsg+0x105a/0x1ee0 [ 981.852686][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 981.857607][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 981.862441][T21911] do_syscall_64+0xb0/0x150 [ 981.866930][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 981.872806][T21911] [ 981.875115][T21911] Uninit was stored to memory at: [ 981.880124][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 981.885826][T21911] __msan_chain_origin+0x50/0x90 [ 981.890840][T21911] do_recvmmsg+0x105a/0x1ee0 [ 981.895418][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 981.900338][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 981.905173][T21911] do_syscall_64+0xb0/0x150 [ 981.909661][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 981.915614][T21911] [ 981.917923][T21911] Uninit was stored to memory at: [ 981.922942][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 981.928658][T21911] __msan_chain_origin+0x50/0x90 [ 981.933583][T21911] do_recvmmsg+0x105a/0x1ee0 [ 981.938173][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 981.943097][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 981.947934][T21911] do_syscall_64+0xb0/0x150 [ 981.952426][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 981.958307][T21911] [ 981.960628][T21911] Uninit was stored to memory at: [ 981.965651][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 981.971375][T21911] __msan_chain_origin+0x50/0x90 [ 981.976297][T21911] do_recvmmsg+0x105a/0x1ee0 [ 981.980873][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 981.985806][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 981.990642][T21911] do_syscall_64+0xb0/0x150 [ 981.995130][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 982.000997][T21911] [ 982.003306][T21911] Uninit was stored to memory at: [ 982.008318][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 982.014018][T21911] __msan_chain_origin+0x50/0x90 [ 982.018953][T21911] do_recvmmsg+0x105a/0x1ee0 [ 982.023531][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 982.028456][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 982.033292][T21911] do_syscall_64+0xb0/0x150 [ 982.037802][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 982.043672][T21911] [ 982.045984][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 982.052641][T21911] do_recvmmsg+0xc5/0x1ee0 [ 982.057049][T21911] do_recvmmsg+0xc5/0x1ee0 [ 982.214970][T21909] not chained 210000 origins [ 982.219592][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 982.228258][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 982.238483][T21909] Call Trace: [ 982.241778][T21909] dump_stack+0x1df/0x240 [ 982.246118][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 982.251838][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 982.256961][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 982.262868][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 982.268148][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 982.273335][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 982.279146][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 982.285198][T21909] ? kfree+0x61/0x30f0 [ 982.289257][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 982.294355][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 982.299890][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 982.305949][T21909] ? _copy_from_user+0x15b/0x260 [ 982.310872][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 982.315970][T21909] __msan_chain_origin+0x50/0x90 [ 982.320897][T21909] do_recvmmsg+0x105a/0x1ee0 [ 982.325587][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 982.330863][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 982.335872][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 982.340882][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 982.346761][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 982.351693][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 982.356548][T21909] do_syscall_64+0xb0/0x150 [ 982.361043][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 982.366918][T21909] RIP: 0033:0x45c1d9 [ 982.372540][T21909] Code: Bad RIP value. [ 982.376589][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 982.384984][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 982.392948][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 982.400916][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 982.408873][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 982.416829][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 982.424797][T21909] Uninit was stored to memory at: [ 982.429809][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 982.435511][T21909] __msan_chain_origin+0x50/0x90 [ 982.440434][T21909] do_recvmmsg+0x105a/0x1ee0 [ 982.445007][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 982.449929][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 982.454862][T21909] do_syscall_64+0xb0/0x150 [ 982.459350][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 982.465219][T21909] [ 982.467528][T21909] Uninit was stored to memory at: [ 982.472538][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 982.478242][T21909] __msan_chain_origin+0x50/0x90 [ 982.483162][T21909] do_recvmmsg+0x105a/0x1ee0 [ 982.487733][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 982.492656][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 982.497493][T21909] do_syscall_64+0xb0/0x150 [ 982.501981][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 982.507851][T21909] [ 982.510159][T21909] Uninit was stored to memory at: [ 982.515178][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 982.520880][T21909] __msan_chain_origin+0x50/0x90 [ 982.525799][T21909] do_recvmmsg+0x105a/0x1ee0 [ 982.530484][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 982.535407][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 982.540243][T21909] do_syscall_64+0xb0/0x150 [ 982.544732][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 982.550612][T21909] [ 982.552930][T21909] Uninit was stored to memory at: [ 982.557943][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 982.563645][T21909] __msan_chain_origin+0x50/0x90 [ 982.568587][T21909] do_recvmmsg+0x105a/0x1ee0 [ 982.573167][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 982.578095][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 982.582937][T21909] do_syscall_64+0xb0/0x150 [ 982.587425][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 982.593295][T21909] [ 982.595604][T21909] Uninit was stored to memory at: [ 982.600612][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 982.606324][T21909] __msan_chain_origin+0x50/0x90 [ 982.611248][T21909] do_recvmmsg+0x105a/0x1ee0 [ 982.615833][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 982.620752][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 982.625586][T21909] do_syscall_64+0xb0/0x150 [ 982.630071][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 982.635939][T21909] [ 982.638245][T21909] Uninit was stored to memory at: [ 982.643253][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 982.648953][T21909] __msan_chain_origin+0x50/0x90 [ 982.653874][T21909] do_recvmmsg+0x105a/0x1ee0 [ 982.658446][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 982.663367][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 982.668200][T21909] do_syscall_64+0xb0/0x150 [ 982.672691][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 982.678593][T21909] [ 982.680898][T21909] Uninit was stored to memory at: [ 982.685906][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 982.691621][T21909] __msan_chain_origin+0x50/0x90 [ 982.696552][T21909] do_recvmmsg+0x105a/0x1ee0 [ 982.701137][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 982.706062][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 982.710896][T21909] do_syscall_64+0xb0/0x150 [ 982.715387][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 982.721253][T21909] [ 982.723560][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 982.730390][T21909] do_recvmmsg+0xc5/0x1ee0 [ 982.734789][T21909] do_recvmmsg+0xc5/0x1ee0 [ 982.881997][T21911] not chained 220000 origins [ 982.886630][T21911] CPU: 0 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 982.895381][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 982.905464][T21911] Call Trace: [ 982.908775][T21911] dump_stack+0x1df/0x240 [ 982.913114][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 982.918919][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 982.924032][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 982.929932][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 982.935223][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 982.940423][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 982.946231][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 982.952300][T21911] ? kfree+0x61/0x30f0 [ 982.956371][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 982.961498][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 982.967050][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 982.973126][T21911] ? _copy_from_user+0x15b/0x260 [ 982.978063][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 982.983173][T21911] __msan_chain_origin+0x50/0x90 [ 982.988115][T21911] do_recvmmsg+0x105a/0x1ee0 [ 982.992755][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 982.998056][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 983.003090][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 983.008118][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 983.014029][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 983.018980][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 983.023835][T21911] do_syscall_64+0xb0/0x150 [ 983.028345][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.034236][T21911] RIP: 0033:0x45c1d9 [ 983.038119][T21911] Code: Bad RIP value. [ 983.042176][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 983.050585][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 983.058727][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 983.066692][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 983.074653][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 983.082616][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 983.090582][T21911] Uninit was stored to memory at: [ 983.095861][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 983.101572][T21911] __msan_chain_origin+0x50/0x90 [ 983.106495][T21911] do_recvmmsg+0x105a/0x1ee0 [ 983.111069][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 983.115992][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 983.120844][T21911] do_syscall_64+0xb0/0x150 [ 983.125335][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.131206][T21911] [ 983.133517][T21911] Uninit was stored to memory at: [ 983.138541][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 983.144245][T21911] __msan_chain_origin+0x50/0x90 [ 983.149170][T21911] do_recvmmsg+0x105a/0x1ee0 [ 983.153748][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 983.158674][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 983.163513][T21911] do_syscall_64+0xb0/0x150 [ 983.168003][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.173883][T21911] [ 983.176213][T21911] Uninit was stored to memory at: [ 983.181254][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 983.186970][T21911] __msan_chain_origin+0x50/0x90 [ 983.191893][T21911] do_recvmmsg+0x105a/0x1ee0 [ 983.196472][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 983.201396][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 983.206236][T21911] do_syscall_64+0xb0/0x150 [ 983.210726][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.216596][T21911] [ 983.218907][T21911] Uninit was stored to memory at: [ 983.223920][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 983.229628][T21911] __msan_chain_origin+0x50/0x90 [ 983.234564][T21911] do_recvmmsg+0x105a/0x1ee0 [ 983.239141][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 983.244064][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 983.248989][T21911] do_syscall_64+0xb0/0x150 [ 983.253478][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.259349][T21911] [ 983.261660][T21911] Uninit was stored to memory at: [ 983.266689][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 983.272407][T21911] __msan_chain_origin+0x50/0x90 [ 983.277342][T21911] do_recvmmsg+0x105a/0x1ee0 [ 983.281926][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 983.286849][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 983.291683][T21911] do_syscall_64+0xb0/0x150 [ 983.296203][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.302079][T21911] [ 983.304407][T21911] Uninit was stored to memory at: [ 983.309429][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 983.315136][T21911] __msan_chain_origin+0x50/0x90 [ 983.320060][T21911] do_recvmmsg+0x105a/0x1ee0 [ 983.324647][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 983.329672][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 983.334505][T21911] do_syscall_64+0xb0/0x150 [ 983.338992][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.344856][T21911] [ 983.347182][T21911] Uninit was stored to memory at: [ 983.352199][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 983.357899][T21911] __msan_chain_origin+0x50/0x90 [ 983.362820][T21911] do_recvmmsg+0x105a/0x1ee0 [ 983.367392][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 983.372311][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 983.377146][T21911] do_syscall_64+0xb0/0x150 [ 983.381722][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.387590][T21911] [ 983.389899][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 983.396573][T21911] do_recvmmsg+0xc5/0x1ee0 [ 983.400973][T21911] do_recvmmsg+0xc5/0x1ee0 [ 983.436277][T21909] not chained 230000 origins [ 983.440901][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 983.449571][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 983.459624][T21909] Call Trace: [ 983.462919][T21909] dump_stack+0x1df/0x240 [ 983.467259][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 983.472975][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 983.478091][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 983.483988][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 983.489278][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 983.494482][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 983.500286][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 983.506352][T21909] ? kfree+0x61/0x30f0 [ 983.510423][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 983.515537][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 983.521086][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 983.527159][T21909] ? _copy_from_user+0x15b/0x260 [ 983.532096][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 983.537209][T21909] __msan_chain_origin+0x50/0x90 [ 983.542239][T21909] do_recvmmsg+0x105a/0x1ee0 [ 983.546866][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 983.552155][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 983.557181][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 983.562207][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 983.568108][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 983.573062][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 983.577918][T21909] do_syscall_64+0xb0/0x150 [ 983.582427][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.588312][T21909] RIP: 0033:0x45c1d9 [ 983.592199][T21909] Code: Bad RIP value. [ 983.596264][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 983.604680][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 983.612826][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 983.620797][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 983.628768][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 983.636730][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 983.644699][T21909] Uninit was stored to memory at: [ 983.649723][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 983.655427][T21909] __msan_chain_origin+0x50/0x90 [ 983.660349][T21909] do_recvmmsg+0x105a/0x1ee0 [ 983.664926][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 983.669850][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 983.674687][T21909] do_syscall_64+0xb0/0x150 [ 983.679173][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.685042][T21909] [ 983.687347][T21909] Uninit was stored to memory at: [ 983.692358][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 983.698062][T21909] __msan_chain_origin+0x50/0x90 [ 983.703076][T21909] do_recvmmsg+0x105a/0x1ee0 [ 983.707648][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 983.712569][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 983.717403][T21909] do_syscall_64+0xb0/0x150 [ 983.721903][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.727768][T21909] [ 983.730075][T21909] Uninit was stored to memory at: [ 983.735172][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 983.740874][T21909] __msan_chain_origin+0x50/0x90 [ 983.745793][T21909] do_recvmmsg+0x105a/0x1ee0 [ 983.750363][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 983.755285][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 983.760132][T21909] do_syscall_64+0xb0/0x150 [ 983.764622][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.770502][T21909] [ 983.772818][T21909] Uninit was stored to memory at: [ 983.777849][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 983.783557][T21909] __msan_chain_origin+0x50/0x90 [ 983.788498][T21909] do_recvmmsg+0x105a/0x1ee0 [ 983.793084][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 983.798013][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 983.802852][T21909] do_syscall_64+0xb0/0x150 [ 983.807356][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.813225][T21909] [ 983.815547][T21909] Uninit was stored to memory at: [ 983.820558][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 983.826273][T21909] __msan_chain_origin+0x50/0x90 [ 983.831194][T21909] do_recvmmsg+0x105a/0x1ee0 [ 983.835770][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 983.840688][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 983.845621][T21909] do_syscall_64+0xb0/0x150 [ 983.850118][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.855986][T21909] [ 983.858305][T21909] Uninit was stored to memory at: [ 983.863316][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 983.869017][T21909] __msan_chain_origin+0x50/0x90 [ 983.873946][T21909] do_recvmmsg+0x105a/0x1ee0 [ 983.878529][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 983.883452][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 983.888289][T21909] do_syscall_64+0xb0/0x150 [ 983.892775][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.898655][T21909] [ 983.900962][T21909] Uninit was stored to memory at: [ 983.905971][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 983.911671][T21909] __msan_chain_origin+0x50/0x90 [ 983.916593][T21909] do_recvmmsg+0x105a/0x1ee0 [ 983.921188][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 983.926198][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 983.931033][T21909] do_syscall_64+0xb0/0x150 [ 983.935522][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 983.941387][T21909] [ 983.944742][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 983.951415][T21909] do_recvmmsg+0xc5/0x1ee0 [ 983.955831][T21909] do_recvmmsg+0xc5/0x1ee0 [ 984.014583][T21918] not chained 240000 origins [ 984.019221][T21918] CPU: 1 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 984.027894][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 984.037956][T21918] Call Trace: [ 984.041262][T21918] dump_stack+0x1df/0x240 [ 984.045605][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 984.051318][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 984.056853][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 984.062733][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 984.068004][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 984.073193][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 984.078986][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 984.085038][T21918] ? kfree+0x61/0x30f0 [ 984.089100][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 984.094198][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 984.099730][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 984.105794][T21918] ? _copy_from_user+0x15b/0x260 [ 984.110716][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 984.115986][T21918] __msan_chain_origin+0x50/0x90 [ 984.120914][T21918] do_recvmmsg+0x105a/0x1ee0 [ 984.125516][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 984.130791][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 984.135803][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 984.140823][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 984.146714][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 984.151653][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 984.156495][T21918] do_syscall_64+0xb0/0x150 [ 984.160988][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 984.166870][T21918] RIP: 0033:0x45c1d9 [ 984.170744][T21918] Code: Bad RIP value. [ 984.174793][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 984.183191][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 984.191145][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 984.199099][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 984.207054][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 984.215011][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 984.223062][T21918] Uninit was stored to memory at: [ 984.228076][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 984.233778][T21918] __msan_chain_origin+0x50/0x90 [ 984.238700][T21918] do_recvmmsg+0x105a/0x1ee0 [ 984.243272][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 984.248194][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 984.253040][T21918] do_syscall_64+0xb0/0x150 [ 984.257528][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 984.263403][T21918] [ 984.265712][T21918] Uninit was stored to memory at: [ 984.270721][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 984.276439][T21918] __msan_chain_origin+0x50/0x90 [ 984.281360][T21918] do_recvmmsg+0x105a/0x1ee0 [ 984.285938][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 984.290861][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 984.295699][T21918] do_syscall_64+0xb0/0x150 [ 984.300188][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 984.306087][T21918] [ 984.308395][T21918] Uninit was stored to memory at: [ 984.313404][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 984.319104][T21918] __msan_chain_origin+0x50/0x90 [ 984.324025][T21918] do_recvmmsg+0x105a/0x1ee0 [ 984.328599][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 984.333522][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 984.338369][T21918] do_syscall_64+0xb0/0x150 [ 984.342857][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 984.348725][T21918] [ 984.351036][T21918] Uninit was stored to memory at: [ 984.356047][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 984.361764][T21918] __msan_chain_origin+0x50/0x90 [ 984.366686][T21918] do_recvmmsg+0x105a/0x1ee0 [ 984.371258][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 984.376191][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 984.381026][T21918] do_syscall_64+0xb0/0x150 [ 984.385514][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 984.391381][T21918] [ 984.393691][T21918] Uninit was stored to memory at: [ 984.398714][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 984.404414][T21918] __msan_chain_origin+0x50/0x90 [ 984.409334][T21918] do_recvmmsg+0x105a/0x1ee0 [ 984.413908][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 984.418841][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 984.423674][T21918] do_syscall_64+0xb0/0x150 [ 984.428159][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 984.434026][T21918] [ 984.436334][T21918] Uninit was stored to memory at: [ 984.441344][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 984.447045][T21918] __msan_chain_origin+0x50/0x90 [ 984.451965][T21918] do_recvmmsg+0x105a/0x1ee0 [ 984.456538][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 984.461458][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 984.466290][T21918] do_syscall_64+0xb0/0x150 [ 984.470779][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 984.476647][T21918] [ 984.478954][T21918] Uninit was stored to memory at: [ 984.483963][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 984.489665][T21918] __msan_chain_origin+0x50/0x90 [ 984.494585][T21918] do_recvmmsg+0x105a/0x1ee0 [ 984.499156][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 984.504078][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 984.508911][T21918] do_syscall_64+0xb0/0x150 [ 984.513401][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 984.519267][T21918] [ 984.521574][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 984.528239][T21918] do_recvmmsg+0xc5/0x1ee0 [ 984.532641][T21918] do_recvmmsg+0xc5/0x1ee0 [ 984.667934][T21911] not chained 250000 origins [ 984.672565][T21911] CPU: 0 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 984.681231][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 984.691289][T21911] Call Trace: [ 984.694589][T21911] dump_stack+0x1df/0x240 [ 984.698932][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 984.704653][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 984.709781][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 984.715682][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 984.720978][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 984.726183][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 984.731995][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 984.738072][T21911] ? kfree+0x61/0x30f0 [ 984.742148][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 984.747262][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 984.752814][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 984.758900][T21911] ? _copy_from_user+0x15b/0x260 [ 984.763857][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 984.768976][T21911] __msan_chain_origin+0x50/0x90 [ 984.773925][T21911] do_recvmmsg+0x105a/0x1ee0 [ 984.778556][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 984.783855][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 984.788969][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 984.794004][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 984.799900][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 984.804851][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 984.809792][T21911] do_syscall_64+0xb0/0x150 [ 984.814302][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 984.820187][T21911] RIP: 0033:0x45c1d9 [ 984.824066][T21911] Code: Bad RIP value. [ 984.828128][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 984.836536][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 984.844506][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 984.852477][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 984.860451][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 984.868425][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 984.876410][T21911] Uninit was stored to memory at: [ 984.881449][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 984.887173][T21911] __msan_chain_origin+0x50/0x90 [ 984.892111][T21911] do_recvmmsg+0x105a/0x1ee0 [ 984.896702][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 984.901636][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 984.906494][T21911] do_syscall_64+0xb0/0x150 [ 984.911001][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 984.916882][T21911] [ 984.919205][T21911] Uninit was stored to memory at: [ 984.924230][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 984.929954][T21911] __msan_chain_origin+0x50/0x90 [ 984.934980][T21911] do_recvmmsg+0x105a/0x1ee0 [ 984.939566][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 984.944504][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 984.949359][T21911] do_syscall_64+0xb0/0x150 [ 984.954909][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 984.960790][T21911] [ 984.963113][T21911] Uninit was stored to memory at: [ 984.968142][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 984.973876][T21911] __msan_chain_origin+0x50/0x90 [ 984.978819][T21911] do_recvmmsg+0x105a/0x1ee0 [ 984.983412][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 984.988351][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 984.993203][T21911] do_syscall_64+0xb0/0x150 [ 984.997704][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 985.003588][T21911] [ 985.005912][T21911] Uninit was stored to memory at: [ 985.010936][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 985.016657][T21911] __msan_chain_origin+0x50/0x90 [ 985.021596][T21911] do_recvmmsg+0x105a/0x1ee0 [ 985.026189][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 985.031127][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 985.035985][T21911] do_syscall_64+0xb0/0x150 [ 985.040487][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 985.046451][T21911] [ 985.048766][T21911] Uninit was stored to memory at: [ 985.053792][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 985.059511][T21911] __msan_chain_origin+0x50/0x90 [ 985.064450][T21911] do_recvmmsg+0x105a/0x1ee0 [ 985.069043][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 985.073984][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 985.078838][T21911] do_syscall_64+0xb0/0x150 [ 985.083343][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 985.089222][T21911] [ 985.091544][T21911] Uninit was stored to memory at: [ 985.097097][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 985.102817][T21911] __msan_chain_origin+0x50/0x90 [ 985.107765][T21911] do_recvmmsg+0x105a/0x1ee0 [ 985.112360][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 985.117302][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 985.122152][T21911] do_syscall_64+0xb0/0x150 [ 985.126669][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 985.132552][T21911] [ 985.134877][T21911] Uninit was stored to memory at: [ 985.139910][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 985.145741][T21911] __msan_chain_origin+0x50/0x90 [ 985.150684][T21911] do_recvmmsg+0x105a/0x1ee0 [ 985.155281][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 985.160216][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 985.165065][T21911] do_syscall_64+0xb0/0x150 [ 985.169566][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 985.175454][T21911] [ 985.177778][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 985.184546][T21911] do_recvmmsg+0xc5/0x1ee0 [ 985.188965][T21911] do_recvmmsg+0xc5/0x1ee0 [ 985.369971][T21909] not chained 260000 origins [ 985.374606][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 985.383319][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 985.393375][T21909] Call Trace: [ 985.396682][T21909] dump_stack+0x1df/0x240 [ 985.401023][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 985.406748][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 985.411864][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 985.417763][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 985.423061][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 985.428268][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 985.434085][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 985.440267][T21909] ? kfree+0x61/0x30f0 [ 985.444345][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 985.449461][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 985.455013][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 985.461089][T21909] ? _copy_from_user+0x15b/0x260 [ 985.466030][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 985.471145][T21909] __msan_chain_origin+0x50/0x90 [ 985.476090][T21909] do_recvmmsg+0x105a/0x1ee0 [ 985.480718][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 985.486011][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 985.491039][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 985.496070][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 985.501970][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 985.506928][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 985.511788][T21909] do_syscall_64+0xb0/0x150 [ 985.516342][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 985.522233][T21909] RIP: 0033:0x45c1d9 [ 985.526116][T21909] Code: Bad RIP value. [ 985.530172][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 985.538584][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 985.546556][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 985.554527][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 985.562498][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 985.570472][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 985.578547][T21909] Uninit was stored to memory at: [ 985.583587][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 985.589310][T21909] __msan_chain_origin+0x50/0x90 [ 985.594257][T21909] do_recvmmsg+0x105a/0x1ee0 [ 985.598843][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 985.603778][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 985.608642][T21909] do_syscall_64+0xb0/0x150 [ 985.613156][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 985.619038][T21909] [ 985.621361][T21909] Uninit was stored to memory at: [ 985.626395][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 985.632117][T21909] __msan_chain_origin+0x50/0x90 [ 985.637059][T21909] do_recvmmsg+0x105a/0x1ee0 [ 985.641656][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 985.646591][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 985.651442][T21909] do_syscall_64+0xb0/0x150 [ 985.655953][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 985.661832][T21909] [ 985.664325][T21909] Uninit was stored to memory at: [ 985.669349][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 985.675068][T21909] __msan_chain_origin+0x50/0x90 [ 985.680020][T21909] do_recvmmsg+0x105a/0x1ee0 [ 985.684623][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 985.689575][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 985.694434][T21909] do_syscall_64+0xb0/0x150 [ 985.698942][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 985.704821][T21909] [ 985.707140][T21909] Uninit was stored to memory at: [ 985.712170][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 985.717889][T21909] __msan_chain_origin+0x50/0x90 [ 985.722830][T21909] do_recvmmsg+0x105a/0x1ee0 [ 985.727424][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 985.732367][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 985.737219][T21909] do_syscall_64+0xb0/0x150 [ 985.741727][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 985.747605][T21909] [ 985.749924][T21909] Uninit was stored to memory at: [ 985.754955][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 985.761811][T21909] __msan_chain_origin+0x50/0x90 [ 985.766759][T21909] do_recvmmsg+0x105a/0x1ee0 [ 985.771356][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 985.776316][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 985.781171][T21909] do_syscall_64+0xb0/0x150 [ 985.785678][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 985.791561][T21909] [ 985.793900][T21909] Uninit was stored to memory at: [ 985.798938][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 985.804664][T21909] __msan_chain_origin+0x50/0x90 [ 985.809604][T21909] do_recvmmsg+0x105a/0x1ee0 [ 985.814192][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 985.819131][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 985.823983][T21909] do_syscall_64+0xb0/0x150 [ 985.828483][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 985.834362][T21909] [ 985.836681][T21909] Uninit was stored to memory at: [ 985.841707][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 985.847428][T21909] __msan_chain_origin+0x50/0x90 [ 985.852371][T21909] do_recvmmsg+0x105a/0x1ee0 [ 985.856967][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 985.861904][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 985.866757][T21909] do_syscall_64+0xb0/0x150 [ 985.871267][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 985.877154][T21909] [ 985.879473][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 985.886147][T21909] do_recvmmsg+0xc5/0x1ee0 [ 985.890566][T21909] do_recvmmsg+0xc5/0x1ee0 [ 986.037970][T21911] not chained 270000 origins [ 986.042604][T21911] CPU: 0 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 986.051275][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 986.061336][T21911] Call Trace: [ 986.064640][T21911] dump_stack+0x1df/0x240 [ 986.068984][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 986.074709][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 986.079831][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 986.085734][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 986.091029][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 986.096236][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 986.102515][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 986.108616][T21911] ? kfree+0x61/0x30f0 [ 986.112697][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 986.117815][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 986.123366][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 986.129439][T21911] ? _copy_from_user+0x15b/0x260 [ 986.134378][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 986.139489][T21911] __msan_chain_origin+0x50/0x90 [ 986.144434][T21911] do_recvmmsg+0x105a/0x1ee0 [ 986.149067][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 986.154364][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 986.159392][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 986.164422][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 986.172411][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 986.177358][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 986.182211][T21911] do_syscall_64+0xb0/0x150 [ 986.186724][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 986.192613][T21911] RIP: 0033:0x45c1d9 [ 986.196494][T21911] Code: Bad RIP value. [ 986.200551][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 986.208963][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 986.216937][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 986.224916][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 986.232898][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 986.240886][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 986.248867][T21911] Uninit was stored to memory at: [ 986.253908][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 986.259637][T21911] __msan_chain_origin+0x50/0x90 [ 986.264580][T21911] do_recvmmsg+0x105a/0x1ee0 [ 986.269173][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 986.274115][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 986.278979][T21911] do_syscall_64+0xb0/0x150 [ 986.283489][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 986.289368][T21911] [ 986.291688][T21911] Uninit was stored to memory at: [ 986.296719][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 986.302447][T21911] __msan_chain_origin+0x50/0x90 [ 986.307387][T21911] do_recvmmsg+0x105a/0x1ee0 [ 986.312152][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 986.317091][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 986.321938][T21911] do_syscall_64+0xb0/0x150 [ 986.326445][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 986.332327][T21911] [ 986.334647][T21911] Uninit was stored to memory at: [ 986.339670][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 986.345393][T21911] __msan_chain_origin+0x50/0x90 [ 986.350336][T21911] do_recvmmsg+0x105a/0x1ee0 [ 986.354927][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 986.359863][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 986.364722][T21911] do_syscall_64+0xb0/0x150 [ 986.369227][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 986.375200][T21911] [ 986.377518][T21911] Uninit was stored to memory at: [ 986.382561][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 986.388281][T21911] __msan_chain_origin+0x50/0x90 [ 986.393224][T21911] do_recvmmsg+0x105a/0x1ee0 [ 986.397818][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 986.402766][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 986.407615][T21911] do_syscall_64+0xb0/0x150 [ 986.412116][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 986.418083][T21911] [ 986.420404][T21911] Uninit was stored to memory at: [ 986.425435][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 986.431155][T21911] __msan_chain_origin+0x50/0x90 [ 986.436104][T21911] do_recvmmsg+0x105a/0x1ee0 [ 986.440696][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 986.445635][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 986.450489][T21911] do_syscall_64+0xb0/0x150 [ 986.454995][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 986.460874][T21911] [ 986.463199][T21911] Uninit was stored to memory at: [ 986.468226][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 986.474043][T21911] __msan_chain_origin+0x50/0x90 [ 986.478983][T21911] do_recvmmsg+0x105a/0x1ee0 [ 986.483578][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 986.488518][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 986.493369][T21911] do_syscall_64+0xb0/0x150 [ 986.497871][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 986.503755][T21911] [ 986.506076][T21911] Uninit was stored to memory at: [ 986.511110][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 986.516834][T21911] __msan_chain_origin+0x50/0x90 [ 986.521776][T21911] do_recvmmsg+0x105a/0x1ee0 [ 986.526368][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 986.531308][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 986.536168][T21911] do_syscall_64+0xb0/0x150 [ 986.540677][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 986.546555][T21911] [ 986.548875][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 986.555564][T21911] do_recvmmsg+0xc5/0x1ee0 [ 986.560008][T21911] do_recvmmsg+0xc5/0x1ee0 [ 986.727305][T21918] not chained 280000 origins [ 986.731935][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 986.740604][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 986.750661][T21918] Call Trace: [ 986.753962][T21918] dump_stack+0x1df/0x240 [ 986.758302][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 986.764032][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 986.769152][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 986.775056][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 986.780353][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 986.785561][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 986.791372][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 986.797451][T21918] ? kfree+0x61/0x30f0 [ 986.801533][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 986.806656][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 986.812239][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 986.818320][T21918] ? _copy_from_user+0x15b/0x260 [ 986.823268][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 986.828396][T21918] __msan_chain_origin+0x50/0x90 [ 986.833344][T21918] do_recvmmsg+0x105a/0x1ee0 [ 986.838145][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 986.843442][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 986.848469][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 986.853501][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 986.859409][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 986.864364][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 986.869219][T21918] do_syscall_64+0xb0/0x150 [ 986.873900][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 986.879784][T21918] RIP: 0033:0x45c1d9 [ 986.883669][T21918] Code: Bad RIP value. [ 986.887726][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 986.896145][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 986.904115][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 986.912080][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 986.920047][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 986.928018][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 986.935997][T21918] Uninit was stored to memory at: [ 986.941023][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 986.946738][T21918] __msan_chain_origin+0x50/0x90 [ 986.951677][T21918] do_recvmmsg+0x105a/0x1ee0 [ 986.956266][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 986.961231][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 986.966083][T21918] do_syscall_64+0xb0/0x150 [ 986.970585][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 986.976463][T21918] [ 986.978780][T21918] Uninit was stored to memory at: [ 986.983825][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 986.989548][T21918] __msan_chain_origin+0x50/0x90 [ 986.994482][T21918] do_recvmmsg+0x105a/0x1ee0 [ 986.999071][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 987.004003][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 987.008848][T21918] do_syscall_64+0xb0/0x150 [ 987.013347][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 987.019222][T21918] [ 987.021539][T21918] Uninit was stored to memory at: [ 987.026561][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 987.032269][T21918] __msan_chain_origin+0x50/0x90 [ 987.037376][T21918] do_recvmmsg+0x105a/0x1ee0 [ 987.041960][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 987.046894][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 987.051740][T21918] do_syscall_64+0xb0/0x150 [ 987.056248][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 987.062126][T21918] [ 987.064442][T21918] Uninit was stored to memory at: [ 987.069464][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 987.075179][T21918] __msan_chain_origin+0x50/0x90 [ 987.080114][T21918] do_recvmmsg+0x105a/0x1ee0 [ 987.084707][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 987.089728][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 987.094581][T21918] do_syscall_64+0xb0/0x150 [ 987.099197][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 987.105263][T21918] [ 987.107581][T21918] Uninit was stored to memory at: [ 987.112605][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 987.118317][T21918] __msan_chain_origin+0x50/0x90 [ 987.123253][T21918] do_recvmmsg+0x105a/0x1ee0 [ 987.127839][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 987.132858][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 987.137706][T21918] do_syscall_64+0xb0/0x150 [ 987.142206][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 987.148104][T21918] [ 987.150420][T21918] Uninit was stored to memory at: [ 987.155454][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 987.161167][T21918] __msan_chain_origin+0x50/0x90 [ 987.166102][T21918] do_recvmmsg+0x105a/0x1ee0 [ 987.170688][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 987.175624][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 987.180472][T21918] do_syscall_64+0xb0/0x150 [ 987.184976][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 987.190855][T21918] [ 987.193172][T21918] Uninit was stored to memory at: [ 987.198194][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 987.203909][T21918] __msan_chain_origin+0x50/0x90 [ 987.208843][T21918] do_recvmmsg+0x105a/0x1ee0 [ 987.213429][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 987.218362][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 987.223210][T21918] do_syscall_64+0xb0/0x150 [ 987.227712][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 987.233588][T21918] [ 987.235911][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 987.242589][T21918] do_recvmmsg+0xc5/0x1ee0 [ 987.247003][T21918] do_recvmmsg+0xc5/0x1ee0 [ 987.687039][T21909] not chained 290000 origins [ 987.691766][T21909] CPU: 1 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 987.700435][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 987.710492][T21909] Call Trace: [ 987.713797][T21909] dump_stack+0x1df/0x240 [ 987.718140][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 987.723869][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 987.728988][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 987.734890][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 987.740181][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 987.745387][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 987.751206][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 987.757277][T21909] ? kfree+0x61/0x30f0 [ 987.761527][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 987.766643][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 987.772203][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 987.778286][T21909] ? _copy_from_user+0x15b/0x260 [ 987.783238][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 987.788362][T21909] __msan_chain_origin+0x50/0x90 [ 987.793316][T21909] do_recvmmsg+0x105a/0x1ee0 [ 987.797952][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 987.803258][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 987.808289][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 987.813320][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 987.822529][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 987.827489][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 987.832348][T21909] do_syscall_64+0xb0/0x150 [ 987.836864][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 987.842755][T21909] RIP: 0033:0x45c1d9 [ 987.846640][T21909] Code: Bad RIP value. [ 987.850700][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 987.859114][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 987.867298][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 987.875280][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 987.883382][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 987.891358][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 987.899342][T21909] Uninit was stored to memory at: [ 987.904381][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 987.910191][T21909] __msan_chain_origin+0x50/0x90 [ 987.915137][T21909] do_recvmmsg+0x105a/0x1ee0 [ 987.919730][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 987.924671][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 987.929524][T21909] do_syscall_64+0xb0/0x150 [ 987.934032][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 987.939911][T21909] [ 987.942233][T21909] Uninit was stored to memory at: [ 987.947261][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 987.952984][T21909] __msan_chain_origin+0x50/0x90 [ 987.957920][T21909] do_recvmmsg+0x105a/0x1ee0 [ 987.962504][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 987.967455][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 987.972306][T21909] do_syscall_64+0xb0/0x150 [ 987.976812][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 987.982695][T21909] [ 987.985016][T21909] Uninit was stored to memory at: [ 987.990043][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 987.995772][T21909] __msan_chain_origin+0x50/0x90 [ 988.000706][T21909] do_recvmmsg+0x105a/0x1ee0 [ 988.005300][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 988.010242][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 988.015096][T21909] do_syscall_64+0xb0/0x150 [ 988.019602][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 988.025481][T21909] [ 988.027804][T21909] Uninit was stored to memory at: [ 988.032832][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 988.038550][T21909] __msan_chain_origin+0x50/0x90 [ 988.043488][T21909] do_recvmmsg+0x105a/0x1ee0 [ 988.048075][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 988.053009][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 988.057859][T21909] do_syscall_64+0xb0/0x150 [ 988.062364][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 988.068246][T21909] [ 988.070563][T21909] Uninit was stored to memory at: [ 988.075590][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 988.081311][T21909] __msan_chain_origin+0x50/0x90 [ 988.086294][T21909] do_recvmmsg+0x105a/0x1ee0 [ 988.090884][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 988.095822][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 988.100668][T21909] do_syscall_64+0xb0/0x150 [ 988.105347][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 988.111230][T21909] [ 988.113551][T21909] Uninit was stored to memory at: [ 988.118578][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 988.124302][T21909] __msan_chain_origin+0x50/0x90 [ 988.129244][T21909] do_recvmmsg+0x105a/0x1ee0 [ 988.133829][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 988.138762][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 988.143612][T21909] do_syscall_64+0xb0/0x150 [ 988.148115][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 988.153996][T21909] [ 988.156317][T21909] Uninit was stored to memory at: [ 988.161346][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 988.167068][T21909] __msan_chain_origin+0x50/0x90 [ 988.167074][T21911] not chained 300000 origins [ 988.167093][T21911] CPU: 0 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 988.172005][T21909] do_recvmmsg+0x105a/0x1ee0 [ 988.176574][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 988.185239][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 988.189787][T21911] Call Trace: [ 988.199829][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 988.204759][T21911] dump_stack+0x1df/0x240 [ 988.208032][T21909] do_syscall_64+0xb0/0x150 [ 988.212854][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 988.217158][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 988.221635][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 988.227314][T21909] [ 988.233190][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 988.238269][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 988.240580][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 988.246448][T21909] do_recvmmsg+0xc5/0x1ee0 [ 988.253094][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 988.258350][T21909] do_recvmmsg+0xc5/0x1ee0 [ 988.262774][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 988.278127][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 988.284197][T21911] ? kfree+0x61/0x30f0 [ 988.288267][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 988.293379][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 988.299534][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 988.305604][T21911] ? _copy_from_user+0x15b/0x260 [ 988.310540][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 988.315655][T21911] __msan_chain_origin+0x50/0x90 [ 988.320602][T21911] do_recvmmsg+0x105a/0x1ee0 [ 988.325223][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 988.330520][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 988.335541][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 988.340565][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 988.346553][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 988.351500][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 988.356370][T21911] do_syscall_64+0xb0/0x150 [ 988.360883][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 988.366772][T21911] RIP: 0033:0x45c1d9 [ 988.370650][T21911] Code: Bad RIP value. [ 988.374708][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 988.383130][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 988.391097][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 988.399064][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 988.407043][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 988.415020][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 988.423000][T21911] Uninit was stored to memory at: [ 988.428030][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 988.433750][T21911] __msan_chain_origin+0x50/0x90 [ 988.438688][T21911] do_recvmmsg+0x105a/0x1ee0 [ 988.443279][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 988.448227][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 988.453077][T21911] do_syscall_64+0xb0/0x150 [ 988.457579][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 988.463456][T21911] [ 988.465773][T21911] Uninit was stored to memory at: [ 988.470723][T21918] not chained 310000 origins [ 988.470794][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 988.475887][T21918] CPU: 1 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 988.481581][T21911] __msan_chain_origin+0x50/0x90 [ 988.490216][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 988.495139][T21911] do_recvmmsg+0x105a/0x1ee0 [ 988.505160][T21918] Call Trace: [ 988.509737][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 988.513016][T21918] dump_stack+0x1df/0x240 [ 988.517935][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 988.522244][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 988.527082][T21911] do_syscall_64+0xb0/0x150 [ 988.532790][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 988.537277][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 988.542359][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 988.548215][T21911] [ 988.554094][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 988.556389][T21911] Uninit was stored to memory at: [ 988.561657][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 988.566653][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 988.571840][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 988.577531][T21911] __msan_chain_origin+0x50/0x90 [ 988.583338][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 988.588263][T21911] do_recvmmsg+0x105a/0x1ee0 [ 988.594316][T21918] ? kfree+0x61/0x30f0 [ 988.598880][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 988.602922][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 988.607933][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 988.613027][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 988.617880][T21911] do_syscall_64+0xb0/0x150 [ 988.623395][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 988.627875][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 988.634263][T21918] ? _copy_from_user+0x15b/0x260 [ 988.640119][T21911] [ 988.645043][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 988.647336][T21911] Uninit was stored to memory at: [ 988.652438][T21918] __msan_chain_origin+0x50/0x90 [ 988.657437][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 988.662351][T21918] do_recvmmsg+0x105a/0x1ee0 [ 988.668040][T21911] __msan_chain_origin+0x50/0x90 [ 988.672629][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 988.677518][T21911] do_recvmmsg+0x105a/0x1ee0 [ 988.682777][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 988.687340][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 988.692336][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 988.697236][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 988.697256][T21911] do_syscall_64+0xb0/0x150 [ 988.702258][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 988.707081][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 988.711556][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 988.717409][T21911] [ 988.723289][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 988.728186][T21911] Uninit was stored to memory at: [ 988.730502][T21918] do_syscall_64+0xb0/0x150 [ 988.735324][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 988.740325][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 988.744802][T21911] __msan_chain_origin+0x50/0x90 [ 988.750490][T21918] RIP: 0033:0x45c1d9 [ 988.756362][T21911] do_recvmmsg+0x105a/0x1ee0 [ 988.761263][T21918] Code: Bad RIP value. [ 988.765237][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 988.765257][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 988.769811][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 988.773862][T21911] do_syscall_64+0xb0/0x150 [ 988.778779][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 988.783636][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 988.792011][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 988.796483][T21911] [ 988.804525][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 988.810402][T21911] Uninit was stored to memory at: [ 988.818356][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 988.820680][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 988.828621][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 988.833623][T21911] __msan_chain_origin+0x50/0x90 [ 988.841569][T21918] Uninit was stored to memory at: [ 988.847267][T21911] do_recvmmsg+0x105a/0x1ee0 [ 988.855213][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 988.860127][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 988.865137][T21918] __msan_chain_origin+0x50/0x90 [ 988.869701][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 988.875404][T21918] do_recvmmsg+0x105a/0x1ee0 [ 988.880326][T21911] do_syscall_64+0xb0/0x150 [ 988.885239][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 988.890064][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 988.894623][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 988.899184][T21911] [ 988.904121][T21918] do_syscall_64+0xb0/0x150 [ 988.909976][T21911] Uninit was stored to memory at: [ 988.914809][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 988.917111][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 988.921574][T21918] [ 988.926610][T21911] __msan_chain_origin+0x50/0x90 [ 988.932477][T21918] Uninit was stored to memory at: [ 988.938178][T21911] do_recvmmsg+0x105a/0x1ee0 [ 988.940481][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 988.945395][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 988.950408][T21918] __msan_chain_origin+0x50/0x90 [ 988.954973][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 988.960664][T21918] do_recvmmsg+0x105a/0x1ee0 [ 988.965575][T21911] do_syscall_64+0xb0/0x150 [ 988.970484][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 988.975308][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 988.979871][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 988.984336][T21911] [ 988.989260][T21918] do_syscall_64+0xb0/0x150 [ 988.995117][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 988.999949][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 989.002245][T21911] do_recvmmsg+0xc5/0x1ee0 [ 989.002263][T21911] do_recvmmsg+0xc5/0x1ee0 [ 989.006729][T21918] [ 989.030375][T21918] Uninit was stored to memory at: [ 989.035405][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 989.041131][T21918] __msan_chain_origin+0x50/0x90 [ 989.046075][T21918] do_recvmmsg+0x105a/0x1ee0 [ 989.050670][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 989.055615][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 989.060470][T21918] do_syscall_64+0xb0/0x150 [ 989.064978][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 989.070859][T21918] [ 989.073181][T21918] Uninit was stored to memory at: [ 989.078208][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 989.083935][T21918] __msan_chain_origin+0x50/0x90 [ 989.088872][T21918] do_recvmmsg+0x105a/0x1ee0 [ 989.093464][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 989.098410][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 989.103269][T21918] do_syscall_64+0xb0/0x150 [ 989.107774][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 989.113654][T21918] [ 989.115990][T21918] Uninit was stored to memory at: [ 989.121016][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 989.126739][T21918] __msan_chain_origin+0x50/0x90 [ 989.131686][T21918] do_recvmmsg+0x105a/0x1ee0 [ 989.136278][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 989.141220][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 989.146079][T21918] do_syscall_64+0xb0/0x150 [ 989.150577][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 989.156456][T21918] [ 989.158775][T21918] Uninit was stored to memory at: [ 989.163807][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 989.169526][T21918] __msan_chain_origin+0x50/0x90 [ 989.174467][T21918] do_recvmmsg+0x105a/0x1ee0 [ 989.179227][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 989.184177][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 989.189034][T21918] do_syscall_64+0xb0/0x150 [ 989.193542][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 989.199424][T21918] [ 989.201741][T21918] Uninit was stored to memory at: [ 989.206768][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 989.212579][T21918] __msan_chain_origin+0x50/0x90 [ 989.217552][T21918] do_recvmmsg+0x105a/0x1ee0 [ 989.222145][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 989.227435][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 989.232289][T21918] do_syscall_64+0xb0/0x150 [ 989.236799][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 989.242684][T21918] [ 989.245059][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 989.251743][T21918] do_recvmmsg+0xc5/0x1ee0 [ 989.256269][T21918] do_recvmmsg+0xc5/0x1ee0 [ 990.194387][T21909] not chained 320000 origins [ 990.199015][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 990.207677][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 990.217740][T21909] Call Trace: [ 990.221043][T21909] dump_stack+0x1df/0x240 [ 990.225383][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 990.231191][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 990.236307][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 990.242199][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 990.247488][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 990.252691][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 990.258500][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 990.264563][T21909] ? kfree+0x61/0x30f0 [ 990.268636][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 990.273784][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 990.279338][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 990.285587][T21909] ? _copy_from_user+0x15b/0x260 [ 990.290522][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 990.295628][T21909] __msan_chain_origin+0x50/0x90 [ 990.300568][T21909] do_recvmmsg+0x105a/0x1ee0 [ 990.305196][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 990.310481][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 990.315505][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 990.319978][T21918] not chained 330000 origins [ 990.320526][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 990.330984][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 990.335918][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 990.340758][T21909] do_syscall_64+0xb0/0x150 [ 990.345250][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 990.351136][T21909] RIP: 0033:0x45c1d9 [ 990.355027][T21909] Code: Bad RIP value. [ 990.359074][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 990.367645][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 990.375598][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 990.383549][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 990.391501][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 990.399454][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 990.407413][T21909] Uninit was stored to memory at: [ 990.407425][T21918] CPU: 1 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 990.407438][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 990.412440][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 990.421077][T21918] Call Trace: [ 990.431132][T21909] __msan_chain_origin+0x50/0x90 [ 990.436825][T21918] dump_stack+0x1df/0x240 [ 990.440086][T21909] do_recvmmsg+0x105a/0x1ee0 [ 990.445008][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 990.449312][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 990.453875][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 990.459568][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 990.464482][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 990.469566][T21909] do_syscall_64+0xb0/0x150 [ 990.474388][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 990.480259][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 990.484742][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 990.489990][T21909] [ 990.495881][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 990.501040][T21909] Uninit was stored to memory at: [ 990.503371][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 990.509154][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 990.514152][T21918] ? kfree+0x61/0x30f0 [ 990.520220][T21909] __msan_chain_origin+0x50/0x90 [ 990.520244][T21909] do_recvmmsg+0x105a/0x1ee0 [ 990.525936][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 990.529981][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 990.534890][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 990.539465][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 990.544550][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 990.549461][T21909] do_syscall_64+0xb0/0x150 [ 990.554978][T21918] ? _copy_from_user+0x15b/0x260 [ 990.559807][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 990.565846][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 990.570312][T21909] [ 990.575241][T21918] __msan_chain_origin+0x50/0x90 [ 990.581114][T21909] Uninit was stored to memory at: [ 990.586208][T21918] do_recvmmsg+0x105a/0x1ee0 [ 990.588512][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 990.593448][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 990.598422][T21909] __msan_chain_origin+0x50/0x90 [ 990.602987][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 990.608679][T21909] do_recvmmsg+0x105a/0x1ee0 [ 990.613936][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 990.618848][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 990.623847][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 990.628416][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 990.633411][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 990.638321][T21909] do_syscall_64+0xb0/0x150 [ 990.644188][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 990.649009][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 990.653987][T21918] do_syscall_64+0xb0/0x150 [ 990.658468][T21909] [ 990.663303][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 990.669167][T21909] Uninit was stored to memory at: [ 990.673648][T21918] RIP: 0033:0x45c1d9 [ 990.675960][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 990.681817][T21918] Code: Bad RIP value. [ 990.686822][T21909] __msan_chain_origin+0x50/0x90 [ 990.690695][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 990.696390][T21909] do_recvmmsg+0x105a/0x1ee0 [ 990.700425][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 990.705340][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 990.713718][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 990.718376][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 990.726321][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 990.731236][T21909] do_syscall_64+0xb0/0x150 [ 990.739183][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 990.744104][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 990.752058][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 990.756527][T21909] [ 990.764482][T21918] Uninit was stored to memory at: [ 990.770352][T21909] Uninit was stored to memory at: [ 990.778325][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 990.780631][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 990.785635][T21918] __msan_chain_origin+0x50/0x90 [ 990.790640][T21909] __msan_chain_origin+0x50/0x90 [ 990.796432][T21918] do_recvmmsg+0x105a/0x1ee0 [ 990.802124][T21909] do_recvmmsg+0x105a/0x1ee0 [ 990.807034][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 990.811947][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 990.816522][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 990.821081][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 990.821103][T21909] do_syscall_64+0xb0/0x150 [ 990.826014][T21918] do_syscall_64+0xb0/0x150 [ 990.830924][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 990.835754][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 990.840565][T21909] [ 990.845126][T21918] [ 990.849689][T21909] Uninit was stored to memory at: [ 990.855552][T21918] Uninit was stored to memory at: [ 990.861427][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 990.863731][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 990.866039][T21909] __msan_chain_origin+0x50/0x90 [ 990.871037][T21918] __msan_chain_origin+0x50/0x90 [ 990.876036][T21909] do_recvmmsg+0x105a/0x1ee0 [ 990.881730][T21918] do_recvmmsg+0x105a/0x1ee0 [ 990.887438][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 990.892439][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 990.897352][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 990.901923][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 990.906498][T21909] do_syscall_64+0xb0/0x150 [ 990.911409][T21918] do_syscall_64+0xb0/0x150 [ 990.916321][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 990.921143][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 990.925955][T21909] [ 990.930429][T21918] [ 990.934905][T21909] Uninit was stored to memory at: [ 990.940767][T21918] Uninit was stored to memory at: [ 990.946651][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 990.948957][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 990.951273][T21909] __msan_chain_origin+0x50/0x90 [ 990.956270][T21918] __msan_chain_origin+0x50/0x90 [ 990.961272][T21909] do_recvmmsg+0x105a/0x1ee0 [ 990.966963][T21918] do_recvmmsg+0x105a/0x1ee0 [ 990.972657][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 990.977567][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 990.982477][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 990.987039][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 990.991601][T21909] do_syscall_64+0xb0/0x150 [ 990.996510][T21918] do_syscall_64+0xb0/0x150 [ 991.001420][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 991.006249][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 991.011054][T21909] [ 991.015530][T21918] [ 991.020094][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 991.025956][T21918] Uninit was stored to memory at: [ 991.031830][T21909] do_recvmmsg+0xc5/0x1ee0 [ 991.034137][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 991.036440][T21909] do_recvmmsg+0xc5/0x1ee0 [ 991.043348][T21918] __msan_chain_origin+0x50/0x90 [ 991.067785][T21918] do_recvmmsg+0x105a/0x1ee0 [ 991.072369][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 991.077306][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 991.082161][T21918] do_syscall_64+0xb0/0x150 [ 991.086669][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 991.092535][T21918] [ 991.094845][T21918] Uninit was stored to memory at: [ 991.099852][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 991.105555][T21918] __msan_chain_origin+0x50/0x90 [ 991.110478][T21918] do_recvmmsg+0x105a/0x1ee0 [ 991.115069][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 991.119993][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 991.124829][T21918] do_syscall_64+0xb0/0x150 [ 991.129325][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 991.135194][T21918] [ 991.137503][T21918] Uninit was stored to memory at: [ 991.142512][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 991.148212][T21918] __msan_chain_origin+0x50/0x90 [ 991.153135][T21918] do_recvmmsg+0x105a/0x1ee0 [ 991.157712][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 991.162646][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 991.167484][T21918] do_syscall_64+0xb0/0x150 [ 991.171971][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 991.177838][T21918] [ 991.180147][T21918] Uninit was stored to memory at: [ 991.185161][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 991.190864][T21918] __msan_chain_origin+0x50/0x90 [ 991.195802][T21918] do_recvmmsg+0x105a/0x1ee0 [ 991.200373][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 991.205297][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 991.210134][T21918] do_syscall_64+0xb0/0x150 [ 991.214623][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 991.220577][T21918] [ 991.222888][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 991.229545][T21918] do_recvmmsg+0xc5/0x1ee0 [ 991.233961][T21918] do_recvmmsg+0xc5/0x1ee0 [ 991.379245][T21911] not chained 340000 origins [ 991.383867][T21911] CPU: 0 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 991.392876][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 991.402928][T21911] Call Trace: [ 991.406238][T21911] dump_stack+0x1df/0x240 [ 991.410756][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 991.416481][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 991.421608][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 991.427502][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 991.432961][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 991.438226][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 991.444047][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 991.450116][T21911] ? kfree+0x61/0x30f0 [ 991.454200][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 991.459318][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 991.464866][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 991.470937][T21911] ? _copy_from_user+0x15b/0x260 [ 991.475875][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 991.480985][T21911] __msan_chain_origin+0x50/0x90 [ 991.485926][T21911] do_recvmmsg+0x105a/0x1ee0 [ 991.490551][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 991.495838][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 991.500861][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 991.505892][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 991.511786][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 991.516733][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 991.521589][T21911] do_syscall_64+0xb0/0x150 [ 991.526098][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 991.531991][T21911] RIP: 0033:0x45c1d9 [ 991.535910][T21911] Code: Bad RIP value. [ 991.539971][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 991.548380][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 991.556347][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 991.564339][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 991.572311][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 991.580287][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 991.588574][T21911] Uninit was stored to memory at: [ 991.593611][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 991.599329][T21911] __msan_chain_origin+0x50/0x90 [ 991.604266][T21911] do_recvmmsg+0x105a/0x1ee0 [ 991.608854][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 991.613803][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 991.618653][T21911] do_syscall_64+0xb0/0x150 [ 991.623160][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 991.629049][T21911] [ 991.631376][T21911] Uninit was stored to memory at: [ 991.636426][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 991.642142][T21911] __msan_chain_origin+0x50/0x90 [ 991.647077][T21911] do_recvmmsg+0x105a/0x1ee0 [ 991.651665][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 991.656598][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 991.661454][T21911] do_syscall_64+0xb0/0x150 [ 991.665960][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 991.671834][T21911] [ 991.674151][T21911] Uninit was stored to memory at: [ 991.679171][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 991.684887][T21911] __msan_chain_origin+0x50/0x90 [ 991.689819][T21911] do_recvmmsg+0x105a/0x1ee0 [ 991.694407][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 991.699513][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 991.704360][T21911] do_syscall_64+0xb0/0x150 [ 991.708858][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 991.714732][T21911] [ 991.717049][T21911] Uninit was stored to memory at: [ 991.722070][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 991.727786][T21911] __msan_chain_origin+0x50/0x90 [ 991.734723][T21911] do_recvmmsg+0x105a/0x1ee0 [ 991.739311][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 991.744246][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 991.749103][T21911] do_syscall_64+0xb0/0x150 [ 991.753607][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 991.759497][T21911] [ 991.761818][T21911] Uninit was stored to memory at: [ 991.766853][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 991.772580][T21911] __msan_chain_origin+0x50/0x90 [ 991.777521][T21911] do_recvmmsg+0x105a/0x1ee0 [ 991.782111][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 991.787059][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 991.791910][T21911] do_syscall_64+0xb0/0x150 [ 991.796424][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 991.802305][T21911] [ 991.804625][T21911] Uninit was stored to memory at: [ 991.809655][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 991.815373][T21911] __msan_chain_origin+0x50/0x90 [ 991.820315][T21911] do_recvmmsg+0x105a/0x1ee0 [ 991.824919][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 991.829864][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 991.834724][T21911] do_syscall_64+0xb0/0x150 [ 991.839229][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 991.845109][T21911] [ 991.847457][T21911] Uninit was stored to memory at: [ 991.852481][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 991.858200][T21911] __msan_chain_origin+0x50/0x90 [ 991.863139][T21911] do_recvmmsg+0x105a/0x1ee0 [ 991.867729][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 991.872687][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 991.877539][T21911] do_syscall_64+0xb0/0x150 [ 991.882045][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 991.887951][T21911] [ 991.890274][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 991.896956][T21911] do_recvmmsg+0xc5/0x1ee0 [ 991.901371][T21911] do_recvmmsg+0xc5/0x1ee0 [ 992.029132][T21909] not chained 350000 origins [ 992.033762][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 992.042432][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 992.052484][T21909] Call Trace: [ 992.055787][T21909] dump_stack+0x1df/0x240 [ 992.060123][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 992.065849][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 992.071052][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 992.076963][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 992.082259][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 992.087473][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 992.093283][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 992.099355][T21909] ? kfree+0x61/0x30f0 [ 992.103435][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 992.108550][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 992.114108][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 992.120192][T21909] ? _copy_from_user+0x15b/0x260 [ 992.125133][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 992.130244][T21909] __msan_chain_origin+0x50/0x90 [ 992.135186][T21909] do_recvmmsg+0x105a/0x1ee0 [ 992.139914][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 992.145205][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 992.150231][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 992.155256][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 992.161157][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 992.166109][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 992.171056][T21909] do_syscall_64+0xb0/0x150 [ 992.175568][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 992.181479][T21909] RIP: 0033:0x45c1d9 [ 992.185368][T21909] Code: Bad RIP value. [ 992.189432][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 992.197844][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 992.205906][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 992.213890][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 992.221864][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 992.229854][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 992.237871][T21909] Uninit was stored to memory at: [ 992.242933][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 992.248657][T21909] __msan_chain_origin+0x50/0x90 [ 992.253596][T21909] do_recvmmsg+0x105a/0x1ee0 [ 992.258185][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 992.263148][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 992.267999][T21909] do_syscall_64+0xb0/0x150 [ 992.272508][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 992.278428][T21909] [ 992.280748][T21909] Uninit was stored to memory at: [ 992.285777][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 992.291504][T21909] __msan_chain_origin+0x50/0x90 [ 992.296445][T21909] do_recvmmsg+0x105a/0x1ee0 [ 992.301045][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 992.306006][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 992.310945][T21909] do_syscall_64+0xb0/0x150 [ 992.315452][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 992.321329][T21909] [ 992.323647][T21909] Uninit was stored to memory at: [ 992.328758][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 992.334478][T21909] __msan_chain_origin+0x50/0x90 [ 992.339586][T21909] do_recvmmsg+0x105a/0x1ee0 [ 992.344174][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 992.349111][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 992.353962][T21909] do_syscall_64+0xb0/0x150 [ 992.358461][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 992.364339][T21909] [ 992.366658][T21909] Uninit was stored to memory at: [ 992.371684][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 992.376950][T21918] not chained 360000 origins [ 992.377409][T21909] __msan_chain_origin+0x50/0x90 [ 992.381978][T21918] CPU: 1 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 992.386891][T21909] do_recvmmsg+0x105a/0x1ee0 [ 992.395540][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 992.400111][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 992.410152][T21918] Call Trace: [ 992.415073][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 992.418333][T21918] dump_stack+0x1df/0x240 [ 992.423157][T21909] do_syscall_64+0xb0/0x150 [ 992.427461][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 992.431938][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 992.437630][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 992.443484][T21909] [ 992.448596][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 992.450891][T21909] Uninit was stored to memory at: [ 992.456771][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 992.461770][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 992.467028][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 992.472719][T21909] __msan_chain_origin+0x50/0x90 [ 992.477923][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 992.482831][T21909] do_recvmmsg+0x105a/0x1ee0 [ 992.488610][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 992.493189][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 992.499228][T21918] ? kfree+0x61/0x30f0 [ 992.504137][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 992.508177][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 992.513004][T21909] do_syscall_64+0xb0/0x150 [ 992.518087][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 992.522566][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 992.528081][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 992.533943][T21909] [ 992.539994][T21918] ? _copy_from_user+0x15b/0x260 [ 992.542305][T21909] Uninit was stored to memory at: [ 992.547231][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 992.552359][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 992.557448][T21918] __msan_chain_origin+0x50/0x90 [ 992.563231][T21909] __msan_chain_origin+0x50/0x90 [ 992.568160][T21918] do_recvmmsg+0x105a/0x1ee0 [ 992.573073][T21909] do_recvmmsg+0x105a/0x1ee0 [ 992.577663][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 992.582201][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 992.587466][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 992.592382][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 992.597381][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 992.602207][T21909] do_syscall_64+0xb0/0x150 [ 992.607230][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 992.611713][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 992.617597][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 992.623475][T21909] [ 992.628406][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 992.630698][T21909] Uninit was stored to memory at: [ 992.635534][T21918] do_syscall_64+0xb0/0x150 [ 992.640554][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 992.645035][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 992.650722][T21909] __msan_chain_origin+0x50/0x90 [ 992.656597][T21918] RIP: 0033:0x45c1d9 [ 992.661514][T21909] do_recvmmsg+0x105a/0x1ee0 [ 992.665385][T21918] Code: Bad RIP value. [ 992.670064][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 992.674113][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 992.679034][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 992.687427][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 992.692257][T21909] do_syscall_64+0xb0/0x150 [ 992.700200][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 992.704683][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 992.712627][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 992.718487][T21909] [ 992.726441][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 992.728747][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 992.736710][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 992.743366][T21909] do_recvmmsg+0xc5/0x1ee0 [ 992.751311][T21918] Uninit was stored to memory at: [ 992.755704][T21909] do_recvmmsg+0xc5/0x1ee0 [ 992.760713][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 992.770807][T21918] __msan_chain_origin+0x50/0x90 [ 992.775761][T21918] do_recvmmsg+0x105a/0x1ee0 [ 992.780370][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 992.785326][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 992.790188][T21918] do_syscall_64+0xb0/0x150 [ 992.794701][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 992.800581][T21918] [ 992.802903][T21918] Uninit was stored to memory at: [ 992.807928][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 992.813646][T21918] __msan_chain_origin+0x50/0x90 [ 992.818581][T21918] do_recvmmsg+0x105a/0x1ee0 [ 992.823171][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 992.828133][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 992.832987][T21918] do_syscall_64+0xb0/0x150 [ 992.837491][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 992.843372][T21918] [ 992.845687][T21918] Uninit was stored to memory at: [ 992.850709][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 992.856426][T21918] __msan_chain_origin+0x50/0x90 [ 992.861365][T21918] do_recvmmsg+0x105a/0x1ee0 [ 992.865982][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 992.870915][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 992.875765][T21918] do_syscall_64+0xb0/0x150 [ 992.880264][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 992.886141][T21918] [ 992.888459][T21918] Uninit was stored to memory at: [ 992.890005][T21911] not chained 370000 origins [ 992.893482][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 992.898051][T21911] CPU: 0 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 992.903850][T21918] __msan_chain_origin+0x50/0x90 [ 992.912493][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 992.917500][T21918] do_recvmmsg+0x105a/0x1ee0 [ 992.927524][T21911] Call Trace: [ 992.932100][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 992.935363][T21911] dump_stack+0x1df/0x240 [ 992.940276][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 992.944583][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 992.949410][T21918] do_syscall_64+0xb0/0x150 [ 992.955101][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 992.959581][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 992.964665][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 992.970522][T21918] [ 992.976401][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 992.978705][T21918] Uninit was stored to memory at: [ 992.983983][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 992.988996][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 992.994170][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 992.999881][T21918] __msan_chain_origin+0x50/0x90 [ 993.005663][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 993.010575][T21918] do_recvmmsg+0x105a/0x1ee0 [ 993.016641][T21911] ? kfree+0x61/0x30f0 [ 993.021206][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 993.025248][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 993.030190][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 993.035277][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 993.040122][T21918] do_syscall_64+0xb0/0x150 [ 993.045643][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 993.050208][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 993.056422][T21911] ? _copy_from_user+0x15b/0x260 [ 993.062279][T21918] [ 993.067208][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 993.069509][T21918] Uninit was stored to memory at: [ 993.074602][T21911] __msan_chain_origin+0x50/0x90 [ 993.079689][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 993.084603][T21911] do_recvmmsg+0x105a/0x1ee0 [ 993.090306][T21918] __msan_chain_origin+0x50/0x90 [ 993.094903][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 993.100317][T21918] do_recvmmsg+0x105a/0x1ee0 [ 993.105595][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 993.110159][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 993.115179][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 993.120107][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 993.125195][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 993.130021][T21918] do_syscall_64+0xb0/0x150 [ 993.135907][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 993.140389][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 993.145330][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 993.151184][T21918] [ 993.156108][T21911] do_syscall_64+0xb0/0x150 [ 993.158408][T21918] Uninit was stored to memory at: [ 993.162915][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 993.167915][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 993.173779][T21911] RIP: 0033:0x45c1d9 [ 993.179476][T21918] __msan_chain_origin+0x50/0x90 [ 993.183338][T21911] Code: Bad RIP value. [ 993.188264][T21918] do_recvmmsg+0x105a/0x1ee0 [ 993.192303][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 993.196897][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 993.205275][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 993.210191][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 993.218136][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 993.222969][T21918] do_syscall_64+0xb0/0x150 [ 993.230934][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 993.235433][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 993.243377][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 993.249260][T21918] [ 993.257217][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 993.259522][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 993.267485][T21911] Uninit was stored to memory at: [ 993.274130][T21918] do_recvmmsg+0xc5/0x1ee0 [ 993.274148][T21918] do_recvmmsg+0xc5/0x1ee0 [ 993.279152][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 993.293667][T21911] __msan_chain_origin+0x50/0x90 [ 993.298914][T21911] do_recvmmsg+0x105a/0x1ee0 [ 993.303625][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 993.308576][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 993.313435][T21911] do_syscall_64+0xb0/0x150 [ 993.317941][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 993.323819][T21911] [ 993.326148][T21911] Uninit was stored to memory at: [ 993.331171][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 993.336894][T21911] __msan_chain_origin+0x50/0x90 [ 993.341829][T21911] do_recvmmsg+0x105a/0x1ee0 [ 993.346425][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 993.351369][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 993.356220][T21911] do_syscall_64+0xb0/0x150 [ 993.360724][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 993.366605][T21911] [ 993.368928][T21911] Uninit was stored to memory at: [ 993.373954][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 993.379672][T21911] __msan_chain_origin+0x50/0x90 [ 993.384615][T21911] do_recvmmsg+0x105a/0x1ee0 [ 993.389206][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 993.394142][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 993.398994][T21911] do_syscall_64+0xb0/0x150 [ 993.403498][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 993.409408][T21911] [ 993.411748][T21911] Uninit was stored to memory at: [ 993.416788][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 993.422502][T21911] __msan_chain_origin+0x50/0x90 [ 993.427437][T21911] do_recvmmsg+0x105a/0x1ee0 [ 993.432041][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 993.436977][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 993.441828][T21911] do_syscall_64+0xb0/0x150 [ 993.446334][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 993.452211][T21911] [ 993.454567][T21911] Uninit was stored to memory at: [ 993.459594][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 993.465314][T21911] __msan_chain_origin+0x50/0x90 [ 993.470337][T21911] do_recvmmsg+0x105a/0x1ee0 [ 993.474935][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 993.479876][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 993.484727][T21911] do_syscall_64+0xb0/0x150 [ 993.489233][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 993.495111][T21911] [ 993.497434][T21911] Uninit was stored to memory at: [ 993.502461][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 993.508180][T21911] __msan_chain_origin+0x50/0x90 [ 993.513730][T21911] do_recvmmsg+0x105a/0x1ee0 [ 993.519185][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 993.524123][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 993.528977][T21911] do_syscall_64+0xb0/0x150 [ 993.533480][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 993.539361][T21911] [ 993.541679][T21911] Uninit was stored to memory at: [ 993.546706][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 993.552425][T21911] __msan_chain_origin+0x50/0x90 [ 993.557361][T21911] do_recvmmsg+0x105a/0x1ee0 [ 993.561953][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 993.566904][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 993.571771][T21911] do_syscall_64+0xb0/0x150 [ 993.576282][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 993.582162][T21911] [ 993.584484][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 993.591164][T21911] do_recvmmsg+0xc5/0x1ee0 [ 993.595583][T21911] do_recvmmsg+0xc5/0x1ee0 [ 993.730739][T21909] not chained 380000 origins [ 993.735372][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 993.744047][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 993.754104][T21909] Call Trace: [ 993.757402][T21909] dump_stack+0x1df/0x240 [ 993.761739][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 993.767459][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 993.772597][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 993.778679][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 993.783977][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 993.789198][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 993.795032][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 993.801104][T21909] ? kfree+0x61/0x30f0 [ 993.805185][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 993.810304][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 993.815854][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 993.821947][T21909] ? _copy_from_user+0x15b/0x260 [ 993.826885][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 993.831997][T21909] __msan_chain_origin+0x50/0x90 [ 993.836949][T21909] do_recvmmsg+0x105a/0x1ee0 [ 993.841574][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 993.846869][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 993.851896][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 993.856921][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 993.862820][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 993.867768][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 993.872621][T21909] do_syscall_64+0xb0/0x150 [ 993.877131][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 993.883026][T21909] RIP: 0033:0x45c1d9 [ 993.886909][T21909] Code: Bad RIP value. [ 993.890970][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 993.899387][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 993.907444][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 993.915415][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 993.923386][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 993.931357][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 993.939339][T21909] Uninit was stored to memory at: [ 993.944368][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 993.950085][T21909] __msan_chain_origin+0x50/0x90 [ 993.955023][T21909] do_recvmmsg+0x105a/0x1ee0 [ 993.959618][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 993.964555][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 993.969407][T21909] do_syscall_64+0xb0/0x150 [ 993.973939][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 993.979818][T21909] [ 993.982136][T21909] Uninit was stored to memory at: [ 993.987163][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 993.992878][T21909] __msan_chain_origin+0x50/0x90 [ 993.997838][T21909] do_recvmmsg+0x105a/0x1ee0 [ 994.002429][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 994.007367][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 994.012234][T21909] do_syscall_64+0xb0/0x150 [ 994.016738][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 994.022617][T21909] [ 994.025730][T21909] Uninit was stored to memory at: [ 994.030757][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 994.036490][T21909] __msan_chain_origin+0x50/0x90 [ 994.041425][T21909] do_recvmmsg+0x105a/0x1ee0 [ 994.046013][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 994.050945][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 994.055799][T21909] do_syscall_64+0xb0/0x150 [ 994.061005][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 994.066885][T21909] [ 994.069210][T21909] Uninit was stored to memory at: [ 994.074242][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 994.079979][T21909] __msan_chain_origin+0x50/0x90 [ 994.084936][T21909] do_recvmmsg+0x105a/0x1ee0 [ 994.089531][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 994.094473][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 994.099327][T21909] do_syscall_64+0xb0/0x150 [ 994.103834][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 994.109720][T21909] [ 994.112037][T21909] Uninit was stored to memory at: [ 994.117059][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 994.122806][T21909] __msan_chain_origin+0x50/0x90 [ 994.127742][T21909] do_recvmmsg+0x105a/0x1ee0 [ 994.132331][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 994.137266][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 994.142116][T21909] do_syscall_64+0xb0/0x150 [ 994.146619][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 994.152499][T21909] [ 994.154819][T21909] Uninit was stored to memory at: [ 994.159844][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 994.165565][T21909] __msan_chain_origin+0x50/0x90 [ 994.170506][T21909] do_recvmmsg+0x105a/0x1ee0 [ 994.175098][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 994.180036][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 994.184888][T21909] do_syscall_64+0xb0/0x150 [ 994.189387][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 994.195271][T21909] [ 994.197588][T21909] Uninit was stored to memory at: [ 994.202614][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 994.208329][T21909] __msan_chain_origin+0x50/0x90 [ 994.213267][T21909] do_recvmmsg+0x105a/0x1ee0 [ 994.217863][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 994.222797][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 994.227647][T21909] do_syscall_64+0xb0/0x150 [ 994.232153][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 994.238032][T21909] [ 994.240385][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 994.247063][T21909] do_recvmmsg+0xc5/0x1ee0 [ 994.251489][T21909] do_recvmmsg+0xc5/0x1ee0 [ 994.355178][T21911] not chained 390000 origins [ 994.359813][T21911] CPU: 0 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 994.368480][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 994.378732][T21911] Call Trace: [ 994.382028][T21911] dump_stack+0x1df/0x240 [ 994.386363][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 994.392086][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 994.397294][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 994.403194][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 994.408919][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 994.414121][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 994.420030][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 994.426103][T21911] ? kfree+0x61/0x30f0 [ 994.430525][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 994.435639][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 994.441191][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 994.447271][T21911] ? _copy_from_user+0x15b/0x260 [ 994.452215][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 994.457331][T21911] __msan_chain_origin+0x50/0x90 [ 994.462272][T21911] do_recvmmsg+0x105a/0x1ee0 [ 994.466896][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 994.472198][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 994.477231][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 994.482257][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 994.488156][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 994.493108][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 994.497964][T21911] do_syscall_64+0xb0/0x150 [ 994.498822][T21918] not chained 400000 origins [ 994.502468][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 994.512895][T21911] RIP: 0033:0x45c1d9 [ 994.516776][T21911] Code: Bad RIP value. [ 994.520822][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 994.529216][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 994.537171][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 994.545127][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 994.553097][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 994.561073][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 994.569070][T21911] Uninit was stored to memory at: [ 994.569083][T21918] CPU: 1 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 994.569097][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 994.574139][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 994.582778][T21918] Call Trace: [ 994.592823][T21911] __msan_chain_origin+0x50/0x90 [ 994.598520][T21918] dump_stack+0x1df/0x240 [ 994.601785][T21911] do_recvmmsg+0x105a/0x1ee0 [ 994.606853][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 994.611179][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 994.615746][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 994.621443][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 994.626444][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 994.631888][T21911] do_syscall_64+0xb0/0x150 [ 994.636729][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 994.642598][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 994.647076][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 994.652323][T21911] [ 994.658637][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 994.663792][T21911] Uninit was stored to memory at: [ 994.663811][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 994.666122][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 994.671903][T21911] __msan_chain_origin+0x50/0x90 [ 994.676906][T21918] ? kfree+0x61/0x30f0 [ 994.682600][T21911] do_recvmmsg+0x105a/0x1ee0 [ 994.688727][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 994.693643][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 994.697687][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 994.702255][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 994.707339][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 994.712254][T21911] do_syscall_64+0xb0/0x150 [ 994.717863][T21918] ? _copy_from_user+0x15b/0x260 [ 994.722687][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 994.728726][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 994.733196][T21911] [ 994.738118][T21918] __msan_chain_origin+0x50/0x90 [ 994.743996][T21911] Uninit was stored to memory at: [ 994.749092][T21918] do_recvmmsg+0x105a/0x1ee0 [ 994.751397][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 994.756337][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 994.761340][T21911] __msan_chain_origin+0x50/0x90 [ 994.765913][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 994.771604][T21911] do_recvmmsg+0x105a/0x1ee0 [ 994.776869][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 994.781787][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 994.786810][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 994.791457][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 994.796458][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 994.801391][T21911] do_syscall_64+0xb0/0x150 [ 994.807265][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 994.812100][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 994.817014][T21918] do_syscall_64+0xb0/0x150 [ 994.821482][T21911] [ 994.826324][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 994.832266][T21911] Uninit was stored to memory at: [ 994.836750][T21918] RIP: 0033:0x45c1d9 [ 994.839064][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 994.844928][T21918] Code: Bad RIP value. [ 994.849939][T21911] __msan_chain_origin+0x50/0x90 [ 994.853808][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 994.859506][T21911] do_recvmmsg+0x105a/0x1ee0 [ 994.863545][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 994.868466][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 994.876870][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 994.881472][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 994.889418][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 994.894354][T21911] do_syscall_64+0xb0/0x150 [ 994.902321][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 994.907160][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 994.915127][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 994.919603][T21911] [ 994.927563][T21918] Uninit was stored to memory at: [ 994.933429][T21911] Uninit was stored to memory at: [ 994.941493][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 994.943800][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 994.948808][T21918] __msan_chain_origin+0x50/0x90 [ 994.953817][T21911] __msan_chain_origin+0x50/0x90 [ 994.959513][T21918] do_recvmmsg+0x105a/0x1ee0 [ 994.965207][T21911] do_recvmmsg+0x105a/0x1ee0 [ 994.970120][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 994.975032][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 994.979733][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 994.984313][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 994.989224][T21918] do_syscall_64+0xb0/0x150 [ 994.994745][T21911] do_syscall_64+0xb0/0x150 [ 994.999598][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 994.999608][T21918] [ 995.004462][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.008931][T21918] Uninit was stored to memory at: [ 995.013410][T21911] [ 995.019306][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 995.021607][T21911] Uninit was stored to memory at: [ 995.027482][T21918] __msan_chain_origin+0x50/0x90 [ 995.032480][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 995.034788][T21918] do_recvmmsg+0x105a/0x1ee0 [ 995.040478][T21911] __msan_chain_origin+0x50/0x90 [ 995.045483][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 995.050395][T21911] do_recvmmsg+0x105a/0x1ee0 [ 995.056106][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 995.060670][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 995.065606][T21918] do_syscall_64+0xb0/0x150 [ 995.070517][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 995.075085][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.079909][T21911] do_syscall_64+0xb0/0x150 [ 995.084814][T21918] [ 995.089307][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.094116][T21918] Uninit was stored to memory at: [ 995.099981][T21911] [ 995.104486][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 995.106784][T21911] Uninit was stored to memory at: [ 995.112661][T21918] __msan_chain_origin+0x50/0x90 [ 995.117661][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 995.119970][T21918] do_recvmmsg+0x105a/0x1ee0 [ 995.125664][T21911] __msan_chain_origin+0x50/0x90 [ 995.130668][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 995.135579][T21911] do_recvmmsg+0x105a/0x1ee0 [ 995.141273][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 995.145840][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 995.150751][T21918] do_syscall_64+0xb0/0x150 [ 995.155666][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 995.160232][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.165060][T21911] do_syscall_64+0xb0/0x150 [ 995.169964][T21918] [ 995.174453][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.179268][T21918] Uninit was stored to memory at: [ 995.185134][T21911] [ 995.189635][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 995.191952][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 995.197834][T21918] __msan_chain_origin+0x50/0x90 [ 995.202835][T21911] do_recvmmsg+0xc5/0x1ee0 [ 995.205169][T21918] do_recvmmsg+0x105a/0x1ee0 [ 995.210861][T21911] do_recvmmsg+0xc5/0x1ee0 [ 995.217511][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 995.240760][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 995.245604][T21918] do_syscall_64+0xb0/0x150 [ 995.250115][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.255987][T21918] [ 995.258297][T21918] Uninit was stored to memory at: [ 995.263314][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 995.269018][T21918] __msan_chain_origin+0x50/0x90 [ 995.273942][T21918] do_recvmmsg+0x105a/0x1ee0 [ 995.278516][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 995.283439][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 995.288278][T21918] do_syscall_64+0xb0/0x150 [ 995.292769][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.298637][T21918] [ 995.300947][T21918] Uninit was stored to memory at: [ 995.305969][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 995.311674][T21918] __msan_chain_origin+0x50/0x90 [ 995.316600][T21918] do_recvmmsg+0x105a/0x1ee0 [ 995.321174][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 995.326096][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 995.330935][T21918] do_syscall_64+0xb0/0x150 [ 995.335429][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.341300][T21918] [ 995.343609][T21918] Uninit was stored to memory at: [ 995.348625][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 995.354331][T21918] __msan_chain_origin+0x50/0x90 [ 995.359258][T21918] do_recvmmsg+0x105a/0x1ee0 [ 995.363859][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 995.368782][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 995.373626][T21918] do_syscall_64+0xb0/0x150 [ 995.378898][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.384784][T21918] [ 995.387126][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 995.393783][T21918] do_recvmmsg+0xc5/0x1ee0 [ 995.398212][T21918] do_recvmmsg+0xc5/0x1ee0 [ 995.518263][T21909] not chained 410000 origins [ 995.522896][T21909] CPU: 1 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 995.531564][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 995.541620][T21909] Call Trace: [ 995.544924][T21909] dump_stack+0x1df/0x240 [ 995.549267][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 995.554988][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 995.560134][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 995.566383][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 995.571673][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 995.576881][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 995.582694][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 995.588778][T21909] ? kfree+0x61/0x30f0 [ 995.592858][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 995.597983][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 995.603543][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 995.609635][T21909] ? _copy_from_user+0x15b/0x260 [ 995.614582][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 995.619698][T21909] __msan_chain_origin+0x50/0x90 [ 995.624649][T21909] do_recvmmsg+0x105a/0x1ee0 [ 995.629539][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 995.635007][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 995.640034][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 995.645078][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 995.650986][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 995.655947][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 995.660816][T21909] do_syscall_64+0xb0/0x150 [ 995.665330][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.671220][T21909] RIP: 0033:0x45c1d9 [ 995.675134][T21909] Code: Bad RIP value. [ 995.679285][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 995.687711][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 995.695686][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 995.703666][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 995.711638][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 995.719612][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 995.727594][T21909] Uninit was stored to memory at: [ 995.732726][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 995.738446][T21909] __msan_chain_origin+0x50/0x90 [ 995.743397][T21909] do_recvmmsg+0x105a/0x1ee0 [ 995.748015][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 995.752963][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 995.757820][T21909] do_syscall_64+0xb0/0x150 [ 995.762337][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.768221][T21909] [ 995.770540][T21909] Uninit was stored to memory at: [ 995.775572][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 995.781290][T21909] __msan_chain_origin+0x50/0x90 [ 995.786239][T21909] do_recvmmsg+0x105a/0x1ee0 [ 995.790829][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 995.795770][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 995.801321][T21909] do_syscall_64+0xb0/0x150 [ 995.805829][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.811710][T21909] [ 995.814030][T21909] Uninit was stored to memory at: [ 995.819057][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 995.824786][T21909] __msan_chain_origin+0x50/0x90 [ 995.829724][T21909] do_recvmmsg+0x105a/0x1ee0 [ 995.834321][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 995.839257][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 995.844457][T21909] do_syscall_64+0xb0/0x150 [ 995.849112][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.855091][T21909] [ 995.857413][T21909] Uninit was stored to memory at: [ 995.862444][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 995.868169][T21909] __msan_chain_origin+0x50/0x90 [ 995.873115][T21909] do_recvmmsg+0x105a/0x1ee0 [ 995.877705][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 995.882644][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 995.887504][T21909] do_syscall_64+0xb0/0x150 [ 995.892093][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.897971][T21909] [ 995.900288][T21909] Uninit was stored to memory at: [ 995.905312][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 995.911030][T21909] __msan_chain_origin+0x50/0x90 [ 995.916053][T21909] do_recvmmsg+0x105a/0x1ee0 [ 995.920642][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 995.925581][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 995.930439][T21909] do_syscall_64+0xb0/0x150 [ 995.934946][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.941432][T21909] [ 995.943752][T21909] Uninit was stored to memory at: [ 995.948796][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 995.954520][T21909] __msan_chain_origin+0x50/0x90 [ 995.959454][T21909] do_recvmmsg+0x105a/0x1ee0 [ 995.964044][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 995.968981][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 995.973830][T21909] do_syscall_64+0xb0/0x150 [ 995.978332][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 995.984295][T21909] [ 995.986614][T21909] Uninit was stored to memory at: [ 995.991636][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 995.997358][T21909] __msan_chain_origin+0x50/0x90 [ 996.002298][T21909] do_recvmmsg+0x105a/0x1ee0 [ 996.006887][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 996.011822][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 996.016672][T21909] do_syscall_64+0xb0/0x150 [ 996.021206][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 996.027084][T21909] [ 996.029405][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 996.036079][T21909] do_recvmmsg+0xc5/0x1ee0 [ 996.040492][T21909] do_recvmmsg+0xc5/0x1ee0 [ 996.149077][T21909] not chained 420000 origins [ 996.153706][T21909] CPU: 1 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 996.162394][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 996.172455][T21909] Call Trace: [ 996.175757][T21909] dump_stack+0x1df/0x240 [ 996.180093][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 996.185828][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 996.190971][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 996.196898][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 996.202271][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 996.207472][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 996.213280][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 996.219347][T21909] ? kfree+0x61/0x30f0 [ 996.223420][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 996.228533][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 996.234085][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 996.240156][T21909] ? _copy_from_user+0x15b/0x260 [ 996.245097][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 996.250205][T21909] __msan_chain_origin+0x50/0x90 [ 996.255148][T21909] do_recvmmsg+0x105a/0x1ee0 [ 996.259777][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 996.265075][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 996.270104][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 996.275129][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 996.281031][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 996.285982][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 996.290840][T21909] do_syscall_64+0xb0/0x150 [ 996.295384][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 996.301278][T21909] RIP: 0033:0x45c1d9 [ 996.305161][T21909] Code: Bad RIP value. [ 996.309221][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 996.317636][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 996.325607][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 996.333579][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 996.341547][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 996.349518][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 996.357507][T21909] Uninit was stored to memory at: [ 996.362563][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 996.368286][T21909] __msan_chain_origin+0x50/0x90 [ 996.373226][T21909] do_recvmmsg+0x105a/0x1ee0 [ 996.377814][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 996.382753][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 996.387601][T21909] do_syscall_64+0xb0/0x150 [ 996.392288][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 996.398339][T21909] [ 996.400660][T21909] Uninit was stored to memory at: [ 996.405685][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 996.411439][T21909] __msan_chain_origin+0x50/0x90 [ 996.416375][T21909] do_recvmmsg+0x105a/0x1ee0 [ 996.420964][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 996.425903][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 996.430750][T21909] do_syscall_64+0xb0/0x150 [ 996.435260][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 996.441141][T21909] [ 996.443456][T21909] Uninit was stored to memory at: [ 996.448482][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 996.454196][T21909] __msan_chain_origin+0x50/0x90 [ 996.459129][T21909] do_recvmmsg+0x105a/0x1ee0 [ 996.463717][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 996.468747][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 996.473598][T21909] do_syscall_64+0xb0/0x150 [ 996.478098][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 996.483971][T21909] [ 996.486287][T21909] Uninit was stored to memory at: [ 996.491318][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 996.497065][T21909] __msan_chain_origin+0x50/0x90 [ 996.502086][T21909] do_recvmmsg+0x105a/0x1ee0 [ 996.506672][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 996.511610][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 996.516463][T21909] do_syscall_64+0xb0/0x150 [ 996.520974][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 996.526940][T21909] [ 996.529257][T21909] Uninit was stored to memory at: [ 996.534291][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 996.540006][T21909] __msan_chain_origin+0x50/0x90 [ 996.544949][T21909] do_recvmmsg+0x105a/0x1ee0 [ 996.549535][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 996.554472][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 996.559320][T21909] do_syscall_64+0xb0/0x150 [ 996.563824][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 996.569700][T21909] [ 996.572017][T21909] Uninit was stored to memory at: [ 996.577053][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 996.582765][T21909] __msan_chain_origin+0x50/0x90 [ 996.587697][T21909] do_recvmmsg+0x105a/0x1ee0 [ 996.592288][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 996.597360][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 996.602217][T21909] do_syscall_64+0xb0/0x150 [ 996.606729][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 996.612611][T21909] [ 996.614933][T21909] Uninit was stored to memory at: [ 996.619965][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 996.625688][T21909] __msan_chain_origin+0x50/0x90 [ 996.630634][T21909] do_recvmmsg+0x105a/0x1ee0 [ 996.635226][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 996.640164][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 996.645017][T21909] do_syscall_64+0xb0/0x150 [ 996.649518][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 996.655393][T21909] [ 996.657716][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 996.664391][T21909] do_recvmmsg+0xc5/0x1ee0 [ 996.668806][T21909] do_recvmmsg+0xc5/0x1ee0 [ 996.719951][T21918] not chained 430000 origins [ 996.724580][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 996.733246][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 996.743306][T21918] Call Trace: [ 996.746605][T21918] dump_stack+0x1df/0x240 [ 996.750943][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 996.756661][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 996.761982][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 996.768494][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 996.773788][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 996.779012][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 996.784820][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 996.790888][T21918] ? kfree+0x61/0x30f0 [ 996.794967][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 996.796763][T21911] not chained 440000 origins [ 996.800081][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 996.810175][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 996.816229][T21918] ? _copy_from_user+0x15b/0x260 [ 996.821149][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 996.826344][T21918] __msan_chain_origin+0x50/0x90 [ 996.831363][T21918] do_recvmmsg+0x105a/0x1ee0 [ 996.835967][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 996.841236][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 996.846245][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 996.851252][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 996.857131][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 996.862058][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 996.866905][T21918] do_syscall_64+0xb0/0x150 [ 996.871401][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 996.877378][T21918] RIP: 0033:0x45c1d9 [ 996.881246][T21918] Code: Bad RIP value. [ 996.885378][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 996.893785][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 996.901912][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 996.909868][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 996.917834][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 996.925877][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 996.933852][T21918] Uninit was stored to memory at: [ 996.933867][T21911] CPU: 1 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 996.933881][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 996.938897][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 996.947537][T21911] Call Trace: [ 996.957600][T21918] __msan_chain_origin+0x50/0x90 [ 996.963295][T21911] dump_stack+0x1df/0x240 [ 996.966557][T21918] do_recvmmsg+0x105a/0x1ee0 [ 996.971475][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 996.975781][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 996.980345][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 996.986046][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 996.990961][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 996.996047][T21918] do_syscall_64+0xb0/0x150 [ 997.000874][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 997.006733][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 997.006743][T21918] [ 997.011228][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 997.016477][T21918] Uninit was stored to memory at: [ 997.022357][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 997.024660][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 997.029833][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 997.034841][T21918] __msan_chain_origin+0x50/0x90 [ 997.040622][T21911] ? kfree+0x61/0x30f0 [ 997.046313][T21918] do_recvmmsg+0x105a/0x1ee0 [ 997.052353][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 997.057263][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 997.061306][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 997.065898][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 997.070985][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 997.075897][T21918] do_syscall_64+0xb0/0x150 [ 997.081418][T21911] ? _copy_from_user+0x15b/0x260 [ 997.086241][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 997.092279][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 997.096759][T21918] [ 997.101799][T21911] __msan_chain_origin+0x50/0x90 [ 997.107654][T21918] Uninit was stored to memory at: [ 997.112754][T21911] do_recvmmsg+0x105a/0x1ee0 [ 997.115060][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 997.119998][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 997.124970][T21918] __msan_chain_origin+0x50/0x90 [ 997.129535][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 997.135230][T21918] do_recvmmsg+0x105a/0x1ee0 [ 997.140489][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 997.145486][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 997.150485][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 997.155047][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 997.160048][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 997.164974][T21918] do_syscall_64+0xb0/0x150 [ 997.170849][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 997.175670][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 997.180667][T21911] do_syscall_64+0xb0/0x150 [ 997.185231][T21918] [ 997.190066][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 997.195922][T21918] Uninit was stored to memory at: [ 997.200402][T21911] RIP: 0033:0x45c1d9 [ 997.202714][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 997.208660][T21911] Code: Bad RIP value. [ 997.213665][T21918] __msan_chain_origin+0x50/0x90 [ 997.217526][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 997.223230][T21918] do_recvmmsg+0x105a/0x1ee0 [ 997.227269][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 997.232184][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 997.240581][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 997.245151][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 997.253096][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 997.258101][T21918] do_syscall_64+0xb0/0x150 [ 997.266057][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 997.270892][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 997.278837][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 997.283310][T21918] [ 997.291267][T21911] Uninit was stored to memory at: [ 997.297390][T21918] Uninit was stored to memory at: [ 997.305370][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 997.307688][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 997.312700][T21911] __msan_chain_origin+0x50/0x90 [ 997.317961][T21918] __msan_chain_origin+0x50/0x90 [ 997.323677][T21911] do_recvmmsg+0x105a/0x1ee0 [ 997.329371][T21918] do_recvmmsg+0x105a/0x1ee0 [ 997.334306][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 997.339220][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 997.343786][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 997.348367][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 997.353283][T21911] do_syscall_64+0xb0/0x150 [ 997.358210][T21918] do_syscall_64+0xb0/0x150 [ 997.363038][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 997.367889][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 997.372356][T21911] [ 997.377097][T21918] [ 997.382965][T21911] Uninit was stored to memory at: [ 997.388831][T21918] Uninit was stored to memory at: [ 997.391147][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 997.393453][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 997.398453][T21911] __msan_chain_origin+0x50/0x90 [ 997.403451][T21918] __msan_chain_origin+0x50/0x90 [ 997.409149][T21911] do_recvmmsg+0x105a/0x1ee0 [ 997.414842][T21918] do_recvmmsg+0x105a/0x1ee0 [ 997.419755][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 997.424668][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 997.429233][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 997.433800][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 997.438714][T21911] do_syscall_64+0xb0/0x150 [ 997.443629][T21918] do_syscall_64+0xb0/0x150 [ 997.448456][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 997.453295][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 997.457763][T21911] [ 997.462242][T21918] [ 997.468110][T21911] Uninit was stored to memory at: [ 997.473978][T21918] Uninit was stored to memory at: [ 997.476312][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 997.478623][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 997.483621][T21911] __msan_chain_origin+0x50/0x90 [ 997.488619][T21918] __msan_chain_origin+0x50/0x90 [ 997.494632][T21911] do_recvmmsg+0x105a/0x1ee0 [ 997.500585][T21918] do_recvmmsg+0x105a/0x1ee0 [ 997.505505][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 997.510416][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 997.514981][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 997.519547][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 997.524475][T21911] do_syscall_64+0xb0/0x150 [ 997.529395][T21918] do_syscall_64+0xb0/0x150 [ 997.534238][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 997.539066][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 997.543534][T21911] [ 997.548031][T21918] [ 997.553899][T21911] Uninit was stored to memory at: [ 997.559782][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 997.562098][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 997.564406][T21918] do_recvmmsg+0xc5/0x1ee0 [ 997.569402][T21911] __msan_chain_origin+0x50/0x90 [ 997.576051][T21918] do_recvmmsg+0xc5/0x1ee0 [ 997.581850][T21911] do_recvmmsg+0x105a/0x1ee0 [ 997.600163][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 997.605112][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 997.610117][T21911] do_syscall_64+0xb0/0x150 [ 997.614635][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 997.620607][T21911] [ 997.622932][T21911] Uninit was stored to memory at: [ 997.627964][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 997.633697][T21911] __msan_chain_origin+0x50/0x90 [ 997.638641][T21911] do_recvmmsg+0x105a/0x1ee0 [ 997.643258][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 997.648458][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 997.653313][T21911] do_syscall_64+0xb0/0x150 [ 997.657820][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 997.663699][T21911] [ 997.666020][T21911] Uninit was stored to memory at: [ 997.671044][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 997.676768][T21911] __msan_chain_origin+0x50/0x90 [ 997.681707][T21911] do_recvmmsg+0x105a/0x1ee0 [ 997.686300][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 997.691236][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 997.696233][T21911] do_syscall_64+0xb0/0x150 [ 997.700838][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 997.707505][T21911] [ 997.709857][T21911] Uninit was stored to memory at: [ 997.715415][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 997.721172][T21911] __msan_chain_origin+0x50/0x90 [ 997.726115][T21911] do_recvmmsg+0x105a/0x1ee0 [ 997.730705][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 997.735649][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 997.740529][T21911] do_syscall_64+0xb0/0x150 [ 997.745034][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 997.750951][T21911] [ 997.753272][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 997.760088][T21911] do_recvmmsg+0xc5/0x1ee0 [ 997.764509][T21911] do_recvmmsg+0xc5/0x1ee0 [ 997.860161][T21909] not chained 450000 origins [ 997.864798][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 997.873550][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 997.883605][T21909] Call Trace: [ 997.886905][T21909] dump_stack+0x1df/0x240 [ 997.891244][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 997.897238][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 997.903220][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 997.909226][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 997.914515][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 997.919908][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 997.925980][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 997.932051][T21909] ? kfree+0x61/0x30f0 [ 997.936122][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 997.937733][T21911] not chained 460000 origins [ 997.941231][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 997.951326][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 997.957382][T21909] ? _copy_from_user+0x15b/0x260 [ 997.962335][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 997.967429][T21909] __msan_chain_origin+0x50/0x90 [ 997.972366][T21909] do_recvmmsg+0x105a/0x1ee0 [ 997.976969][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 997.982243][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 997.987247][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 997.992258][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 997.998144][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 998.003082][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 998.007920][T21909] do_syscall_64+0xb0/0x150 [ 998.012411][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.018293][T21909] RIP: 0033:0x45c1d9 [ 998.022164][T21909] Code: Bad RIP value. [ 998.026209][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 998.034612][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 998.042565][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 998.050518][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 998.058470][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 998.066424][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 998.074395][T21909] Uninit was stored to memory at: [ 998.074408][T21911] CPU: 1 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 998.074421][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 998.079447][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 998.088088][T21911] Call Trace: [ 998.098130][T21909] __msan_chain_origin+0x50/0x90 [ 998.103818][T21911] dump_stack+0x1df/0x240 [ 998.107080][T21909] do_recvmmsg+0x105a/0x1ee0 [ 998.111993][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 998.116289][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 998.116309][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 998.120874][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 998.126567][T21909] do_syscall_64+0xb0/0x150 [ 998.131489][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 998.136332][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.141418][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 998.145883][T21909] [ 998.151851][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 998.157712][T21909] Uninit was stored to memory at: [ 998.162976][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 998.165284][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 998.170460][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 998.175456][T21909] __msan_chain_origin+0x50/0x90 [ 998.181237][T21911] ? kfree+0x61/0x30f0 [ 998.186930][T21909] do_recvmmsg+0x105a/0x1ee0 [ 998.192973][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 998.197883][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 998.201938][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 998.206513][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 998.211621][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 998.216545][T21909] do_syscall_64+0xb0/0x150 [ 998.222080][T21911] ? _copy_from_user+0x15b/0x260 [ 998.226914][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.232979][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 998.237445][T21909] [ 998.242455][T21911] __msan_chain_origin+0x50/0x90 [ 998.248312][T21909] Uninit was stored to memory at: [ 998.253409][T21911] do_recvmmsg+0x105a/0x1ee0 [ 998.255714][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 998.260653][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 998.265625][T21909] __msan_chain_origin+0x50/0x90 [ 998.270205][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 998.275910][T21909] do_recvmmsg+0x105a/0x1ee0 [ 998.281169][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 998.286079][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 998.291084][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 998.295657][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 998.300655][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 998.305564][T21909] do_syscall_64+0xb0/0x150 [ 998.311434][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 998.316255][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.321340][T21911] do_syscall_64+0xb0/0x150 [ 998.325807][T21909] [ 998.330657][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.336513][T21909] Uninit was stored to memory at: [ 998.341006][T21911] RIP: 0033:0x45c1d9 [ 998.343313][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 998.349166][T21911] Code: Bad RIP value. [ 998.354173][T21909] __msan_chain_origin+0x50/0x90 [ 998.358036][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 998.363733][T21909] do_recvmmsg+0x105a/0x1ee0 [ 998.367769][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 998.372696][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 998.381091][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 998.385670][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 998.393623][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 998.398550][T21909] do_syscall_64+0xb0/0x150 [ 998.406580][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 998.411412][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.419353][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 998.423823][T21909] [ 998.431778][T21911] Uninit was stored to memory at: [ 998.437638][T21909] Uninit was stored to memory at: [ 998.445600][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 998.447905][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 998.452904][T21911] __msan_chain_origin+0x50/0x90 [ 998.457990][T21909] __msan_chain_origin+0x50/0x90 [ 998.463723][T21911] do_recvmmsg+0x105a/0x1ee0 [ 998.469412][T21909] do_recvmmsg+0x105a/0x1ee0 [ 998.474324][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 998.479263][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 998.483827][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 998.488397][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 998.493311][T21911] do_syscall_64+0xb0/0x150 [ 998.498224][T21909] do_syscall_64+0xb0/0x150 [ 998.503050][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.507875][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.512343][T21911] [ 998.516822][T21909] [ 998.522690][T21911] Uninit was stored to memory at: [ 998.528570][T21909] Uninit was stored to memory at: [ 998.530887][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 998.533193][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 998.538192][T21911] __msan_chain_origin+0x50/0x90 [ 998.543190][T21909] __msan_chain_origin+0x50/0x90 [ 998.548898][T21911] do_recvmmsg+0x105a/0x1ee0 [ 998.554591][T21909] do_recvmmsg+0x105a/0x1ee0 [ 998.559524][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 998.564519][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 998.569168][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 998.573752][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 998.578664][T21911] do_syscall_64+0xb0/0x150 [ 998.583576][T21909] do_syscall_64+0xb0/0x150 [ 998.588400][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.593224][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.597688][T21911] [ 998.602164][T21909] [ 998.608087][T21911] Uninit was stored to memory at: [ 998.608116][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 998.614076][T21909] Uninit was stored to memory at: [ 998.616396][T21911] __msan_chain_origin+0x50/0x90 [ 998.618697][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 998.623705][T21911] do_recvmmsg+0x105a/0x1ee0 [ 998.630347][T21909] __msan_chain_origin+0x50/0x90 [ 998.635345][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 998.640261][T21909] do_recvmmsg+0x105a/0x1ee0 [ 998.640280][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 998.645979][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 998.650553][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 998.655466][T21911] do_syscall_64+0xb0/0x150 [ 998.660375][T21909] do_syscall_64+0xb0/0x150 [ 998.664938][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.669848][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.674662][T21911] [ 998.679484][T21909] [ 998.683977][T21911] Uninit was stored to memory at: [ 998.688453][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 998.694340][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 998.700201][T21909] do_recvmmsg+0xc5/0x1ee0 [ 998.702506][T21911] __msan_chain_origin+0x50/0x90 [ 998.704812][T21909] do_recvmmsg+0xc5/0x1ee0 [ 998.709808][T21911] do_recvmmsg+0x105a/0x1ee0 [ 998.740652][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 998.745597][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 998.750452][T21911] do_syscall_64+0xb0/0x150 [ 998.754963][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.760842][T21911] [ 998.763159][T21911] Uninit was stored to memory at: [ 998.768281][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 998.774007][T21911] __msan_chain_origin+0x50/0x90 [ 998.778946][T21911] do_recvmmsg+0x105a/0x1ee0 [ 998.783538][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 998.788485][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 998.793351][T21911] do_syscall_64+0xb0/0x150 [ 998.797868][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.803750][T21911] [ 998.806067][T21911] Uninit was stored to memory at: [ 998.811094][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 998.816812][T21911] __msan_chain_origin+0x50/0x90 [ 998.821750][T21911] do_recvmmsg+0x105a/0x1ee0 [ 998.826343][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 998.831281][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 998.836135][T21911] do_syscall_64+0xb0/0x150 [ 998.840635][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.846509][T21911] [ 998.848826][T21911] Uninit was stored to memory at: [ 998.853852][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 998.859572][T21911] __msan_chain_origin+0x50/0x90 [ 998.864528][T21911] do_recvmmsg+0x105a/0x1ee0 [ 998.869113][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 998.874049][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 998.878896][T21911] do_syscall_64+0xb0/0x150 [ 998.883486][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 998.889361][T21911] [ 998.891677][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 998.899046][T21911] do_recvmmsg+0xc5/0x1ee0 [ 998.903460][T21911] do_recvmmsg+0xc5/0x1ee0 [ 999.040077][T21911] not chained 470000 origins [ 999.044705][T21911] CPU: 1 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 999.053376][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 999.063637][T21911] Call Trace: [ 999.066937][T21911] dump_stack+0x1df/0x240 [ 999.071301][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 999.077031][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 999.082182][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 999.088078][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 999.093397][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 999.098595][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 999.104402][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 999.110472][T21911] ? kfree+0x61/0x30f0 [ 999.114553][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 999.119672][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 999.125239][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 999.131326][T21911] ? _copy_from_user+0x15b/0x260 [ 999.140353][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 999.145488][T21911] __msan_chain_origin+0x50/0x90 [ 999.150433][T21911] do_recvmmsg+0x105a/0x1ee0 [ 999.155059][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 999.160350][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 999.165378][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 999.170404][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 999.176312][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 999.181297][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 999.186155][T21911] do_syscall_64+0xb0/0x150 [ 999.190663][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 999.196553][T21911] RIP: 0033:0x45c1d9 [ 999.200436][T21911] Code: Bad RIP value. [ 999.204493][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 999.212991][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 999.220960][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 999.228926][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 999.236895][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 999.244866][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 999.252844][T21911] Uninit was stored to memory at: [ 999.257867][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 999.263588][T21911] __msan_chain_origin+0x50/0x90 [ 999.268531][T21911] do_recvmmsg+0x105a/0x1ee0 [ 999.273122][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 999.278059][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 999.282910][T21911] do_syscall_64+0xb0/0x150 [ 999.287413][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 999.293301][T21911] [ 999.295621][T21911] Uninit was stored to memory at: [ 999.300643][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 999.306364][T21911] __msan_chain_origin+0x50/0x90 [ 999.311308][T21911] do_recvmmsg+0x105a/0x1ee0 [ 999.315902][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 999.320847][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 999.325701][T21911] do_syscall_64+0xb0/0x150 [ 999.330205][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 999.336176][T21911] [ 999.338495][T21911] Uninit was stored to memory at: [ 999.343522][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 999.349244][T21911] __msan_chain_origin+0x50/0x90 [ 999.354184][T21911] do_recvmmsg+0x105a/0x1ee0 [ 999.358775][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 999.363713][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 999.368564][T21911] do_syscall_64+0xb0/0x150 [ 999.373069][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 999.378949][T21911] [ 999.381268][T21911] Uninit was stored to memory at: [ 999.386296][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 999.392012][T21911] __msan_chain_origin+0x50/0x90 [ 999.396949][T21911] do_recvmmsg+0x105a/0x1ee0 [ 999.406843][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 999.411780][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 999.416631][T21911] do_syscall_64+0xb0/0x150 [ 999.421136][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 999.427018][T21911] [ 999.429862][T21911] Uninit was stored to memory at: [ 999.434894][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 999.440609][T21911] __msan_chain_origin+0x50/0x90 [ 999.445552][T21911] do_recvmmsg+0x105a/0x1ee0 [ 999.450141][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 999.455077][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 999.459927][T21911] do_syscall_64+0xb0/0x150 [ 999.464440][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 999.470319][T21911] [ 999.472649][T21911] Uninit was stored to memory at: [ 999.477674][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 999.483396][T21911] __msan_chain_origin+0x50/0x90 [ 999.488337][T21911] do_recvmmsg+0x105a/0x1ee0 [ 999.492943][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 999.497880][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 999.502740][T21911] do_syscall_64+0xb0/0x150 [ 999.507251][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 999.513141][T21911] [ 999.515468][T21911] Uninit was stored to memory at: [ 999.520494][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 999.526217][T21911] __msan_chain_origin+0x50/0x90 [ 999.531156][T21911] do_recvmmsg+0x105a/0x1ee0 [ 999.535751][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 999.540687][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 999.545541][T21911] do_syscall_64+0xb0/0x150 [ 999.550045][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 999.555926][T21911] [ 999.558249][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 999.564979][T21911] do_recvmmsg+0xc5/0x1ee0 [ 999.569398][T21911] do_recvmmsg+0xc5/0x1ee0 [ 999.644409][T21911] not chained 480000 origins [ 999.649052][T21911] CPU: 1 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 999.657722][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 999.667777][T21911] Call Trace: [ 999.671080][T21911] dump_stack+0x1df/0x240 [ 999.675599][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 999.681321][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 999.686450][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 999.692351][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 999.697648][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 999.702848][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 999.708664][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 999.714739][T21911] ? kfree+0x61/0x30f0 [ 999.718834][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 999.723950][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 999.729503][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 999.735581][T21911] ? _copy_from_user+0x15b/0x260 [ 999.740551][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 999.745871][T21911] __msan_chain_origin+0x50/0x90 [ 999.750816][T21911] do_recvmmsg+0x105a/0x1ee0 [ 999.755445][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 999.760754][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 999.765968][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 999.771003][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 999.776915][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 999.781867][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 999.786730][T21911] do_syscall_64+0xb0/0x150 [ 999.791248][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 999.797142][T21911] RIP: 0033:0x45c1d9 [ 999.801026][T21911] Code: Bad RIP value. [ 999.805086][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 999.813498][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 999.820047][T21918] not chained 490000 origins [ 999.821472][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 999.834049][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 999.842020][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 999.849988][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 999.857973][T21911] Uninit was stored to memory at: [ 999.857989][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 999.858003][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 999.863046][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 999.871696][T21918] Call Trace: [ 999.881747][T21911] __msan_chain_origin+0x50/0x90 [ 999.887450][T21918] dump_stack+0x1df/0x240 [ 999.890711][T21911] do_recvmmsg+0x105a/0x1ee0 [ 999.895625][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 999.899933][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 999.904515][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 999.910224][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 999.915133][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 999.920220][T21911] do_syscall_64+0xb0/0x150 [ 999.925042][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 999.930908][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 999.935388][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 999.940636][T21911] [ 999.946522][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 999.951681][T21911] Uninit was stored to memory at: [ 999.953997][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 999.959772][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 999.964782][T21918] ? kfree+0x61/0x30f0 [ 999.970820][T21911] __msan_chain_origin+0x50/0x90 [ 999.976526][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 999.980567][T21911] do_recvmmsg+0x105a/0x1ee0 [ 999.985490][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 999.990574][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 999.995138][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1000.000655][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1000.005569][T21918] ? _copy_from_user+0x15b/0x260 [ 1000.011610][T21911] do_syscall_64+0xb0/0x150 [ 1000.016517][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1000.021445][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1000.025922][T21918] __msan_chain_origin+0x50/0x90 [ 1000.031084][T21911] [ 1000.036963][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1000.041876][T21911] Uninit was stored to memory at: [ 1000.044219][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1000.048755][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1000.053766][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1000.059019][T21911] __msan_chain_origin+0x50/0x90 [ 1000.064712][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1000.069704][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1000.074616][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1000.079612][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1000.084174][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1000.090041][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1000.094957][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1000.099864][T21911] do_syscall_64+0xb0/0x150 [ 1000.104685][T21918] do_syscall_64+0xb0/0x150 [ 1000.109511][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1000.113989][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1000.118462][T21911] [ 1000.124331][T21918] RIP: 0033:0x45c1d9 [ 1000.130188][T21911] Uninit was stored to memory at: [ 1000.132490][T21918] Code: Bad RIP value. [ 1000.136368][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1000.141413][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1000.145462][T21911] __msan_chain_origin+0x50/0x90 [ 1000.151168][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1000.159640][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1000.164546][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1000.172499][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1000.177057][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1000.185013][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1000.189919][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 1000.197872][T21911] do_syscall_64+0xb0/0x150 [ 1000.202689][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1000.210643][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1000.215115][T21918] Uninit was stored to memory at: [ 1000.223059][T21911] [ 1000.228938][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1000.233924][T21911] Uninit was stored to memory at: [ 1000.236238][T21918] __msan_chain_origin+0x50/0x90 [ 1000.241928][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1000.246930][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1000.251838][T21911] __msan_chain_origin+0x50/0x90 [ 1000.257540][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1000.262101][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1000.267014][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1000.271916][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1000.271936][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1000.276503][T21918] do_syscall_64+0xb0/0x150 [ 1000.281326][T21911] do_syscall_64+0xb0/0x150 [ 1000.286235][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1000.291056][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1000.295519][T21918] [ 1000.300008][T21911] [ 1000.305885][T21918] Uninit was stored to memory at: [ 1000.311766][T21911] Uninit was stored to memory at: [ 1000.314082][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1000.316387][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1000.321394][T21918] __msan_chain_origin+0x50/0x90 [ 1000.326391][T21911] __msan_chain_origin+0x50/0x90 [ 1000.332083][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1000.337774][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1000.342685][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1000.347597][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1000.352161][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1000.357245][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1000.362156][T21918] do_syscall_64+0xb0/0x150 [ 1000.367066][T21911] do_syscall_64+0xb0/0x150 [ 1000.371889][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1000.376712][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1000.381177][T21918] [ 1000.385651][T21911] [ 1000.391534][T21918] Uninit was stored to memory at: [ 1000.397425][T21911] Uninit was stored to memory at: [ 1000.399742][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1000.402045][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1000.407041][T21918] __msan_chain_origin+0x50/0x90 [ 1000.412039][T21911] __msan_chain_origin+0x50/0x90 [ 1000.417731][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1000.423425][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1000.428335][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1000.433247][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1000.437813][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1000.442377][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1000.447293][T21918] do_syscall_64+0xb0/0x150 [ 1000.452225][T21911] do_syscall_64+0xb0/0x150 [ 1000.457051][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1000.461878][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1000.466365][T21918] [ 1000.470841][T21911] [ 1000.476708][T21918] Uninit was stored to memory at: [ 1000.482577][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 1000.484908][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1000.487209][T21911] do_recvmmsg+0xc5/0x1ee0 [ 1000.492205][T21918] __msan_chain_origin+0x50/0x90 [ 1000.498852][T21911] do_recvmmsg+0xc5/0x1ee0 [ 1000.504545][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1000.523549][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1000.528493][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1000.533344][T21918] do_syscall_64+0xb0/0x150 [ 1000.537831][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1000.543872][T21918] [ 1000.546183][T21918] Uninit was stored to memory at: [ 1000.551206][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1000.556943][T21918] __msan_chain_origin+0x50/0x90 [ 1000.561880][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1000.566462][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1000.571383][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1000.576218][T21918] do_syscall_64+0xb0/0x150 [ 1000.580711][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1000.586578][T21918] [ 1000.588884][T21918] Uninit was stored to memory at: [ 1000.593894][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1000.599597][T21918] __msan_chain_origin+0x50/0x90 [ 1000.604532][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1000.609104][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1000.614047][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1000.618890][T21918] do_syscall_64+0xb0/0x150 [ 1000.623404][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1000.629273][T21918] [ 1000.631684][T21918] Uninit was stored to memory at: [ 1000.636697][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1000.642403][T21918] __msan_chain_origin+0x50/0x90 [ 1000.647323][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1000.651901][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1000.656823][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1000.661669][T21918] do_syscall_64+0xb0/0x150 [ 1000.666163][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1000.672032][T21918] [ 1000.674344][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 1000.681014][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1000.685416][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1000.829096][T21909] not chained 500000 origins [ 1000.833733][T21909] CPU: 1 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1000.842404][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1000.852455][T21909] Call Trace: [ 1000.855749][T21909] dump_stack+0x1df/0x240 [ 1000.860089][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 1000.865812][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1000.870927][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1000.876823][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1000.882114][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 1000.887317][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1000.893129][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1000.899198][T21909] ? kfree+0x61/0x30f0 [ 1000.903285][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1000.908400][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 1000.913957][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1000.920030][T21909] ? _copy_from_user+0x15b/0x260 [ 1000.924977][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1000.930088][T21909] __msan_chain_origin+0x50/0x90 [ 1000.935032][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1000.939655][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1000.944953][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1000.949977][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1000.955002][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1000.960899][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1000.965858][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1000.970709][T21909] do_syscall_64+0xb0/0x150 [ 1000.975217][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1000.981099][T21909] RIP: 0033:0x45c1d9 [ 1000.984992][T21909] Code: Bad RIP value. [ 1000.989050][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1000.997459][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1001.005431][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1001.013425][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1001.021399][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1001.029374][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 1001.037355][T21909] Uninit was stored to memory at: [ 1001.042383][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1001.048102][T21909] __msan_chain_origin+0x50/0x90 [ 1001.053042][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1001.057639][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1001.063620][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1001.068478][T21909] do_syscall_64+0xb0/0x150 [ 1001.073015][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1001.078892][T21909] [ 1001.081216][T21909] Uninit was stored to memory at: [ 1001.086246][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1001.091967][T21909] __msan_chain_origin+0x50/0x90 [ 1001.096905][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1001.101496][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1001.106479][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1001.111326][T21909] do_syscall_64+0xb0/0x150 [ 1001.115836][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1001.121718][T21909] [ 1001.124034][T21909] Uninit was stored to memory at: [ 1001.129059][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1001.134778][T21909] __msan_chain_origin+0x50/0x90 [ 1001.139722][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1001.144322][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1001.149262][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1001.154123][T21909] do_syscall_64+0xb0/0x150 [ 1001.158629][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1001.164511][T21909] [ 1001.166917][T21909] Uninit was stored to memory at: [ 1001.171961][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1001.177683][T21909] __msan_chain_origin+0x50/0x90 [ 1001.182622][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1001.187210][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1001.192145][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1001.197000][T21909] do_syscall_64+0xb0/0x150 [ 1001.201510][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1001.207397][T21909] [ 1001.209746][T21909] Uninit was stored to memory at: [ 1001.214866][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1001.220580][T21909] __msan_chain_origin+0x50/0x90 [ 1001.225517][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1001.230102][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1001.235043][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1001.239893][T21909] do_syscall_64+0xb0/0x150 [ 1001.244398][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1001.250273][T21909] [ 1001.252590][T21909] Uninit was stored to memory at: [ 1001.257619][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1001.263335][T21909] __msan_chain_origin+0x50/0x90 [ 1001.268269][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1001.272865][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1001.277799][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1001.282649][T21909] do_syscall_64+0xb0/0x150 [ 1001.287149][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1001.293026][T21909] [ 1001.295357][T21909] Uninit was stored to memory at: [ 1001.300385][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1001.306102][T21909] __msan_chain_origin+0x50/0x90 [ 1001.311301][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1001.315897][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1001.320835][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1001.325686][T21909] do_syscall_64+0xb0/0x150 [ 1001.330190][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1001.336068][T21909] [ 1001.338387][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 1001.345151][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1001.349591][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1001.484985][T21909] not chained 510000 origins [ 1001.489613][T21909] CPU: 1 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1001.498277][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1001.508331][T21909] Call Trace: [ 1001.511625][T21909] dump_stack+0x1df/0x240 [ 1001.515965][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 1001.521705][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1001.526823][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1001.532722][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1001.538044][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 1001.543250][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1001.549061][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1001.555134][T21909] ? kfree+0x61/0x30f0 [ 1001.559209][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1001.564322][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 1001.569891][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1001.576032][T21909] ? _copy_from_user+0x15b/0x260 [ 1001.580978][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1001.586099][T21909] __msan_chain_origin+0x50/0x90 [ 1001.591047][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1001.595687][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1001.600981][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1001.606010][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1001.611036][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1001.616941][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1001.621889][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1001.626851][T21909] do_syscall_64+0xb0/0x150 [ 1001.631365][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1001.637259][T21909] RIP: 0033:0x45c1d9 [ 1001.641145][T21909] Code: Bad RIP value. [ 1001.645211][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1001.653626][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1001.661605][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1001.669755][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1001.677730][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1001.685716][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 1001.693699][T21909] Uninit was stored to memory at: [ 1001.698729][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1001.704451][T21909] __msan_chain_origin+0x50/0x90 [ 1001.709390][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1001.713980][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1001.718923][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1001.723776][T21909] do_syscall_64+0xb0/0x150 [ 1001.728277][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1001.734153][T21909] [ 1001.736469][T21909] Uninit was stored to memory at: [ 1001.741494][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1001.747215][T21909] __msan_chain_origin+0x50/0x90 [ 1001.752154][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1001.756767][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1001.761879][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1001.766732][T21909] do_syscall_64+0xb0/0x150 [ 1001.771361][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1001.777249][T21909] [ 1001.779573][T21909] Uninit was stored to memory at: [ 1001.784603][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1001.790323][T21909] __msan_chain_origin+0x50/0x90 [ 1001.795275][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1001.799866][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1001.804810][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1001.809661][T21909] do_syscall_64+0xb0/0x150 [ 1001.814168][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1001.820052][T21909] [ 1001.822372][T21909] Uninit was stored to memory at: [ 1001.827404][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1001.833127][T21909] __msan_chain_origin+0x50/0x90 [ 1001.838068][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1001.842658][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1001.847596][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1001.852448][T21909] do_syscall_64+0xb0/0x150 [ 1001.856977][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1001.863029][T21909] [ 1001.865350][T21909] Uninit was stored to memory at: [ 1001.870376][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1001.876100][T21909] __msan_chain_origin+0x50/0x90 [ 1001.881035][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1001.885628][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1001.890568][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1001.895425][T21909] do_syscall_64+0xb0/0x150 [ 1001.899932][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1001.905816][T21909] [ 1001.908135][T21909] Uninit was stored to memory at: [ 1001.913164][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1001.918883][T21909] __msan_chain_origin+0x50/0x90 [ 1001.923831][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1001.928521][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1001.933472][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1001.938322][T21909] do_syscall_64+0xb0/0x150 [ 1001.942832][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1001.948712][T21909] [ 1001.951033][T21909] Uninit was stored to memory at: [ 1001.956059][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1001.961778][T21909] __msan_chain_origin+0x50/0x90 [ 1001.966723][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1001.971314][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1001.976254][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1001.981114][T21909] do_syscall_64+0xb0/0x150 [ 1001.985624][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1001.991505][T21909] [ 1001.993825][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 1002.000498][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1002.004920][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1002.041211][T21911] not chained 520000 origins [ 1002.046220][T21911] CPU: 1 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 1002.055858][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1002.065910][T21911] Call Trace: [ 1002.069217][T21911] dump_stack+0x1df/0x240 [ 1002.073568][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 1002.079295][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 1002.085105][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1002.091003][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 1002.096301][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 1002.101590][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1002.107401][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1002.113470][T21911] ? kfree+0x61/0x30f0 [ 1002.117545][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 1002.122657][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 1002.128208][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1002.134308][T21911] ? _copy_from_user+0x15b/0x260 [ 1002.139248][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 1002.144626][T21911] __msan_chain_origin+0x50/0x90 [ 1002.149580][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1002.154212][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 1002.159504][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 1002.164532][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 1002.169557][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1002.175463][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1002.180415][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1002.185270][T21911] do_syscall_64+0xb0/0x150 [ 1002.189803][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1002.195869][T21911] RIP: 0033:0x45c1d9 [ 1002.199754][T21911] Code: Bad RIP value. [ 1002.202114][T21918] not chained 530000 origins [ 1002.203836][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1002.216805][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1002.224849][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1002.232810][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1002.240767][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1002.248728][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 1002.256693][T21911] Uninit was stored to memory at: [ 1002.256705][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1002.256718][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1002.261727][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1002.270366][T21918] Call Trace: [ 1002.280412][T21911] __msan_chain_origin+0x50/0x90 [ 1002.286106][T21918] dump_stack+0x1df/0x240 [ 1002.289375][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1002.294320][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 1002.298622][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1002.303188][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1002.308882][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1002.313794][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1002.318897][T21911] do_syscall_64+0xb0/0x150 [ 1002.323814][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1002.329693][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1002.334180][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 1002.339429][T21911] [ 1002.345312][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1002.350487][T21911] Uninit was stored to memory at: [ 1002.353414][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1002.359195][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1002.364196][T21918] ? kfree+0x61/0x30f0 [ 1002.370234][T21911] __msan_chain_origin+0x50/0x90 [ 1002.375929][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1002.379976][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1002.384977][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 1002.390066][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1002.394631][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1002.400168][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1002.405100][T21918] ? _copy_from_user+0x15b/0x260 [ 1002.411229][T21911] do_syscall_64+0xb0/0x150 [ 1002.416078][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1002.421514][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1002.426002][T21918] __msan_chain_origin+0x50/0x90 [ 1002.431083][T21911] [ 1002.436984][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1002.441888][T21911] Uninit was stored to memory at: [ 1002.444234][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1002.448773][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1002.453788][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1002.459065][T21911] __msan_chain_origin+0x50/0x90 [ 1002.464758][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1002.469760][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1002.474871][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1002.479870][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1002.484436][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1002.490304][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1002.495223][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1002.500131][T21911] do_syscall_64+0xb0/0x150 [ 1002.505060][T21918] do_syscall_64+0xb0/0x150 [ 1002.509886][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1002.514459][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1002.519187][T21911] [ 1002.525059][T21918] RIP: 0033:0x45c1d9 [ 1002.530922][T21911] Uninit was stored to memory at: [ 1002.533227][T21918] Code: Bad RIP value. [ 1002.537106][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1002.542099][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1002.546145][T21911] __msan_chain_origin+0x50/0x90 [ 1002.551831][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1002.560217][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1002.565127][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1002.573080][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1002.577640][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1002.585593][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1002.590634][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 1002.598610][T21911] do_syscall_64+0xb0/0x150 [ 1002.603435][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1002.611407][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1002.615879][T21918] Uninit was stored to memory at: [ 1002.623959][T21911] [ 1002.629870][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1002.634867][T21911] Uninit was stored to memory at: [ 1002.637180][T21918] __msan_chain_origin+0x50/0x90 [ 1002.642872][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1002.647885][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1002.652792][T21911] __msan_chain_origin+0x50/0x90 [ 1002.658497][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1002.663070][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1002.667976][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1002.672885][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1002.677448][T21918] do_syscall_64+0xb0/0x150 [ 1002.682271][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1002.687181][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1002.691658][T21911] do_syscall_64+0xb0/0x150 [ 1002.696470][T21918] [ 1002.702345][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1002.706808][T21918] Uninit was stored to memory at: [ 1002.709112][T21911] [ 1002.714986][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1002.719974][T21911] Uninit was stored to memory at: [ 1002.722291][T21918] __msan_chain_origin+0x50/0x90 [ 1002.727979][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1002.732977][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1002.737883][T21911] __msan_chain_origin+0x50/0x90 [ 1002.743578][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1002.748142][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1002.753053][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1002.757967][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1002.762528][T21918] do_syscall_64+0xb0/0x150 [ 1002.767351][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1002.772263][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1002.776743][T21911] do_syscall_64+0xb0/0x150 [ 1002.781555][T21918] [ 1002.787458][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1002.791925][T21918] Uninit was stored to memory at: [ 1002.794256][T21911] [ 1002.800140][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1002.805128][T21911] Uninit was stored to memory at: [ 1002.807443][T21918] __msan_chain_origin+0x50/0x90 [ 1002.813137][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1002.818142][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1002.823051][T21911] __msan_chain_origin+0x50/0x90 [ 1002.828743][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1002.833305][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1002.838213][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1002.843123][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1002.847686][T21918] do_syscall_64+0xb0/0x150 [ 1002.852507][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1002.857419][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1002.861894][T21911] do_syscall_64+0xb0/0x150 [ 1002.866712][T21918] [ 1002.872589][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1002.877052][T21918] Uninit was stored to memory at: [ 1002.879358][T21911] [ 1002.885233][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1002.890222][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 1002.892534][T21918] __msan_chain_origin+0x50/0x90 [ 1002.898229][T21911] do_recvmmsg+0xc5/0x1ee0 [ 1002.904874][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1002.909784][T21911] do_recvmmsg+0xc5/0x1ee0 [ 1002.914175][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1002.928051][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1002.932907][T21918] do_syscall_64+0xb0/0x150 [ 1002.937439][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1002.943321][T21918] [ 1002.945640][T21918] Uninit was stored to memory at: [ 1002.950663][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1002.956387][T21918] __msan_chain_origin+0x50/0x90 [ 1002.961321][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1002.965905][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1002.970843][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1002.975692][T21918] do_syscall_64+0xb0/0x150 [ 1002.980191][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1002.986068][T21918] [ 1002.988386][T21918] Uninit was stored to memory at: [ 1002.993410][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1002.999122][T21918] __msan_chain_origin+0x50/0x90 [ 1003.004056][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1003.008642][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1003.013141][T21911] not chained 540000 origins [ 1003.013577][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1003.018148][T21911] CPU: 1 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 1003.023062][T21918] do_syscall_64+0xb0/0x150 [ 1003.031696][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1003.036180][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1003.046201][T21911] Call Trace: [ 1003.052098][T21918] [ 1003.055369][T21911] dump_stack+0x1df/0x240 [ 1003.057663][T21918] Uninit was stored to memory at: [ 1003.061981][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 1003.066988][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1003.072696][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 1003.078384][T21918] __msan_chain_origin+0x50/0x90 [ 1003.083470][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1003.088415][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1003.094294][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 1003.098860][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1003.104116][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 1003.109028][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1003.114199][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1003.119022][T21918] do_syscall_64+0xb0/0x150 [ 1003.124802][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1003.129282][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1003.135317][T21911] ? kfree+0x61/0x30f0 [ 1003.141172][T21918] [ 1003.145229][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 1003.147523][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 1003.152626][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 1003.159300][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1003.164820][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1003.169222][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1003.175265][T21911] ? _copy_from_user+0x15b/0x260 [ 1003.184585][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 1003.189698][T21911] __msan_chain_origin+0x50/0x90 [ 1003.194648][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1003.199271][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 1003.204565][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 1003.209590][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 1003.214618][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1003.220519][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1003.225477][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1003.230332][T21911] do_syscall_64+0xb0/0x150 [ 1003.234842][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1003.240731][T21911] RIP: 0033:0x45c1d9 [ 1003.244614][T21911] Code: Bad RIP value. [ 1003.248675][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1003.257083][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1003.265054][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1003.273024][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1003.280992][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1003.288963][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 1003.296949][T21911] Uninit was stored to memory at: [ 1003.301980][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1003.307697][T21911] __msan_chain_origin+0x50/0x90 [ 1003.312639][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1003.317229][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1003.322166][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1003.327017][T21911] do_syscall_64+0xb0/0x150 [ 1003.331515][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1003.337393][T21911] [ 1003.339712][T21911] Uninit was stored to memory at: [ 1003.344734][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1003.350448][T21911] __msan_chain_origin+0x50/0x90 [ 1003.355386][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1003.360151][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1003.365094][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1003.369946][T21911] do_syscall_64+0xb0/0x150 [ 1003.374455][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1003.380331][T21911] [ 1003.382650][T21911] Uninit was stored to memory at: [ 1003.387674][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1003.393395][T21911] __msan_chain_origin+0x50/0x90 [ 1003.398332][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1003.402919][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1003.407855][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1003.412703][T21911] do_syscall_64+0xb0/0x150 [ 1003.417209][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1003.423087][T21911] [ 1003.425405][T21911] Uninit was stored to memory at: [ 1003.430427][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1003.436145][T21911] __msan_chain_origin+0x50/0x90 [ 1003.441085][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1003.445671][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1003.450604][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1003.455458][T21911] do_syscall_64+0xb0/0x150 [ 1003.459962][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1003.465838][T21911] [ 1003.468159][T21911] Uninit was stored to memory at: [ 1003.473181][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1003.478905][T21911] __msan_chain_origin+0x50/0x90 [ 1003.483848][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1003.488463][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1003.493400][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1003.498249][T21911] do_syscall_64+0xb0/0x150 [ 1003.502750][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1003.508659][T21911] [ 1003.513496][T21911] Uninit was stored to memory at: [ 1003.518524][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1003.524239][T21911] __msan_chain_origin+0x50/0x90 [ 1003.529170][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1003.533758][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1003.538695][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1003.543542][T21911] do_syscall_64+0xb0/0x150 [ 1003.548045][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1003.554023][T21911] [ 1003.556352][T21911] Uninit was stored to memory at: [ 1003.561378][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1003.567098][T21911] __msan_chain_origin+0x50/0x90 [ 1003.572035][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1003.576626][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1003.581558][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1003.586405][T21911] do_syscall_64+0xb0/0x150 [ 1003.590911][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1003.596790][T21911] [ 1003.599109][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 1003.605789][T21911] do_recvmmsg+0xc5/0x1ee0 [ 1003.610203][T21911] do_recvmmsg+0xc5/0x1ee0 [ 1003.730879][T21909] not chained 550000 origins [ 1003.735530][T21909] CPU: 1 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1003.744201][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1003.754252][T21909] Call Trace: [ 1003.757549][T21909] dump_stack+0x1df/0x240 [ 1003.761887][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 1003.767742][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1003.772867][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1003.778763][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1003.784058][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 1003.789259][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1003.795085][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1003.801154][T21909] ? kfree+0x61/0x30f0 [ 1003.805231][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1003.810347][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 1003.815907][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1003.821983][T21909] ? _copy_from_user+0x15b/0x260 [ 1003.826947][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1003.832063][T21909] __msan_chain_origin+0x50/0x90 [ 1003.837005][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1003.841632][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1003.846919][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1003.851944][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1003.856976][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1003.862872][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1003.867818][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1003.872674][T21909] do_syscall_64+0xb0/0x150 [ 1003.877180][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1003.883067][T21909] RIP: 0033:0x45c1d9 [ 1003.886948][T21909] Code: Bad RIP value. [ 1003.891005][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1003.899416][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1003.907394][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1003.915368][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1003.923339][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1003.931308][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 1003.939285][T21909] Uninit was stored to memory at: [ 1003.944315][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1003.950377][T21909] __msan_chain_origin+0x50/0x90 [ 1003.955319][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1003.959912][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1003.964848][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1003.969695][T21909] do_syscall_64+0xb0/0x150 [ 1003.974202][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1003.980075][T21909] [ 1003.982394][T21909] Uninit was stored to memory at: [ 1003.987416][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1003.993132][T21909] __msan_chain_origin+0x50/0x90 [ 1003.998069][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1004.002656][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1004.007588][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1004.012438][T21909] do_syscall_64+0xb0/0x150 [ 1004.016962][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1004.022836][T21909] [ 1004.025150][T21909] Uninit was stored to memory at: [ 1004.030195][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1004.035917][T21909] __msan_chain_origin+0x50/0x90 [ 1004.040851][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1004.045438][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1004.050372][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1004.055220][T21909] do_syscall_64+0xb0/0x150 [ 1004.059721][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1004.065601][T21909] [ 1004.067919][T21909] Uninit was stored to memory at: [ 1004.072963][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1004.078684][T21909] __msan_chain_origin+0x50/0x90 [ 1004.083624][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1004.088212][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1004.093149][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1004.097996][T21909] do_syscall_64+0xb0/0x150 [ 1004.102499][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1004.108375][T21909] [ 1004.110694][T21909] Uninit was stored to memory at: [ 1004.115720][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1004.121436][T21909] __msan_chain_origin+0x50/0x90 [ 1004.126374][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1004.130963][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1004.135917][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1004.140780][T21909] do_syscall_64+0xb0/0x150 [ 1004.145288][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1004.151168][T21909] [ 1004.153486][T21909] Uninit was stored to memory at: [ 1004.158515][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1004.164261][T21909] __msan_chain_origin+0x50/0x90 [ 1004.169195][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1004.173792][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1004.178737][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1004.183588][T21909] do_syscall_64+0xb0/0x150 [ 1004.188107][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1004.193981][T21909] [ 1004.196299][T21909] Uninit was stored to memory at: [ 1004.201325][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1004.207045][T21909] __msan_chain_origin+0x50/0x90 [ 1004.211983][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1004.216577][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1004.221517][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1004.226369][T21909] do_syscall_64+0xb0/0x150 [ 1004.230872][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1004.236748][T21909] [ 1004.239068][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 1004.245743][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1004.250167][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1004.390736][T21911] not chained 560000 origins [ 1004.395365][T21911] CPU: 1 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 1004.404029][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1004.414342][T21911] Call Trace: [ 1004.417637][T21911] dump_stack+0x1df/0x240 [ 1004.421973][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 1004.427690][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 1004.432806][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1004.438709][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 1004.443998][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 1004.449198][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1004.455003][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1004.461075][T21911] ? kfree+0x61/0x30f0 [ 1004.465146][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 1004.470255][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 1004.475818][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1004.481889][T21911] ? _copy_from_user+0x15b/0x260 [ 1004.486824][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 1004.491940][T21911] __msan_chain_origin+0x50/0x90 [ 1004.496882][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1004.501513][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 1004.506807][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 1004.511829][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 1004.517197][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1004.523099][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1004.528045][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1004.532898][T21911] do_syscall_64+0xb0/0x150 [ 1004.537421][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1004.543303][T21911] RIP: 0033:0x45c1d9 [ 1004.547187][T21911] Code: Bad RIP value. [ 1004.551243][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1004.559652][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1004.567622][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1004.575592][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1004.583561][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1004.591535][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 1004.599319][T21918] not chained 570000 origins [ 1004.599508][T21911] Uninit was stored to memory at: [ 1004.604098][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1004.609106][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1004.617743][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1004.623449][T21911] __msan_chain_origin+0x50/0x90 [ 1004.633471][T21918] Call Trace: [ 1004.638409][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1004.641669][T21918] dump_stack+0x1df/0x240 [ 1004.646231][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1004.650533][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 1004.655448][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1004.661143][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1004.665969][T21911] do_syscall_64+0xb0/0x150 [ 1004.671051][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1004.675528][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1004.681403][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1004.687257][T21911] [ 1004.692537][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 1004.694855][T21911] Uninit was stored to memory at: [ 1004.700044][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1004.705184][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1004.710983][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1004.716676][T21911] __msan_chain_origin+0x50/0x90 [ 1004.722735][T21918] ? kfree+0x61/0x30f0 [ 1004.727656][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1004.731712][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1004.736275][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1004.741360][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 1004.746275][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1004.751795][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1004.756623][T21911] do_syscall_64+0xb0/0x150 [ 1004.762670][T21918] ? _copy_from_user+0x15b/0x260 [ 1004.767147][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1004.772056][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1004.777913][T21911] [ 1004.783021][T21918] __msan_chain_origin+0x50/0x90 [ 1004.785319][T21911] Uninit was stored to memory at: [ 1004.790253][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1004.795368][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1004.799971][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1004.805815][T21911] __msan_chain_origin+0x50/0x90 [ 1004.811076][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1004.816072][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1004.821070][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1004.825636][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1004.830635][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1004.835559][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1004.841449][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1004.846272][T21911] do_syscall_64+0xb0/0x150 [ 1004.851201][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1004.855680][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1004.860505][T21918] do_syscall_64+0xb0/0x150 [ 1004.866359][T21911] [ 1004.870846][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1004.873140][T21911] Uninit was stored to memory at: [ 1004.879010][T21918] RIP: 0033:0x45c1d9 [ 1004.884011][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1004.887885][T21918] Code: Bad RIP value. [ 1004.893585][T21911] __msan_chain_origin+0x50/0x90 [ 1004.897623][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1004.902541][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1004.910919][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1004.915488][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1004.923446][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1004.928380][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1004.936319][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1004.941149][T21911] do_syscall_64+0xb0/0x150 [ 1004.949091][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 1004.953576][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1004.961518][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1004.967376][T21911] [ 1004.975343][T21918] Uninit was stored to memory at: [ 1004.977643][T21911] Uninit was stored to memory at: [ 1004.982659][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1004.987843][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1004.993551][T21918] __msan_chain_origin+0x50/0x90 [ 1004.999241][T21911] __msan_chain_origin+0x50/0x90 [ 1005.004153][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1005.009073][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1005.013636][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1005.018204][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1005.023217][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1005.028215][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1005.033039][T21918] do_syscall_64+0xb0/0x150 [ 1005.037860][T21911] do_syscall_64+0xb0/0x150 [ 1005.042336][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1005.046812][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1005.052666][T21918] [ 1005.058532][T21911] [ 1005.060837][T21918] Uninit was stored to memory at: [ 1005.063154][T21911] Uninit was stored to memory at: [ 1005.068159][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1005.073155][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1005.078847][T21918] __msan_chain_origin+0x50/0x90 [ 1005.084539][T21911] __msan_chain_origin+0x50/0x90 [ 1005.089463][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1005.094390][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1005.098953][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1005.103512][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1005.108424][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1005.113332][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1005.118154][T21918] do_syscall_64+0xb0/0x150 [ 1005.122979][T21911] do_syscall_64+0xb0/0x150 [ 1005.127455][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1005.131933][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1005.137786][T21918] [ 1005.143651][T21911] [ 1005.145955][T21918] Uninit was stored to memory at: [ 1005.148382][T21911] Uninit was stored to memory at: [ 1005.153403][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1005.158400][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1005.164091][T21918] __msan_chain_origin+0x50/0x90 [ 1005.169786][T21911] __msan_chain_origin+0x50/0x90 [ 1005.174698][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1005.179610][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1005.184195][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1005.188763][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1005.193672][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1005.198587][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1005.203411][T21918] do_syscall_64+0xb0/0x150 [ 1005.208245][T21911] do_syscall_64+0xb0/0x150 [ 1005.212725][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1005.217238][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1005.223060][T21918] [ 1005.228931][T21911] [ 1005.231233][T21918] Uninit was stored to memory at: [ 1005.233539][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 1005.238546][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1005.245191][T21911] do_recvmmsg+0xc5/0x1ee0 [ 1005.250883][T21918] __msan_chain_origin+0x50/0x90 [ 1005.255276][T21911] do_recvmmsg+0xc5/0x1ee0 [ 1005.260205][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1005.269166][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1005.274148][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1005.279034][T21918] do_syscall_64+0xb0/0x150 [ 1005.283546][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1005.289430][T21918] [ 1005.291755][T21918] Uninit was stored to memory at: [ 1005.296789][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1005.302495][T21918] __msan_chain_origin+0x50/0x90 [ 1005.307418][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1005.312081][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1005.317001][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1005.321851][T21918] do_syscall_64+0xb0/0x150 [ 1005.326361][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1005.332229][T21918] [ 1005.334546][T21918] Uninit was stored to memory at: [ 1005.339555][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1005.345264][T21918] __msan_chain_origin+0x50/0x90 [ 1005.350185][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1005.354775][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1005.359697][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1005.364530][T21918] do_syscall_64+0xb0/0x150 [ 1005.369018][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1005.374886][T21918] [ 1005.377193][T21918] Uninit was stored to memory at: [ 1005.382202][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1005.387903][T21918] __msan_chain_origin+0x50/0x90 [ 1005.392828][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1005.397404][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1005.402327][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1005.407162][T21918] do_syscall_64+0xb0/0x150 [ 1005.411650][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1005.417515][T21918] [ 1005.419840][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 1005.426497][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1005.430897][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1005.595760][T21909] not chained 580000 origins [ 1005.600388][T21909] CPU: 1 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1005.609058][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1005.619119][T21909] Call Trace: [ 1005.622416][T21909] dump_stack+0x1df/0x240 [ 1005.626761][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 1005.632480][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1005.637591][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1005.643485][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1005.648770][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 1005.653971][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1005.659779][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1005.665883][T21909] ? kfree+0x61/0x30f0 [ 1005.669954][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1005.675071][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 1005.680621][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1005.686693][T21909] ? _copy_from_user+0x15b/0x260 [ 1005.691634][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1005.696747][T21909] __msan_chain_origin+0x50/0x90 [ 1005.701692][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1005.706316][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1005.711607][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1005.716645][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1005.721668][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1005.727569][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1005.732518][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1005.737376][T21909] do_syscall_64+0xb0/0x150 [ 1005.741893][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1005.747785][T21909] RIP: 0033:0x45c1d9 [ 1005.751668][T21909] Code: Bad RIP value. [ 1005.755724][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1005.764134][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1005.772109][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1005.780084][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1005.789101][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1005.797075][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 1005.805093][T21909] Uninit was stored to memory at: [ 1005.810124][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1005.815845][T21909] __msan_chain_origin+0x50/0x90 [ 1005.820785][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1005.825377][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1005.830314][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1005.835170][T21909] do_syscall_64+0xb0/0x150 [ 1005.839677][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1005.845558][T21909] [ 1005.847877][T21909] Uninit was stored to memory at: [ 1005.852902][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1005.858640][T21909] __msan_chain_origin+0x50/0x90 [ 1005.863577][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1005.868168][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1005.873109][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1005.877959][T21909] do_syscall_64+0xb0/0x150 [ 1005.882469][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1005.888352][T21909] [ 1005.890673][T21909] Uninit was stored to memory at: [ 1005.895701][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1005.901423][T21909] __msan_chain_origin+0x50/0x90 [ 1005.906373][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1005.910963][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1005.915903][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1005.920752][T21909] do_syscall_64+0xb0/0x150 [ 1005.925282][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1005.931160][T21909] [ 1005.933480][T21909] Uninit was stored to memory at: [ 1005.938508][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1005.944229][T21909] __msan_chain_origin+0x50/0x90 [ 1005.949168][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1005.953779][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1005.958717][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1005.963569][T21909] do_syscall_64+0xb0/0x150 [ 1005.968072][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1005.973958][T21909] [ 1005.976453][T21909] Uninit was stored to memory at: [ 1005.981477][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1005.988070][T21909] __msan_chain_origin+0x50/0x90 [ 1005.993022][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1005.997614][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1006.002554][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1006.007407][T21909] do_syscall_64+0xb0/0x150 [ 1006.011913][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1006.017794][T21909] [ 1006.020114][T21909] Uninit was stored to memory at: [ 1006.025143][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1006.030862][T21909] __msan_chain_origin+0x50/0x90 [ 1006.035809][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1006.040402][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1006.045348][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1006.050198][T21909] do_syscall_64+0xb0/0x150 [ 1006.054708][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1006.060588][T21909] [ 1006.062922][T21909] Uninit was stored to memory at: [ 1006.068382][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1006.074116][T21909] __msan_chain_origin+0x50/0x90 [ 1006.079054][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1006.083645][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1006.088582][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1006.093434][T21909] do_syscall_64+0xb0/0x150 [ 1006.097941][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1006.103824][T21909] [ 1006.106146][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 1006.112823][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1006.117239][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1006.168732][T21909] not chained 590000 origins [ 1006.173455][T21909] CPU: 1 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1006.182125][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1006.192216][T21909] Call Trace: [ 1006.195519][T21909] dump_stack+0x1df/0x240 [ 1006.199853][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 1006.205932][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1006.211074][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1006.216975][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1006.222314][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 1006.227516][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1006.233325][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1006.239396][T21909] ? kfree+0x61/0x30f0 [ 1006.243470][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1006.248581][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 1006.254133][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1006.260207][T21909] ? _copy_from_user+0x15b/0x260 [ 1006.265147][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1006.270264][T21909] __msan_chain_origin+0x50/0x90 [ 1006.275216][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1006.279898][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1006.285189][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1006.290217][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1006.295256][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1006.301155][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1006.306109][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1006.310964][T21909] do_syscall_64+0xb0/0x150 [ 1006.315479][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1006.321370][T21909] RIP: 0033:0x45c1d9 [ 1006.325270][T21909] Code: Bad RIP value. [ 1006.329420][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1006.336241][T21911] not chained 600000 origins [ 1006.338279][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1006.350803][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1006.358760][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1006.366715][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1006.374672][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 1006.382639][T21909] Uninit was stored to memory at: [ 1006.382651][T21911] CPU: 0 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 1006.382664][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1006.387673][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1006.396311][T21911] Call Trace: [ 1006.406354][T21909] __msan_chain_origin+0x50/0x90 [ 1006.412049][T21911] dump_stack+0x1df/0x240 [ 1006.415315][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1006.420229][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 1006.424534][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1006.429101][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 1006.434795][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1006.439715][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1006.444805][T21909] do_syscall_64+0xb0/0x150 [ 1006.449634][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 1006.455519][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1006.460011][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 1006.465264][T21909] [ 1006.471141][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1006.476304][T21909] Uninit was stored to memory at: [ 1006.478621][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1006.484403][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1006.489493][T21911] ? kfree+0x61/0x30f0 [ 1006.495536][T21909] __msan_chain_origin+0x50/0x90 [ 1006.501249][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 1006.505385][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1006.510305][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 1006.515482][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1006.520062][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1006.525583][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1006.530496][T21911] ? _copy_from_user+0x15b/0x260 [ 1006.536536][T21909] do_syscall_64+0xb0/0x150 [ 1006.541367][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 1006.546282][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1006.550760][T21911] __msan_chain_origin+0x50/0x90 [ 1006.555923][T21909] [ 1006.561888][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1006.566793][T21909] Uninit was stored to memory at: [ 1006.569135][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 1006.573679][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1006.578683][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 1006.583965][T21909] __msan_chain_origin+0x50/0x90 [ 1006.589661][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 1006.594660][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1006.599573][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1006.604588][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1006.609172][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1006.615060][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1006.619987][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1006.625677][T21909] do_syscall_64+0xb0/0x150 [ 1006.630501][T21911] do_syscall_64+0xb0/0x150 [ 1006.635342][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1006.639822][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1006.644289][T21909] [ 1006.650163][T21911] RIP: 0033:0x45c1d9 [ 1006.656037][T21909] Uninit was stored to memory at: [ 1006.658360][T21911] Code: Bad RIP value. [ 1006.662256][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1006.667273][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1006.671323][T21909] __msan_chain_origin+0x50/0x90 [ 1006.677031][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1006.685438][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1006.690348][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1006.698306][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1006.702881][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1006.710840][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1006.715836][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1006.723811][T21909] do_syscall_64+0xb0/0x150 [ 1006.728632][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 1006.736603][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1006.741077][T21911] Uninit was stored to memory at: [ 1006.749042][T21909] [ 1006.754923][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1006.759913][T21909] Uninit was stored to memory at: [ 1006.762228][T21911] __msan_chain_origin+0x50/0x90 [ 1006.767927][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1006.772926][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1006.777866][T21909] __msan_chain_origin+0x50/0x90 [ 1006.783578][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1006.788144][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1006.793058][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1006.797970][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1006.802535][T21911] do_syscall_64+0xb0/0x150 [ 1006.807367][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1006.812284][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1006.816762][T21909] do_syscall_64+0xb0/0x150 [ 1006.821578][T21911] [ 1006.827454][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1006.831924][T21911] Uninit was stored to memory at: [ 1006.834229][T21909] [ 1006.840149][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1006.845149][T21909] Uninit was stored to memory at: [ 1006.847473][T21911] __msan_chain_origin+0x50/0x90 [ 1006.853163][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1006.858165][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1006.863188][T21909] __msan_chain_origin+0x50/0x90 [ 1006.868907][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1006.873474][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1006.878487][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1006.883399][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1006.887993][T21911] do_syscall_64+0xb0/0x150 [ 1006.893165][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1006.898080][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1006.902559][T21909] do_syscall_64+0xb0/0x150 [ 1006.907374][T21911] [ 1006.913340][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1006.917806][T21911] Uninit was stored to memory at: [ 1006.920115][T21909] [ 1006.926010][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1006.930999][T21909] Uninit was stored to memory at: [ 1006.933314][T21911] __msan_chain_origin+0x50/0x90 [ 1006.939006][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1006.944008][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1006.949091][T21909] __msan_chain_origin+0x50/0x90 [ 1006.954785][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1006.959351][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1006.964266][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1006.969170][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1006.969189][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1006.973757][T21911] do_syscall_64+0xb0/0x150 [ 1006.979891][T21909] do_syscall_64+0xb0/0x150 [ 1006.984805][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1006.989629][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1006.994096][T21911] [ 1006.998573][T21909] [ 1007.004443][T21911] Uninit was stored to memory at: [ 1007.010317][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 1007.012632][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1007.014944][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1007.019942][T21911] __msan_chain_origin+0x50/0x90 [ 1007.026591][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1007.032302][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1007.050704][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1007.055654][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1007.060526][T21911] do_syscall_64+0xb0/0x150 [ 1007.065046][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1007.070930][T21911] [ 1007.073248][T21911] Uninit was stored to memory at: [ 1007.078273][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1007.083993][T21911] __msan_chain_origin+0x50/0x90 [ 1007.088932][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1007.093611][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1007.098550][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1007.104614][T21911] do_syscall_64+0xb0/0x150 [ 1007.109114][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1007.114991][T21911] [ 1007.117311][T21911] Uninit was stored to memory at: [ 1007.122356][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1007.128071][T21911] __msan_chain_origin+0x50/0x90 [ 1007.131042][T21918] not chained 610000 origins [ 1007.133006][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1007.137669][T21918] CPU: 1 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1007.142256][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1007.150892][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1007.156510][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1007.166535][T21918] Call Trace: [ 1007.171394][T21911] do_syscall_64+0xb0/0x150 [ 1007.174655][T21918] dump_stack+0x1df/0x240 [ 1007.179134][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1007.183441][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 1007.189296][T21911] [ 1007.195022][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1007.197337][T21911] Uninit was stored to memory at: [ 1007.202440][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1007.207444][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1007.213329][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1007.219021][T21911] __msan_chain_origin+0x50/0x90 [ 1007.224283][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 1007.229195][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1007.234370][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1007.238938][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1007.244722][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1007.249635][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1007.255679][T21918] ? kfree+0x61/0x30f0 [ 1007.260505][T21911] do_syscall_64+0xb0/0x150 [ 1007.264550][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1007.269029][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1007.274112][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 1007.279996][T21911] [ 1007.285528][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1007.287827][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 1007.293878][T21918] ? _copy_from_user+0x15b/0x260 [ 1007.300525][T21911] do_recvmmsg+0xc5/0x1ee0 [ 1007.305453][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1007.310195][T21911] do_recvmmsg+0xc5/0x1ee0 [ 1007.315284][T21918] __msan_chain_origin+0x50/0x90 [ 1007.324599][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1007.329227][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1007.334519][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1007.339548][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1007.344574][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1007.350472][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1007.355428][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1007.360285][T21918] do_syscall_64+0xb0/0x150 [ 1007.364795][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1007.370683][T21918] RIP: 0033:0x45c1d9 [ 1007.374567][T21918] Code: Bad RIP value. [ 1007.378627][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1007.387037][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1007.395006][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1007.402978][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1007.410954][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 1007.419107][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1007.427091][T21918] Uninit was stored to memory at: [ 1007.432121][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1007.437839][T21918] __msan_chain_origin+0x50/0x90 [ 1007.442782][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1007.447374][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1007.452314][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1007.457167][T21918] do_syscall_64+0xb0/0x150 [ 1007.461672][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1007.467548][T21918] [ 1007.469867][T21918] Uninit was stored to memory at: [ 1007.474895][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1007.480614][T21918] __msan_chain_origin+0x50/0x90 [ 1007.485554][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1007.490144][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1007.495101][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1007.499953][T21918] do_syscall_64+0xb0/0x150 [ 1007.504464][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1007.510344][T21918] [ 1007.512664][T21918] Uninit was stored to memory at: [ 1007.517689][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1007.523408][T21918] __msan_chain_origin+0x50/0x90 [ 1007.528357][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1007.532955][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1007.537894][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1007.542745][T21918] do_syscall_64+0xb0/0x150 [ 1007.547392][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1007.553279][T21918] [ 1007.555605][T21918] Uninit was stored to memory at: [ 1007.560640][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1007.566360][T21918] __msan_chain_origin+0x50/0x90 [ 1007.571298][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1007.575891][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1007.580856][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1007.585714][T21918] do_syscall_64+0xb0/0x150 [ 1007.590218][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1007.596099][T21918] [ 1007.598420][T21918] Uninit was stored to memory at: [ 1007.603445][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1007.609165][T21918] __msan_chain_origin+0x50/0x90 [ 1007.614110][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1007.618699][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1007.623658][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1007.628522][T21918] do_syscall_64+0xb0/0x150 [ 1007.633036][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1007.639037][T21918] [ 1007.641356][T21918] Uninit was stored to memory at: [ 1007.646384][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1007.652102][T21918] __msan_chain_origin+0x50/0x90 [ 1007.657052][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1007.661642][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1007.666586][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1007.671438][T21918] do_syscall_64+0xb0/0x150 [ 1007.675943][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1007.681826][T21918] [ 1007.684147][T21918] Uninit was stored to memory at: [ 1007.689169][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1007.694889][T21918] __msan_chain_origin+0x50/0x90 [ 1007.699824][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1007.704411][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1007.709346][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1007.714199][T21918] do_syscall_64+0xb0/0x150 [ 1007.718703][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1007.724755][T21918] [ 1007.727080][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 1007.733754][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1007.738179][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1007.847590][T21918] not chained 620000 origins [ 1007.852310][T21918] CPU: 1 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1007.860987][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1007.871042][T21918] Call Trace: [ 1007.874866][T21918] dump_stack+0x1df/0x240 [ 1007.879205][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 1007.884930][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1007.890045][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1007.895950][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1007.901238][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 1007.906877][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1007.913303][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1007.919373][T21918] ? kfree+0x61/0x30f0 [ 1007.923452][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1007.928565][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 1007.934123][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1007.940211][T21918] ? _copy_from_user+0x15b/0x260 [ 1007.945247][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1007.950360][T21918] __msan_chain_origin+0x50/0x90 [ 1007.955427][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1007.960314][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1007.965609][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1007.970641][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1007.976021][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1007.981947][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1007.986968][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1007.991825][T21918] do_syscall_64+0xb0/0x150 [ 1007.996348][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1008.002251][T21918] RIP: 0033:0x45c1d9 [ 1008.006137][T21918] Code: Bad RIP value. [ 1008.010198][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1008.018698][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1008.026673][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1008.034644][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1008.042615][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 1008.050624][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1008.058603][T21918] Uninit was stored to memory at: [ 1008.063638][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1008.069615][T21918] __msan_chain_origin+0x50/0x90 [ 1008.074557][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1008.079153][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1008.084122][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1008.088976][T21918] do_syscall_64+0xb0/0x150 [ 1008.093583][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1008.100157][T21918] [ 1008.102476][T21918] Uninit was stored to memory at: [ 1008.107505][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1008.113224][T21918] __msan_chain_origin+0x50/0x90 [ 1008.118164][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1008.122758][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1008.127696][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1008.132549][T21918] do_syscall_64+0xb0/0x150 [ 1008.137054][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1008.142934][T21918] [ 1008.145260][T21918] Uninit was stored to memory at: [ 1008.150286][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1008.156011][T21918] __msan_chain_origin+0x50/0x90 [ 1008.160977][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1008.165568][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1008.170503][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1008.176406][T21918] do_syscall_64+0xb0/0x150 [ 1008.180914][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1008.186792][T21918] [ 1008.189126][T21918] Uninit was stored to memory at: [ 1008.194159][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1008.199886][T21918] __msan_chain_origin+0x50/0x90 [ 1008.204827][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1008.209429][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1008.214456][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1008.219305][T21918] do_syscall_64+0xb0/0x150 [ 1008.223806][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1008.229675][T21918] [ 1008.231986][T21918] Uninit was stored to memory at: [ 1008.237017][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1008.242721][T21918] __msan_chain_origin+0x50/0x90 [ 1008.247649][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1008.252227][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1008.257151][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1008.261992][T21918] do_syscall_64+0xb0/0x150 [ 1008.266481][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1008.272348][T21918] [ 1008.274659][T21918] Uninit was stored to memory at: [ 1008.279675][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1008.285381][T21918] __msan_chain_origin+0x50/0x90 [ 1008.290347][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1008.294925][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1008.299848][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1008.304687][T21918] do_syscall_64+0xb0/0x150 [ 1008.309178][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1008.315048][T21918] [ 1008.317357][T21918] Uninit was stored to memory at: [ 1008.322372][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1008.328078][T21918] __msan_chain_origin+0x50/0x90 [ 1008.333001][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1008.337577][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1008.342499][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1008.347337][T21918] do_syscall_64+0xb0/0x150 [ 1008.351826][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1008.357696][T21918] [ 1008.360022][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 1008.366681][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1008.371100][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1008.447247][T21909] not chained 630000 origins [ 1008.451882][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1008.460551][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1008.470695][T21909] Call Trace: [ 1008.474010][T21909] dump_stack+0x1df/0x240 [ 1008.478354][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 1008.484076][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1008.489191][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1008.495102][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1008.500391][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 1008.505592][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1008.511401][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1008.517473][T21909] ? kfree+0x61/0x30f0 [ 1008.521555][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1008.526688][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 1008.532239][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1008.538319][T21909] ? _copy_from_user+0x15b/0x260 [ 1008.543258][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1008.548372][T21909] __msan_chain_origin+0x50/0x90 [ 1008.553319][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1008.558134][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1008.563441][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1008.568470][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1008.573499][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1008.579401][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1008.584353][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1008.589211][T21909] do_syscall_64+0xb0/0x150 [ 1008.593727][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1008.599617][T21909] RIP: 0033:0x45c1d9 [ 1008.600301][T21911] not chained 640000 origins [ 1008.603501][T21909] Code: Bad RIP value. [ 1008.612114][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1008.620526][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1008.628489][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1008.636454][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1008.644409][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1008.652363][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 1008.660344][T21909] Uninit was stored to memory at: [ 1008.660357][T21911] CPU: 1 PID: 21911 Comm: syz-executor.3 Not tainted 5.8.0-rc5-syzkaller #0 [ 1008.660370][T21911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1008.665380][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1008.674028][T21911] Call Trace: [ 1008.684079][T21909] __msan_chain_origin+0x50/0x90 [ 1008.689777][T21911] dump_stack+0x1df/0x240 [ 1008.693040][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1008.697953][T21911] kmsan_internal_chain_origin+0x6f/0x130 [ 1008.702251][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1008.702270][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1008.706836][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 1008.712548][T21909] do_syscall_64+0xb0/0x150 [ 1008.717460][T21911] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1008.722288][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1008.727392][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 1008.731860][T21909] [ 1008.737760][T21911] ? kmsan_get_metadata+0x11d/0x180 [ 1008.743618][T21909] Uninit was stored to memory at: [ 1008.748973][T21911] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1008.751279][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1008.756469][T21911] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1008.761469][T21909] __msan_chain_origin+0x50/0x90 [ 1008.767254][T21911] ? kfree+0x61/0x30f0 [ 1008.772958][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1008.779022][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 1008.783943][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1008.787988][T21911] ? kmsan_set_origin_checked+0x95/0xf0 [ 1008.792555][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1008.797729][T21911] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1008.802646][T21909] do_syscall_64+0xb0/0x150 [ 1008.808170][T21911] ? _copy_from_user+0x15b/0x260 [ 1008.813000][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1008.819048][T21911] ? kmsan_get_metadata+0x4f/0x180 [ 1008.823515][T21909] [ 1008.828438][T21911] __msan_chain_origin+0x50/0x90 [ 1008.835193][T21909] Uninit was stored to memory at: [ 1008.840308][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1008.842624][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1008.847557][T21911] ? __msan_poison_alloca+0xf0/0x120 [ 1008.852535][T21909] __msan_chain_origin+0x50/0x90 [ 1008.857103][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 1008.862799][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1008.868062][T21911] ? __se_sys_recvmmsg+0xac/0x350 [ 1008.872977][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1008.877980][T21911] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1008.882586][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1008.887609][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1008.892526][T21909] do_syscall_64+0xb0/0x150 [ 1008.898398][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1008.903227][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1008.908142][T21911] do_syscall_64+0xb0/0x150 [ 1008.912610][T21909] [ 1008.917451][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1008.923307][T21909] Uninit was stored to memory at: [ 1008.927792][T21911] RIP: 0033:0x45c1d9 [ 1008.930104][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1008.935967][T21911] Code: Bad RIP value. [ 1008.940990][T21909] __msan_chain_origin+0x50/0x90 [ 1008.944861][T21911] RSP: 002b:00007fec2a8c0c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1008.950578][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1008.954623][T21911] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1008.959548][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1008.967931][T21911] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1008.972501][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1008.980446][T21911] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1008.985367][T21909] do_syscall_64+0xb0/0x150 [ 1008.993312][T21911] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1008.998144][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.006087][T21911] R13: 0000000000c9fb6f R14: 00007fec2a8c19c0 R15: 000000000078bf0c [ 1009.010560][T21909] [ 1009.018519][T21911] Uninit was stored to memory at: [ 1009.024384][T21909] Uninit was stored to memory at: [ 1009.032345][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1009.034650][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1009.039650][T21911] __msan_chain_origin+0x50/0x90 [ 1009.044657][T21909] __msan_chain_origin+0x50/0x90 [ 1009.050439][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1009.056147][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1009.061064][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.066151][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.070722][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1009.075285][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1009.080198][T21911] do_syscall_64+0xb0/0x150 [ 1009.085199][T21909] do_syscall_64+0xb0/0x150 [ 1009.090027][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.094854][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.099754][T21911] [ 1009.104230][T21909] [ 1009.110106][T21911] Uninit was stored to memory at: [ 1009.115989][T21909] Uninit was stored to memory at: [ 1009.118305][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1009.120632][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1009.125655][T21911] __msan_chain_origin+0x50/0x90 [ 1009.130655][T21909] __msan_chain_origin+0x50/0x90 [ 1009.136363][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1009.142068][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1009.146982][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.151911][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.156476][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1009.161043][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1009.165972][T21911] do_syscall_64+0xb0/0x150 [ 1009.170885][T21909] do_syscall_64+0xb0/0x150 [ 1009.175712][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.180536][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.185436][T21911] [ 1009.189914][T21909] [ 1009.195781][T21911] Uninit was stored to memory at: [ 1009.201647][T21909] Uninit was stored to memory at: [ 1009.203965][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1009.206270][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1009.211270][T21911] __msan_chain_origin+0x50/0x90 [ 1009.216268][T21909] __msan_chain_origin+0x50/0x90 [ 1009.222569][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1009.228262][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1009.233347][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.238251][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.238270][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1009.242838][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1009.247402][T21909] do_syscall_64+0xb0/0x150 [ 1009.252317][T21911] do_syscall_64+0xb0/0x150 [ 1009.257319][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.262145][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.266981][T21909] [ 1009.271457][T21911] [ 1009.275936][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 1009.281803][T21911] Uninit was stored to memory at: [ 1009.287679][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1009.289984][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1009.292290][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1009.298962][T21911] __msan_chain_origin+0x50/0x90 [ 1009.323410][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1009.328007][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.333039][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1009.337891][T21911] do_syscall_64+0xb0/0x150 [ 1009.342393][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.348273][T21911] [ 1009.350588][T21911] Uninit was stored to memory at: [ 1009.355613][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1009.361765][T21911] __msan_chain_origin+0x50/0x90 [ 1009.366703][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1009.371297][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.376236][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1009.381093][T21911] do_syscall_64+0xb0/0x150 [ 1009.385598][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.391476][T21911] [ 1009.393802][T21911] Uninit was stored to memory at: [ 1009.398829][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1009.404549][T21911] __msan_chain_origin+0x50/0x90 [ 1009.409486][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1009.414076][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.418549][T21918] not chained 650000 origins [ 1009.419013][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1009.423640][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1009.429511][T21911] do_syscall_64+0xb0/0x150 [ 1009.438148][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1009.442637][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.452746][T21918] Call Trace: [ 1009.458713][T21911] [ 1009.461993][T21918] dump_stack+0x1df/0x240 [ 1009.464312][T21911] Uninit was stored to memory at: [ 1009.468716][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 1009.473713][T21911] kmsan_internal_chain_origin+0xad/0x130 [ 1009.479408][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1009.485098][T21911] __msan_chain_origin+0x50/0x90 [ 1009.490188][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1009.495104][T21911] do_recvmmsg+0x105a/0x1ee0 [ 1009.500972][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1009.505551][T21911] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.510820][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 1009.515733][T21911] __x64_sys_recvmmsg+0x62/0x80 [ 1009.520909][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1009.525757][T21911] do_syscall_64+0xb0/0x150 [ 1009.531546][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1009.536041][T21911] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.542083][T21918] ? kfree+0x61/0x30f0 [ 1009.547939][T21911] [ 1009.552000][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1009.554300][T21911] Local variable ----msg_sys@do_recvmmsg created at: [ 1009.559394][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 1009.566078][T21911] do_recvmmsg+0xc5/0x1ee0 [ 1009.571602][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1009.576010][T21911] do_recvmmsg+0xc5/0x1ee0 [ 1009.582055][T21918] ? _copy_from_user+0x15b/0x260 [ 1009.591396][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1009.596511][T21918] __msan_chain_origin+0x50/0x90 [ 1009.601465][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1009.606089][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1009.611389][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1009.616421][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1009.621458][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1009.627361][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.632318][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1009.637177][T21918] do_syscall_64+0xb0/0x150 [ 1009.641686][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.647579][T21918] RIP: 0033:0x45c1d9 [ 1009.651463][T21918] Code: Bad RIP value. [ 1009.655521][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1009.663926][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1009.671895][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1009.679887][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1009.687857][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 1009.695826][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1009.703801][T21918] Uninit was stored to memory at: [ 1009.708829][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1009.714544][T21918] __msan_chain_origin+0x50/0x90 [ 1009.719479][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1009.724066][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.728999][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1009.733996][T21918] do_syscall_64+0xb0/0x150 [ 1009.738510][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.744394][T21918] [ 1009.746821][T21918] Uninit was stored to memory at: [ 1009.751865][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1009.757587][T21918] __msan_chain_origin+0x50/0x90 [ 1009.762529][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1009.767121][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.772085][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1009.776934][T21918] do_syscall_64+0xb0/0x150 [ 1009.781435][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.787309][T21918] [ 1009.789625][T21918] Uninit was stored to memory at: [ 1009.794652][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1009.800367][T21918] __msan_chain_origin+0x50/0x90 [ 1009.805301][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1009.809892][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.814830][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1009.819683][T21918] do_syscall_64+0xb0/0x150 [ 1009.824185][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.830059][T21918] [ 1009.832378][T21918] Uninit was stored to memory at: [ 1009.837403][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1009.843117][T21918] __msan_chain_origin+0x50/0x90 [ 1009.848052][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1009.852636][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.857655][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1009.862504][T21918] do_syscall_64+0xb0/0x150 [ 1009.867007][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.872886][T21918] [ 1009.875203][T21918] Uninit was stored to memory at: [ 1009.880224][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1009.885940][T21918] __msan_chain_origin+0x50/0x90 [ 1009.890877][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1009.895466][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.900410][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1009.905268][T21918] do_syscall_64+0xb0/0x150 [ 1009.909768][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.915646][T21918] [ 1009.917963][T21918] Uninit was stored to memory at: [ 1009.922984][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1009.928730][T21918] __msan_chain_origin+0x50/0x90 [ 1009.933662][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1009.938284][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.943305][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1009.948153][T21918] do_syscall_64+0xb0/0x150 [ 1009.952665][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1009.958542][T21918] [ 1009.960867][T21918] Uninit was stored to memory at: [ 1009.965897][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1009.971609][T21918] __msan_chain_origin+0x50/0x90 [ 1009.976560][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1009.981149][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1009.986170][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1009.991019][T21918] do_syscall_64+0xb0/0x150 [ 1009.995532][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1010.001408][T21918] [ 1010.003991][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 1010.010660][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1010.015074][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1010.129745][T21909] not chained 660000 origins [ 1010.134554][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1010.143303][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1010.153356][T21909] Call Trace: [ 1010.156653][T21909] dump_stack+0x1df/0x240 [ 1010.160989][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 1010.166708][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1010.171822][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1010.177725][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1010.183011][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 1010.188212][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1010.194021][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1010.200090][T21909] ? kfree+0x61/0x30f0 [ 1010.204162][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1010.209270][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 1010.214818][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1010.220976][T21909] ? _copy_from_user+0x15b/0x260 [ 1010.225945][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1010.231053][T21909] __msan_chain_origin+0x50/0x90 [ 1010.235993][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1010.240615][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1010.245903][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1010.250944][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1010.255998][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1010.261898][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1010.266843][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1010.271698][T21909] do_syscall_64+0xb0/0x150 [ 1010.276199][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1010.282084][T21909] RIP: 0033:0x45c1d9 [ 1010.285967][T21909] Code: Bad RIP value. [ 1010.290023][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1010.298429][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1010.306421][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1010.314412][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1010.322378][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1010.330477][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 1010.338456][T21909] Uninit was stored to memory at: [ 1010.343486][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1010.349205][T21909] __msan_chain_origin+0x50/0x90 [ 1010.354144][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1010.358736][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1010.363674][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1010.368525][T21909] do_syscall_64+0xb0/0x150 [ 1010.373292][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1010.379170][T21909] [ 1010.381517][T21909] Uninit was stored to memory at: [ 1010.386553][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1010.392283][T21909] __msan_chain_origin+0x50/0x90 [ 1010.397237][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1010.401832][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1010.406770][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1010.411623][T21909] do_syscall_64+0xb0/0x150 [ 1010.416153][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1010.422031][T21909] [ 1010.424355][T21909] Uninit was stored to memory at: [ 1010.429411][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1010.435130][T21909] __msan_chain_origin+0x50/0x90 [ 1010.440066][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1010.444657][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1010.449594][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1010.454452][T21909] do_syscall_64+0xb0/0x150 [ 1010.458960][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1010.464845][T21909] [ 1010.467167][T21909] Uninit was stored to memory at: [ 1010.472215][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1010.477939][T21909] __msan_chain_origin+0x50/0x90 [ 1010.482876][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1010.487471][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1010.492409][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1010.497258][T21909] do_syscall_64+0xb0/0x150 [ 1010.501766][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1010.507644][T21909] [ 1010.509962][T21909] Uninit was stored to memory at: [ 1010.514988][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1010.520794][T21909] __msan_chain_origin+0x50/0x90 [ 1010.525732][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1010.530320][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1010.535255][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1010.540105][T21909] do_syscall_64+0xb0/0x150 [ 1010.544612][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1010.550491][T21909] [ 1010.552820][T21909] Uninit was stored to memory at: [ 1010.558136][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1010.563854][T21909] __msan_chain_origin+0x50/0x90 [ 1010.568791][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1010.573377][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1010.578313][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1010.583166][T21909] do_syscall_64+0xb0/0x150 [ 1010.587672][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1010.593553][T21909] [ 1010.595873][T21909] Uninit was stored to memory at: [ 1010.600900][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1010.606638][T21909] __msan_chain_origin+0x50/0x90 [ 1010.611576][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1010.616163][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1010.621215][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1010.626093][T21909] do_syscall_64+0xb0/0x150 [ 1010.630615][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1010.636502][T21909] [ 1010.638830][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 1010.645510][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1010.649925][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1010.733030][T21918] not chained 670000 origins [ 1010.737659][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1010.746415][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1010.756558][T21918] Call Trace: [ 1010.759860][T21918] dump_stack+0x1df/0x240 [ 1010.764200][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 1010.769922][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1010.775038][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1010.780948][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1010.786257][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 1010.791551][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1010.797366][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1010.803533][T21918] ? kfree+0x61/0x30f0 [ 1010.807614][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1010.812733][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 1010.818404][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1010.824592][T21918] ? _copy_from_user+0x15b/0x260 [ 1010.829534][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1010.834648][T21918] __msan_chain_origin+0x50/0x90 [ 1010.839593][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1010.844220][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1010.849514][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1010.854540][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1010.859568][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1010.865476][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1010.870429][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1010.875286][T21918] do_syscall_64+0xb0/0x150 [ 1010.879817][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1010.885715][T21918] RIP: 0033:0x45c1d9 [ 1010.889596][T21918] Code: Bad RIP value. [ 1010.893655][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1010.902064][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1010.910121][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1010.918101][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1010.926192][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 1010.934172][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1010.942153][T21918] Uninit was stored to memory at: [ 1010.947189][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1010.952933][T21918] __msan_chain_origin+0x50/0x90 [ 1010.957894][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1010.962481][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1010.967419][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1010.972277][T21918] do_syscall_64+0xb0/0x150 [ 1010.976783][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1010.982662][T21918] [ 1010.985070][T21918] Uninit was stored to memory at: [ 1010.990127][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1010.995845][T21918] __msan_chain_origin+0x50/0x90 [ 1011.000788][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1011.005376][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1011.010310][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1011.015159][T21918] do_syscall_64+0xb0/0x150 [ 1011.019658][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1011.025537][T21918] [ 1011.027853][T21918] Uninit was stored to memory at: [ 1011.032881][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1011.038594][T21918] __msan_chain_origin+0x50/0x90 [ 1011.043529][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1011.048115][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1011.053048][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1011.057895][T21918] do_syscall_64+0xb0/0x150 [ 1011.062403][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1011.068280][T21918] [ 1011.070594][T21918] Uninit was stored to memory at: [ 1011.075618][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1011.081422][T21918] __msan_chain_origin+0x50/0x90 [ 1011.086356][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1011.090964][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1011.095901][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1011.100749][T21918] do_syscall_64+0xb0/0x150 [ 1011.105344][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1011.111219][T21918] [ 1011.113541][T21918] Uninit was stored to memory at: [ 1011.118573][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1011.124318][T21918] __msan_chain_origin+0x50/0x90 [ 1011.129256][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1011.133844][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1011.138785][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1011.143632][T21918] do_syscall_64+0xb0/0x150 [ 1011.148132][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1011.154007][T21918] [ 1011.156325][T21918] Uninit was stored to memory at: [ 1011.161350][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1011.167063][T21918] __msan_chain_origin+0x50/0x90 [ 1011.172002][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1011.176595][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1011.181529][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1011.186374][T21918] do_syscall_64+0xb0/0x150 [ 1011.190880][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1011.196758][T21918] [ 1011.199073][T21918] Uninit was stored to memory at: [ 1011.204097][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1011.209817][T21918] __msan_chain_origin+0x50/0x90 [ 1011.214751][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1011.220292][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1011.225227][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1011.230073][T21918] do_syscall_64+0xb0/0x150 19:14:33 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = eventfd(0x0) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000000000)={r4, 0x0, 0x2, r4}) dup3(r3, r1, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x536c3}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000380)={0x0, 0x0, @pic={0x0, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1}}) ioctl$KVM_RUN(r5, 0xae80, 0x0) 19:14:33 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) [ 1011.234573][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1011.240450][T21918] [ 1011.242767][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 1011.249437][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1011.253873][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1011.600543][T21909] not chained 680000 origins [ 1011.605175][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1011.613847][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1011.623929][T21909] Call Trace: [ 1011.627234][T21909] dump_stack+0x1df/0x240 [ 1011.631573][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 1011.637300][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1011.642418][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1011.648326][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1011.653661][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 1011.658952][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1011.664763][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1011.670834][T21909] ? kfree+0x61/0x30f0 [ 1011.674914][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1011.680026][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 1011.685578][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1011.691670][T21909] ? _copy_from_user+0x15b/0x260 [ 1011.696609][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1011.701721][T21909] __msan_chain_origin+0x50/0x90 [ 1011.706665][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1011.711287][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1011.716578][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1011.721601][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1011.726628][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1011.732530][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1011.737479][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1011.742347][T21909] do_syscall_64+0xb0/0x150 [ 1011.746869][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1011.752766][T21909] RIP: 0033:0x45c1d9 [ 1011.756747][T21909] Code: Bad RIP value. [ 1011.760816][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1011.769324][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1011.777304][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1011.785283][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1011.793265][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1011.801251][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 1011.809289][T21909] Uninit was stored to memory at: [ 1011.814326][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1011.820044][T21909] __msan_chain_origin+0x50/0x90 [ 1011.824988][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1011.829578][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1011.834515][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1011.839367][T21909] do_syscall_64+0xb0/0x150 [ 1011.843874][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1011.849754][T21909] [ 1011.852075][T21909] Uninit was stored to memory at: [ 1011.857101][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1011.862910][T21909] __msan_chain_origin+0x50/0x90 [ 1011.867848][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1011.872441][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1011.877380][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1011.882241][T21909] do_syscall_64+0xb0/0x150 [ 1011.886752][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1011.892641][T21909] [ 1011.894966][T21909] Uninit was stored to memory at: [ 1011.899994][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1011.905718][T21909] __msan_chain_origin+0x50/0x90 [ 1011.910661][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1011.915261][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1011.920197][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1011.925056][T21909] do_syscall_64+0xb0/0x150 [ 1011.929562][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1011.935433][T21909] [ 1011.937747][T21909] Uninit was stored to memory at: [ 1011.942934][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1011.948731][T21909] __msan_chain_origin+0x50/0x90 [ 1011.953659][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1011.958239][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1011.963163][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1011.967998][T21909] do_syscall_64+0xb0/0x150 [ 1011.972489][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1011.978358][T21909] [ 1011.980665][T21909] Uninit was stored to memory at: [ 1011.985677][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1011.991398][T21909] __msan_chain_origin+0x50/0x90 [ 1011.996323][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1012.000900][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1012.005826][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1012.010663][T21909] do_syscall_64+0xb0/0x150 [ 1012.015155][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1012.021050][T21909] [ 1012.023359][T21909] Uninit was stored to memory at: [ 1012.028371][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1012.034075][T21909] __msan_chain_origin+0x50/0x90 [ 1012.038996][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1012.043572][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1012.048508][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1012.053346][T21909] do_syscall_64+0xb0/0x150 [ 1012.057836][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1012.063706][T21909] [ 1012.066016][T21909] Uninit was stored to memory at: [ 1012.071047][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1012.076752][T21909] __msan_chain_origin+0x50/0x90 [ 1012.081677][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1012.086254][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1012.091177][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1012.096013][T21909] do_syscall_64+0xb0/0x150 [ 1012.100504][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1012.106392][T21909] [ 1012.108704][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 1012.115374][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1012.119774][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1012.277086][T21918] not chained 690000 origins [ 1012.281713][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1012.290378][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1012.300610][T21918] Call Trace: [ 1012.303911][T21918] dump_stack+0x1df/0x240 [ 1012.308253][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 1012.313974][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1012.319087][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1012.324988][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1012.330276][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 1012.335476][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1012.341286][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1012.347355][T21918] ? kfree+0x61/0x30f0 [ 1012.351430][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1012.356625][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 1012.362178][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1012.368257][T21918] ? _copy_from_user+0x15b/0x260 [ 1012.373197][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1012.378321][T21918] __msan_chain_origin+0x50/0x90 [ 1012.383272][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1012.387901][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1012.393195][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1012.398350][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1012.403379][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1012.409277][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1012.414251][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1012.419109][T21918] do_syscall_64+0xb0/0x150 [ 1012.423623][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1012.429517][T21918] RIP: 0033:0x45c1d9 [ 1012.433405][T21918] Code: Bad RIP value. [ 1012.437464][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1012.445963][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1012.453936][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1012.461908][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1012.469883][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 1012.477857][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1012.485843][T21918] Uninit was stored to memory at: [ 1012.490884][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1012.496606][T21918] __msan_chain_origin+0x50/0x90 [ 1012.501552][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1012.506144][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1012.511108][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1012.515963][T21918] do_syscall_64+0xb0/0x150 [ 1012.520470][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1012.526354][T21918] [ 1012.528675][T21918] Uninit was stored to memory at: [ 1012.533701][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1012.539422][T21918] __msan_chain_origin+0x50/0x90 [ 1012.544368][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1012.548959][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1012.553907][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1012.561482][T21918] do_syscall_64+0xb0/0x150 [ 1012.566682][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1012.572648][T21918] [ 1012.574971][T21918] Uninit was stored to memory at: [ 1012.580000][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1012.585719][T21918] __msan_chain_origin+0x50/0x90 [ 1012.590659][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1012.595259][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1012.600207][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1012.605155][T21918] do_syscall_64+0xb0/0x150 [ 1012.609660][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1012.615548][T21918] [ 1012.617885][T21918] Uninit was stored to memory at: [ 1012.622929][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1012.628652][T21918] __msan_chain_origin+0x50/0x90 [ 1012.634034][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1012.638639][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1012.643584][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1012.648440][T21918] do_syscall_64+0xb0/0x150 [ 1012.652962][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1012.658844][T21918] [ 1012.661168][T21918] Uninit was stored to memory at: [ 1012.666199][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1012.671924][T21918] __msan_chain_origin+0x50/0x90 [ 1012.676913][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1012.681505][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1012.686441][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1012.691294][T21918] do_syscall_64+0xb0/0x150 [ 1012.695807][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1012.701685][T21918] [ 1012.704015][T21918] Uninit was stored to memory at: [ 1012.709040][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1012.714765][T21918] __msan_chain_origin+0x50/0x90 [ 1012.719703][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1012.724292][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1012.729232][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1012.734098][T21918] do_syscall_64+0xb0/0x150 [ 1012.738733][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1012.744625][T21918] [ 1012.746951][T21918] Uninit was stored to memory at: [ 1012.751986][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1012.757713][T21918] __msan_chain_origin+0x50/0x90 [ 1012.762660][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1012.767251][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1012.772338][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1012.777205][T21918] do_syscall_64+0xb0/0x150 [ 1012.782684][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1012.788568][T21918] [ 1012.790902][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 1012.797589][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1012.802020][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1012.982962][T21909] not chained 700000 origins [ 1012.987601][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1012.996271][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1013.006323][T21909] Call Trace: [ 1013.009711][T21909] dump_stack+0x1df/0x240 [ 1013.014053][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 1013.019775][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1013.024913][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1013.030813][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1013.036102][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 1013.041303][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1013.047207][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1013.053276][T21909] ? kfree+0x61/0x30f0 [ 1013.057353][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1013.062466][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 1013.068014][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1013.074101][T21909] ? _copy_from_user+0x15b/0x260 [ 1013.079079][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1013.084199][T21909] __msan_chain_origin+0x50/0x90 [ 1013.089151][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1013.093782][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1013.099070][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1013.104095][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1013.109122][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1013.115045][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1013.119996][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1013.124850][T21909] do_syscall_64+0xb0/0x150 [ 1013.129358][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1013.135248][T21909] RIP: 0033:0x45c1d9 [ 1013.139130][T21909] Code: Bad RIP value. [ 1013.143193][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1013.151689][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1013.159662][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1013.167647][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1013.175629][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1013.184293][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 1013.192269][T21909] Uninit was stored to memory at: [ 1013.197297][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1013.203087][T21909] __msan_chain_origin+0x50/0x90 [ 1013.208028][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1013.212615][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1013.217551][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1013.222401][T21909] do_syscall_64+0xb0/0x150 [ 1013.226905][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1013.232785][T21909] [ 1013.235105][T21909] Uninit was stored to memory at: [ 1013.240132][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1013.245847][T21909] __msan_chain_origin+0x50/0x90 [ 1013.250784][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1013.255390][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1013.260328][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1013.265180][T21909] do_syscall_64+0xb0/0x150 [ 1013.269686][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1013.275571][T21909] [ 1013.277891][T21909] Uninit was stored to memory at: [ 1013.283350][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1013.289066][T21909] __msan_chain_origin+0x50/0x90 [ 1013.294007][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1013.298597][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1013.303534][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1013.308387][T21909] do_syscall_64+0xb0/0x150 [ 1013.312900][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1013.318780][T21909] [ 1013.321100][T21909] Uninit was stored to memory at: [ 1013.326130][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1013.331845][T21909] __msan_chain_origin+0x50/0x90 [ 1013.336785][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1013.341375][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1013.346310][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1013.351159][T21909] do_syscall_64+0xb0/0x150 [ 1013.355664][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1013.361542][T21909] [ 1013.363861][T21909] Uninit was stored to memory at: [ 1013.368887][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1013.374612][T21909] __msan_chain_origin+0x50/0x90 [ 1013.379547][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1013.384190][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1013.389125][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1013.393994][T21909] do_syscall_64+0xb0/0x150 [ 1013.398499][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1013.404380][T21909] [ 1013.406699][T21909] Uninit was stored to memory at: [ 1013.414075][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1013.419791][T21909] __msan_chain_origin+0x50/0x90 [ 1013.424820][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1013.429408][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1013.434346][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1013.439297][T21909] do_syscall_64+0xb0/0x150 [ 1013.443799][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1013.449676][T21909] [ 1013.451996][T21909] Uninit was stored to memory at: [ 1013.457025][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1013.462744][T21909] __msan_chain_origin+0x50/0x90 [ 1013.467683][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1013.472273][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1013.477209][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1013.482145][T21909] do_syscall_64+0xb0/0x150 [ 1013.486650][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1013.492528][T21909] [ 1013.494847][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 1013.501527][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1013.505941][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1013.665738][T21918] not chained 710000 origins [ 1013.670370][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1013.679033][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1013.689177][T21918] Call Trace: [ 1013.692474][T21918] dump_stack+0x1df/0x240 [ 1013.696819][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 1013.702713][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1013.710033][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1013.716364][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1013.721657][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 1013.726858][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1013.732750][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1013.738817][T21918] ? kfree+0x61/0x30f0 [ 1013.742891][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1013.748004][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 1013.753552][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1013.759668][T21918] ? _copy_from_user+0x15b/0x260 [ 1013.764608][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1013.769722][T21918] __msan_chain_origin+0x50/0x90 [ 1013.774666][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1013.779634][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1013.784945][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1013.789985][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1013.795017][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1013.800929][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1013.805886][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1013.811448][T21918] do_syscall_64+0xb0/0x150 [ 1013.815986][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1013.821876][T21918] RIP: 0033:0x45c1d9 [ 1013.825757][T21918] Code: Bad RIP value. [ 1013.829815][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1013.838226][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1013.846202][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1013.854172][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1013.862142][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 1013.870110][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1013.878235][T21918] Uninit was stored to memory at: [ 1013.883275][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1013.889067][T21918] __msan_chain_origin+0x50/0x90 [ 1013.894018][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1013.898617][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1013.903561][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1013.908416][T21918] do_syscall_64+0xb0/0x150 [ 1013.912930][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1013.919520][T21918] [ 1013.921831][T21918] Uninit was stored to memory at: [ 1013.926844][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1013.932548][T21918] __msan_chain_origin+0x50/0x90 [ 1013.937475][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1013.942056][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1013.946981][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1013.951818][T21918] do_syscall_64+0xb0/0x150 [ 1013.956310][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1013.962183][T21918] [ 1013.964519][T21918] Uninit was stored to memory at: [ 1013.969529][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1013.975318][T21918] __msan_chain_origin+0x50/0x90 [ 1013.980244][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1013.984824][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1013.989767][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1013.994628][T21918] do_syscall_64+0xb0/0x150 [ 1013.999143][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1014.005031][T21918] [ 1014.007341][T21918] Uninit was stored to memory at: [ 1014.012353][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1014.018080][T21918] __msan_chain_origin+0x50/0x90 [ 1014.023007][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1014.027582][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1014.032506][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1014.037344][T21918] do_syscall_64+0xb0/0x150 [ 1014.041834][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1014.047702][T21918] [ 1014.050030][T21918] Uninit was stored to memory at: [ 1014.055069][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1014.060778][T21918] __msan_chain_origin+0x50/0x90 [ 1014.065723][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1014.070301][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1014.075249][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1014.080087][T21918] do_syscall_64+0xb0/0x150 [ 1014.084577][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1014.090447][T21918] [ 1014.092760][T21918] Uninit was stored to memory at: [ 1014.097776][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1014.103481][T21918] __msan_chain_origin+0x50/0x90 [ 1014.108405][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1014.113068][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1014.117992][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1014.122829][T21918] do_syscall_64+0xb0/0x150 [ 1014.127326][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1014.133197][T21918] [ 1014.135510][T21918] Uninit was stored to memory at: [ 1014.140524][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1014.146320][T21918] __msan_chain_origin+0x50/0x90 [ 1014.151247][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1014.155826][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1014.160754][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1014.165595][T21918] do_syscall_64+0xb0/0x150 [ 1014.170085][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1014.175962][T21918] [ 1014.178298][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 1014.184959][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1014.189362][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1014.220253][T21918] not chained 720000 origins [ 1014.224887][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1014.233553][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1014.243603][T21918] Call Trace: [ 1014.246898][T21918] dump_stack+0x1df/0x240 [ 1014.251236][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 1014.256958][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1014.262073][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1014.267970][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1014.273272][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 1014.278645][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1014.284465][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1014.290545][T21918] ? kfree+0x61/0x30f0 [ 1014.294623][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1014.299738][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 1014.305290][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1014.311365][T21918] ? _copy_from_user+0x15b/0x260 [ 1014.316308][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1014.321599][T21918] __msan_chain_origin+0x50/0x90 [ 1014.326548][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1014.331173][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1014.336470][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1014.341495][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1014.346521][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1014.352416][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1014.357369][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1014.362229][T21918] do_syscall_64+0xb0/0x150 [ 1014.366739][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1014.372629][T21918] RIP: 0033:0x45c1d9 [ 1014.376512][T21918] Code: Bad RIP value. [ 1014.380573][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1014.388982][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1014.396976][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1014.404953][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1014.412925][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 1014.420912][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1014.428890][T21918] Uninit was stored to memory at: [ 1014.433917][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1014.439631][T21918] __msan_chain_origin+0x50/0x90 [ 1014.444569][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1014.449244][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1014.454199][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1014.459049][T21918] do_syscall_64+0xb0/0x150 [ 1014.463554][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1014.469433][T21918] [ 1014.471754][T21918] Uninit was stored to memory at: [ 1014.476791][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1014.482511][T21918] __msan_chain_origin+0x50/0x90 [ 1014.487450][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1014.492044][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1014.497066][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1014.501904][T21918] do_syscall_64+0xb0/0x150 [ 1014.506402][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1014.512272][T21918] [ 1014.514612][T21918] Uninit was stored to memory at: [ 1014.519625][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1014.525329][T21918] __msan_chain_origin+0x50/0x90 [ 1014.530250][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1014.534826][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1014.539749][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1014.544675][T21918] do_syscall_64+0xb0/0x150 [ 1014.549162][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1014.555040][T21918] [ 1014.557351][T21918] Uninit was stored to memory at: [ 1014.562365][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1014.568084][T21918] __msan_chain_origin+0x50/0x90 [ 1014.573023][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1014.577609][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1014.582536][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1014.587399][T21918] do_syscall_64+0xb0/0x150 [ 1014.591892][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1014.597778][T21918] [ 1014.600100][T21918] Uninit was stored to memory at: [ 1014.605119][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1014.610826][T21918] __msan_chain_origin+0x50/0x90 [ 1014.615751][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1014.620351][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1014.625294][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1014.630133][T21918] do_syscall_64+0xb0/0x150 [ 1014.634627][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1014.640501][T21918] [ 1014.642813][T21918] Uninit was stored to memory at: [ 1014.647825][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1014.653527][T21918] __msan_chain_origin+0x50/0x90 [ 1014.658450][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1014.663027][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1014.667975][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1014.672810][T21918] do_syscall_64+0xb0/0x150 [ 1014.677300][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1014.683201][T21918] [ 1014.685518][T21918] Uninit was stored to memory at: [ 1014.690530][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1014.696238][T21918] __msan_chain_origin+0x50/0x90 [ 1014.702471][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1014.707654][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1014.712577][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1014.717431][T21918] do_syscall_64+0xb0/0x150 [ 1014.721924][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1014.727794][T21918] [ 1014.730103][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 1014.736764][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1014.741167][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1014.855803][T21909] not chained 730000 origins [ 1014.860869][T21909] CPU: 1 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1014.869538][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1014.879601][T21909] Call Trace: [ 1014.882903][T21909] dump_stack+0x1df/0x240 [ 1014.887244][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 1014.892985][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1014.898101][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1014.904004][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1014.909293][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 1014.914506][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1014.920322][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1014.926395][T21909] ? kfree+0x61/0x30f0 [ 1014.930471][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1014.935672][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 1014.941221][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1014.947297][T21909] ? _copy_from_user+0x15b/0x260 [ 1014.952237][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1014.957382][T21909] __msan_chain_origin+0x50/0x90 [ 1014.962338][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1014.966977][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1014.972277][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1014.977393][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1014.982421][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1014.988319][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1014.993275][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1014.998131][T21909] do_syscall_64+0xb0/0x150 [ 1015.002644][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.013266][T21909] RIP: 0033:0x45c1d9 [ 1015.017156][T21909] Code: Bad RIP value. [ 1015.021222][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1015.029645][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1015.037740][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1015.045719][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1015.053698][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1015.061992][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 1015.069981][T21909] Uninit was stored to memory at: [ 1015.075017][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1015.080738][T21909] __msan_chain_origin+0x50/0x90 [ 1015.085678][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1015.090271][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1015.095217][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1015.100079][T21909] do_syscall_64+0xb0/0x150 [ 1015.104585][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.110464][T21909] [ 1015.112785][T21909] Uninit was stored to memory at: [ 1015.117813][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1015.123540][T21909] __msan_chain_origin+0x50/0x90 [ 1015.128479][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1015.133074][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1015.138107][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1015.142951][T21909] do_syscall_64+0xb0/0x150 [ 1015.147442][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.153311][T21909] [ 1015.155624][T21909] Uninit was stored to memory at: [ 1015.160635][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1015.166368][T21909] __msan_chain_origin+0x50/0x90 [ 1015.171290][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1015.175885][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1015.180826][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1015.185666][T21909] do_syscall_64+0xb0/0x150 [ 1015.190156][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.196058][T21909] [ 1015.198375][T21909] Uninit was stored to memory at: [ 1015.203399][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1015.209110][T21909] __msan_chain_origin+0x50/0x90 [ 1015.214038][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1015.218631][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1015.223555][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1015.228410][T21909] do_syscall_64+0xb0/0x150 [ 1015.232902][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.238788][T21909] [ 1015.241100][T21909] Uninit was stored to memory at: [ 1015.246109][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1015.251952][T21909] __msan_chain_origin+0x50/0x90 [ 1015.256982][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1015.261660][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1015.266589][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1015.271432][T21909] do_syscall_64+0xb0/0x150 [ 1015.275927][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.281805][T21909] [ 1015.284133][T21909] Uninit was stored to memory at: [ 1015.289143][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1015.294846][T21909] __msan_chain_origin+0x50/0x90 [ 1015.299771][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1015.304346][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1015.309269][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1015.314109][T21909] do_syscall_64+0xb0/0x150 [ 1015.318600][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.324470][T21909] [ 1015.326819][T21909] Uninit was stored to memory at: [ 1015.331831][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1015.337641][T21909] __msan_chain_origin+0x50/0x90 [ 1015.342566][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1015.347140][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1015.352063][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1015.356901][T21909] do_syscall_64+0xb0/0x150 [ 1015.361409][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.367283][T21909] [ 1015.369594][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 1015.376340][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1015.380756][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1015.401067][T21918] not chained 740000 origins [ 1015.405705][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1015.414373][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1015.424427][T21918] Call Trace: [ 1015.427724][T21918] dump_stack+0x1df/0x240 [ 1015.432075][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 1015.437798][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1015.442919][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1015.448815][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1015.454108][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 1015.459308][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1015.465116][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1015.471618][T21918] ? kfree+0x61/0x30f0 [ 1015.475690][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1015.480802][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 1015.486349][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1015.492424][T21918] ? _copy_from_user+0x15b/0x260 [ 1015.497365][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1015.502490][T21918] __msan_chain_origin+0x50/0x90 [ 1015.507450][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1015.512871][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1015.518424][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1015.523452][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1015.528486][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1015.534386][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1015.540119][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1015.544977][T21918] do_syscall_64+0xb0/0x150 [ 1015.549491][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.555381][T21918] RIP: 0033:0x45c1d9 [ 1015.559267][T21918] Code: Bad RIP value. [ 1015.563339][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1015.571749][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1015.580240][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1015.588309][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1015.596377][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 1015.604532][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1015.612516][T21918] Uninit was stored to memory at: [ 1015.617555][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1015.623301][T21918] __msan_chain_origin+0x50/0x90 [ 1015.628242][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1015.632841][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1015.638134][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1015.642984][T21918] do_syscall_64+0xb0/0x150 [ 1015.647489][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.653367][T21918] [ 1015.655687][T21918] Uninit was stored to memory at: [ 1015.660709][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1015.666429][T21918] __msan_chain_origin+0x50/0x90 [ 1015.671363][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1015.675953][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1015.680897][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1015.685746][T21918] do_syscall_64+0xb0/0x150 [ 1015.690249][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.696133][T21918] [ 1015.698453][T21918] Uninit was stored to memory at: [ 1015.703476][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1015.709193][T21918] __msan_chain_origin+0x50/0x90 [ 1015.714135][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1015.718731][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1015.723675][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1015.728530][T21918] do_syscall_64+0xb0/0x150 [ 1015.733037][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.738917][T21918] [ 1015.741235][T21918] Uninit was stored to memory at: [ 1015.746256][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1015.751977][T21918] __msan_chain_origin+0x50/0x90 [ 1015.756915][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1015.761503][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1015.766450][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1015.771309][T21918] do_syscall_64+0xb0/0x150 [ 1015.775815][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.781799][T21918] [ 1015.784124][T21918] Uninit was stored to memory at: [ 1015.789156][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1015.794880][T21918] __msan_chain_origin+0x50/0x90 [ 1015.799820][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1015.804410][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1015.809348][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1015.814199][T21918] do_syscall_64+0xb0/0x150 [ 1015.818706][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.824585][T21918] [ 1015.826905][T21918] Uninit was stored to memory at: [ 1015.831930][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1015.837669][T21918] __msan_chain_origin+0x50/0x90 [ 1015.842616][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1015.847206][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1015.852190][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1015.857039][T21918] do_syscall_64+0xb0/0x150 [ 1015.861533][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.867402][T21918] [ 1015.869711][T21918] Uninit was stored to memory at: [ 1015.874741][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1015.880470][T21918] __msan_chain_origin+0x50/0x90 [ 1015.885418][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1015.889994][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1015.894917][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1015.899843][T21918] do_syscall_64+0xb0/0x150 [ 1015.904332][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1015.910203][T21918] [ 1015.912521][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 1015.919183][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1015.923598][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1016.033488][T21909] not chained 750000 origins [ 1016.038118][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1016.046787][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1016.056857][T21909] Call Trace: [ 1016.060152][T21909] dump_stack+0x1df/0x240 [ 1016.064491][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 1016.070214][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1016.075335][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1016.081243][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1016.086619][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 1016.091819][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1016.097630][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1016.103697][T21909] ? kfree+0x61/0x30f0 [ 1016.107771][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1016.113002][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 1016.118550][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1016.124620][T21909] ? _copy_from_user+0x15b/0x260 [ 1016.129558][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1016.134670][T21909] __msan_chain_origin+0x50/0x90 [ 1016.139613][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1016.144240][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1016.149528][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1016.154561][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1016.159588][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1016.165485][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1016.170436][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1016.175302][T21909] do_syscall_64+0xb0/0x150 [ 1016.180248][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1016.186172][T21909] RIP: 0033:0x45c1d9 [ 1016.190055][T21909] Code: Bad RIP value. [ 1016.194137][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1016.202546][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1016.210515][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1016.218486][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1016.226455][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1016.234428][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 1016.242408][T21909] Uninit was stored to memory at: [ 1016.247436][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1016.253153][T21909] __msan_chain_origin+0x50/0x90 [ 1016.258098][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1016.262713][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1016.267652][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1016.272504][T21909] do_syscall_64+0xb0/0x150 [ 1016.277026][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1016.283002][T21909] [ 1016.285411][T21909] Uninit was stored to memory at: [ 1016.290438][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1016.296164][T21909] __msan_chain_origin+0x50/0x90 [ 1016.301186][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1016.305775][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1016.310711][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1016.315596][T21909] do_syscall_64+0xb0/0x150 [ 1016.320099][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1016.325981][T21909] [ 1016.328300][T21909] Uninit was stored to memory at: [ 1016.333326][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1016.339044][T21909] __msan_chain_origin+0x50/0x90 [ 1016.343983][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1016.348571][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1016.353506][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1016.358359][T21909] do_syscall_64+0xb0/0x150 [ 1016.362945][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1016.368827][T21909] [ 1016.371144][T21909] Uninit was stored to memory at: [ 1016.376168][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1016.381892][T21909] __msan_chain_origin+0x50/0x90 [ 1016.386829][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1016.391440][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1016.396377][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1016.401228][T21909] do_syscall_64+0xb0/0x150 [ 1016.405736][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1016.411709][T21909] [ 1016.414032][T21909] Uninit was stored to memory at: [ 1016.419058][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1016.424777][T21909] __msan_chain_origin+0x50/0x90 [ 1016.430064][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1016.434792][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1016.439734][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1016.444593][T21909] do_syscall_64+0xb0/0x150 [ 1016.449105][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1016.454985][T21909] [ 1016.457310][T21909] Uninit was stored to memory at: [ 1016.462337][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1016.468054][T21909] __msan_chain_origin+0x50/0x90 [ 1016.472995][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1016.477587][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1016.482528][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1016.487380][T21909] do_syscall_64+0xb0/0x150 [ 1016.491885][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1016.497778][T21909] [ 1016.500097][T21909] Uninit was stored to memory at: [ 1016.505144][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1016.510874][T21909] __msan_chain_origin+0x50/0x90 [ 1016.515821][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1016.520412][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1016.525350][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1016.530206][T21909] do_syscall_64+0xb0/0x150 [ 1016.534716][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1016.540595][T21909] [ 1016.542916][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 1016.549591][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1016.554007][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1016.655470][T21918] not chained 760000 origins [ 1016.660099][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1016.668763][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1016.678816][T21918] Call Trace: [ 1016.682114][T21918] dump_stack+0x1df/0x240 [ 1016.686454][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 1016.692179][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1016.697291][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1016.703187][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1016.708481][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 1016.713683][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1016.719498][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1016.725567][T21918] ? kfree+0x61/0x30f0 [ 1016.729654][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1016.734770][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 1016.740320][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1016.746393][T21918] ? _copy_from_user+0x15b/0x260 [ 1016.751332][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1016.756445][T21918] __msan_chain_origin+0x50/0x90 [ 1016.761386][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1016.766009][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1016.771386][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1016.776410][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1016.781448][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1016.787361][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1016.792319][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1016.797177][T21918] do_syscall_64+0xb0/0x150 [ 1016.801687][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1016.807573][T21918] RIP: 0033:0x45c1d9 [ 1016.811455][T21918] Code: Bad RIP value. [ 1016.815515][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1016.823935][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1016.831907][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1016.839878][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1016.847850][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 1016.855822][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1016.863799][T21918] Uninit was stored to memory at: [ 1016.868828][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1016.874895][T21918] __msan_chain_origin+0x50/0x90 [ 1016.879832][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1016.884531][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1016.889559][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1016.894432][T21918] do_syscall_64+0xb0/0x150 [ 1016.898958][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1016.904835][T21918] [ 1016.907156][T21918] Uninit was stored to memory at: [ 1016.912182][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1016.918598][T21918] __msan_chain_origin+0x50/0x90 [ 1016.923970][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1016.928560][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1016.933499][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1016.938354][T21918] do_syscall_64+0xb0/0x150 [ 1016.942857][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1016.948734][T21918] [ 1016.951057][T21918] Uninit was stored to memory at: [ 1016.956081][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1016.961795][T21918] __msan_chain_origin+0x50/0x90 [ 1016.966731][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1016.971325][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1016.976265][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1016.981113][T21918] do_syscall_64+0xb0/0x150 [ 1016.985615][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1016.991489][T21918] [ 1016.993806][T21918] Uninit was stored to memory at: [ 1016.998828][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1017.004540][T21918] __msan_chain_origin+0x50/0x90 [ 1017.009473][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1017.014063][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1017.018996][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1017.023841][T21918] do_syscall_64+0xb0/0x150 [ 1017.028352][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1017.034237][T21918] [ 1017.036642][T21918] Uninit was stored to memory at: [ 1017.041667][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1017.047384][T21918] __msan_chain_origin+0x50/0x90 [ 1017.052321][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1017.056908][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1017.061840][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1017.066689][T21918] do_syscall_64+0xb0/0x150 [ 1017.071189][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1017.077080][T21918] [ 1017.079394][T21918] Uninit was stored to memory at: [ 1017.084414][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1017.090129][T21918] __msan_chain_origin+0x50/0x90 [ 1017.095061][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1017.099647][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1017.104582][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1017.109431][T21918] do_syscall_64+0xb0/0x150 [ 1017.113934][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1017.119808][T21918] [ 1017.122124][T21918] Uninit was stored to memory at: [ 1017.127147][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1017.132864][T21918] __msan_chain_origin+0x50/0x90 [ 1017.137798][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1017.142388][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1017.147319][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1017.152168][T21918] do_syscall_64+0xb0/0x150 [ 1017.156668][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1017.162544][T21918] [ 1017.164863][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 1017.171534][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1017.175947][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1017.269425][T21909] not chained 770000 origins [ 1017.274053][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1017.282726][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1017.292784][T21909] Call Trace: [ 1017.296079][T21909] dump_stack+0x1df/0x240 [ 1017.300529][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 1017.306268][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1017.311427][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1017.317336][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1017.322628][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 1017.327827][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1017.333636][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1017.339702][T21909] ? kfree+0x61/0x30f0 [ 1017.343777][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1017.348888][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 1017.354438][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1017.360515][T21909] ? _copy_from_user+0x15b/0x260 [ 1017.365453][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1017.370563][T21909] __msan_chain_origin+0x50/0x90 [ 1017.375507][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1017.380130][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1017.385415][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1017.390437][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1017.395462][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1017.401358][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1017.406303][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1017.411165][T21909] do_syscall_64+0xb0/0x150 [ 1017.415671][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1017.421555][T21909] RIP: 0033:0x45c1d9 [ 1017.425435][T21909] Code: Bad RIP value. [ 1017.429492][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1017.437898][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1017.445865][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1017.453831][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1017.461795][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1017.469760][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 1017.477740][T21909] Uninit was stored to memory at: [ 1017.482768][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1017.488482][T21909] __msan_chain_origin+0x50/0x90 [ 1017.493419][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1017.498004][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1017.502937][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1017.507789][T21909] do_syscall_64+0xb0/0x150 [ 1017.512295][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1017.518178][T21909] [ 1017.520495][T21909] Uninit was stored to memory at: [ 1017.525516][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1017.531228][T21909] __msan_chain_origin+0x50/0x90 [ 1017.536160][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1017.540748][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1017.545682][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1017.550533][T21909] do_syscall_64+0xb0/0x150 [ 1017.555036][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1017.560912][T21909] [ 1017.563229][T21909] Uninit was stored to memory at: [ 1017.568256][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1017.573968][T21909] __msan_chain_origin+0x50/0x90 [ 1017.578902][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1017.583634][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1017.588592][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1017.593445][T21909] do_syscall_64+0xb0/0x150 [ 1017.597958][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1017.603838][T21909] [ 1017.606163][T21909] Uninit was stored to memory at: [ 1017.611203][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1017.616932][T21909] __msan_chain_origin+0x50/0x90 [ 1017.621872][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1017.626613][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1017.631555][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1017.636411][T21909] do_syscall_64+0xb0/0x150 [ 1017.640914][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1017.646795][T21909] [ 1017.649110][T21909] Uninit was stored to memory at: [ 1017.654131][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1017.659845][T21909] __msan_chain_origin+0x50/0x90 [ 1017.664778][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1017.669624][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1017.674556][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1017.679407][T21909] do_syscall_64+0xb0/0x150 [ 1017.683909][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1017.689789][T21909] [ 1017.692111][T21909] Uninit was stored to memory at: [ 1017.697150][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1017.702871][T21909] __msan_chain_origin+0x50/0x90 [ 1017.707811][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1017.712398][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1017.717331][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1017.722182][T21909] do_syscall_64+0xb0/0x150 [ 1017.726684][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1017.732678][T21909] [ 1017.735023][T21909] Uninit was stored to memory at: [ 1017.740052][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1017.745797][T21909] __msan_chain_origin+0x50/0x90 [ 1017.750732][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1017.755320][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1017.760252][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1017.765102][T21909] do_syscall_64+0xb0/0x150 [ 1017.769783][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1017.775658][T21909] [ 1017.777978][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 1017.784652][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1017.789074][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1017.889366][T21918] not chained 780000 origins [ 1017.893995][T21918] CPU: 0 PID: 21918 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1017.902744][T21918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1017.912804][T21918] Call Trace: [ 1017.916100][T21918] dump_stack+0x1df/0x240 [ 1017.920435][T21918] kmsan_internal_chain_origin+0x6f/0x130 [ 1017.926156][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1017.931293][T21918] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1017.937188][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1017.942474][T21918] ? kmsan_get_metadata+0x11d/0x180 [ 1017.947674][T21918] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1017.953479][T21918] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1017.959543][T21918] ? kfree+0x61/0x30f0 [ 1017.963613][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1017.968730][T21918] ? kmsan_set_origin_checked+0x95/0xf0 [ 1017.974278][T21918] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1017.980351][T21918] ? _copy_from_user+0x15b/0x260 [ 1017.985288][T21918] ? kmsan_get_metadata+0x4f/0x180 [ 1017.990400][T21918] __msan_chain_origin+0x50/0x90 [ 1017.995341][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1017.999965][T21918] ? __msan_poison_alloca+0xf0/0x120 [ 1018.005346][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1018.010809][T21918] ? __se_sys_recvmmsg+0xac/0x350 [ 1018.015845][T21918] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1018.021751][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1018.026707][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1018.031559][T21918] do_syscall_64+0xb0/0x150 [ 1018.036066][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1018.041951][T21918] RIP: 0033:0x45c1d9 [ 1018.045831][T21918] Code: Bad RIP value. [ 1018.049889][T21918] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1018.058295][T21918] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1018.066262][T21918] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1018.074230][T21918] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1018.082195][T21918] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 1018.090166][T21918] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1018.098143][T21918] Uninit was stored to memory at: [ 1018.103169][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1018.108885][T21918] __msan_chain_origin+0x50/0x90 [ 1018.113821][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1018.118410][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1018.123347][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1018.128202][T21918] do_syscall_64+0xb0/0x150 [ 1018.132702][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1018.138579][T21918] [ 1018.140893][T21918] Uninit was stored to memory at: [ 1018.145919][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1018.151633][T21918] __msan_chain_origin+0x50/0x90 [ 1018.156567][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1018.161157][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1018.166090][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1018.170947][T21918] do_syscall_64+0xb0/0x150 [ 1018.175453][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1018.181417][T21918] [ 1018.183734][T21918] Uninit was stored to memory at: [ 1018.188761][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1018.194478][T21918] __msan_chain_origin+0x50/0x90 [ 1018.199500][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1018.204091][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1018.209025][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1018.213875][T21918] do_syscall_64+0xb0/0x150 [ 1018.218377][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1018.224257][T21918] [ 1018.226576][T21918] Uninit was stored to memory at: [ 1018.231598][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1018.237318][T21918] __msan_chain_origin+0x50/0x90 [ 1018.242255][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1018.246846][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1018.251789][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1018.256639][T21918] do_syscall_64+0xb0/0x150 [ 1018.261142][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1018.267019][T21918] [ 1018.269372][T21918] Uninit was stored to memory at: [ 1018.274394][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1018.280108][T21918] __msan_chain_origin+0x50/0x90 [ 1018.285040][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1018.289628][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1018.294563][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1018.299449][T21918] do_syscall_64+0xb0/0x150 [ 1018.303951][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1018.309830][T21918] [ 1018.312146][T21918] Uninit was stored to memory at: [ 1018.317171][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1018.322910][T21918] __msan_chain_origin+0x50/0x90 [ 1018.328279][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1018.332869][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1018.337811][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1018.342657][T21918] do_syscall_64+0xb0/0x150 [ 1018.347206][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1018.353086][T21918] [ 1018.355419][T21918] Uninit was stored to memory at: [ 1018.360476][T21918] kmsan_internal_chain_origin+0xad/0x130 [ 1018.366196][T21918] __msan_chain_origin+0x50/0x90 [ 1018.371136][T21918] do_recvmmsg+0x105a/0x1ee0 [ 1018.376020][T21918] __se_sys_recvmmsg+0x1d1/0x350 [ 1018.381393][T21918] __x64_sys_recvmmsg+0x62/0x80 [ 1018.386254][T21918] do_syscall_64+0xb0/0x150 [ 1018.390759][T21918] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1018.396643][T21918] [ 1018.398966][T21918] Local variable ----msg_sys@do_recvmmsg created at: [ 1018.405642][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1018.410064][T21918] do_recvmmsg+0xc5/0x1ee0 [ 1018.504471][T21909] not chained 790000 origins [ 1018.509189][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1018.517855][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1018.527948][T21909] Call Trace: [ 1018.531244][T21909] dump_stack+0x1df/0x240 [ 1018.535583][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 1018.541303][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1018.546424][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1018.552323][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1018.557612][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 1018.562815][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1018.568639][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1018.574704][T21909] ? kfree+0x61/0x30f0 [ 1018.578809][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1018.583923][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 1018.589471][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1018.595552][T21909] ? _copy_from_user+0x15b/0x260 [ 1018.600500][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1018.605617][T21909] __msan_chain_origin+0x50/0x90 [ 1018.610565][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1018.615311][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1018.620617][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1018.625646][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1018.630673][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1018.636574][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1018.641526][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1018.646380][T21909] do_syscall_64+0xb0/0x150 [ 1018.650889][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1018.656777][T21909] RIP: 0033:0x45c1d9 [ 1018.660673][T21909] Code: Bad RIP value. [ 1018.664735][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1018.673181][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1018.681175][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1018.689141][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1018.697113][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1018.705084][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 1018.713149][T21909] Uninit was stored to memory at: [ 1018.718177][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1018.723895][T21909] __msan_chain_origin+0x50/0x90 [ 1018.728829][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1018.733427][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1018.738368][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1018.743216][T21909] do_syscall_64+0xb0/0x150 [ 1018.747732][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1018.758488][T21909] [ 1018.760820][T21909] Uninit was stored to memory at: [ 1018.765859][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1018.771608][T21909] __msan_chain_origin+0x50/0x90 [ 1018.776554][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1018.781143][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1018.786085][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1018.791061][T21909] do_syscall_64+0xb0/0x150 [ 1018.795574][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1018.801457][T21909] [ 1018.803783][T21909] Uninit was stored to memory at: [ 1018.809083][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1018.814804][T21909] __msan_chain_origin+0x50/0x90 [ 1018.819745][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1018.824348][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1018.829315][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1018.834177][T21909] do_syscall_64+0xb0/0x150 [ 1018.838689][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1018.844576][T21909] [ 1018.846897][T21909] Uninit was stored to memory at: [ 1018.851926][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1018.857647][T21909] __msan_chain_origin+0x50/0x90 [ 1018.862585][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1018.867177][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1018.872128][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1018.876984][T21909] do_syscall_64+0xb0/0x150 [ 1018.881489][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1018.887369][T21909] [ 1018.889696][T21909] Uninit was stored to memory at: [ 1018.894742][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1018.900485][T21909] __msan_chain_origin+0x50/0x90 [ 1018.905426][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1018.910016][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1018.914952][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1018.919801][T21909] do_syscall_64+0xb0/0x150 [ 1018.924306][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1018.930186][T21909] [ 1018.932504][T21909] Uninit was stored to memory at: [ 1018.937533][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1018.943250][T21909] __msan_chain_origin+0x50/0x90 [ 1018.948195][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1018.952783][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1018.957721][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1018.962573][T21909] do_syscall_64+0xb0/0x150 [ 1018.967075][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1018.972970][T21909] [ 1018.977897][T21909] Uninit was stored to memory at: [ 1018.982938][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1018.988655][T21909] __msan_chain_origin+0x50/0x90 [ 1018.993595][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1018.998184][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1019.003121][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1019.007972][T21909] do_syscall_64+0xb0/0x150 [ 1019.012559][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1019.018436][T21909] [ 1019.020758][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 1019.027532][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1019.031946][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1019.138283][T21909] not chained 800000 origins [ 1019.142917][T21909] CPU: 0 PID: 21909 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1019.151583][T21909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1019.161720][T21909] Call Trace: [ 1019.165021][T21909] dump_stack+0x1df/0x240 [ 1019.169360][T21909] kmsan_internal_chain_origin+0x6f/0x130 [ 1019.175081][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1019.180218][T21909] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1019.186114][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1019.191400][T21909] ? kmsan_get_metadata+0x11d/0x180 [ 1019.196602][T21909] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1019.202409][T21909] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1019.208477][T21909] ? kfree+0x61/0x30f0 [ 1019.212552][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1019.217665][T21909] ? kmsan_set_origin_checked+0x95/0xf0 [ 1019.223213][T21909] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1019.229285][T21909] ? _copy_from_user+0x15b/0x260 [ 1019.234224][T21909] ? kmsan_get_metadata+0x4f/0x180 [ 1019.239337][T21909] __msan_chain_origin+0x50/0x90 [ 1019.244306][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1019.248948][T21909] ? __msan_poison_alloca+0xf0/0x120 [ 1019.254235][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1019.259259][T21909] ? __se_sys_recvmmsg+0xac/0x350 [ 1019.264286][T21909] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1019.270183][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1019.275395][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1019.281029][T21909] do_syscall_64+0xb0/0x150 [ 1019.285539][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1019.291428][T21909] RIP: 0033:0x45c1d9 [ 1019.295314][T21909] Code: Bad RIP value. [ 1019.299375][T21909] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1019.307783][T21909] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1019.315754][T21909] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 1019.324158][T21909] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 1019.332127][T21909] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1019.340096][T21909] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 1019.348076][T21909] Uninit was stored to memory at: [ 1019.353113][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1019.358838][T21909] __msan_chain_origin+0x50/0x90 [ 1019.363779][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1019.368368][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1019.373305][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1019.378156][T21909] do_syscall_64+0xb0/0x150 [ 1019.382665][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1019.388544][T21909] [ 1019.390863][T21909] Uninit was stored to memory at: [ 1019.395889][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1019.401606][T21909] __msan_chain_origin+0x50/0x90 [ 1019.406551][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1019.411139][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1019.416341][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1019.421195][T21909] do_syscall_64+0xb0/0x150 [ 1019.425697][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1019.431835][T21909] [ 1019.434168][T21909] Uninit was stored to memory at: [ 1019.439190][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1019.444908][T21909] __msan_chain_origin+0x50/0x90 [ 1019.449846][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1019.454440][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1019.459374][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1019.464231][T21909] do_syscall_64+0xb0/0x150 [ 1019.468734][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1019.474634][T21909] [ 1019.476954][T21909] Uninit was stored to memory at: [ 1019.481983][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1019.487702][T21909] __msan_chain_origin+0x50/0x90 [ 1019.492643][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1019.497227][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1019.502166][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1019.507015][T21909] do_syscall_64+0xb0/0x150 [ 1019.511522][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1019.517402][T21909] [ 1019.519718][T21909] Uninit was stored to memory at: [ 1019.525192][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1019.530909][T21909] __msan_chain_origin+0x50/0x90 [ 1019.535850][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1019.540441][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1019.545380][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1019.550229][T21909] do_syscall_64+0xb0/0x150 [ 1019.554735][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1019.560660][T21909] [ 1019.562982][T21909] Uninit was stored to memory at: [ 1019.568007][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1019.573725][T21909] __msan_chain_origin+0x50/0x90 [ 1019.578672][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1019.583274][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1019.588210][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1019.593061][T21909] do_syscall_64+0xb0/0x150 [ 1019.598355][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1019.604234][T21909] [ 1019.606681][T21909] Uninit was stored to memory at: [ 1019.611718][T21909] kmsan_internal_chain_origin+0xad/0x130 [ 1019.617613][T21909] __msan_chain_origin+0x50/0x90 [ 1019.622561][T21909] do_recvmmsg+0x105a/0x1ee0 [ 1019.627152][T21909] __se_sys_recvmmsg+0x1d1/0x350 [ 1019.632124][T21909] __x64_sys_recvmmsg+0x62/0x80 [ 1019.637010][T21909] do_syscall_64+0xb0/0x150 [ 1019.641516][T21909] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1019.647398][T21909] [ 1019.649718][T21909] Local variable ----msg_sys@do_recvmmsg created at: [ 1019.656394][T21909] do_recvmmsg+0xc5/0x1ee0 [ 1019.660835][T21909] do_recvmmsg+0xc5/0x1ee0 19:14:42 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0x480, 0x0, 0x3, 0x8, 0x17b]}) dup2(r5, r4) 19:14:42 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0xc008ae88, &(0x7f00000000c0)={0x3, 0x0, [0x4d0, 0x0, 0x3, 0x8, 0x4b564d03]}) dup2(0xffffffffffffffff, 0xffffffffffffffff) 19:14:42 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r0, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:14:42 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00'}) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:14:42 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:14:42 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x8188aea6, &(0x7f00000000c0)={0x0, 0x0, [0x10a, 0x0, 0x3, 0x8, 0x17b]}) dup2(r5, r4) [ 1019.929856][T22035] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. [ 1020.159706][T22057] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. 19:14:42 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r0, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:14:42 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:14:42 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00'}) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:14:42 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:14:42 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x7, 0x3ff}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000002700)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000ff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_GET_SAREA_CTX(0xffffffffffffffff, 0xc010641d, &(0x7f00000002c0)={0x0, 0x0}) ioctl$DRM_IOCTL_UNLOCK(0xffffffffffffffff, 0x4008642b, &(0x7f0000000180)) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, 0x0) openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x7, 0x0) clone(0x49221503, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000400)=ANY=[], 0x38) 19:14:43 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r0, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:14:43 executing program 2: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = socket$inet6(0xa, 0x2, 0x0) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000140)="665f07000005eb301420387397d3", 0xe}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x3c) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 1020.753018][T22086] IPVS: ftp: loaded support on port[0] = 21 19:14:43 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) socket$packet(0x11, 0x3, 0x300) bind$packet(r1, &(0x7f0000000340), 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r2, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:14:43 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, 0x0, 0x0) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:14:43 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r1, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:14:43 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffbfffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) 19:14:43 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) socket$packet(0x11, 0x3, 0x300) bind$packet(r1, &(0x7f0000000340), 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r2, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:14:43 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, 0x0, 0x0) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) [ 1021.343140][T22000] tipc: TX() has been purged, node left! 19:14:45 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:14:45 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r1, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:14:45 executing program 3: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x13e, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:14:45 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, 0x0, 0x0) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:14:45 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) socket$packet(0x11, 0x3, 0x300) bind$packet(r1, &(0x7f0000000340), 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r2, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:14:45 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) 19:14:46 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r1, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:14:46 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000), 0x0) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:14:46 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r2}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:14:46 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:14:46 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r2}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:14:46 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000), 0x0) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:14:48 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:14:48 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:14:48 executing program 2: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x15b, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:14:48 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r2}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:14:48 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000), 0x0) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:14:48 executing program 3: r0 = syz_open_dev$loop(&(0x7f00000004c0)='/dev/loop#\x00', 0x0, 0x105082) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) fallocate(r0, 0x11, 0x0, 0x100007e00) 19:14:49 executing program 3: r0 = socket$inet(0x2, 0x3, 0x19) connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @local}, 0x12) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x23, &(0x7f0000000000)={{{@in=@multicast2, @in=@multicast1}}, {{@in6}, 0x0, @in6=@initdev={0xfe, 0x88, [], 0x0, 0x0}}}, 0xe4) 19:14:49 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:14:49 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(0xffffffffffffffff, &(0x7f0000000340)={0x11, 0x0, r2}, 0x14) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:14:49 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:14:49 executing program 3: r0 = open(&(0x7f0000000180)='./bus\x00', 0x151042, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/keys\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x4000000000010048) 19:14:49 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r1, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:14:52 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:14:52 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(0xffffffffffffffff, &(0x7f0000000340)={0x11, 0x0, r2}, 0x14) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:14:52 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:14:52 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r1, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:14:52 executing program 3: add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000380)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$set_timeout(0xf, 0x0, 0xe62f) r0 = open(&(0x7f0000000180)='./bus\x00', 0x151042, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/keys\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x4000000000010048) 19:14:52 executing program 2: r0 = openat$vcsa(0xffffffffffffff9c, 0x0, 0x0, 0x0) fcntl$setstatus(r0, 0x4, 0x2000) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) r2 = dup(r1) write$UHID_INPUT(r2, &(0x7f0000001440)={0x8, {"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", 0x1000}}, 0x1006) 19:14:52 executing program 3: r0 = fsopen(&(0x7f0000000200)='sysfs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000100)='vfat?\x1a\xdb\xf1||\xe8c[6p<\xd6\xb1\x8e\x88Ob]\xa6D\x0e\x1b\x00LY\xca\xe5\x13\x7f\xf8\xeds<\x02\xb7\xfex\x91\xfdP\xdf\x11\xe4`\xcd^P\rT\x11_uY\x17\a\xd2\xe8\x14G\x14\xe8\xdf\xaf\xd2\xeaK\xf8\x82', &(0x7f0000000040)=',\x00', 0x0) read(r0, 0x0, 0x38) 19:14:52 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r1, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:14:52 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:14:52 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(0xffffffffffffffff, &(0x7f0000000340)={0x11, 0x0, r2}, 0x14) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:14:52 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000180)='dctcp\x00', 0x6) 19:14:52 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0x4b564d05, 0x0, 0x3, 0x8, 0x3a]}) 19:14:55 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r1, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:14:55 executing program 2: perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x0, 0x0) dup(0xffffffffffffffff) clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) migrate_pages(0x0, 0xb2, &(0x7f0000000240)=0x7ff, &(0x7f0000000280)=0x1) 19:14:55 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:14:55 executing program 5: r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r0, &(0x7f0000000340)={0x11, 0x0, r2}, 0x14) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(0xffffffffffffffff, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:14:55 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$cont(0x7, r0, 0x0, 0x0) 19:14:55 executing program 3: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f0000001340)='net/tcp6\x00') socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendfile(r3, r2, 0x0, 0x40000900000c4) 19:14:55 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:14:55 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r1, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:14:55 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:14:55 executing program 5: r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r0, &(0x7f0000000340)={0x11, 0x0, r2}, 0x14) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(0xffffffffffffffff, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:14:55 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, 0x0}], 0x1, 0x0, &(0x7f0000000180)=[@cr4={0x1, 0x100000}], 0x1) 19:14:55 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000500)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x3, 0x2, 0x0, 0x1000, &(0x7f0000015000/0x1000)=nil}) perf_event_open(&(0x7f0000000300)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0xffffffffffffffff, 0x0, 0x9, 0x0, 0x20000000, 0x0, 0xffffffff], 0x1f004, 0xd2046}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:14:58 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="f7f249b9740c9e02007f00000000000032a5b60a00008024c30e478947d190ac00000000000000000000000097ba4ecb40a2ee2e32a3b88aaf3c06f4970e85a63c9a4b0d8b9aad9c9ba4c998db2f7155d302a7be122bb1609f8b0164eb12c07af20200169c864e1d5f8179cba2e431126de0594cf1487e311e84395a80adbe3e7f3622703c353de8e6928bfd5a5f2cc05e4b942d6ed155b67a555f4b2e2b0cd0e93e41c330f70401c1d920006e65fab4fae51bb32a6f3ca61632d15b0c1cec89839cd7fe16d03af16efd5295d2eea42f3e25765b72b9727176c1966620ada4a27b28739a2eed558cee393ecaa3df004548e6f43be3f968529e96628cebee42b6fa46cb0b55a45cadf1f354a424830def8e07cc514d7615c7689e93ad448a65e9ea04c454bcd4e1fb5b77e741b3c87e65d0ea2d0656d3801495d4c269a587ebeda98f311e2af82a9013e4e58004bbbb1be0"}}], 0x1c) ptrace$cont(0x7, r0, 0x0, 0x0) 19:14:58 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r1, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:14:58 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:14:58 executing program 5: r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r0, &(0x7f0000000340)={0x11, 0x0, r2}, 0x14) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(0xffffffffffffffff, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:14:58 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_LINKMODE={0x5}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) 19:14:58 executing program 3: r0 = fsopen(&(0x7f0000000200)='sysfs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='vfat?\x1a\xdb\xf1||\xe8c[6p<\xd6\xb1\x8e\x88Ob]\xa6D\x0e\x1b\x00LY\xca\xe5\x13\x7f\xf8\xeds<\x02\xb7\xfex\x91\xfdP\xdf\x11\xe4`\xcd^P\rT\x11_uY\x17\a\xd2\xe8l\x84\xdbn\xdf\xaf\x02\x00\x00\x00\x82', &(0x7f0000000340)='0\xc3\x8970\xcdi\x80\x14-gNn\xe3\xe2(>f\xed-\x01\t\x8fF{\x99\xa1\xa8\x96\xc5*\x9d\xce\x95\xf9\xb8\x03m\r\xa6y\xd1xE\xe7\x1c\xa8T\x1b\xa6\xc4\xf7\xed!pt\xa7\xb4\xeb\xa9\x18u\xfc\xe6\xb9\x8b\x06\xc2\xf9\xf8\x84\xafs\x85\xfd\x8e\x10B\xb7nLFS7bK\xbeIf.z\x99\xed#0\xb3R\xba\xdf\x901|\x1fk\x8fap?\x92=\x12-\\\xe4\xc0\xa7\xb8=\x95\xca\xca\xadG\xe5\xf6\xe7\xcc\xb0\xfdsj\x0e\xacoE\x85\x9c\xbeN\xf1\xc5x\x1c\xeb\x18?t\x04a`Y\xb9\x99\x82\x81\xe7\xdb\x0f\xcc\xbc@\xec\xf34\xafTW5Z\xfep\xe7-\xf1\xd9\xf7\"!\xed0\xac\x8el^\f\xe9Y\xf4\xe0\xc3+M[\x83\x86\xfd\x9a\x90B\xefo3\xa6\xcc\x01\xd2\xe8\xf87\raJ\a\xa0y-\x1c\xca\b\b\xaf\xc0z!\xa8(\xf4j\xdb\xe5\xb2O\x9a\xcd\xeb\xd05\xf4\x06(\xaf[\x02@\xc9S\xf1\xfc\xf0\x1bh\x8d\xf8\xc6\xaa#\x03pe$\xa9z\xed\xe3\xc5\xde7\xf1T\xcb\xdd\xdd^,Xg._\xa2D?\x85\xea\x00\x1b\'T\x03\x92{\xd3[\xad\"\xb57\xe0\x036z\xd5\x8b\xcdP\xe1\xc3p\xfcvL\x98f\x01\xe6.\xd0q\xce\xb2\x91/w\xfa9NE\xebUF\xe5\x13\xb5\xe7\x1c\x06u\xb9\xa3?l\b\xeaKbb\xd3\xec?\x16\xf6\x02\xb1\xa7G\x9dVp\xb8x!\x84\x15}\xb5By\xb8\x9f4Z#\xad-\xd1\xb9\xb7z\xecR\x0e4\xa6\xc9\x8e\xa23\x85\xaa\x00\x00\x00\x00\x00\x00', 0x0) [ 1036.194307][T22524] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1036.211203][T22524] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1036.219249][T22524] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 19:14:58 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) [ 1036.424074][T22532] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1036.439266][T22532] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1036.449177][T22532] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 19:14:58 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x7f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setreuid(0x0, r1) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = fcntl$dupfd(r2, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setgid(r6) 19:14:58 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:14:59 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000102, 0x0, 0x3, 0x200000c8, 0x4b564d02]}) 19:14:59 executing program 5: r0 = socket$packet(0x11, 0x0, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:14:59 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:15:01 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:01 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:15:01 executing program 2: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet(0x10, 0x80002, 0x0) sendmsg(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="24000000210007041dfffd946f610500020000e8fe02080100010800080018000400ff7e280000001100ffffba16a0aa1c0900000000000012000000000000eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 19:15:01 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_LINKMODE={0x5}, @IFLA_GROUP={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x4810}, 0x0) 19:15:01 executing program 5: r0 = socket$packet(0x11, 0x0, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:01 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) [ 1039.547886][T22582] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. 19:15:02 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:15:02 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, 0x0) 19:15:02 executing program 5: r0 = socket$packet(0x11, 0x0, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:02 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:15:02 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x0, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:02 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, 0x0) [ 1040.504886][T22591] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1040.521851][T22591] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1040.529842][T22591] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1040.592246][T22614] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1040.619059][T22615] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1040.637706][T22615] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1040.656319][T22615] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 19:15:05 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:05 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:15:05 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, 0x0) 19:15:05 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x0, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:05 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4040aea0, &(0x7f00000000c0)={0x0, 0x0, [0x10a, 0x0, 0x3, 0x10, 0x17b]}) dup2(r5, r4) 19:15:05 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xc0000102, 0x0, 0x3, 0x8, 0x4b564d02]}) [ 1042.725534][T22640] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. 19:15:05 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(0x0, 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:15:05 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:15:05 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xfbffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c) setsockopt$inet6_int(r0, 0x29, 0x43, &(0x7f0000000000)=0x1, 0x4) socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x4000000000010046) 19:15:05 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x0, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:05 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0x10a, 0x0, 0x3, 0x8, 0x4000009f]}) 19:15:05 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x7f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setreuid(0x0, r1) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = fcntl$dupfd(r2, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket$unix(0x1, 0x2, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xc) setgid(0x0) 19:15:08 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:08 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(0x0, 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:15:08 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) 19:15:08 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x0, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:08 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0xda0, 0x0, 0x3, 0x8, 0x17b]}) 19:15:08 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) r2 = socket$inet6(0xa, 0x80003, 0x6b) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_emit_ethernet(0x3e, &(0x7f0000000280)=ANY=[@ANYBLOB="0380c2000000aaaaaaaaaaaa86dd60bf6e110008"], 0x0) 19:15:08 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(0x0, 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:15:08 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f00000000c0)={0x0, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x4b564d04]}) [ 1046.205412][T22716] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING 19:15:08 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x0, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:08 executing program 2: perf_event_open(&(0x7f00000005c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = getpid() rt_tgsigqueueinfo(0x0, r1, 0x0, &(0x7f0000001180)={0x0, 0x0, 0xffffbfffffffc58e}) write$FUSE_LK(0xffffffffffffffff, &(0x7f0000000580)={0xffffffffffffff12, 0x0, 0x0, {{0x30, 0x664}}}, 0x28) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) syz_open_dev$tty20(0xc, 0x4, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = dup3(0xffffffffffffffff, r2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setuid(0x0) setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0) ioctl$KVM_GET_FPU(r3, 0x81a0ae8c, &(0x7f0000000140)) setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f0000000100)=0x6, 0x4) sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf9281a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x27) 19:15:09 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000140)={'veth0_macvtap\x00', &(0x7f0000000080)=@ethtool_rxfh_indir={0x39}}) 19:15:09 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) [ 1046.921244][T22724] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING 19:15:11 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:11 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x0, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:11 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffff7, 0x11, r2, 0x0) ioctl$KVM_SET_GUEST_DEBUG(0xffffffffffffffff, 0x4048ae9b, &(0x7f0000000100)={0x0, 0x0, [0x0, 0x0, 0x0, 0x3, 0x201]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:15:11 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:15:11 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x7f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setreuid(0x0, r1) syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') 19:15:11 executing program 3: [ 1049.248111][T22775] debugfs: Directory '22775-4' with parent 'kvm' already present! 19:15:11 executing program 3: 19:15:11 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:15:11 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r2}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:11 executing program 2: 19:15:11 executing program 1: 19:15:12 executing program 1: 19:15:14 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:14 executing program 3: 19:15:14 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(0xffffffffffffffff, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:15:14 executing program 2: 19:15:14 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r2}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:14 executing program 1: 19:15:14 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(0xffffffffffffffff, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:15:14 executing program 3: 19:15:14 executing program 2: 19:15:15 executing program 1: 19:15:15 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r2}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:15 executing program 3: 19:15:17 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:17 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(0xffffffffffffffff, 0x200002) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:15:17 executing program 2: 19:15:17 executing program 1: 19:15:17 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0) bind$packet(r1, &(0x7f0000000340), 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:17 executing program 3: 19:15:18 executing program 2: 19:15:18 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x0) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:15:18 executing program 1: 19:15:18 executing program 3: 19:15:18 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0) bind$packet(r1, &(0x7f0000000340), 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:18 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x0) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:15:21 executing program 3: 19:15:21 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0) bind$packet(r1, &(0x7f0000000340), 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:21 executing program 2: 19:15:21 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="f7f249b9740c9e02007f00000000000032a5b60a00008024c30e478947d190ac00000000000000000000000097ba4ecb40a2ee2e32a3b88aaf3c06f4970e85a63c9a4b0d8b9aad9c9ba4c998db2f7155d302a7be122bb1609f8b0164eb12c07af20200169c864e1d5f8179cba2e431126de0594cf1487e311e84395a80adbe3e7f3622703c353de8e6928bfd5a5f2cc05e4b942d6ed155b67a555f4b2e2b0cd0e93e41c330f70401c1d920006e65fab4fae51bb32a6f3ca61632d15b0c1cec89839cd7fe16d03af16efd5295d2eea42f3e25765b72b9727176c1966620ada4a27b28739a2eed558cee393ecaa3df004548e6f43be3f968529e96628cebee42b6fa46cb0b55a45cadf1f354a424830def8e07cc514d7615c7689e93ad448a65e9ea04c454bcd4e1fb5b77e741b3c87e65d0ea2d0656d3801495d4c269a587ebeda98f311e2af82a9013e4e58004bbbb1be0"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:21 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x0) sendfile(r0, r2, 0x0, 0x80001d00c0d0) 19:15:21 executing program 1: 19:15:21 executing program 3: 19:15:21 executing program 2: 19:15:21 executing program 1: 19:15:21 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(0xffffffffffffffff, r2, 0x0, 0x80001d00c0d0) 19:15:21 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(0xffffffffffffffff, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:21 executing program 1: 19:15:24 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:24 executing program 2: 19:15:24 executing program 3: 19:15:24 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(0xffffffffffffffff, r2, 0x0, 0x80001d00c0d0) 19:15:24 executing program 1: 19:15:24 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(0xffffffffffffffff, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:24 executing program 3: 19:15:24 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(0xffffffffffffffff, r2, 0x0, 0x80001d00c0d0) 19:15:24 executing program 1: 19:15:24 executing program 2: 19:15:24 executing program 3: 19:15:24 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(0xffffffffffffffff, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:27 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:27 executing program 2: 19:15:27 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 19:15:27 executing program 1: 19:15:27 executing program 3: 19:15:27 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00'}) bind$packet(r1, 0x0, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:27 executing program 2: 19:15:27 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 19:15:27 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380)='/dev/nullb0\x00', 0x4000000044882, 0x0) io_setup(0x1, &(0x7f00000004c0)) ioctl$BLKRRPART(r0, 0x125f, 0x0) 19:15:27 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380)='/dev/nullb0\x00', 0x4000000044882, 0x0) ioctl$BLKRRPART(r0, 0x125f, 0x0) write$FUSE_DIRENT(0xffffffffffffffff, &(0x7f0000000500)={0xd8, 0x0, 0x0, [{0x2}, {0x0, 0x5, 0xc, 0x4, '/dev/nullb0\x00'}, {0x0, 0x0, 0x1, 0x0, ')'}, {0x0, 0x0, 0x3, 0x0, '}@)'}, {0x0, 0x0, 0xc, 0x1f, '/dev/nullb0\x00'}, {0x0, 0x0, 0x5, 0x0, '/[\x89#*'}]}, 0xd8) 19:15:27 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00'}) bind$packet(r1, 0x0, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:27 executing program 2: perf_event_open(&(0x7f0000000400)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) r2 = syz_open_procfs(0x0, &(0x7f0000000200)='net/raw\x00') sendfile(r1, r2, 0x0, 0x4f53) accept4$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000000c0)=0x14, 0x800) getsockopt$inet_udp_int(r0, 0x11, 0x66, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 1066.969168][ T0] NOHZ: local_softirq_pending 08 19:15:30 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:30 executing program 1: perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$key(0xf, 0x3, 0x2) recvmmsg(r0, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400}) sendmsg$key(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0205000002000000"], 0x10}}, 0x0) 19:15:30 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0xc008ae88, &(0x7f00000000c0)={0x3, 0x0, [0x175, 0x0, 0x3, 0x8, 0xfdfdffff]}) dup2(r5, r4) 19:15:30 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, 0xffffffffffffffff, 0x0, 0x80001d00c0d0) 19:15:30 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00'}) bind$packet(r1, 0x0, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:30 executing program 2: perf_event_open(&(0x7f0000000400)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) r2 = syz_open_procfs(0x0, &(0x7f0000000200)='net/raw\x00') sendfile(r1, r2, 0x0, 0x4f53) accept4$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000000c0)=0x14, 0x800) getsockopt$inet_udp_int(r0, 0x11, 0x66, &(0x7f0000000000), &(0x7f0000000040)=0x4) 19:15:30 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 1068.184936][T22983] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. 19:15:30 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x0) 19:15:30 executing program 2: perf_event_open(&(0x7f0000000400)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) r2 = syz_open_procfs(0x0, &(0x7f0000000200)='net/raw\x00') sendfile(r1, r2, 0x0, 0x4f53) accept4$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000000c0)=0x14, 0x800) getsockopt$inet_udp_int(r0, 0x11, 0x66, &(0x7f0000000000), &(0x7f0000000040)=0x4) 19:15:30 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00'}) bind$packet(r1, &(0x7f0000000340), 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:30 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:30 executing program 3: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f00000003c0)=""/102400, 0x19000}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x164, &(0x7f0000000240)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:30 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:31 executing program 1: creat(&(0x7f0000000180)='./bus\x00', 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mlock(&(0x7f000000a000/0x2000)=nil, 0x2000) mlock2(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0) mlock(&(0x7f0000000000/0x400000)=nil, 0x400000) 19:15:31 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:31 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x0) 19:15:31 executing program 2: perf_event_open(&(0x7f0000000400)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) r2 = syz_open_procfs(0x0, &(0x7f0000000200)='net/raw\x00') sendfile(r1, r2, 0x0, 0x4f53) accept4$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000000c0)=0x14, 0x800) getsockopt$inet_udp_int(r0, 0x11, 0x66, &(0x7f0000000000), &(0x7f0000000040)=0x4) 19:15:31 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00'}) bind$packet(r1, &(0x7f0000000340), 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:31 executing program 3: pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket(0x11, 0x800000003, 0x0) bind(r2, &(0x7f00000001c0)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd6e2bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r2, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000000c0)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="d00800002a00fb480dff72000000003d4c6c5ac5", @ANYRES32=r3], 0x2}}, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000000)={@mcast2}, 0x14) r4 = socket$inet(0x10, 0x2, 0x0) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) splice(r0, 0x0, r4, 0x0, 0x847fda, 0x0) 19:15:31 executing program 2: perf_event_open(&(0x7f0000000400)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) r2 = syz_open_procfs(0x0, &(0x7f0000000200)='net/raw\x00') sendfile(r1, r2, 0x0, 0x4f53) getsockopt$inet_udp_int(r0, 0x11, 0x66, &(0x7f0000000000), &(0x7f0000000040)=0x4) 19:15:31 executing program 1: unshare(0x20000400) r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) ioctl$EVIOCSABS2F(r0, 0x40044590, 0x0) 19:15:31 executing program 4: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r2, 0x200002) sendfile(r0, r2, 0x0, 0x0) [ 1069.145974][T23033] netlink: 2220 bytes leftover after parsing attributes in process `syz-executor.3'. 19:15:31 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00'}) bind$packet(r1, &(0x7f0000000340), 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:31 executing program 2: perf_event_open(&(0x7f0000000400)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)) syz_open_procfs(0x0, &(0x7f0000000200)='net/raw\x00') getsockopt$inet_udp_int(r0, 0x11, 0x66, &(0x7f0000000000), &(0x7f0000000040)=0x4) 19:15:31 executing program 1: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) splice(r0, 0x0, r2, 0x0, 0x1420000a77, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, [], 0x0, r4}, 0x40) sendmsg(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000000)="550000001800fd0c00000000000081930a600000fca84302910000003900090020000c00020000000d0005", 0x2b}], 0x1}, 0x0) write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0xfffffd88) 19:15:32 executing program 2: perf_event_open(&(0x7f0000000400)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)) getsockopt$inet_udp_int(r0, 0x11, 0x66, &(0x7f0000000000), &(0x7f0000000040)=0x4) 19:15:34 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:34 executing program 2: perf_event_open(&(0x7f0000000400)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(r0, 0x11, 0x66, &(0x7f0000000000), &(0x7f0000000040)=0x4) 19:15:34 executing program 4: unshare(0x20000400) r0 = socket(0x2, 0x3, 0x100000001) bind$inet(r0, &(0x7f0000000180)={0x2, 0x0, @loopback}, 0x10) connect$inet(r0, &(0x7f0000000540)={0x2, 0x0, @multicast2}, 0x10) bind$inet(r0, &(0x7f0000000180)={0x2, 0x0, @loopback}, 0x10) 19:15:34 executing program 3: ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, 0x0) unshare(0x20000400) clock_gettime(0x0, 0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000280)='nl80211\x00') sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) sendmsg$NLBL_MGMT_C_REMOVEDEF(0xffffffffffffffff, 0x0, 0x0) dup(0xffffffffffffffff) syz_genetlink_get_family_id$ipvs(0x0) sendmsg$IPVS_CMD_FLUSH(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ttyS3\x00', 0x0, 0x0) r0 = gettid() process_vm_writev(r0, &(0x7f0000c22000)=[{&(0x7f000034afa4)=""/1, 0x1f80}], 0x3de, &(0x7f0000c22fa0)=[{&(0x7f0000000080)=""/1, 0x2034afa5}], 0x1, 0x0) 19:15:34 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:34 executing program 1: r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000200)='/dev/uhid\x00', 0x2, 0x0) write$UHID_CREATE2(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b00000073797a31190000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006000000000000ca8887345d126cc6000000000000000067f328b40000000000000000000000000000140000000000000000000000000000000000000010000000000000000100738d7acd8f444abdad110f000000002000000000000000000000000000000000000000df0000000000200000000000000000100000000000000000000000000073797a310000000000000000000000000000000000000000cf0a00000000000000000c000000000000004000000000000000000000000000000000000000000016"], 0x12e) readv(r0, &(0x7f0000000300)=[{&(0x7f0000002000)=""/4096, 0x1000}], 0x1) [ 1071.905731][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1071.915788][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1071.923606][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1071.931373][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1071.938972][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1071.946782][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1071.954505][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1071.962216][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1071.969803][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1071.977529][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1071.985272][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1071.993189][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1072.000897][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1072.008476][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1072.016187][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1072.023909][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1072.031596][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1072.039186][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1072.047000][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 19:15:34 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 1072.054665][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1072.062359][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 1072.070023][ T8639] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 19:15:34 executing program 2: perf_event_open(&(0x7f0000000400)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x66, &(0x7f0000000000), &(0x7f0000000040)=0x4) 19:15:34 executing program 4: r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x0, 0x0) ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xfffffffe) pread64(r0, 0x0, 0x0, 0x0) 19:15:34 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:34 executing program 2: perf_event_open(&(0x7f0000000400)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x66, &(0x7f0000000000), &(0x7f0000000040)=0x4) 19:15:35 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) listen(r0, 0x100000) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, 0x0, 0x0, 0x20000040, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r2 = accept4(r0, 0x0, 0x0, 0x80800) socket$inet6(0xa, 0x80002, 0x0) r3 = socket(0x11, 0x3, 0x1) bind(r3, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800058110308d9123127ecce6616f3f6db1c00010000000000210049740000000000000006ad8e5ecc326d3a09ffc200000000000000000000e000"}, 0x80) getsockname$packet(r3, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) r4 = socket$inet6(0xa, 0x80002, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000000)={'lo\x00'}) sendmsg$IPCTNL_MSG_EXP_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x0) bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0) [ 1072.848989][ T8639] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on szÍDJ½­ 19:15:35 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) [ 1072.934246][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1072.942216][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1072.949986][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1072.957580][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1072.965435][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1072.973332][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1072.981055][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1072.988636][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1072.996418][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1073.004177][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1073.011891][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1073.019474][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1073.027215][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1073.035019][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1073.044281][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1073.052014][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1073.059598][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1073.067416][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1073.075136][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 19:15:35 executing program 2: perf_event_open(&(0x7f0000000400)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x66, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 1073.082851][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1073.090586][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1073.098171][T12347] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 1073.606789][T12347] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on szÍDJ½­ 19:15:36 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000900)=ANY=[@ANYBLOB="726177000000000000000000000000000000000000000000000000000000000008f80000030000003003000098020000000000000000000000000000000000009802000098020000980200009802000098020000030080000000000000000000ffffffffe00000010000000000000000e4000000010000000000bd00000000007465616d5f736c6176655f310000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001080200000000000000000000000000000000000000005001686173686c696d6974000000000000000000000000000000000000000002726f73653000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffffffffffff00000000000000000000000003000000070000000000000000000000000000004800435400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000400000000000000000000000000000070009000000000000000000000000000000000000000000020004e4f545241434b0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007000980000000000000000000000000000000000000000002800000000000000000000000000000000000000000000000000000000000000feffffff"], 0x1) syz_emit_ethernet(0x2a, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @local}, @echo={0xb}}}}}, 0x0) 19:15:36 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, 0x0, &(0x7f0000000200)) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, 0x0, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:36 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(r0, 0x11, 0x66, &(0x7f0000000000), &(0x7f0000000040)=0x4) 19:15:36 executing program 3: syz_emit_ethernet(0x5e, &(0x7f0000000080)={@link_local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f40600", 0x28, 0x29, 0x0, @rand_addr=' \x01\x00', @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, [], @loopback, @loopback={0xff00000000000000}}}}}}}, 0x0) [ 1073.834549][T23122] xt_CT: netfilter: NOTRACK target is deprecated, use CT instead or upgrade iptables 19:15:37 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:37 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) listen(r0, 0x100000) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, 0x0, 0x0, 0x20000040, &(0x7f000031e000)={0xa, 0x4e22}, 0x1c) r2 = accept4(r0, 0x0, 0x0, 0x80800) socket$inet6(0xa, 0x80002, 0x0) r3 = socket(0x11, 0x3, 0x1) bind(r3, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800058110308d9123127ecce6616f3f6db1c00010000000000210049740000000000000006ad8e5ecc326d3a09ffc200000000000000000000e000"}, 0x80) getsockname$packet(r3, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) r4 = socket$inet6(0xa, 0x80002, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000000)={'lo\x00'}) sendmsg$IPCTNL_MSG_EXP_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x0) bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0) 19:15:37 executing program 2: socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x66, &(0x7f0000000000), &(0x7f0000000040)=0x4) 19:15:37 executing program 3: ioctl$ION_IOC_ALLOC(0xffffffffffffffff, 0xc0184900, &(0x7f0000000040)) unshare(0x20000400) sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0) r0 = dup(0xffffffffffffffff) syz_genetlink_get_family_id$ipvs(0x0) sendmsg$IPVS_CMD_DEL_SERVICE(r0, 0x0, 0x0) sendmsg$IPVS_CMD_FLUSH(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = gettid() process_vm_writev(r1, &(0x7f0000c22000)=[{&(0x7f000034afa4)=""/1, 0x1f80}], 0x3de, &(0x7f0000c22fa0)=[{&(0x7f0000000080)=""/1, 0x2034afa5}], 0x1, 0x0) 19:15:37 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, 0x0, &(0x7f0000000200)) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, 0x0, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:38 executing program 2: socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x66, &(0x7f0000000000), &(0x7f0000000040)=0x4) 19:15:38 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, 0x0, &(0x7f0000000200)) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, 0x0, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:38 executing program 2: socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x66, &(0x7f0000000000), &(0x7f0000000040)=0x4) 19:15:40 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x8400ae8e, &(0x7f00000000c0)={0x0, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0xfdfdffff]}) 19:15:40 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, 0x0) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:40 executing program 4: getpid() perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capget(&(0x7f0000000100)={0x20071026}, 0x0) ioctl$SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [], 0x27}}, 0x1c) setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0x3c, 0x0, 0x0) r0 = socket(0x400000000018, 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x3, 0xffffffffffffffff) socket$nl_netfilter(0x10, 0x3, 0xc) write(r1, &(0x7f0000000100), 0xfffffe5d) 19:15:40 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(r0, 0x11, 0x0, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 1078.419428][T23173] capability: warning: `syz-executor.4' uses deprecated v2 capabilities in a way that may be insecure 19:15:40 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:40 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f00000006c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) inotify_init1(0x0) fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000100)) ioctl$sock_FIOSETOWN(r0, 0x8901, 0x0) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x2) connect$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) r1 = openat$procfs(0xffffff9c, &(0x7f0000000000)='/proc/tty/drivers\x00', 0x0, 0x0) ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, 0x0) setsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000180)={0x1, [0x7]}, 0x6) sendmmsg(r0, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x3ec0) 19:15:40 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(r0, 0x11, 0x0, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 1078.541769][T23175] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. 19:15:41 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, 0x0) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:41 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(r0, 0x11, 0x0, &(0x7f0000000000), &(0x7f0000000040)=0x4) 19:15:41 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x2c, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x4}]}, 0x2c}}, 0x0) 19:15:41 executing program 4: r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r0, 0xc1205531, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, [], [], [], 0x0, 0x0, 0x0, 0x0, "00000000dc1ad624d571330176e78690"}) 19:15:41 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(r0, 0x11, 0x66, 0x0, &(0x7f0000000040)) 19:15:41 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/bluetooth/6lowpan_enable\x00', 0x2, 0x0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) ftruncate(r1, 0x200002) sendfile(r0, r1, 0x0, 0x80001d00c0d0) 19:15:41 executing program 1: 19:15:41 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0}, 0x0) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r4, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:42 executing program 4: 19:15:44 executing program 1: 19:15:44 executing program 3: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000240)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, r0) r2 = add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f0000000080)={'syz', 0x2}, 0x0, 0x0, r1) socketpair$unix(0x1, 0x0, 0x0, 0x0) keyctl$chown(0x4, r2, 0x0, 0x0) ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0) 19:15:44 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(r0, 0x11, 0x66, 0x0, 0x0) 19:15:44 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:44 executing program 4: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffff9c, 0x0, 0x0, 0x0) io_uring_setup(0xa4, &(0x7f0000000080)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) io_uring_setup(0x0, 0x0) openat$procfs(0xffffff9c, 0x0, 0x0, 0x0) 19:15:44 executing program 5: socket$packet(0x11, 0x2, 0x300) r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r0, &(0x7f0000000340)={0x11, 0x0, r2}, 0x14) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(0xffffffffffffffff, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:44 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000480)='asymmetric\x00', &(0x7f0000000140)=@secondary='builtin_and_secondary_trusted\x00') syz_open_pts(0xffffffffffffffff, 0x2) r0 = syz_open_procfs(0x0, &(0x7f0000001300)='net/igmp\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) r2 = syz_open_pts(r1, 0x2) sendfile(r2, r0, 0x0, 0x6f0a77bd) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, 0x0) 19:15:44 executing program 3: 19:15:44 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(r0, 0x11, 0x66, 0x0, 0x0) 19:15:44 executing program 5: socket$packet(0x11, 0x2, 0x300) r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r0, &(0x7f0000000340)={0x11, 0x0, r2}, 0x14) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(0xffffffffffffffff, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:44 executing program 4: 19:15:44 executing program 3: 19:15:44 executing program 1: 19:15:47 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:47 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(r0, 0x11, 0x66, 0x0, 0x0) 19:15:47 executing program 4: 19:15:47 executing program 1: 19:15:47 executing program 3: 19:15:47 executing program 5: socket$packet(0x11, 0x2, 0x300) r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r0, &(0x7f0000000340)={0x11, 0x0, r2}, 0x14) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000200)=0x8f) sendmmsg(0xffffffffffffffff, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, r3, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:47 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:47 executing program 1: 19:15:47 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="f7f249b9740c9e02007f00000000000032a5b60a00008024c30e478947d190ac00000000000000000000000097ba4ecb40a2ee2e32a3b88aaf3c06f4970e85a63c9a4b0d8b9aad9c9ba4c998db2f7155d302a7be122bb1609f8b0164eb12c07af20200169c864e1d5f8179cba2e431126de0594cf1487e311e84395a80adbe3e7f3622703c353de8e6928bfd5a5f2cc05e4b942d6ed155b67a555f4b2e2b0cd0e93e41c330f70401c1d920006e65fab4fae51bb32a6f3ca61632d15b0c1cec89839cd7fe16d03af16efd5295d2eea42f3e25765b72b9727176c1966620ada4a27b28739a2eed558cee393ecaa3df004548e6f43be3f968529e96628cebee42b6fa46cb0b55a45cadf1f354a424830def8e07cc514d7615c7689e93ad448a65e9ea04c454bcd4e1fb5b77e741b3c87e65d0ea2d0656d3801495d4c269a587ebeda98f311e2af82a9013e4e58004bbbb1be0"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:47 executing program 3: 19:15:47 executing program 4: 19:15:47 executing program 2: 19:15:47 executing program 1: 19:15:47 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100), &(0x7f0000000200)=0x8f) sendmmsg(r0, 0x0, 0x0, 0x0) 19:15:47 executing program 3: 19:15:47 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(0x0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="f7f249b9740c9e02007f00000000000032a5b60a00008024c30e478947d190ac00000000000000000000000097ba4ecb40a2ee2e32a3b88aaf3c06f4970e85a63c9a4b0d8b9aad9c9ba4c998db2f7155d302a7be122bb1609f8b0164eb12c07af20200169c864e1d5f8179cba2e431126de0594cf1487e311e84395a80adbe3e7f3622703c353de8e6928bfd5a5f2cc05e4b942d6ed155b67a555f4b2e2b0cd0e93e41c330f70401c1d920006e65fab4fae51bb32a6f3ca61632d15b0c1cec89839cd7fe16d03af16efd5295d2eea42f3e25765b72b9727176c1966620ada4a27b28739a2eed558cee393ecaa3df004548e6f43be3f968529e96628cebee42b6fa46cb0b55a45cadf1f354a424830def8e07cc514d7615c7689e93ad448a65e9ea04c454bcd4e1fb5b77e741b3c87e65d0ea2d0656d3801495d4c269a587ebeda98f311e2af82a9013e4e58004bbbb1be0"}}], 0x1c) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, 0x0, 0x0, 0x0) 19:15:47 executing program 4: 19:15:47 executing program 2: 19:15:47 executing program 1: 19:15:48 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(0x0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="f7f249b9740c9e02007f00000000000032a5b60a00008024c30e478947d190ac00000000000000000000000097ba4ecb40a2ee2e32a3b88aaf3c06f4970e85a63c9a4b0d8b9aad9c9ba4c998db2f7155d302a7be122bb1609f8b0164eb12c07af20200169c864e1d5f8179cba2e431126de0594cf1487e311e84395a80adbe3e7f3622703c353de8e6928bfd5a5f2cc05e4b942d6ed155b67a555f4b2e2b0cd0e93e41c330f70401c1d920006e65fab4fae51bb32a6f3ca61632d15b0c1cec89839cd7fe16d03af16efd5295d2eea42f3e25765b72b9727176c1966620ada4a27b28739a2eed558cee393ecaa3df004548e6f43be3f968529e96628cebee42b6fa46cb0b55a45cadf1f354a424830def8e07cc514d7615c7689e93ad448a65e9ea04c454bcd4e1fb5b77e741b3c87e65d0ea2d0656d3801495d4c269a587ebeda98f311e2af82a9013e4e58004bbbb1be0"}}], 0x1c) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, 0x0, 0x0, 0x0) 19:15:48 executing program 3: 19:15:48 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(0x0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, 0x0, 0x0, 0x0) 19:15:48 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100), &(0x7f0000000200)=0x8f) sendmmsg(r0, 0x0, 0x0, 0x0) 19:15:48 executing program 1: 19:15:48 executing program 4: 19:15:48 executing program 2: 19:15:48 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:48 executing program 3: 19:15:48 executing program 4: 19:15:48 executing program 2: 19:15:48 executing program 1: 19:15:48 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="f7f249b9740c9e02007f00000000000032a5b60a00008024c30e478947d190ac00000000000000000000000097ba4ecb40a2ee2e32a3b88aaf3c06f4970e85a63c9a4b0d8b9aad9c9ba4c998db2f7155d302a7be122bb1609f8b0164eb12c07af20200169c864e1d5f8179cba2e431126de0594cf1487e311e84395a80adbe3e7f3622703c353de8e6928bfd5a5f2cc05e4b942d6ed155b67a555f4b2e2b0cd0e93e41c330f70401c1d920006e65fab4fae51bb32a6f3ca61632d15b0c1cec89839cd7fe16d03af16efd5295d2eea42f3e25765b72b9727176c1966620ada4a27b28739a2eed558cee393ecaa3df004548e6f43be3f968529e96628cebee42b6fa46cb0b55a45cadf1f354a424830def8e07cc514d7615c7689e93ad448a65e9ea04c454bcd4e1fb5b77e741b3c87e65d0ea2d0656d3801495d4c269a587ebeda98f311e2af82a9013e4e58004bbbb1be0"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:48 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100), &(0x7f0000000200)=0x8f) sendmmsg(r0, 0x0, 0x0, 0x0) 19:15:48 executing program 3: 19:15:48 executing program 4: 19:15:48 executing program 2: 19:15:49 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:49 executing program 1: 19:15:49 executing program 3: 19:15:49 executing program 4: 19:15:49 executing program 2: 19:15:49 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100), &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640), 0x0, 0x0) 19:15:49 executing program 0: clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:49 executing program 3: 19:15:49 executing program 1: 19:15:49 executing program 4: 19:15:49 executing program 2: 19:15:49 executing program 3: 19:15:49 executing program 0: clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:49 executing program 1: 19:15:49 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100), &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640), 0x0, 0x0) 19:15:49 executing program 4: 19:15:49 executing program 2: 19:15:49 executing program 3: [ 1087.556912][T23352] ptrace attach of "/root/syz-executor.0"[23351] was attempted by "/root/syz-executor.0"[23352] 19:15:50 executing program 0: clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:50 executing program 1: [ 1087.791425][T23362] ptrace attach of "/root/syz-executor.0"[23361] was attempted by "/root/syz-executor.0"[23362] 19:15:50 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:50 executing program 4: 19:15:50 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000080)='/dev/loop#\x00', 0x0, 0x0) ioctl$BLKSECDISCARD(r0, 0x127d, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffff7fffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TCSETSF(r1, 0x5453, 0x0) syz_open_procfs(0x0, 0x0) r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[], &(0x7f0000000100)=""/249, 0x37, 0xf9, 0x1}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x4, 0x0, 0x0, 0x0, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) preadv(r2, 0x0, 0x0, 0x0) ioctl$KVM_SIGNAL_MSI(0xffffffffffffffff, 0x4020aea5, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xfffff9c5}) write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000005c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x7f, 0x0, 0x0, 0x401, 0x2, 0x3, 0x401, 0xac, 0x40, 0x0, 0x1, 0x7, 0x38, 0x2, 0x6120, 0x0, 0x1}, [{0x60000000, 0x0, 0x5, 0xffff, 0x79f, 0x1, 0x7, 0x2}, {0x4, 0xbe8, 0x9, 0x6, 0x6, 0x101, 0x0, 0x100000000}]}, 0xb0) r3 = dup(0xffffffffffffffff) write$FUSE_INIT(r3, &(0x7f0000000680)={0x50, 0x0, 0x5, {0x7, 0x1f, 0x8, 0xa0242, 0x2, 0x8, 0x0, 0x8a5}}, 0x50) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000280)={&(0x7f0000001680)=ANY=[@ANYBLOB="f4020000", @ANYRES16=0x0, @ANYBLOB="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"], 0x2f4}, 0x1, 0x0, 0x0, 0x4001}, 0x20014804) 19:15:50 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100), &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640), 0x0, 0x0) 19:15:50 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc008ae88, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x8ff]}) 19:15:50 executing program 1: 19:15:50 executing program 4: 19:15:50 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:50 executing program 3: 19:15:50 executing program 1: 19:15:50 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100), &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 19:15:50 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc008ae88, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x8ff]}) 19:15:51 executing program 4: write$9p(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f00000009c0)='./file1\x00', 0x0) writev(0xffffffffffffffff, &(0x7f0000000040), 0x0) sendmsg$TIPC_CMD_GET_MAX_PORTS(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4040014}, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fdinfo/3\x00') preadv(r0, &(0x7f0000000480), 0x10000000000002a1, 0x0) 19:15:51 executing program 1: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000180)='./bus\x00', 0x0) io_setup(0x22, &(0x7f00000001c0)=0x0) io_submit(r1, 0x6aa, &(0x7f0000000540)=[&(0x7f00000000c0)={0x400000000812d000, 0x9, 0x3, 0x8, 0x0, r0, &(0x7f0000000000), 0x1e}]) ioctl$FS_IOC_RESVSP(r0, 0x402c5828, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x3}) 19:15:51 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x403}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) openat$vsock(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) migrate_pages(0x0, 0xb2, &(0x7f0000000240)=0x7ff, &(0x7f0000000280)=0x1) 19:15:51 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:51 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc008ae88, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x8ff]}) 19:15:51 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100), &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 19:15:51 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) openat$cgroup_freezer_state(r1, 0x0, 0x2, 0x0) pwrite64(0xffffffffffffffff, &(0x7f0000000000)="b5", 0x1, 0x0) fcntl$setstatus(r0, 0x4, 0x46802) io_setup(0x2e, &(0x7f0000000400)=0x0) io_submit(r2, 0x45, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x400000000000, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x377140be6b5ef4c7}]) r3 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) write$P9_RREMOVE(r3, &(0x7f0000000280)={0xfffffffffffffcd2}, 0xff7f) pipe(0x0) setsockopt(0xffffffffffffffff, 0x0, 0x100, &(0x7f0000000100)='`', 0x1) r4 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0) fdatasync(r3) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x5011}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000200)={0x10001b, r3, 0x0, 0xffffffe4}) 19:15:51 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x3, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000011ec2cb90000000000f4000085000000200000009500000000000000001c1353067283d30812db8ae56a64c05f948fb0c8d95fd844fb74618e86c9b75154a88729b5fdb4b4fb08502afc1adc90b190e0bcc231d565ce7643f5b838cbca20682aa4667700b2fe0ce80000000000001ec192b8b449451682204c84e7ec1c2d73f9b542c76cb5cf6ef9d85f47f8ed7c0c55c6a68373cac0de8dd07d3b5866"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x0, 0xe, 0x4f, &(0x7f0000000100)="7f3d5e7a9e3efa339e3c7b7f07d2", 0x0, 0x409}, 0x28) dup(0xffffffffffffffff) sendmsg$NL80211_CMD_DEL_KEY(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, 0x0}, 0x4000005) 19:15:51 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc008ae88, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0x8ff]}) 19:15:51 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:51 executing program 3: r0 = socket(0x1000000010, 0x80002, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000003c0)=0x10) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000940)=@newtfilter={0x24, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0) 19:15:51 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100), &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) 19:15:51 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="f7f249b9740c9e02007f00000000000032a5b60a00008024c30e478947d190ac00000000000000000000000097ba4ecb40a2ee2e32a3b88aaf3c06f4970e85a63c9a4b0d8b9aad9c9ba4c998db2f7155d302a7be122bb1609f8b0164eb12c07af20200169c864e1d5f8179cba2e431126de0594cf1487e311e84395a80adbe3e7f3622703c353de8e6928bfd5a5f2cc05e4b942d6ed155b67a555f4b2e2b0cd0e93e41c330f70401c1d920006e65fab4fae51bb32a6f3ca61632d15b0c1cec89839cd7fe16d03af16efd5295d2eea42f3e25765b72b9727176c1966620ada4a27b28739a2eed558cee393ecaa3df004548e6f43be3f968529e96628cebee42b6fa46cb0b55a45cadf1f354a424830def8e07cc514d7615c7689e93ad448a65e9ea04c454bcd4e1fb5b77e741b3c87e65d0ea2d0656d3801495d4c269a587ebeda98f311e2af82a9013e4e58004bbbb1be0"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:52 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mount$fuseblk(0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=000000000000000', @ANYRESDEC=0x0, @ANYRESDEC=0x0]) add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, @buffer={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ffe}) 19:15:52 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:52 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:52 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) getpid() mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffff7, 0x11, r2, 0x0) ioctl$KVM_SET_GUEST_DEBUG(0xffffffffffffffff, 0x4048ae9b, &(0x7f0000000100)={0x0, 0x0, [0x4, 0x0, 0x0, 0x3, 0x7]}) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000400)={"502f1e4a6a3f2ae91bd598a3be1484bb8f4173f98dd22e172ca88c4e4875540489396cf5bdb3ea2d65f6ebb79231c8ebc055294e362134cc9ecb0a68119e6903c440049e9e53fd8a238620f1c1e5f255c42c036587da93a6dd3dcc316e9428515580db5d45959f97776048cd52f8a4a4a4275107161e3d0db095e1cae86ad2cbde0a0ae185febf0d098122cba90d5d60878235d147dd232660c1f961821f35cfe0e52e289ca17a3dcdf1a2dbdf2f6e5d9fb56b0e39456ccbb1efdd885ddc9674ff0c276cb0d5872e1e39f7b11a7c90ca9e880aca7437cd5e1c8df017b0424a340b80c4a765180e1cf6aa6dedee37f2516f79ad3d88f82ec1f1c751575baf55749bb027d0693a6117b009f8417a99c2ff03744a5778f2f00c41852fb9c7ff7d27c3cd97b1b45b9334bd689b2cbdbf31dc967b4a1f71e757f10a69cee720173d1b46f3f2e78ccd19ccb57f0e36acf423bc71126d385da3a668f7adf2579806d8371463a4d332549c146d2d4626df5d00001f8699530fd7ec26799269d1357cfb3e03a6d6feacc13d5efa37600445c809062f9d486e0d0e7785bc4ea6a7b0d855f228b2d464809901d28338f32e4a77a7a472710eae2a9491efab1f187f9a91435eff55d9716bbf74c73a5929584d8860b4c00d84550150140cf0e9bc0891da3e8fd45ccc31e3c1501e954ed111faa3936aeb9e132919931aa807b80ca3cf0ba17fb2542e7d17645b8cc8c06de18d48aa1b5cf6ed42bd090a690936ba21241b91a5f2aeb15666f81a47274cda1f725c5c7684cd3db3ce062cf5e75ab65b41d676829351dbd7716cae224273e6449056e101da48857228c6c0cd3d54e5609aeaa273ec8f5dd778878cc23e8f50b06c1dc16779885d31a6606cc8bcfa7b8f9c346289398b7b5706fa04521d654afb03fe68bb932df50d1fe18ddb2905a072a3aecbce46343ce7c10a999b0cdd40678ca32d191e2b185c3f143fdf104f6961c273c9fd244ece5343ca2c084ff4ec6b773e36e785505cf08fa9cc245c1b2312c21f543ebfcaef0a53c05e1d8d12b56616ee3ac611092d140e07e7b1e08eb054302f73734f19c6b0ca93d0e899a994ecd23e6840351e6367c3832f0c7ba648cabe24bdaa2783629e18443729a300e7d59eb5e6302efd78258d335637d517638b61bc9168f64975a2cbdd2323a05448a4923428e6fb418e63cfa02da0e994ca42f4e6cb7cb20219efac8ade71d736965ffa5de9a5e737e7d5c96893ce486e4918b0e9458534103a118d3a9529315726384fcd10f80584abed3e5deb0fbbeb4c6b12401aafae861482db38ae425b383b4c66c66b3de0b36c998a68739048ff35d96d65da427dc2ff4ab1db28ac0c567648bec373e883bea1de2a2ff0a69bb9c622e8737c398e5c4f09b1cd07c75bbd1f68dbcc2684dc0739fc18ca461a6c33b9653e6be062"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:15:52 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc008ae88, &(0x7f00000000c0)={0x3, 0x0, [0x48, 0x0, 0x3, 0x8, 0xfdfdffff]}) [ 1089.996523][T23465] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3987440645 (510392402560 ns) > initial count (36994292224 ns). Using initial count to start timer. [ 1090.031590][T23465] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 19:15:52 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip6_tables_matches\x00') readv(r0, &(0x7f0000002340)=[{&(0x7f00000001c0)=""/4096, 0x141b}], 0x1) readv(r0, &(0x7f0000000580), 0x3c1) close(0xffffffffffffffff) 19:15:52 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100), &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, 0x0, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:52 executing program 1: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0x3) 19:15:52 executing program 2: r0 = socket$unix(0x1, 0x1, 0x0) bind$unix(r0, &(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) r1 = socket$unix(0x1, 0x801, 0x0) connect$unix(r1, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e) r2 = socket$unix(0x1, 0x801, 0x0) connect$unix(r2, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e) 19:15:52 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) setresuid(0x0, 0x0, 0xee00) setresuid(0x0, 0x0, 0xee00) mount$fuseblk(0x0, 0x0, &(0x7f0000000180)='fuseblk\x00', 0x0, &(0x7f0000000540)=ANY=[@ANYRESHEX, @ANYBLOB=',rootmode=0000000000', @ANYRESDEC=0x0, @ANYBLOB="637114ec5c48"]) openat$bsg(0xffffff9c, &(0x7f0000000140)='/dev/bsg\x00', 0x0, 0x0) add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, @buffer={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ffe}) 19:15:52 executing program 1: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0x3) write$cgroup_devices(0xffffffffffffffff, &(0x7f0000000000)={'a', ' *:* ', 'rwm\x00'}, 0xa) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'sha1\x00'}, 0x58) accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) 19:15:53 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="b800000003011905"], 0xb8}}, 0x0) 19:15:53 executing program 1: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x3, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000011ec2cb90000000000f4000085000000200000009500000000000000001c1353067283d30812db8ae56a64c05f948fb0c8d95fd844fb74618e86c9b75154a88729b5fdb4b4fb08502afc1adc90b190e0bcc231d565ce7643f5b838cbca20682aa4667700b2fe0ce80000000000001ec192b8b449451682204c84e7ec1c2d73f9b542c76cb5cf6ef9d85f47f8ed7c0c55c6a68373cac0de8dd07d3b5866"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x0, 0xe, 0x4f, &(0x7f0000000100)="7f3d5e7a9e3efa339e3c7b7f07d2", 0x0, 0x409}, 0x28) 19:15:53 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100), &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, 0x0, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) [ 1090.798677][T23520] netlink: 164 bytes leftover after parsing attributes in process `syz-executor.2'. 19:15:55 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:15:55 executing program 3: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0x3) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) 19:15:55 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x420000015001}) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) write$tun(r0, &(0x7f0000000180)={@void, @val, @ipv6=@gre_packet={0x0, 0x6, "bc7d94", 0x50, 0x2c, 0x0, @private1, @mcast2, {[@dstopts={0x0, 0x0, [0x0, 0x3]}], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, [0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [0x0]}}}}}, 0x82) 19:15:55 executing program 2: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x81, 0xa8a1}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000000380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg(r4, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0x0) 19:15:55 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x56) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) 19:15:55 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'macvlan0\x00', 0x0}) bind$packet(r1, &(0x7f0000000340)={0x11, 0x0, r3}, 0x14) getsockname$packet(r1, &(0x7f0000000100), &(0x7f0000000200)=0x8f) sendmmsg(r0, &(0x7f0000006640)=[{{&(0x7f0000000180)=@xdp={0x2c, 0x0, 0x0, 0x0, 0x500}, 0x80, 0x0}}], 0x1, 0x0) 19:15:55 executing program 3: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) close(0xffffffffffffffff) open(&(0x7f0000000100)='./bus\x00', 0x1141042, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) [ 1093.330257][T23572] not chained 810000 origins [ 1093.334903][T23572] CPU: 0 PID: 23572 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 1093.343586][T23572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1093.353652][T23572] Call Trace: [ 1093.356966][T23572] dump_stack+0x1df/0x240 [ 1093.361315][T23572] kmsan_internal_chain_origin+0x6f/0x130 [ 1093.367058][T23572] ? kmsan_get_metadata+0x11d/0x180 [ 1093.372269][T23572] ? kmsan_get_metadata+0x11d/0x180 [ 1093.377481][T23572] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1093.383343][T23572] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1093.389455][T23572] ? __perf_event_task_sched_in+0xa15/0xa80 [ 1093.395366][T23572] ? kmsan_set_origin_checked+0x95/0xf0 [ 1093.400941][T23572] ? kmsan_get_metadata+0x11d/0x180 [ 1093.406158][T23572] ? kmsan_get_metadata+0x11d/0x180 [ 1093.411374][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1093.416508][T23572] ? kmsan_set_origin_checked+0x95/0xf0 [ 1093.422072][T23572] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1093.428199][T23572] ? _copy_from_user+0x15b/0x260 [ 1093.433148][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1093.438266][T23572] __msan_chain_origin+0x50/0x90 [ 1093.443202][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1093.447810][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1093.453085][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1093.458097][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1093.463113][T23572] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1093.468999][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1093.474150][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1093.479001][T23572] do_syscall_64+0xb0/0x150 [ 1093.483515][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1093.489396][T23572] RIP: 0033:0x45c1d9 [ 1093.493295][T23572] Code: Bad RIP value. [ 1093.497346][T23572] RSP: 002b:00007fbc91028c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1093.505752][T23572] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1093.513714][T23572] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1093.521673][T23572] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1093.529637][T23572] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1093.537596][T23572] R13: 0000000000c9fb6f R14: 00007fbc910299c0 R15: 000000000078bfac [ 1093.545580][T23572] Uninit was stored to memory at: [ 1093.550602][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1093.556309][T23572] __msan_chain_origin+0x50/0x90 [ 1093.561343][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1093.565952][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1093.570889][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1093.575745][T23572] do_syscall_64+0xb0/0x150 [ 1093.580248][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1093.586116][T23572] [ 1093.588429][T23572] Uninit was stored to memory at: [ 1093.593464][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1093.599179][T23572] __msan_chain_origin+0x50/0x90 [ 1093.604109][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1093.608685][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1093.613714][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1093.618556][T23572] do_syscall_64+0xb0/0x150 [ 1093.623047][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1093.628914][T23572] [ 1093.631220][T23572] Uninit was stored to memory at: [ 1093.636233][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1093.641936][T23572] __msan_chain_origin+0x50/0x90 [ 1093.646873][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1093.651449][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1093.656370][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1093.661207][T23572] do_syscall_64+0xb0/0x150 [ 1093.665697][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1093.671562][T23572] [ 1093.673870][T23572] Uninit was stored to memory at: [ 1093.678881][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1093.684580][T23572] __msan_chain_origin+0x50/0x90 [ 1093.689499][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1093.694072][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1093.699003][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1093.703841][T23572] do_syscall_64+0xb0/0x150 [ 1093.708347][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1093.714219][T23572] [ 1093.716528][T23572] Uninit was stored to memory at: [ 1093.721550][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1093.727253][T23572] __msan_chain_origin+0x50/0x90 [ 1093.732174][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1093.736749][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1093.741671][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1093.746506][T23572] do_syscall_64+0xb0/0x150 [ 1093.750994][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1093.756983][T23572] [ 1093.759306][T23572] Uninit was stored to memory at: [ 1093.764331][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1093.770041][T23572] __msan_chain_origin+0x50/0x90 [ 1093.774968][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1093.779556][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1093.785525][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1093.790362][T23572] do_syscall_64+0xb0/0x150 [ 1093.794855][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1093.800728][T23572] [ 1093.803038][T23572] Uninit was stored to memory at: [ 1093.808065][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1093.813767][T23572] __msan_chain_origin+0x50/0x90 [ 1093.818689][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1093.823276][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1093.828287][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1093.833124][T23572] do_syscall_64+0xb0/0x150 [ 1093.837612][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1093.843477][T23572] [ 1093.845790][T23572] Local variable ----msg_sys@do_recvmmsg created at: [ 1093.852450][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1093.856862][T23572] do_recvmmsg+0xc5/0x1ee0 19:15:56 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000007600)=[{{0x0, 0x0, &(0x7f0000004400)=[{&(0x7f0000000140)=""/69, 0x45}], 0x1}}], 0x1, 0x0, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x48, 0x10, 0x257787ca17f3ad85, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9, 0x1, 'veth\x00'}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, r2}}}}}}]}, 0x48}}, 0x0) 19:15:56 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x48, 0x10, 0x257787ca17f3ad85, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9, 0x1, 'veth\x00'}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, r2}}}}}}]}, 0x48}}, 0x0) 19:15:57 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x56) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) clock_gettime(0x0, &(0x7f0000000280)={0x0, 0x0}) ppoll(&(0x7f0000000000)=[{r1, 0x2103, 0x64}], 0x1, &(0x7f0000000580)={0x0, r2+10000000}, 0x0, 0x0) 19:15:58 executing program 3: openat$vhci(0xffffffffffffff9c, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_procfs(0x0, &(0x7f0000dec000)='smaps\x00') sendfile(r1, r2, 0x0, 0x320f) syz_genetlink_get_family_id$tipc2(0x0) ioctl$DRM_IOCTL_MAP_BUFS(0xffffffffffffffff, 0xc0186419, &(0x7f0000001640)={0x0, &(0x7f0000000040)=""/188, 0x0}) ioctl(0xffffffffffffffff, 0x100, 0x0) rt_sigprocmask(0x0, &(0x7f0000000280), &(0x7f0000000340), 0x8) sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x20, 0x0, 0x100, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x4}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000000}, 0x8811) accept(0xffffffffffffffff, 0x0, &(0x7f0000000540)) geteuid() signalfd4(0xffffffffffffffff, &(0x7f0000000100)={[0x400]}, 0x8, 0x0) ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000240)) r3 = open$dir(0x0, 0x0, 0x0) open(&(0x7f0000000140)='./bus\x00', 0x141042, 0x0) write(0xffffffffffffffff, &(0x7f0000001680), 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x12000) r4 = accept4$inet(0xffffffffffffffff, 0x0, &(0x7f0000000200), 0x800) recvmmsg(r4, 0x0, 0x0, 0x2002, &(0x7f0000007cc0)) 19:15:58 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffa}, 0x140c1, 0x0, 0x1, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x8) r0 = open(&(0x7f00000009c0)='./bus\x00', 0x141042, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r0, 0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/seq\x00', 0x2) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue1\x00'}) msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x0, 0x0, 0x0, 0x4, 0xb965, 0x0, 0x0, 0x3, 0x3, 0x9}) write$sndseq(r1, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"a357b6b140cbb6215dd33459"}}], 0xfffffee4) creat(0x0, 0x0) write$cgroup_int(0xffffffffffffffff, 0x0, 0x0) ioctl$PPPIOCSCOMPRESS(0xffffffffffffffff, 0x4010744d) getitimer(0x0, 0x0) sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="14002cb2e89f6b36651600"/20], 0x14}}, 0x0) [ 1096.075017][T23609] not chained 820000 origins [ 1096.079666][T23609] CPU: 0 PID: 23609 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1096.088349][T23609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1096.098409][T23609] Call Trace: [ 1096.101727][T23609] dump_stack+0x1df/0x240 [ 1096.106070][T23609] kmsan_internal_chain_origin+0x6f/0x130 [ 1096.111795][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1096.117003][T23609] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1096.122903][T23609] ? __msan_poison_alloca+0xf0/0x120 [ 1096.128204][T23609] ? kmsan_get_metadata+0x11d/0x180 [ 1096.133412][T23609] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1096.139225][T23609] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1096.145307][T23609] ? kfree+0x61/0x30f0 [ 1096.149387][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1096.154504][T23609] ? kmsan_set_origin_checked+0x95/0xf0 [ 1096.160067][T23609] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1096.166146][T23609] ? _copy_from_user+0x15b/0x260 [ 1096.171080][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1096.176197][T23609] __msan_chain_origin+0x50/0x90 [ 1096.181146][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1096.185755][T23609] ? __msan_poison_alloca+0xf0/0x120 [ 1096.191054][T23609] ? __se_sys_recvmmsg+0xac/0x350 [ 1096.196064][T23609] ? __se_sys_recvmmsg+0xac/0x350 [ 1096.201075][T23609] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1096.206955][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1096.211886][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1096.216728][T23609] do_syscall_64+0xb0/0x150 [ 1096.221222][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1096.227097][T23609] RIP: 0033:0x45c1d9 [ 1096.230971][T23609] Code: Bad RIP value. [ 1096.235017][T23609] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1096.243414][T23609] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1096.251370][T23609] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1096.259327][T23609] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1096.267283][T23609] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1096.275240][T23609] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1096.283204][T23609] Uninit was stored to memory at: [ 1096.288224][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1096.293927][T23609] __msan_chain_origin+0x50/0x90 [ 1096.298849][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1096.303423][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1096.308343][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1096.313181][T23609] do_syscall_64+0xb0/0x150 [ 1096.317669][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1096.323534][T23609] [ 1096.325840][T23609] Uninit was stored to memory at: [ 1096.330845][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1096.336547][T23609] __msan_chain_origin+0x50/0x90 [ 1096.341466][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1096.346036][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1096.350957][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1096.355794][T23609] do_syscall_64+0xb0/0x150 [ 1096.360282][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1096.366150][T23609] [ 1096.368457][T23609] Uninit was stored to memory at: [ 1096.373464][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1096.379195][T23609] __msan_chain_origin+0x50/0x90 [ 1096.384128][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1096.388700][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1096.393621][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1096.398455][T23609] do_syscall_64+0xb0/0x150 [ 1096.402965][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1096.408839][T23609] [ 1096.411158][T23609] Uninit was stored to memory at: [ 1096.416166][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1096.421868][T23609] __msan_chain_origin+0x50/0x90 [ 1096.426794][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1096.431372][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1096.436297][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1096.441131][T23609] do_syscall_64+0xb0/0x150 [ 1096.445618][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1096.451483][T23609] [ 1096.453789][T23609] Uninit was stored to memory at: [ 1096.458797][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1096.464500][T23609] __msan_chain_origin+0x50/0x90 [ 1096.469423][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1096.474009][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1096.478931][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1096.483770][T23609] do_syscall_64+0xb0/0x150 [ 1096.488258][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1096.494124][T23609] [ 1096.496431][T23609] Uninit was stored to memory at: [ 1096.501444][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1096.507147][T23609] __msan_chain_origin+0x50/0x90 [ 1096.512087][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1096.516663][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1096.521584][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1096.526419][T23609] do_syscall_64+0xb0/0x150 [ 1096.530906][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1096.536776][T23609] [ 1096.539086][T23609] Uninit was stored to memory at: [ 1096.544280][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1096.549982][T23609] __msan_chain_origin+0x50/0x90 [ 1096.554908][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1096.559483][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1096.564404][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1096.569242][T23609] do_syscall_64+0xb0/0x150 [ 1096.573732][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1096.579607][T23609] [ 1096.581919][T23609] Local variable ----msg_sys@do_recvmmsg created at: [ 1096.588576][T23609] do_recvmmsg+0xc5/0x1ee0 [ 1096.593673][T23609] do_recvmmsg+0xc5/0x1ee0 [ 1096.773339][T23572] not chained 830000 origins [ 1096.777977][T23572] CPU: 0 PID: 23572 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 1096.786649][T23572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1096.796705][T23572] Call Trace: [ 1096.800005][T23572] dump_stack+0x1df/0x240 [ 1096.804343][T23572] kmsan_internal_chain_origin+0x6f/0x130 [ 1096.810068][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1096.815185][T23572] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1096.821081][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1096.826373][T23572] ? kmsan_get_metadata+0x11d/0x180 [ 1096.831574][T23572] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1096.837384][T23572] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1096.843457][T23572] ? kfree+0x61/0x30f0 [ 1096.847537][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1096.852653][T23572] ? kmsan_set_origin_checked+0x95/0xf0 [ 1096.858204][T23572] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1096.864277][T23572] ? _copy_from_user+0x15b/0x260 [ 1096.869216][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1096.874330][T23572] __msan_chain_origin+0x50/0x90 [ 1096.879276][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1096.883904][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1096.889200][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1096.894231][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1096.899265][T23572] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1096.904089][T23610] not chained 840000 origins [ 1096.905163][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1096.914649][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1096.919486][T23572] do_syscall_64+0xb0/0x150 [ 1096.923977][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1096.929854][T23572] RIP: 0033:0x45c1d9 [ 1096.933738][T23572] Code: Bad RIP value. [ 1096.937797][T23572] RSP: 002b:00007fbc91028c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1096.946199][T23572] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1096.954243][T23572] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1096.962208][T23572] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1096.970162][T23572] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1096.978116][T23572] R13: 0000000000c9fb6f R14: 00007fbc910299c0 R15: 000000000078bfac [ 1096.986168][T23572] Uninit was stored to memory at: [ 1096.986180][T23610] CPU: 1 PID: 23610 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1096.986194][T23610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1096.991213][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1096.999863][T23610] Call Trace: [ 1097.009917][T23572] __msan_chain_origin+0x50/0x90 [ 1097.015612][T23610] dump_stack+0x1df/0x240 [ 1097.018873][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1097.023782][T23610] kmsan_internal_chain_origin+0x6f/0x130 [ 1097.028087][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1097.032649][T23610] ? kmsan_get_metadata+0x4f/0x180 [ 1097.038344][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1097.043264][T23610] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1097.048349][T23572] do_syscall_64+0xb0/0x150 [ 1097.053172][T23610] ? __msan_poison_alloca+0xf0/0x120 [ 1097.059039][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1097.063513][T23610] ? kmsan_get_metadata+0x11d/0x180 [ 1097.068759][T23572] [ 1097.074633][T23610] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1097.079795][T23572] Uninit was stored to memory at: [ 1097.082110][T23610] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1097.087890][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1097.092906][T23610] ? kfree+0x61/0x30f0 [ 1097.098944][T23572] __msan_chain_origin+0x50/0x90 [ 1097.104639][T23610] ? kmsan_get_metadata+0x4f/0x180 [ 1097.108681][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1097.113590][T23610] ? kmsan_set_origin_checked+0x95/0xf0 [ 1097.118687][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1097.123249][T23610] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1097.128766][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1097.134025][T23610] ? _copy_from_user+0x15b/0x260 [ 1097.140064][T23572] do_syscall_64+0xb0/0x150 [ 1097.144884][T23610] ? kmsan_get_metadata+0x4f/0x180 [ 1097.149795][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1097.154267][T23610] __msan_chain_origin+0x50/0x90 [ 1097.159340][T23572] [ 1097.165218][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1097.170120][T23572] Uninit was stored to memory at: [ 1097.172478][T23610] ? __msan_poison_alloca+0xf0/0x120 [ 1097.177019][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1097.182016][T23610] ? __se_sys_recvmmsg+0xac/0x350 [ 1097.187270][T23572] __msan_chain_origin+0x50/0x90 [ 1097.192961][T23610] ? __se_sys_recvmmsg+0xac/0x350 [ 1097.197956][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1097.202860][T23610] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1097.202880][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1097.207881][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1097.212450][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1097.218320][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1097.223237][T23610] do_syscall_64+0xb0/0x150 [ 1097.228157][T23572] do_syscall_64+0xb0/0x150 [ 1097.232984][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1097.237807][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1097.242291][T23610] RIP: 0033:0x45c1d9 [ 1097.246762][T23572] [ 1097.252713][T23610] Code: Bad RIP value. [ 1097.258579][T23572] Uninit was stored to memory at: [ 1097.262456][T23610] RSP: 002b:00007f2678dd9c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1097.264766][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1097.268802][T23610] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1097.273824][T23572] __msan_chain_origin+0x50/0x90 [ 1097.282203][T23610] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1097.287902][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1097.295860][T23610] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 1097.300798][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1097.308756][T23610] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078c04c [ 1097.313340][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1097.321297][T23610] R13: 0000000000c9fb6f R14: 00007f2678dda9c0 R15: 000000000078c04c [ 1097.326216][T23572] do_syscall_64+0xb0/0x150 [ 1097.334160][T23610] Uninit was stored to memory at: [ 1097.339077][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1097.347024][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1097.351487][T23572] [ 1097.356505][T23610] __msan_chain_origin+0x50/0x90 [ 1097.362376][T23572] Uninit was stored to memory at: [ 1097.368076][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1097.370381][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1097.375293][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1097.380298][T23572] __msan_chain_origin+0x50/0x90 [ 1097.384865][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1097.390555][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1097.395472][T23610] do_syscall_64+0xb0/0x150 [ 1097.400379][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1097.405203][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1097.409767][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1097.414273][T23610] [ 1097.419193][T23572] do_syscall_64+0xb0/0x150 [ 1097.425046][T23610] Uninit was stored to memory at: [ 1097.429966][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1097.432271][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1097.436736][T23572] [ 1097.441743][T23610] __msan_chain_origin+0x50/0x90 [ 1097.447598][T23572] Uninit was stored to memory at: [ 1097.453299][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1097.455604][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1097.460512][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1097.465607][T23572] __msan_chain_origin+0x50/0x90 [ 1097.470179][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1097.475868][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1097.480778][T23610] do_syscall_64+0xb0/0x150 [ 1097.485687][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1097.490511][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1097.495072][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1097.499534][T23610] [ 1097.504452][T23572] do_syscall_64+0xb0/0x150 [ 1097.510307][T23610] Uninit was stored to memory at: [ 1097.515140][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1097.517443][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1097.521911][T23572] [ 1097.526915][T23610] __msan_chain_origin+0x50/0x90 [ 1097.532769][T23572] Uninit was stored to memory at: [ 1097.538467][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1097.540779][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1097.546645][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1097.551642][T23572] __msan_chain_origin+0x50/0x90 [ 1097.556207][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1097.561909][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1097.566823][T23610] do_syscall_64+0xb0/0x150 [ 1097.571733][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1097.576566][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1097.581126][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1097.585612][T23610] [ 1097.590537][T23572] do_syscall_64+0xb0/0x150 [ 1097.596391][T23610] Uninit was stored to memory at: [ 1097.601232][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1097.603558][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1097.608039][T23572] [ 1097.613063][T23610] __msan_chain_origin+0x50/0x90 [ 1097.618922][T23572] Local variable ----msg_sys@do_recvmmsg created at: [ 1097.624624][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1097.626930][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1097.631844][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1097.638488][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1097.643050][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1097.661691][T23610] do_syscall_64+0xb0/0x150 [ 1097.666203][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1097.672100][T23610] [ 1097.674426][T23610] Uninit was stored to memory at: [ 1097.679451][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1097.685171][T23610] __msan_chain_origin+0x50/0x90 [ 1097.690118][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1097.694708][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1097.699650][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1097.704530][T23610] do_syscall_64+0xb0/0x150 [ 1097.709031][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1097.714910][T23610] [ 1097.717230][T23610] Uninit was stored to memory at: [ 1097.722256][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1097.727971][T23610] __msan_chain_origin+0x50/0x90 [ 1097.732910][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1097.737500][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1097.742444][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1097.747306][T23610] do_syscall_64+0xb0/0x150 [ 1097.751988][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1097.758651][T23610] [ 1097.760983][T23610] Uninit was stored to memory at: [ 1097.766015][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1097.771744][T23610] __msan_chain_origin+0x50/0x90 19:16:00 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:00 executing program 4: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffa}, 0x140c1, 0x0, 0x1, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = open(&(0x7f00000009c0)='./bus\x00', 0x141042, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x11, r0, 0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/seq\x00', 0x2) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue1\x00'}) msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x0, 0x0, 0x0, 0x4, 0xb965, 0x0, 0x0, 0x3, 0x3, 0x9}) write$sndseq(r1, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"a357b6b140cbb6215dd33459"}}], 0xfffffee4) creat(0x0, 0x0) write$cgroup_int(0xffffffffffffffff, 0x0, 0x0) ioctl$PPPIOCSCOMPRESS(0xffffffffffffffff, 0x4010744d) getitimer(0x0, 0x0) sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="14002cb2e89f6b36651600"/20], 0x14}}, 0x0) 19:16:00 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) socket$inet6(0xa, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) creat(&(0x7f0000000100)='./bus\x00', 0x0) open(0x0, 0x0, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) r1 = open(&(0x7f0000000140)='./bus\x00', 0x141042, 0x0) write$UHID_INPUT(r1, &(0x7f0000001440), 0xfffffc41) creat(&(0x7f00000000c0)='./bus\x00', 0x0) 19:16:00 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_pts(r0, 0x2) write$binfmt_elf32(r1, &(0x7f00000000c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x38}, [{}]}, 0x58) [ 1097.776693][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1097.781295][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1097.786238][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1097.791095][T23610] do_syscall_64+0xb0/0x150 [ 1097.795608][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1097.801488][T23610] [ 1097.803812][T23610] Local variable ----msg_sys@do_recvmmsg created at: [ 1097.810494][T23610] do_recvmmsg+0xc5/0x1ee0 [ 1097.815355][T23610] do_recvmmsg+0xc5/0x1ee0 [ 1098.612415][T23609] not chained 850000 origins [ 1098.617054][T23609] CPU: 1 PID: 23609 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1098.625719][T23609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1098.635779][T23609] Call Trace: [ 1098.639092][T23609] dump_stack+0x1df/0x240 [ 1098.643438][T23609] kmsan_internal_chain_origin+0x6f/0x130 [ 1098.649163][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1098.654372][T23609] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1098.660367][T23609] ? __msan_poison_alloca+0xf0/0x120 [ 1098.665659][T23609] ? kmsan_get_metadata+0x11d/0x180 [ 1098.671038][T23609] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1098.676853][T23609] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1098.682935][T23609] ? kfree+0x61/0x30f0 [ 1098.687012][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1098.692131][T23609] ? kmsan_set_origin_checked+0x95/0xf0 [ 1098.697685][T23609] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1098.703764][T23609] ? _copy_from_user+0x15b/0x260 [ 1098.708705][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1098.713998][T23609] __msan_chain_origin+0x50/0x90 [ 1098.718947][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1098.723581][T23609] ? __msan_poison_alloca+0xf0/0x120 [ 1098.728879][T23609] ? __se_sys_recvmmsg+0xac/0x350 [ 1098.733910][T23609] ? __se_sys_recvmmsg+0xac/0x350 [ 1098.738942][T23609] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1098.744852][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1098.749807][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1098.754674][T23609] do_syscall_64+0xb0/0x150 [ 1098.759189][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1098.765080][T23609] RIP: 0033:0x45c1d9 [ 1098.768978][T23609] Code: Bad RIP value. [ 1098.773046][T23609] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1098.781460][T23609] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1098.789442][T23609] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1098.797513][T23609] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1098.805494][T23609] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1098.813472][T23609] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1098.821457][T23609] Uninit was stored to memory at: [ 1098.826491][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1098.832218][T23609] __msan_chain_origin+0x50/0x90 [ 1098.837165][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1098.841762][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1098.846709][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1098.851569][T23609] do_syscall_64+0xb0/0x150 [ 1098.856078][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1098.861958][T23609] [ 1098.864283][T23609] Uninit was stored to memory at: [ 1098.869312][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1098.875037][T23609] __msan_chain_origin+0x50/0x90 [ 1098.880082][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1098.884676][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1098.889620][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1098.894476][T23609] do_syscall_64+0xb0/0x150 [ 1098.898990][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1098.904878][T23609] [ 1098.907201][T23609] Uninit was stored to memory at: [ 1098.912232][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1098.917956][T23609] __msan_chain_origin+0x50/0x90 [ 1098.922901][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1098.927498][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1098.932443][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1098.937302][T23609] do_syscall_64+0xb0/0x150 [ 1098.941817][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1098.947703][T23609] [ 1098.950022][T23609] Uninit was stored to memory at: [ 1098.955074][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1098.960806][T23609] __msan_chain_origin+0x50/0x90 [ 1098.965747][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1098.970354][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1098.975338][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1098.980198][T23609] do_syscall_64+0xb0/0x150 [ 1098.984708][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1098.990695][T23609] [ 1098.993036][T23609] Uninit was stored to memory at: [ 1098.998068][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1099.003799][T23609] __msan_chain_origin+0x50/0x90 [ 1099.008743][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1099.013340][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1099.018289][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1099.023152][T23609] do_syscall_64+0xb0/0x150 [ 1099.027661][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1099.033555][T23609] [ 1099.035885][T23609] Uninit was stored to memory at: [ 1099.040917][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1099.046644][T23609] __msan_chain_origin+0x50/0x90 [ 1099.051598][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1099.056195][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1099.061140][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1099.066165][T23609] do_syscall_64+0xb0/0x150 [ 1099.070676][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1099.076562][T23609] [ 1099.078884][T23609] Uninit was stored to memory at: [ 1099.083915][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1099.089635][T23609] __msan_chain_origin+0x50/0x90 [ 1099.094576][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1099.099170][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1099.104201][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1099.109063][T23609] do_syscall_64+0xb0/0x150 [ 1099.113582][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1099.119466][T23609] [ 1099.121791][T23609] Local variable ----msg_sys@do_recvmmsg created at: [ 1099.128470][T23609] do_recvmmsg+0xc5/0x1ee0 [ 1099.132893][T23609] do_recvmmsg+0xc5/0x1ee0 [ 1099.644371][T23572] not chained 860000 origins [ 1099.649007][T23572] CPU: 1 PID: 23572 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 1099.657673][T23572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1099.667729][T23572] Call Trace: [ 1099.671035][T23572] dump_stack+0x1df/0x240 [ 1099.675386][T23572] kmsan_internal_chain_origin+0x6f/0x130 [ 1099.681199][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1099.686313][T23572] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1099.692215][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1099.698204][T23572] ? kmsan_get_metadata+0x11d/0x180 [ 1099.703408][T23572] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1099.709243][T23572] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1099.715323][T23572] ? kfree+0x61/0x30f0 [ 1099.719401][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1099.724518][T23572] ? kmsan_set_origin_checked+0x95/0xf0 [ 1099.730094][T23572] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1099.736171][T23572] ? _copy_from_user+0x15b/0x260 [ 1099.741109][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1099.746222][T23572] __msan_chain_origin+0x50/0x90 [ 1099.751171][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1099.755804][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1099.761104][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1099.766127][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1099.771153][T23572] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1099.777050][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1099.782141][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1099.787611][T23572] do_syscall_64+0xb0/0x150 [ 1099.792126][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1099.798013][T23572] RIP: 0033:0x45c1d9 [ 1099.801897][T23572] Code: Bad RIP value. [ 1099.805954][T23572] RSP: 002b:00007fbc91028c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1099.814371][T23572] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1099.822428][T23572] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1099.830404][T23572] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1099.838373][T23572] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1099.846347][T23572] R13: 0000000000c9fb6f R14: 00007fbc910299c0 R15: 000000000078bfac [ 1099.854330][T23572] Uninit was stored to memory at: [ 1099.859364][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1099.865086][T23572] __msan_chain_origin+0x50/0x90 [ 1099.870029][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1099.874617][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1099.879553][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1099.884407][T23572] do_syscall_64+0xb0/0x150 [ 1099.888918][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1099.894798][T23572] [ 1099.897118][T23572] Uninit was stored to memory at: [ 1099.902148][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1099.907865][T23572] __msan_chain_origin+0x50/0x90 [ 1099.912804][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1099.917396][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1099.922332][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1099.927181][T23572] do_syscall_64+0xb0/0x150 [ 1099.931681][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1099.937556][T23572] [ 1099.939874][T23572] Uninit was stored to memory at: [ 1099.944901][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1099.950616][T23572] __msan_chain_origin+0x50/0x90 [ 1099.955555][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1099.960145][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1099.965079][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1099.970103][T23572] do_syscall_64+0xb0/0x150 [ 1099.974608][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1099.980493][T23572] [ 1099.982815][T23572] Uninit was stored to memory at: [ 1099.989663][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1099.995379][T23572] __msan_chain_origin+0x50/0x90 [ 1100.000326][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1100.005020][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1100.009959][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1100.014811][T23572] do_syscall_64+0xb0/0x150 [ 1100.019315][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1100.025192][T23572] [ 1100.027523][T23572] Uninit was stored to memory at: [ 1100.032550][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1100.038268][T23572] __msan_chain_origin+0x50/0x90 [ 1100.043212][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1100.047802][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1100.052743][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1100.057596][T23572] do_syscall_64+0xb0/0x150 [ 1100.062101][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1100.067979][T23572] [ 1100.070303][T23572] Uninit was stored to memory at: [ 1100.075327][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1100.081081][T23572] __msan_chain_origin+0x50/0x90 [ 1100.086019][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1100.090614][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1100.095554][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1100.100417][T23572] do_syscall_64+0xb0/0x150 [ 1100.105010][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1100.110893][T23572] [ 1100.113212][T23572] Uninit was stored to memory at: [ 1100.118242][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1100.123962][T23572] __msan_chain_origin+0x50/0x90 [ 1100.128903][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1100.133496][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1100.138436][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1100.143289][T23572] do_syscall_64+0xb0/0x150 [ 1100.147789][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1100.153668][T23572] [ 1100.155991][T23572] Local variable ----msg_sys@do_recvmmsg created at: [ 1100.162671][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1100.167091][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1100.224569][T23609] not chained 870000 origins [ 1100.229219][T23609] CPU: 1 PID: 23609 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1100.237875][T23609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1100.247926][T23609] Call Trace: [ 1100.251226][T23609] dump_stack+0x1df/0x240 [ 1100.255553][T23609] kmsan_internal_chain_origin+0x6f/0x130 [ 1100.261263][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1100.266361][T23609] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1100.272263][T23609] ? __msan_poison_alloca+0xf0/0x120 [ 1100.277538][T23609] ? kmsan_get_metadata+0x11d/0x180 [ 1100.282741][T23609] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1100.288536][T23609] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1100.294591][T23609] ? kfree+0x61/0x30f0 [ 1100.298647][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1100.303747][T23609] ? kmsan_set_origin_checked+0x95/0xf0 [ 1100.309279][T23609] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1100.315335][T23609] ? _copy_from_user+0x15b/0x260 [ 1100.320258][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1100.325354][T23609] __msan_chain_origin+0x50/0x90 [ 1100.330283][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1100.334886][T23609] ? __msan_poison_alloca+0xf0/0x120 [ 1100.340177][T23609] ? __se_sys_recvmmsg+0xac/0x350 [ 1100.345198][T23609] ? __se_sys_recvmmsg+0xac/0x350 [ 1100.350221][T23609] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1100.356114][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1100.361313][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1100.366152][T23609] do_syscall_64+0xb0/0x150 [ 1100.370643][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1100.376518][T23609] RIP: 0033:0x45c1d9 [ 1100.380415][T23609] Code: Bad RIP value. [ 1100.384466][T23609] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1100.392859][T23609] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1100.400814][T23609] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1100.408769][T23609] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1100.416727][T23609] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1100.424685][T23609] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1100.432650][T23609] Uninit was stored to memory at: [ 1100.437664][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1100.443369][T23609] __msan_chain_origin+0x50/0x90 [ 1100.448297][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1100.452966][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1100.457903][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1100.462744][T23609] do_syscall_64+0xb0/0x150 [ 1100.467231][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1100.473099][T23609] [ 1100.475408][T23609] Uninit was stored to memory at: [ 1100.480422][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1100.486127][T23609] __msan_chain_origin+0x50/0x90 [ 1100.491050][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1100.495622][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1100.500551][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1100.505382][T23609] do_syscall_64+0xb0/0x150 [ 1100.509868][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1100.515736][T23609] [ 1100.518044][T23609] Uninit was stored to memory at: [ 1100.523060][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1100.528763][T23609] __msan_chain_origin+0x50/0x90 [ 1100.533686][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1100.538265][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1100.543185][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1100.548036][T23609] do_syscall_64+0xb0/0x150 [ 1100.552543][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1100.558416][T23609] [ 1100.560725][T23609] Uninit was stored to memory at: [ 1100.565745][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1100.571448][T23609] __msan_chain_origin+0x50/0x90 [ 1100.576372][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1100.581122][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1100.586043][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1100.590881][T23609] do_syscall_64+0xb0/0x150 [ 1100.595371][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1100.601240][T23609] [ 1100.603545][T23609] Uninit was stored to memory at: [ 1100.608707][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1100.614425][T23609] __msan_chain_origin+0x50/0x90 [ 1100.619354][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1100.623933][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1100.628857][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1100.633699][T23609] do_syscall_64+0xb0/0x150 [ 1100.638185][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1100.644051][T23609] [ 1100.646357][T23609] Uninit was stored to memory at: [ 1100.651366][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1100.657081][T23609] __msan_chain_origin+0x50/0x90 [ 1100.662003][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1100.666576][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1100.671499][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1100.676334][T23609] do_syscall_64+0xb0/0x150 [ 1100.680824][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1100.686692][T23609] [ 1100.689007][T23609] Uninit was stored to memory at: [ 1100.694016][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1100.699805][T23609] __msan_chain_origin+0x50/0x90 [ 1100.704727][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1100.709302][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1100.714227][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1100.719062][T23609] do_syscall_64+0xb0/0x150 [ 1100.723557][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1100.729428][T23609] [ 1100.731827][T23609] Local variable ----msg_sys@do_recvmmsg created at: [ 1100.738490][T23609] do_recvmmsg+0xc5/0x1ee0 [ 1100.742894][T23609] do_recvmmsg+0xc5/0x1ee0 [ 1100.925572][T23610] not chained 880000 origins [ 1100.930209][T23610] CPU: 1 PID: 23610 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1100.938877][T23610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1100.948940][T23610] Call Trace: [ 1100.952240][T23610] dump_stack+0x1df/0x240 [ 1100.956582][T23610] kmsan_internal_chain_origin+0x6f/0x130 [ 1100.962308][T23610] ? kmsan_get_metadata+0x4f/0x180 [ 1100.967431][T23610] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1100.973333][T23610] ? __msan_poison_alloca+0xf0/0x120 [ 1100.978628][T23610] ? kmsan_get_metadata+0x11d/0x180 [ 1100.983849][T23610] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1100.989666][T23610] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1100.995742][T23610] ? kfree+0x61/0x30f0 [ 1100.999824][T23610] ? kmsan_get_metadata+0x4f/0x180 [ 1101.004968][T23610] ? kmsan_set_origin_checked+0x95/0xf0 [ 1101.010528][T23610] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1101.016607][T23610] ? _copy_from_user+0x15b/0x260 [ 1101.021550][T23610] ? kmsan_get_metadata+0x4f/0x180 [ 1101.026669][T23610] __msan_chain_origin+0x50/0x90 [ 1101.031618][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1101.036338][T23610] ? __msan_poison_alloca+0xf0/0x120 [ 1101.041628][T23610] ? __se_sys_recvmmsg+0xac/0x350 [ 1101.046644][T23610] ? __se_sys_recvmmsg+0xac/0x350 [ 1101.051656][T23610] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1101.057557][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1101.062490][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1101.067332][T23610] do_syscall_64+0xb0/0x150 [ 1101.071826][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1101.077701][T23610] RIP: 0033:0x45c1d9 [ 1101.081571][T23610] Code: Bad RIP value. [ 1101.085628][T23610] RSP: 002b:00007f2678dd9c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1101.094023][T23610] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1101.101980][T23610] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1101.109937][T23610] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 1101.117895][T23610] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078c04c [ 1101.125952][T23610] R13: 0000000000c9fb6f R14: 00007f2678dda9c0 R15: 000000000078c04c [ 1101.133920][T23610] Uninit was stored to memory at: [ 1101.138936][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1101.144904][T23610] __msan_chain_origin+0x50/0x90 [ 1101.149828][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1101.154411][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1101.159331][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1101.164170][T23610] do_syscall_64+0xb0/0x150 [ 1101.168660][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1101.174530][T23610] [ 1101.176894][T23610] Uninit was stored to memory at: [ 1101.181907][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1101.187606][T23610] __msan_chain_origin+0x50/0x90 [ 1101.192529][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1101.197190][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1101.202127][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1101.206962][T23610] do_syscall_64+0xb0/0x150 [ 1101.211462][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1101.217349][T23610] [ 1101.219659][T23610] Uninit was stored to memory at: [ 1101.224670][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1101.230370][T23610] __msan_chain_origin+0x50/0x90 [ 1101.235327][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1101.239916][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1101.244851][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1101.249687][T23610] do_syscall_64+0xb0/0x150 [ 1101.254176][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1101.260040][T23610] [ 1101.262357][T23610] Uninit was stored to memory at: [ 1101.267374][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1101.273086][T23610] __msan_chain_origin+0x50/0x90 [ 1101.278024][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1101.282598][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1101.287520][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1101.292373][T23610] do_syscall_64+0xb0/0x150 [ 1101.296861][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1101.302733][T23610] [ 1101.305040][T23610] Uninit was stored to memory at: [ 1101.310051][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1101.315756][T23610] __msan_chain_origin+0x50/0x90 [ 1101.320678][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1101.325252][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1101.330174][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1101.335010][T23610] do_syscall_64+0xb0/0x150 [ 1101.339706][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1101.345574][T23610] [ 1101.347882][T23610] Uninit was stored to memory at: [ 1101.352899][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1101.358603][T23610] __msan_chain_origin+0x50/0x90 [ 1101.363526][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1101.368106][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1101.373031][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1101.377866][T23610] do_syscall_64+0xb0/0x150 [ 1101.382357][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1101.388225][T23610] [ 1101.390539][T23610] Uninit was stored to memory at: [ 1101.395554][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1101.401257][T23610] __msan_chain_origin+0x50/0x90 [ 1101.406196][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1101.410773][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1101.415692][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1101.421149][T23610] do_syscall_64+0xb0/0x150 [ 1101.425641][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1101.431507][T23610] [ 1101.433816][T23610] Local variable ----msg_sys@do_recvmmsg created at: [ 1101.440477][T23610] do_recvmmsg+0xc5/0x1ee0 [ 1101.444878][T23610] do_recvmmsg+0xc5/0x1ee0 [ 1101.538308][T23572] not chained 890000 origins [ 1101.542935][T23572] CPU: 1 PID: 23572 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 1101.551596][T23572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1101.561646][T23572] Call Trace: [ 1101.564939][T23572] dump_stack+0x1df/0x240 [ 1101.569273][T23572] kmsan_internal_chain_origin+0x6f/0x130 [ 1101.574993][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1101.580108][T23572] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1101.586018][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1101.591321][T23572] ? kmsan_get_metadata+0x11d/0x180 [ 1101.597049][T23572] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1101.602869][T23572] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1101.608933][T23572] ? kfree+0x61/0x30f0 [ 1101.613031][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1101.618147][T23572] ? kmsan_set_origin_checked+0x95/0xf0 [ 1101.623703][T23572] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1101.629775][T23572] ? _copy_from_user+0x15b/0x260 [ 1101.634716][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1101.639835][T23572] __msan_chain_origin+0x50/0x90 [ 1101.644777][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1101.649400][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1101.654686][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1101.659710][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1101.664733][T23572] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1101.670630][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1101.675583][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1101.680436][T23572] do_syscall_64+0xb0/0x150 [ 1101.684946][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1101.690836][T23572] RIP: 0033:0x45c1d9 [ 1101.694718][T23572] Code: Bad RIP value. [ 1101.698775][T23572] RSP: 002b:00007fbc91028c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1101.707190][T23572] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1101.710697][T23609] not chained 900000 origins [ 1101.715160][T23572] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1101.727676][T23572] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1101.735646][T23572] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1101.743606][T23572] R13: 0000000000c9fb6f R14: 00007fbc910299c0 R15: 000000000078bfac [ 1101.751571][T23572] Uninit was stored to memory at: [ 1101.751583][T23609] CPU: 0 PID: 23609 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1101.751597][T23609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1101.756605][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1101.765240][T23609] Call Trace: [ 1101.775406][T23572] __msan_chain_origin+0x50/0x90 [ 1101.781113][T23609] dump_stack+0x1df/0x240 [ 1101.784383][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1101.789293][T23609] kmsan_internal_chain_origin+0x6f/0x130 [ 1101.793597][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1101.798159][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1101.803868][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1101.808778][T23609] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1101.813864][T23572] do_syscall_64+0xb0/0x150 [ 1101.818687][T23609] ? __msan_poison_alloca+0xf0/0x120 [ 1101.824576][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1101.829051][T23609] ? kmsan_get_metadata+0x11d/0x180 [ 1101.834306][T23572] [ 1101.840182][T23609] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1101.845341][T23572] Uninit was stored to memory at: [ 1101.847654][T23609] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1101.853431][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1101.858430][T23609] ? kfree+0x61/0x30f0 [ 1101.864458][T23572] __msan_chain_origin+0x50/0x90 [ 1101.864478][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1101.870172][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1101.874213][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1101.879123][T23609] ? kmsan_set_origin_checked+0x95/0xf0 [ 1101.883689][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1101.888770][T23609] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1101.893681][T23572] do_syscall_64+0xb0/0x150 [ 1101.899197][T23609] ? _copy_from_user+0x15b/0x260 [ 1101.904025][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1101.910062][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1101.914528][T23572] [ 1101.919454][T23609] __msan_chain_origin+0x50/0x90 [ 1101.925306][T23572] Uninit was stored to memory at: [ 1101.930398][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1101.932702][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1101.937636][T23609] ? __msan_poison_alloca+0xf0/0x120 [ 1101.942611][T23572] __msan_chain_origin+0x50/0x90 [ 1101.947175][T23609] ? __se_sys_recvmmsg+0xac/0x350 [ 1101.952869][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1101.958130][T23609] ? __se_sys_recvmmsg+0xac/0x350 [ 1101.963047][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1101.968062][T23609] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1101.972625][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1101.977620][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1101.982630][T23572] do_syscall_64+0xb0/0x150 [ 1101.988683][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1101.993533][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1101.998499][T23609] do_syscall_64+0xb0/0x150 [ 1102.002975][T23572] [ 1102.007903][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1102.013782][T23572] Uninit was stored to memory at: [ 1102.018309][T23609] RIP: 0033:0x45c1d9 [ 1102.020628][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1102.026487][T23609] Code: Bad RIP value. [ 1102.031511][T23572] __msan_chain_origin+0x50/0x90 [ 1102.035399][T23609] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1102.041100][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1102.045139][T23609] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1102.050059][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1102.058875][T23609] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1102.063449][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1102.071414][T23609] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1102.076333][T23572] do_syscall_64+0xb0/0x150 [ 1102.084309][T23609] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1102.089136][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1102.089146][T23572] [ 1102.097908][T23609] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1102.102642][T23572] Uninit was stored to memory at: [ 1102.110710][T23609] Uninit was stored to memory at: [ 1102.116737][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1102.119046][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1102.126999][T23572] __msan_chain_origin+0x50/0x90 [ 1102.132090][T23609] __msan_chain_origin+0x50/0x90 [ 1102.137095][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1102.142791][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1102.148489][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1102.153403][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1102.158410][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1102.162971][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1102.167540][T23572] do_syscall_64+0xb0/0x150 [ 1102.172462][T23609] do_syscall_64+0xb0/0x150 [ 1102.177466][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1102.182295][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1102.187109][T23572] [ 1102.191593][T23609] [ 1102.196075][T23572] Uninit was stored to memory at: [ 1102.201942][T23609] Uninit was stored to memory at: [ 1102.207912][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1102.210219][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1102.212527][T23572] __msan_chain_origin+0x50/0x90 [ 1102.217525][T23609] __msan_chain_origin+0x50/0x90 [ 1102.222525][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1102.228219][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1102.234009][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1102.238922][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1102.243836][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1102.248401][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1102.252966][T23572] do_syscall_64+0xb0/0x150 [ 1102.257879][T23609] do_syscall_64+0xb0/0x150 [ 1102.262798][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1102.267624][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1102.272614][T23572] [ 1102.277110][T23609] [ 1102.281593][T23572] Uninit was stored to memory at: [ 1102.287459][T23609] Uninit was stored to memory at: [ 1102.293864][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1102.296435][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1102.298748][T23572] __msan_chain_origin+0x50/0x90 [ 1102.303747][T23609] __msan_chain_origin+0x50/0x90 [ 1102.308769][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1102.314460][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1102.320160][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1102.320180][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1102.325092][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1102.330005][T23572] do_syscall_64+0xb0/0x150 [ 1102.334569][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1102.339620][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1102.344532][T23609] do_syscall_64+0xb0/0x150 [ 1102.349346][T23572] [ 1102.354269][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1102.358738][T23572] Local variable ----msg_sys@do_recvmmsg created at: [ 1102.363649][T23609] [ 1102.369527][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1102.373995][T23609] Uninit was stored to memory at: [ 1102.376341][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1102.382208][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1102.411572][T23609] __msan_chain_origin+0x50/0x90 [ 1102.416526][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1102.421119][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1102.426326][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1102.431184][T23609] do_syscall_64+0xb0/0x150 [ 1102.435697][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1102.441579][T23609] [ 1102.443901][T23609] Uninit was stored to memory at: [ 1102.448933][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1102.454657][T23609] __msan_chain_origin+0x50/0x90 [ 1102.459600][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1102.464240][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1102.469186][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1102.474129][T23609] do_syscall_64+0xb0/0x150 [ 1102.478641][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1102.484530][T23609] [ 1102.486853][T23609] Uninit was stored to memory at: [ 1102.491883][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1102.497607][T23609] __msan_chain_origin+0x50/0x90 [ 1102.502554][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1102.507152][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1102.512098][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1102.516988][T23609] do_syscall_64+0xb0/0x150 [ 1102.521500][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1102.527394][T23609] [ 1102.529714][T23609] Uninit was stored to memory at: [ 1102.534730][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1102.540436][T23609] __msan_chain_origin+0x50/0x90 [ 1102.545358][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1102.549937][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1102.554858][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1102.559718][T23609] do_syscall_64+0xb0/0x150 [ 1102.564210][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1102.570079][T23609] [ 1102.572388][T23609] Local variable ----msg_sys@do_recvmmsg created at: [ 1102.579048][T23609] do_recvmmsg+0xc5/0x1ee0 [ 1102.583468][T23609] do_recvmmsg+0xc5/0x1ee0 [ 1102.753912][T23609] not chained 910000 origins [ 1102.758544][T23609] CPU: 0 PID: 23609 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1102.767237][T23609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1102.777317][T23609] Call Trace: [ 1102.780628][T23609] dump_stack+0x1df/0x240 [ 1102.784981][T23609] kmsan_internal_chain_origin+0x6f/0x130 [ 1102.790706][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1102.795839][T23609] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1102.801740][T23609] ? __msan_poison_alloca+0xf0/0x120 [ 1102.807028][T23609] ? kmsan_get_metadata+0x11d/0x180 [ 1102.812497][T23609] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1102.818318][T23609] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1102.824396][T23609] ? kfree+0x61/0x30f0 [ 1102.828471][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1102.833595][T23609] ? kmsan_set_origin_checked+0x95/0xf0 [ 1102.839151][T23609] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1102.846011][T23609] ? _copy_from_user+0x15b/0x260 [ 1102.850980][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1102.856095][T23609] __msan_chain_origin+0x50/0x90 [ 1102.861038][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1102.865663][T23609] ? __msan_poison_alloca+0xf0/0x120 [ 1102.870956][T23609] ? __se_sys_recvmmsg+0xac/0x350 [ 1102.876508][T23609] ? __se_sys_recvmmsg+0xac/0x350 [ 1102.881537][T23609] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1102.887437][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1102.892391][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1102.897257][T23609] do_syscall_64+0xb0/0x150 [ 1102.901767][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1102.907657][T23609] RIP: 0033:0x45c1d9 [ 1102.911539][T23609] Code: Bad RIP value. [ 1102.915602][T23609] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1102.924011][T23609] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1102.931998][T23609] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1102.939968][T23609] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1102.948032][T23609] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1102.956015][T23609] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1102.963997][T23609] Uninit was stored to memory at: [ 1102.969025][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1102.974744][T23609] __msan_chain_origin+0x50/0x90 [ 1102.979684][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1102.984272][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1102.989217][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1102.994069][T23609] do_syscall_64+0xb0/0x150 [ 1102.998571][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1103.004452][T23609] [ 1103.006775][T23609] Uninit was stored to memory at: [ 1103.011813][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1103.017620][T23609] __msan_chain_origin+0x50/0x90 [ 1103.022560][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1103.027151][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1103.032097][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1103.036947][T23609] do_syscall_64+0xb0/0x150 [ 1103.041455][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1103.047459][T23609] [ 1103.049790][T23609] Uninit was stored to memory at: [ 1103.054814][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1103.060531][T23609] __msan_chain_origin+0x50/0x90 [ 1103.065471][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1103.070064][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1103.075007][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1103.079859][T23609] do_syscall_64+0xb0/0x150 [ 1103.084365][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1103.090342][T23609] [ 1103.092757][T23609] Uninit was stored to memory at: [ 1103.097780][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1103.103501][T23609] __msan_chain_origin+0x50/0x90 [ 1103.108436][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1103.113040][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1103.117981][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1103.122836][T23609] do_syscall_64+0xb0/0x150 [ 1103.127339][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1103.133219][T23609] [ 1103.137015][T23609] Uninit was stored to memory at: [ 1103.142043][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1103.147935][T23609] __msan_chain_origin+0x50/0x90 [ 1103.152886][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1103.157470][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1103.162395][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1103.167253][T23609] do_syscall_64+0xb0/0x150 [ 1103.171749][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1103.177618][T23609] [ 1103.179929][T23609] Uninit was stored to memory at: [ 1103.184941][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1103.190648][T23609] __msan_chain_origin+0x50/0x90 [ 1103.195573][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1103.200160][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1103.205085][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1103.210017][T23609] do_syscall_64+0xb0/0x150 [ 1103.214508][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1103.220381][T23609] [ 1103.222691][T23609] Uninit was stored to memory at: [ 1103.227716][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1103.233438][T23609] __msan_chain_origin+0x50/0x90 [ 1103.238362][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1103.242941][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1103.247867][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1103.252707][T23609] do_syscall_64+0xb0/0x150 [ 1103.257196][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1103.263066][T23609] [ 1103.265376][T23609] Local variable ----msg_sys@do_recvmmsg created at: [ 1103.272038][T23609] do_recvmmsg+0xc5/0x1ee0 [ 1103.276442][T23609] do_recvmmsg+0xc5/0x1ee0 [ 1103.332302][T23572] not chained 920000 origins [ 1103.336934][T23572] CPU: 0 PID: 23572 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 1103.345603][T23572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1103.357308][T23572] Call Trace: [ 1103.360609][T23572] dump_stack+0x1df/0x240 [ 1103.364953][T23572] kmsan_internal_chain_origin+0x6f/0x130 [ 1103.370682][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1103.375811][T23572] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1103.381715][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1103.387008][T23572] ? kmsan_get_metadata+0x11d/0x180 [ 1103.392314][T23572] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1103.398131][T23572] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1103.404216][T23572] ? kfree+0x61/0x30f0 [ 1103.408296][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1103.413414][T23572] ? kmsan_set_origin_checked+0x95/0xf0 [ 1103.418970][T23572] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1103.425053][T23572] ? _copy_from_user+0x15b/0x260 [ 1103.429999][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1103.435113][T23572] __msan_chain_origin+0x50/0x90 [ 1103.440493][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1103.445132][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1103.450430][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1103.455460][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1103.460525][T23572] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1103.466426][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1103.471383][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1103.476239][T23572] do_syscall_64+0xb0/0x150 [ 1103.480757][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1103.486741][T23572] RIP: 0033:0x45c1d9 [ 1103.490714][T23572] Code: Bad RIP value. [ 1103.494954][T23572] RSP: 002b:00007fbc91028c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1103.503554][T23572] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1103.511552][T23572] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1103.519527][T23572] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1103.527500][T23572] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1103.536605][T23572] R13: 0000000000c9fb6f R14: 00007fbc910299c0 R15: 000000000078bfac [ 1103.544592][T23572] Uninit was stored to memory at: [ 1103.549629][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1103.555454][T23572] __msan_chain_origin+0x50/0x90 [ 1103.560406][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1103.565001][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1103.569956][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1103.574815][T23572] do_syscall_64+0xb0/0x150 [ 1103.579340][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1103.585225][T23572] [ 1103.587546][T23572] Uninit was stored to memory at: [ 1103.592581][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1103.598304][T23572] __msan_chain_origin+0x50/0x90 [ 1103.603255][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1103.607882][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1103.612831][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1103.617695][T23572] do_syscall_64+0xb0/0x150 [ 1103.622318][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1103.628204][T23572] [ 1103.630530][T23572] Uninit was stored to memory at: [ 1103.635569][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1103.641298][T23572] __msan_chain_origin+0x50/0x90 [ 1103.646246][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1103.650841][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1103.655783][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1103.660647][T23572] do_syscall_64+0xb0/0x150 [ 1103.665161][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1103.671046][T23572] [ 1103.673371][T23572] Uninit was stored to memory at: [ 1103.678401][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1103.683492][T23610] not chained 930000 origins [ 1103.684142][T23572] __msan_chain_origin+0x50/0x90 [ 1103.688716][T23610] CPU: 1 PID: 23610 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1103.693639][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1103.702282][T23610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1103.706856][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1103.716892][T23610] Call Trace: [ 1103.721821][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1103.725085][T23610] dump_stack+0x1df/0x240 [ 1103.729913][T23572] do_syscall_64+0xb0/0x150 [ 1103.734218][T23610] kmsan_internal_chain_origin+0x6f/0x130 [ 1103.738696][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1103.744388][T23610] ? kmsan_get_metadata+0x4f/0x180 [ 1103.750247][T23572] [ 1103.755347][T23610] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1103.757642][T23572] Uninit was stored to memory at: [ 1103.763520][T23610] ? __msan_poison_alloca+0xf0/0x120 [ 1103.768518][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1103.773794][T23610] ? kmsan_get_metadata+0x11d/0x180 [ 1103.779504][T23572] __msan_chain_origin+0x50/0x90 [ 1103.784682][T23610] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1103.789598][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1103.795464][T23610] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1103.800028][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1103.806157][T23610] ? kfree+0x61/0x30f0 [ 1103.811094][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1103.815147][T23610] ? kmsan_get_metadata+0x4f/0x180 [ 1103.819973][T23572] do_syscall_64+0xb0/0x150 [ 1103.825061][T23610] ? kmsan_set_origin_checked+0x95/0xf0 [ 1103.829542][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1103.835061][T23610] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1103.840920][T23572] [ 1103.846987][T23610] ? _copy_from_user+0x15b/0x260 [ 1103.849286][T23572] Uninit was stored to memory at: [ 1103.854207][T23610] ? kmsan_get_metadata+0x4f/0x180 [ 1103.859293][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1103.864475][T23610] __msan_chain_origin+0x50/0x90 [ 1103.870168][T23572] __msan_chain_origin+0x50/0x90 [ 1103.875082][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1103.880011][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1103.884606][T23610] ? __msan_poison_alloca+0xf0/0x120 [ 1103.889149][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1103.894410][T23610] ? __se_sys_recvmmsg+0xac/0x350 [ 1103.899325][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1103.904367][T23610] ? __se_sys_recvmmsg+0xac/0x350 [ 1103.909193][T23572] do_syscall_64+0xb0/0x150 [ 1103.914203][T23610] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1103.918681][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1103.924550][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1103.930406][T23572] [ 1103.935336][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1103.937626][T23572] Uninit was stored to memory at: [ 1103.942463][T23610] do_syscall_64+0xb0/0x150 [ 1103.947463][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1103.951946][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1103.957656][T23572] __msan_chain_origin+0x50/0x90 [ 1103.963521][T23610] RIP: 0033:0x45c1d9 [ 1103.968439][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1103.972299][T23610] Code: Bad RIP value. [ 1103.976872][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1103.980910][T23610] RSP: 002b:00007f2678dd9c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1103.985857][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1103.994330][T23610] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1103.999157][T23572] do_syscall_64+0xb0/0x150 [ 1104.007284][T23610] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1104.011792][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.019750][T23610] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 1104.025613][T23572] [ 1104.033568][T23610] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078c04c [ 1104.035872][T23572] Local variable ----msg_sys@do_recvmmsg created at: [ 1104.043825][T23610] R13: 0000000000c9fb6f R14: 00007f2678dda9c0 R15: 000000000078c04c [ 1104.050498][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1104.058446][T23610] Uninit was stored to memory at: [ 1104.062847][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1104.067878][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1104.078254][T23610] __msan_chain_origin+0x50/0x90 [ 1104.083202][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1104.087799][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1104.092740][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1104.097591][T23610] do_syscall_64+0xb0/0x150 [ 1104.102180][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.108058][T23610] [ 1104.110380][T23610] Uninit was stored to memory at: [ 1104.115402][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1104.121115][T23610] __msan_chain_origin+0x50/0x90 [ 1104.126050][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1104.130640][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1104.135576][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1104.140517][T23610] do_syscall_64+0xb0/0x150 [ 1104.145021][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.150897][T23610] [ 1104.153215][T23610] Uninit was stored to memory at: [ 1104.158239][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1104.163956][T23610] __msan_chain_origin+0x50/0x90 [ 1104.168909][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1104.173497][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1104.178433][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1104.183285][T23610] do_syscall_64+0xb0/0x150 [ 1104.187789][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.189933][T23609] not chained 940000 origins [ 1104.193675][T23610] [ 1104.199059][T23609] CPU: 0 PID: 23609 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1104.201361][T23610] Uninit was stored to memory at: [ 1104.210010][T23609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1104.215020][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1104.225043][T23609] Call Trace: [ 1104.230746][T23610] __msan_chain_origin+0x50/0x90 [ 1104.234010][T23609] dump_stack+0x1df/0x240 [ 1104.238925][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1104.243236][T23609] kmsan_internal_chain_origin+0x6f/0x130 [ 1104.247801][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1104.253534][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1104.258449][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1104.263536][T23609] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1104.268364][T23610] do_syscall_64+0xb0/0x150 [ 1104.274236][T23609] ? __msan_poison_alloca+0xf0/0x120 [ 1104.278722][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.284502][T23609] ? kmsan_get_metadata+0x11d/0x180 [ 1104.290967][T23610] [ 1104.296150][T23609] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1104.298447][T23610] Uninit was stored to memory at: [ 1104.304241][T23609] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1104.309240][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1104.315286][T23609] ? kfree+0x61/0x30f0 [ 1104.321069][T23610] __msan_chain_origin+0x50/0x90 [ 1104.325115][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1104.330030][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1104.335116][T23609] ? kmsan_set_origin_checked+0x95/0xf0 [ 1104.339683][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1104.345230][T23609] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1104.350142][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1104.356202][T23609] ? _copy_from_user+0x15b/0x260 [ 1104.361028][T23610] do_syscall_64+0xb0/0x150 [ 1104.365938][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1104.370416][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.375500][T23609] __msan_chain_origin+0x50/0x90 [ 1104.381361][T23610] [ 1104.386284][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1104.388581][T23610] Uninit was stored to memory at: [ 1104.393195][T23609] ? __msan_poison_alloca+0xf0/0x120 [ 1104.398171][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1104.403459][T23609] ? __se_sys_recvmmsg+0xac/0x350 [ 1104.409151][T23610] __msan_chain_origin+0x50/0x90 [ 1104.414154][T23609] ? __se_sys_recvmmsg+0xac/0x350 [ 1104.419083][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1104.424106][T23609] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1104.428668][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1104.434538][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1104.439440][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1104.439462][T23610] do_syscall_64+0xb0/0x150 [ 1104.444380][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1104.449207][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.453688][T23609] do_syscall_64+0xb0/0x150 [ 1104.458503][T23610] [ 1104.464486][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.468969][T23610] Uninit was stored to memory at: [ 1104.471280][T23609] RIP: 0033:0x45c1d9 [ 1104.477159][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1104.482149][T23609] Code: Bad RIP value. [ 1104.486029][T23610] __msan_chain_origin+0x50/0x90 [ 1104.491804][T23609] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1104.495857][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1104.500762][T23609] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1104.509165][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1104.513810][T23609] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1104.521767][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1104.526762][T23609] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1104.534721][T23610] do_syscall_64+0xb0/0x150 [ 1104.539540][T23609] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1104.547499][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.551969][T23609] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1104.559916][T23610] [ 1104.565792][T23609] Uninit was stored to memory at: [ 1104.573737][T23610] Local variable ----msg_sys@do_recvmmsg created at: [ 1104.576053][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1104.581052][T23610] do_recvmmsg+0xc5/0x1ee0 [ 1104.587960][T23609] __msan_chain_origin+0x50/0x90 [ 1104.593654][T23610] do_recvmmsg+0xc5/0x1ee0 [ 1104.598140][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1104.612215][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1104.617160][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1104.622026][T23609] do_syscall_64+0xb0/0x150 [ 1104.626536][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.632422][T23609] [ 1104.634746][T23609] Uninit was stored to memory at: [ 1104.639777][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1104.645503][T23609] __msan_chain_origin+0x50/0x90 [ 1104.650452][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1104.655049][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1104.659995][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1104.664857][T23609] do_syscall_64+0xb0/0x150 [ 1104.669458][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.675341][T23609] [ 1104.677667][T23609] Uninit was stored to memory at: [ 1104.682699][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1104.688416][T23609] __msan_chain_origin+0x50/0x90 [ 1104.693388][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1104.697983][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1104.702923][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1104.707779][T23609] do_syscall_64+0xb0/0x150 [ 1104.712286][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.718200][T23609] [ 1104.720520][T23609] Uninit was stored to memory at: [ 1104.725576][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1104.731301][T23609] __msan_chain_origin+0x50/0x90 [ 1104.736242][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1104.740834][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1104.745784][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1104.750636][T23609] do_syscall_64+0xb0/0x150 [ 1104.755244][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.761127][T23609] [ 1104.763454][T23609] Uninit was stored to memory at: [ 1104.768493][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1104.774218][T23609] __msan_chain_origin+0x50/0x90 [ 1104.779163][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1104.783757][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1104.788757][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1104.793622][T23609] do_syscall_64+0xb0/0x150 [ 1104.798135][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.804017][T23609] [ 1104.806340][T23609] Uninit was stored to memory at: [ 1104.811368][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1104.817089][T23609] __msan_chain_origin+0x50/0x90 [ 1104.822028][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1104.826618][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1104.831557][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1104.836408][T23609] do_syscall_64+0xb0/0x150 [ 1104.840914][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.846793][T23609] [ 1104.849115][T23609] Uninit was stored to memory at: [ 1104.854144][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1104.859860][T23609] __msan_chain_origin+0x50/0x90 [ 1104.864797][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1104.869389][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1104.874326][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1104.879245][T23609] do_syscall_64+0xb0/0x150 [ 1104.883750][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1104.889636][T23609] [ 1104.892217][T23609] Local variable ----msg_sys@do_recvmmsg created at: [ 1104.898892][T23609] do_recvmmsg+0xc5/0x1ee0 [ 1104.903316][T23609] do_recvmmsg+0xc5/0x1ee0 [ 1105.057170][T23609] not chained 950000 origins [ 1105.061802][T23609] CPU: 0 PID: 23609 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1105.070467][T23609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1105.080518][T23609] Call Trace: [ 1105.083812][T23609] dump_stack+0x1df/0x240 [ 1105.088168][T23609] kmsan_internal_chain_origin+0x6f/0x130 [ 1105.093890][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1105.099006][T23609] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1105.104906][T23609] ? __msan_poison_alloca+0xf0/0x120 [ 1105.110196][T23609] ? kmsan_get_metadata+0x11d/0x180 [ 1105.115396][T23609] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1105.121205][T23609] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1105.127274][T23609] ? kfree+0x61/0x30f0 [ 1105.131380][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1105.136493][T23609] ? kmsan_set_origin_checked+0x95/0xf0 [ 1105.142067][T23609] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1105.148138][T23609] ? _copy_from_user+0x15b/0x260 [ 1105.153079][T23609] ? kmsan_get_metadata+0x4f/0x180 [ 1105.158192][T23609] __msan_chain_origin+0x50/0x90 [ 1105.163134][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1105.167757][T23609] ? __msan_poison_alloca+0xf0/0x120 [ 1105.173058][T23609] ? __se_sys_recvmmsg+0xac/0x350 [ 1105.178089][T23609] ? __se_sys_recvmmsg+0xac/0x350 [ 1105.183119][T23609] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1105.189101][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1105.194140][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1105.198999][T23609] do_syscall_64+0xb0/0x150 [ 1105.203511][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1105.209429][T23609] RIP: 0033:0x45c1d9 [ 1105.213342][T23609] Code: Bad RIP value. [ 1105.217404][T23609] RSP: 002b:00007f2678dfac78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1105.225814][T23609] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1105.233786][T23609] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1105.241761][T23609] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1105.249818][T23609] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1105.257886][T23609] R13: 0000000000c9fb6f R14: 00007f2678dfb9c0 R15: 000000000078bfac [ 1105.265865][T23609] Uninit was stored to memory at: [ 1105.270906][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1105.276626][T23609] __msan_chain_origin+0x50/0x90 [ 1105.281566][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1105.286170][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1105.291111][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1105.295967][T23609] do_syscall_64+0xb0/0x150 [ 1105.300475][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1105.306385][T23609] [ 1105.308706][T23609] Uninit was stored to memory at: [ 1105.313732][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1105.319448][T23609] __msan_chain_origin+0x50/0x90 [ 1105.324388][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1105.328978][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1105.337389][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1105.342241][T23609] do_syscall_64+0xb0/0x150 [ 1105.346752][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1105.352629][T23609] [ 1105.354950][T23609] Uninit was stored to memory at: [ 1105.359981][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1105.365710][T23609] __msan_chain_origin+0x50/0x90 [ 1105.370661][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1105.375262][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1105.380209][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1105.385062][T23609] do_syscall_64+0xb0/0x150 [ 1105.389677][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1105.395553][T23609] [ 1105.397873][T23609] Uninit was stored to memory at: [ 1105.402901][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1105.405559][T23572] not chained 960000 origins [ 1105.408620][T23609] __msan_chain_origin+0x50/0x90 [ 1105.413718][T23572] CPU: 1 PID: 23572 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 1105.418634][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1105.427379][T23572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1105.431954][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1105.441995][T23572] Call Trace: [ 1105.446917][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1105.450178][T23572] dump_stack+0x1df/0x240 [ 1105.455009][T23609] do_syscall_64+0xb0/0x150 [ 1105.459313][T23572] kmsan_internal_chain_origin+0x6f/0x130 [ 1105.463792][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1105.469949][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1105.475804][T23609] [ 1105.480902][T23572] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1105.483199][T23609] Uninit was stored to memory at: [ 1105.489191][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1105.494190][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1105.500242][T23572] ? kmsan_get_metadata+0x11d/0x180 [ 1105.505937][T23609] __msan_chain_origin+0x50/0x90 [ 1105.511111][T23572] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1105.516026][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1105.521809][T23572] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1105.526377][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1105.532418][T23572] ? kfree+0x61/0x30f0 [ 1105.537329][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1105.541375][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1105.546202][T23609] do_syscall_64+0xb0/0x150 [ 1105.551290][T23572] ? kmsan_set_origin_checked+0x95/0xf0 [ 1105.555773][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1105.561293][T23572] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1105.567152][T23609] [ 1105.573497][T23572] ? _copy_from_user+0x15b/0x260 [ 1105.575797][T23609] Uninit was stored to memory at: [ 1105.580737][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1105.585742][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1105.590829][T23572] __msan_chain_origin+0x50/0x90 [ 1105.596525][T23609] __msan_chain_origin+0x50/0x90 [ 1105.601441][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1105.606356][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1105.610951][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1105.615684][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1105.620960][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1105.625881][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1105.630969][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1105.635795][T23609] do_syscall_64+0xb0/0x150 [ 1105.640821][T23572] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1105.645318][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1105.651187][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1105.657042][T23609] [ 1105.661971][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1105.664265][T23609] Uninit was stored to memory at: [ 1105.669102][T23572] do_syscall_64+0xb0/0x150 [ 1105.674106][T23609] kmsan_internal_chain_origin+0xad/0x130 [ 1105.678588][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1105.684290][T23609] __msan_chain_origin+0x50/0x90 [ 1105.690170][T23572] RIP: 0033:0x45c1d9 [ 1105.695087][T23609] do_recvmmsg+0x105a/0x1ee0 [ 1105.698947][T23572] Code: Bad RIP value. [ 1105.703559][T23609] __se_sys_recvmmsg+0x1d1/0x350 [ 1105.707685][T23572] RSP: 002b:00007fbc91028c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1105.712709][T23609] __x64_sys_recvmmsg+0x62/0x80 [ 1105.721081][T23572] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1105.721096][T23572] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1105.725931][T23609] do_syscall_64+0xb0/0x150 [ 1105.733879][T23572] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1105.741842][T23609] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1105.746316][T23572] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1105.754391][T23609] [ 1105.760277][T23572] R13: 0000000000c9fb6f R14: 00007fbc910299c0 R15: 000000000078bfac [ 1105.768226][T23609] Local variable ----msg_sys@do_recvmmsg created at: [ 1105.770540][T23572] Uninit was stored to memory at: [ 1105.778588][T23609] do_recvmmsg+0xc5/0x1ee0 [ 1105.785235][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1105.790231][T23609] do_recvmmsg+0xc5/0x1ee0 [ 1105.794622][T23572] __msan_chain_origin+0x50/0x90 [ 1105.809637][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1105.814228][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1105.819164][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1105.824012][T23572] do_syscall_64+0xb0/0x150 [ 1105.828517][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1105.834398][T23572] [ 1105.836715][T23572] Uninit was stored to memory at: [ 1105.841737][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1105.847451][T23572] __msan_chain_origin+0x50/0x90 [ 1105.852386][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1105.856971][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1105.861904][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1105.866749][T23572] do_syscall_64+0xb0/0x150 [ 1105.871249][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1105.877123][T23572] [ 1105.879438][T23572] Uninit was stored to memory at: [ 1105.884461][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1105.890177][T23572] __msan_chain_origin+0x50/0x90 [ 1105.895111][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1105.899694][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1105.904623][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1105.909471][T23572] do_syscall_64+0xb0/0x150 [ 1105.913990][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1105.919565][T23610] not chained 970000 origins [ 1105.919886][T23572] [ 1105.924482][T23610] CPU: 0 PID: 23610 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1105.926782][T23572] Uninit was stored to memory at: [ 1105.935445][T23610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1105.940468][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1105.950500][T23610] Call Trace: [ 1105.956201][T23572] __msan_chain_origin+0x50/0x90 [ 1105.959462][T23610] dump_stack+0x1df/0x240 [ 1105.964370][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1105.968685][T23610] kmsan_internal_chain_origin+0x6f/0x130 [ 1105.973267][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1105.978959][T23610] ? kmsan_get_metadata+0x4f/0x180 [ 1105.983877][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1105.988961][T23610] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1105.993885][T23572] do_syscall_64+0xb0/0x150 [ 1105.999851][T23610] ? __msan_poison_alloca+0xf0/0x120 [ 1106.004342][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1106.009601][T23610] ? kmsan_get_metadata+0x11d/0x180 [ 1106.015477][T23572] [ 1106.020744][T23610] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1106.023067][T23572] Uninit was stored to memory at: [ 1106.028882][T23610] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1106.033883][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1106.039923][T23610] ? kfree+0x61/0x30f0 [ 1106.045615][T23572] __msan_chain_origin+0x50/0x90 [ 1106.049661][T23610] ? kmsan_get_metadata+0x4f/0x180 [ 1106.054573][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1106.059663][T23610] ? kmsan_set_origin_checked+0x95/0xf0 [ 1106.064241][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1106.069762][T23610] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1106.074674][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1106.080714][T23610] ? _copy_from_user+0x15b/0x260 [ 1106.085536][T23572] do_syscall_64+0xb0/0x150 [ 1106.090445][T23610] ? kmsan_get_metadata+0x4f/0x180 [ 1106.094923][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1106.100008][T23610] __msan_chain_origin+0x50/0x90 [ 1106.105875][T23572] [ 1106.110796][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1106.113101][T23572] Uninit was stored to memory at: [ 1106.117712][T23610] ? __msan_poison_alloca+0xf0/0x120 [ 1106.122686][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1106.127965][T23610] ? __se_sys_recvmmsg+0xac/0x350 [ 1106.133657][T23572] __msan_chain_origin+0x50/0x90 [ 1106.138659][T23610] ? __se_sys_recvmmsg+0xac/0x350 [ 1106.143574][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1106.148577][T23610] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1106.153141][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1106.159022][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1106.163933][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1106.168867][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1106.173696][T23572] do_syscall_64+0xb0/0x150 [ 1106.178525][T23610] do_syscall_64+0xb0/0x150 [ 1106.183004][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1106.187484][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1106.193338][T23572] [ 1106.199208][T23610] RIP: 0033:0x45c1d9 [ 1106.201508][T23572] Uninit was stored to memory at: [ 1106.205377][T23610] Code: Bad RIP value. [ 1106.210392][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1106.214426][T23610] RSP: 002b:00007f2678dd9c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1106.220143][T23572] __msan_chain_origin+0x50/0x90 [ 1106.228520][T23610] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1106.233437][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1106.241379][T23610] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1106.245949][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1106.253903][T23610] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 1106.258818][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1106.266761][T23610] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078c04c [ 1106.271594][T23572] do_syscall_64+0xb0/0x150 [ 1106.279558][T23610] R13: 0000000000c9fb6f R14: 00007f2678dda9c0 R15: 000000000078c04c [ 1106.284041][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1106.291997][T23610] Uninit was stored to memory at: [ 1106.297861][T23572] [ 1106.302886][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1106.305189][T23572] Local variable ----msg_sys@do_recvmmsg created at: [ 1106.310899][T23610] __msan_chain_origin+0x50/0x90 [ 1106.317555][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1106.322466][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1106.326856][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1106.331421][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1106.340789][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1106.345666][T23610] do_syscall_64+0xb0/0x150 [ 1106.350174][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1106.356056][T23610] [ 1106.358372][T23610] Uninit was stored to memory at: [ 1106.363402][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1106.369178][T23610] __msan_chain_origin+0x50/0x90 [ 1106.374136][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1106.378721][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1106.383661][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1106.388514][T23610] do_syscall_64+0xb0/0x150 [ 1106.393042][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1106.398922][T23610] [ 1106.401243][T23610] Uninit was stored to memory at: [ 1106.406270][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1106.411991][T23610] __msan_chain_origin+0x50/0x90 [ 1106.416935][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1106.421523][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1106.426467][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1106.431319][T23610] do_syscall_64+0xb0/0x150 [ 1106.435824][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1106.441704][T23610] [ 1106.444052][T23610] Uninit was stored to memory at: [ 1106.449076][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1106.454797][T23610] __msan_chain_origin+0x50/0x90 [ 1106.459731][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1106.464319][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1106.469249][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1106.474101][T23610] do_syscall_64+0xb0/0x150 [ 1106.478602][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1106.484478][T23610] [ 1106.486792][T23610] Uninit was stored to memory at: [ 1106.491814][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1106.497532][T23610] __msan_chain_origin+0x50/0x90 [ 1106.502469][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1106.507064][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1106.512004][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1106.516854][T23610] do_syscall_64+0xb0/0x150 [ 1106.521356][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1106.527236][T23610] [ 1106.529553][T23610] Uninit was stored to memory at: [ 1106.534579][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1106.540295][T23610] __msan_chain_origin+0x50/0x90 [ 1106.545242][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1106.549838][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1106.554779][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1106.559628][T23610] do_syscall_64+0xb0/0x150 [ 1106.564131][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1106.570009][T23610] [ 1106.572325][T23610] Uninit was stored to memory at: [ 1106.577351][T23610] kmsan_internal_chain_origin+0xad/0x130 [ 1106.583070][T23610] __msan_chain_origin+0x50/0x90 [ 1106.588004][T23610] do_recvmmsg+0x105a/0x1ee0 [ 1106.592592][T23610] __se_sys_recvmmsg+0x1d1/0x350 [ 1106.597528][T23610] __x64_sys_recvmmsg+0x62/0x80 [ 1106.602403][T23610] do_syscall_64+0xb0/0x150 [ 1106.606911][T23610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1106.612788][T23610] [ 1106.615119][T23610] Local variable ----msg_sys@do_recvmmsg created at: [ 1106.621811][T23610] do_recvmmsg+0xc5/0x1ee0 [ 1106.626235][T23610] do_recvmmsg+0xc5/0x1ee0 [ 1106.757648][T23572] not chained 980000 origins [ 1106.762289][T23572] CPU: 0 PID: 23572 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 1106.770956][T23572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1106.781014][T23572] Call Trace: [ 1106.784319][T23572] dump_stack+0x1df/0x240 [ 1106.788660][T23572] kmsan_internal_chain_origin+0x6f/0x130 [ 1106.794500][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1106.799620][T23572] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1106.805519][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1106.810814][T23572] ? kmsan_get_metadata+0x11d/0x180 [ 1106.816015][T23572] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1106.821836][T23572] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1106.827892][T23572] ? kfree+0x61/0x30f0 [ 1106.831954][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1106.837054][T23572] ? kmsan_set_origin_checked+0x95/0xf0 [ 1106.842588][T23572] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1106.848645][T23572] ? _copy_from_user+0x15b/0x260 [ 1106.853567][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1106.858664][T23572] __msan_chain_origin+0x50/0x90 [ 1106.863592][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1106.868210][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1106.873482][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1106.878522][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1106.883547][T23572] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1106.889428][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1106.894380][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1106.899219][T23572] do_syscall_64+0xb0/0x150 [ 1106.903715][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1106.909590][T23572] RIP: 0033:0x45c1d9 [ 1106.913473][T23572] Code: Bad RIP value. [ 1106.917535][T23572] RSP: 002b:00007fbc91028c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1106.925940][T23572] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1106.933902][T23572] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1106.942121][T23572] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1106.950084][T23572] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1106.958046][T23572] R13: 0000000000c9fb6f R14: 00007fbc910299c0 R15: 000000000078bfac [ 1106.966012][T23572] Uninit was stored to memory at: [ 1106.971028][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1106.976749][T23572] __msan_chain_origin+0x50/0x90 [ 1106.981682][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1106.986255][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1106.991177][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1106.996024][T23572] do_syscall_64+0xb0/0x150 [ 1107.000515][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1107.006380][T23572] [ 1107.008690][T23572] Uninit was stored to memory at: [ 1107.013710][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1107.019412][T23572] __msan_chain_origin+0x50/0x90 [ 1107.024346][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1107.028919][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1107.033841][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1107.038676][T23572] do_syscall_64+0xb0/0x150 [ 1107.043165][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1107.049037][T23572] [ 1107.051345][T23572] Uninit was stored to memory at: [ 1107.056354][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1107.062056][T23572] __msan_chain_origin+0x50/0x90 [ 1107.066979][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1107.071554][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1107.076475][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1107.081321][T23572] do_syscall_64+0xb0/0x150 [ 1107.085814][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1107.091683][T23572] [ 1107.093990][T23572] Uninit was stored to memory at: [ 1107.098996][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1107.104700][T23572] __msan_chain_origin+0x50/0x90 [ 1107.109622][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1107.114201][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1107.119123][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1107.123958][T23572] do_syscall_64+0xb0/0x150 [ 1107.128446][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1107.134312][T23572] [ 1107.136622][T23572] Uninit was stored to memory at: [ 1107.141631][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1107.147333][T23572] __msan_chain_origin+0x50/0x90 [ 1107.152251][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1107.156922][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1107.162625][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1107.167463][T23572] do_syscall_64+0xb0/0x150 [ 1107.171950][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1107.177830][T23572] [ 1107.180140][T23572] Uninit was stored to memory at: [ 1107.185149][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1107.190849][T23572] __msan_chain_origin+0x50/0x90 [ 1107.195789][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1107.200365][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1107.205285][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1107.210129][T23572] do_syscall_64+0xb0/0x150 [ 1107.214629][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1107.220511][T23572] [ 1107.222820][T23572] Uninit was stored to memory at: [ 1107.227839][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1107.233544][T23572] __msan_chain_origin+0x50/0x90 [ 1107.238465][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1107.243041][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1107.247961][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1107.252795][T23572] do_syscall_64+0xb0/0x150 [ 1107.257285][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1107.263162][T23572] [ 1107.265470][T23572] Local variable ----msg_sys@do_recvmmsg created at: [ 1107.272561][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1107.276962][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1107.559068][T23572] not chained 990000 origins [ 1107.563698][T23572] CPU: 0 PID: 23572 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 1107.572360][T23572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1107.582409][T23572] Call Trace: [ 1107.585703][T23572] dump_stack+0x1df/0x240 [ 1107.590045][T23572] kmsan_internal_chain_origin+0x6f/0x130 [ 1107.595762][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1107.600962][T23572] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1107.606874][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1107.612171][T23572] ? kmsan_get_metadata+0x11d/0x180 [ 1107.617371][T23572] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1107.623183][T23572] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1107.629248][T23572] ? kfree+0x61/0x30f0 [ 1107.633335][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1107.638446][T23572] ? kmsan_set_origin_checked+0x95/0xf0 [ 1107.643993][T23572] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1107.650064][T23572] ? _copy_from_user+0x15b/0x260 [ 1107.655003][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1107.660112][T23572] __msan_chain_origin+0x50/0x90 [ 1107.665053][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1107.669673][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1107.674963][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1107.679986][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1107.685097][T23572] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1107.690994][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1107.695941][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1107.700797][T23572] do_syscall_64+0xb0/0x150 [ 1107.705306][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1107.711189][T23572] RIP: 0033:0x45c1d9 [ 1107.715070][T23572] Code: Bad RIP value. [ 1107.719130][T23572] RSP: 002b:00007fbc91028c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1107.727535][T23572] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1107.735504][T23572] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1107.743480][T23572] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1107.751464][T23572] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1107.759437][T23572] R13: 0000000000c9fb6f R14: 00007fbc910299c0 R15: 000000000078bfac [ 1107.767418][T23572] Uninit was stored to memory at: [ 1107.772449][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1107.778196][T23572] __msan_chain_origin+0x50/0x90 [ 1107.783135][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1107.787737][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1107.792686][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1107.797541][T23572] do_syscall_64+0xb0/0x150 [ 1107.802049][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1107.807928][T23572] [ 1107.810246][T23572] Uninit was stored to memory at: [ 1107.815297][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1107.821023][T23572] __msan_chain_origin+0x50/0x90 [ 1107.825957][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1107.830581][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1107.835525][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1107.840372][T23572] do_syscall_64+0xb0/0x150 [ 1107.844968][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1107.850855][T23572] [ 1107.853172][T23572] Uninit was stored to memory at: [ 1107.858196][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1107.863912][T23572] __msan_chain_origin+0x50/0x90 [ 1107.868847][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1107.873433][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1107.878376][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1107.883226][T23572] do_syscall_64+0xb0/0x150 [ 1107.888159][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1107.894036][T23572] [ 1107.896353][T23572] Uninit was stored to memory at: [ 1107.901376][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1107.907092][T23572] __msan_chain_origin+0x50/0x90 [ 1107.912033][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1107.916625][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1107.921994][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1107.926843][T23572] do_syscall_64+0xb0/0x150 [ 1107.931346][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1107.937220][T23572] [ 1107.939537][T23572] Uninit was stored to memory at: [ 1107.944560][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1107.950416][T23572] __msan_chain_origin+0x50/0x90 [ 1107.955357][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1107.959964][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1107.964899][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1107.969751][T23572] do_syscall_64+0xb0/0x150 [ 1107.974254][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1107.980133][T23572] [ 1107.982460][T23572] Uninit was stored to memory at: [ 1107.987485][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1107.993201][T23572] __msan_chain_origin+0x50/0x90 [ 1107.998137][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1108.002724][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1108.007659][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1108.012507][T23572] do_syscall_64+0xb0/0x150 [ 1108.017008][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1108.022883][T23572] [ 1108.025202][T23572] Uninit was stored to memory at: [ 1108.030228][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1108.035946][T23572] __msan_chain_origin+0x50/0x90 [ 1108.041060][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1108.045645][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1108.050578][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1108.055425][T23572] do_syscall_64+0xb0/0x150 [ 1108.059936][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1108.065814][T23572] [ 1108.068140][T23572] Local variable ----msg_sys@do_recvmmsg created at: [ 1108.074831][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1108.079263][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1108.259217][T23572] not chained 1000000 origins [ 1108.263927][T23572] CPU: 0 PID: 23572 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 1108.272589][T23572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1108.282646][T23572] Call Trace: [ 1108.285940][T23572] dump_stack+0x1df/0x240 [ 1108.290277][T23572] kmsan_internal_chain_origin+0x6f/0x130 [ 1108.296091][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1108.301211][T23572] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 1108.307106][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1108.312392][T23572] ? kmsan_get_metadata+0x11d/0x180 [ 1108.317589][T23572] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1108.323396][T23572] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 1108.329550][T23572] ? kfree+0x61/0x30f0 [ 1108.333717][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1108.338829][T23572] ? kmsan_set_origin_checked+0x95/0xf0 [ 1108.344377][T23572] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1108.350534][T23572] ? _copy_from_user+0x15b/0x260 [ 1108.355475][T23572] ? kmsan_get_metadata+0x4f/0x180 [ 1108.360590][T23572] __msan_chain_origin+0x50/0x90 [ 1108.365537][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1108.370162][T23572] ? __msan_poison_alloca+0xf0/0x120 [ 1108.375446][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1108.380478][T23572] ? __se_sys_recvmmsg+0xac/0x350 [ 1108.385499][T23572] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1108.391397][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1108.396343][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1108.401200][T23572] do_syscall_64+0xb0/0x150 [ 1108.405710][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1108.411601][T23572] RIP: 0033:0x45c1d9 [ 1108.415484][T23572] Code: Bad RIP value. [ 1108.419540][T23572] RSP: 002b:00007fbc91028c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 1108.427946][T23572] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 1108.435915][T23572] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1108.443882][T23572] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 1108.451849][T23572] R10: 0000000000000002 R11: 0000000000000246 R12: 000000000078bfac [ 1108.459818][T23572] R13: 0000000000c9fb6f R14: 00007fbc910299c0 R15: 000000000078bfac [ 1108.467802][T23572] Uninit was stored to memory at: [ 1108.473003][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1108.478735][T23572] __msan_chain_origin+0x50/0x90 [ 1108.483669][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1108.488259][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1108.493195][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1108.498043][T23572] do_syscall_64+0xb0/0x150 [ 1108.502544][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1108.508419][T23572] [ 1108.510741][T23572] Uninit was stored to memory at: [ 1108.515764][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1108.521482][T23572] __msan_chain_origin+0x50/0x90 [ 1108.526412][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1108.530996][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1108.535941][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1108.540790][T23572] do_syscall_64+0xb0/0x150 [ 1108.545291][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1108.551170][T23572] [ 1108.553522][T23572] Uninit was stored to memory at: [ 1108.558549][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1108.564275][T23572] __msan_chain_origin+0x50/0x90 [ 1108.569222][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1108.573813][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1108.578764][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1108.583615][T23572] do_syscall_64+0xb0/0x150 [ 1108.588119][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1108.593999][T23572] [ 1108.596320][T23572] Uninit was stored to memory at: [ 1108.601349][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1108.607061][T23572] __msan_chain_origin+0x50/0x90 [ 1108.612011][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1108.616615][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1108.621557][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1108.626410][T23572] do_syscall_64+0xb0/0x150 [ 1108.630914][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1108.636789][T23572] [ 1108.639115][T23572] Uninit was stored to memory at: [ 1108.644140][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1108.649855][T23572] __msan_chain_origin+0x50/0x90 [ 1108.654787][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1108.659375][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1108.664312][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1108.669159][T23572] do_syscall_64+0xb0/0x150 [ 1108.673660][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1108.679546][T23572] [ 1108.681864][T23572] Uninit was stored to memory at: [ 1108.686890][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1108.692605][T23572] __msan_chain_origin+0x50/0x90 [ 1108.697563][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1108.702156][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1108.707129][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1108.711979][T23572] do_syscall_64+0xb0/0x150 [ 1108.716479][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1108.722354][T23572] [ 1108.724669][T23572] Uninit was stored to memory at: [ 1108.729691][T23572] kmsan_internal_chain_origin+0xad/0x130 [ 1108.736273][T23572] __msan_chain_origin+0x50/0x90 [ 1108.741211][T23572] do_recvmmsg+0x105a/0x1ee0 [ 1108.745807][T23572] __se_sys_recvmmsg+0x1d1/0x350 [ 1108.750750][T23572] __x64_sys_recvmmsg+0x62/0x80 [ 1108.755602][T23572] do_syscall_64+0xb0/0x150 [ 1108.760103][T23572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1108.765999][T23572] [ 1108.768318][T23572] Local variable ----msg_sys@do_recvmmsg created at: [ 1108.775130][T23572] do_recvmmsg+0xc5/0x1ee0 [ 1108.779549][T23572] do_recvmmsg+0xc5/0x1ee0 19:16:11 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000032000/0x18000)=nil, &(0x7f0000000280)=[@text32={0x20, &(0x7f0000000140)="b9800000c00f3235010000000f309a090000006500660f3882af724d00002ed8ddc74424008fc4bd87c7442402c43a727fc7442406000000000f011424f30f090f013a360f06c4c18d72d68366baa100ed", 0x51}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4cb]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x40104, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:16:11 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r0, 0x5450, 0x0) 19:16:11 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x4000000000008d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) syz_open_dev$evdev(&(0x7f0000000180)='/dev/input/event#\x00', 0x0, 0x0) fcntl$setpipe(r3, 0x407, 0x0) syz_genetlink_get_family_id$netlbl_unlabel(0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000400)={0x38, 0x1, 0x0, 0x0, 0x3}, 0x0) openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/timer\x00', 0x0) sendmsg$DEVLINK_CMD_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, 0x0, 0x20, 0x0, 0x25dfdbff, {}, [@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ttyS3\x00', 0x0, 0x0) pselect6(0x40, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2}, 0x0, &(0x7f0000000300)={0x3fd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0) 19:16:11 executing program 5: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x410000, 0x8, 0x210000, 0x8}, 0x1c) setsockopt$packet_int(r1, 0x107, 0x13, &(0x7f0000000100), 0x4) dup3(r0, r1, 0x0) 19:16:11 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:11 executing program 2: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000040)={0x0, 0x0, 0x1000, 0x0, 0x0, "d7f207bf4e6c42e644150941197874c576c338"}) 19:16:11 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200)='nl80211\x00') sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000014c0)={0x14, r1, 0xab9535e9a6578fc1, 0x0, 0x0, {0x15}}, 0x14}}, 0x0) 19:16:11 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000004e00)={&(0x7f0000ff4000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff3000/0x4000)=nil, &(0x7f0000ff4000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ff6000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ff7000/0x4000)=nil, 0x0, 0x0, r0}, 0x87e9b1a5bf03cec0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000100)='cmdline\x00') dup(0xffffffffffffffff) preadv(r1, &(0x7f00000017c0), 0x3a8, 0x0) syz_open_procfs(0x0, 0x0) ioctl$KVM_TRANSLATE(0xffffffffffffffff, 0xc018ae85, &(0x7f00000004c0)={0x2, 0x2}) ioctl$TIOCNXCL(0xffffffffffffffff, 0x540d) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 19:16:11 executing program 1: 19:16:12 executing program 4: 19:16:12 executing program 2: 19:16:12 executing program 1: 19:16:12 executing program 4: 19:16:12 executing program 2: 19:16:12 executing program 3: 19:16:14 executing program 5: 19:16:14 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="f7f249b9740c9e02007f00000000000032a5b60a00008024c30e478947d190ac00000000000000000000000097ba4ecb40a2ee2e32a3b88aaf3c06f4970e85a63c9a4b0d8b9aad9c9ba4c998db2f7155d302a7be122bb1609f8b0164eb12c07af20200169c864e1d5f8179cba2e431126de0594cf1487e311e84395a80adbe3e7f3622703c353de8e6928bfd5a5f2cc05e4b942d6ed155b67a555f4b2e2b0cd0e93e41c330f70401c1d920006e65fab4fae51bb32a6f3ca61632d15b0c1cec89839cd7fe16d03af16efd5295d2eea42f3e25765b72b9727176c1966620ada4a27b28739a2eed558cee393ecaa3df004548e6f43be3f968529e96628cebee42b6fa46cb0b55a45cadf1f354a424830def8e07cc514d7615c7689e93ad448a65e9ea04c454bcd4e1fb5b77e741b3c87e65d0ea2d0656d3801495d4c269a587ebeda98f311e2af82a9013e4e58004bbbb1be0"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:14 executing program 1: 19:16:14 executing program 4: 19:16:14 executing program 2: 19:16:14 executing program 3: 19:16:14 executing program 5: syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x82) 19:16:14 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MASTER={0x8, 0xd}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) 19:16:14 executing program 2: syz_emit_ethernet(0x3e, &(0x7f0000000000)={@local, @random="cc6306000100", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, @dest_unreach={0x5, 0x0, 0x0, 0x0, 0x8, 0x15, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr, @broadcast}}}}}}, 0x0) 19:16:14 executing program 3: perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) migrate_pages(0x0, 0xb2, &(0x7f0000000240)=0x7ff, &(0x7f0000000280)=0x1) 19:16:14 executing program 4: 19:16:15 executing program 5: 19:16:15 executing program 2: perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000140)='wchan\x00') preadv(r0, &(0x7f00000017c0), 0x218, 0x0) [ 1112.836323][T23726] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1113.015854][T23726] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1113.039610][T23726] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1113.452906][T23742] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1113.469540][T23742] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1113.477700][T23742] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 19:16:17 executing program 3: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88882, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000100)={'syzkaller1\x00', 0xa732}) r4 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFADDR(r4, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', {0x7, 0x0, @multicast2}}) write$tun(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="00000000ffffffff01000180c200000086dd60a8f24400103afffe800000000000000000000000000000ff"], 0x4a) splice(r0, 0x0, r2, 0x0, 0x18100, 0x0) 19:16:17 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MASTER={0x8, 0xd}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) 19:16:17 executing program 4: r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000180)='/dev/urandom\x00', 0x0, 0x0) ioctl$RNDADDTOENTCNT(r0, 0x40045201, &(0x7f0000000280)=0x1) 19:16:17 executing program 2: openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sysvipc/msg\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0xa4, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) sendmsg$IPCTNL_MSG_TIMEOUT_GET(0xffffffffffffffff, 0x0, 0x0) 19:16:17 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="f7f249b9740c9e02007f00000000000032a5b60a00008024c30e478947d190ac00000000000000000000000097ba4ecb40a2ee2e32a3b88aaf3c06f4970e85a63c9a4b0d8b9aad9c9ba4c998db2f7155d302a7be122bb1609f8b0164eb12c07af20200169c864e1d5f8179cba2e431126de0594cf1487e311e84395a80adbe3e7f3622703c353de8e6928bfd5a5f2cc05e4b942d6ed155b67a555f4b2e2b0cd0e93e41c330f70401c1d920006e65fab4fae51bb32a6f3ca61632d15b0c1cec89839cd7fe16d03af16efd5295d2eea42f3e25765b72b9727176c1966620ada4a27b28739a2eed558cee393ecaa3df004548e6f43be3f968529e96628cebee42b6fa46cb0b55a45cadf1f354a424830def8e07cc514d7615c7689e93ad448a65e9ea04c454bcd4e1fb5b77e741b3c87e65d0ea2d0656d3801495d4c269a587ebeda98f311e2af82a9013e4e58004bbbb1be0"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:17 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001700)=ANY=[@ANYBLOB="78000000240095d4000000b6e600010000000000", @ANYRES32, @ANYBLOB="00000000ffffffff0000000008000100736671004c0002"], 0x78}}, 0x0) [ 1115.408109][T23757] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1115.425874][T23757] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1115.436544][T23757] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 19:16:18 executing program 4: r0 = syz_open_dev$media(&(0x7f00000001c0)='/dev/media#\x00', 0x0, 0x0) ioctl$SG_EMULATED_HOST(r0, 0xc0347c03, 0x0) 19:16:18 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000280)) r1 = syz_open_pts(r0, 0x0) close(r0) socket$inet_udplite(0x2, 0x2, 0x88) dup2(r0, r1) 19:16:18 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r0, 0x5386, &(0x7f0000000080)) 19:16:18 executing program 5: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm-control\x00', 0x0, 0x0) close(r0) 19:16:18 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:18 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_mreq(r0, 0x29, 0x15, &(0x7f0000000040)={@dev}, 0x14) 19:16:18 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f00000001c0)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000900)=ANY=[@ANYBLOB="0300023a0967b207d598a5b45874729900e9015d30130000000002ca8472d208deb14d4f8bc28552da92b996429b24c403cabd238c886de706c4"], 0x1}}, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa100b000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3c}], 0x1, 0x40, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10040}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[0x42, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x4], 0x1f000, 0x40240}) ioctl$KVM_RUN(r3, 0xae80, 0x0) socket(0x0, 0x2, 0x7) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) 19:16:20 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{0x0}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:20 executing program 5: openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sysvipc/msg\x00', 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) dup(r0) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r1, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x146, &(0x7f0000000240)="f7f249b9740c9e02007f00000000000032a5b60a00008024c30e478947d190ac00000000000000000000000097ba4ecb40a2ee2e32a3b88aaf3c06f4970e85a63c9a4b0d8b9aad9c9ba4c998db2f7155d302a7be122bb1609f8b0164eb12c07af20200169c864e1d5f8179cba2e431126de0594ce1487e311e84395a80adbe3e7f3622703c353de8e6928bfd5a5f2cc05e4b942d6ed155b67a555f4b2e2b0cd0e93e41c330f70401c1d96f546e65fab4fae51bb32a6f3ca61632d15b0c1cec89839cd7fe16d03af16efd5295d2eea42f3e25765b72b9727176c1966620ada4a27b28739a2eed558cee393ecaa3df004548e6f43be3f968529e96628cebee42b6fa46cb0b55a45cadf1f354a424830def8e07cc514d7615c7689e93ad448a65e9ea04c454bcd4e1fb5b77e741b3c87e65d0ea2d0656d3801495d4c269a587e4e58004bbbb1be0"}}], 0x1c) ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r1, 0x0, 0x0) 19:16:20 executing program 3: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x2000000002008100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() r1 = openat$qat_adf_ctl(0xffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) 19:16:20 executing program 4: clone(0x3a3dd4008400af01, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0xe, 0x4, 0x2a8, 0x158, 0x140, 0x140, 0x140, 0x98, 0x1f0, 0x210, 0x210, 0x210, 0x1f0, 0x4, 0x0, {[{{@ip={@empty, @empty, 0x0, 0x0, 'bond_slave_1\x00'}, 0x0, 0x70, 0x98}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00'}}, {{@uncond, 0x0, 0x70, 0xa8}, @common=@inet=@SET3={0x38, 'SET\x00'}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x308) 19:16:20 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) [ 1118.614414][T23809] x_tables: duplicate underflow at hook 2 [ 1118.636882][T23811] QAT: Invalid ioctl [ 1118.658428][T23819] x_tables: duplicate underflow at hook 2 19:16:21 executing program 4: r0 = perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x2000) 19:16:21 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:21 executing program 4: preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats_percpu\x00') preadv(r0, &(0x7f00000017c0), 0x218, 0x0) 19:16:21 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:21 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) syz_open_pts(r0, 0x0) close(r0) 19:16:22 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x218, 0x0) 19:16:22 executing program 2: r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000dc0)='/dev/dsp1\x00', 0x801, 0x0) r1 = dup(r0) ioctl$SNDCTL_DSP_GETCAPS(r1, 0x8004500f, &(0x7f0000000000)) 19:16:24 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{0x0}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:24 executing program 4: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$binderN(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r1, &(0x7f00000017c0), 0x218, 0x0) 19:16:24 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x218, 0x0) 19:16:24 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc008ae88, &(0x7f00000000c0)={0x3, 0x0, [0x9e, 0x0, 0x3, 0x8, 0xfdfdffff]}) 19:16:24 executing program 5: r0 = socket$inet6(0xa, 0x8000000000080001, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000000)={0x1, {{0xa, 0x0, 0x0, @mcast1}}, 0x1}, 0x90) 19:16:24 executing program 3: r0 = perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0x615, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="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"/926], &(0x7f0000000000)='GPL\x00', 0x5, 0xfd39, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r3) 19:16:24 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) preadv(0xffffffffffffffff, &(0x7f00000017c0), 0x218, 0x0) 19:16:24 executing program 3: perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats_percpu\x00') preadv(r0, &(0x7f00000017c0), 0x218, 0x0) 19:16:24 executing program 5: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x218, 0x0) 19:16:24 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) connect$inet6(r0, &(0x7f0000000200), 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000540)='tls\x00', 0x4) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000040)=@gcm_128={{0x303}, '\x00\x00\x00\x00\x00\x00|\x00', "b19c965f3fea724835192913b40bae1d", "3faf4d7f", "c6ca89e4e891a86b"}, 0x28) sendto$inet6(r0, &(0x7f0000000180)="8e", 0x1, 0x8000, 0x0, 0x0) sendto$inet6(r0, &(0x7f0000000080)="15", 0x1, 0x0, 0x0, 0x0) 19:16:24 executing program 4: perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000011c0)='attr/fscreate\x00') preadv(r0, &(0x7f00000017c0), 0x218, 0x0) 19:16:24 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:27 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{0x0}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:27 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = eventfd(0x0) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000000000)={r4, 0x0, 0x2, r4}) dup3(r3, r1, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000100)={[], 0x0, 0x73ec7}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000380)={0x0, 0x0, @pic={0x0, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1}}) ioctl$KVM_RUN(r5, 0xae80, 0x0) 19:16:27 executing program 4: perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats_percpu\x00') preadv(r0, &(0x7f00000017c0), 0x218, 0x0) 19:16:27 executing program 5: openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sysvipc/msg\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0xa4, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) 19:16:27 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:27 executing program 2: r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r0, 0xc4c85512, &(0x7f00000005c0)={{0x6, 0x0, 0x0, 0x0, 'syz1\x00'}}) [ 1125.053517][T23920] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 19:16:27 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000240007050000ff030000000000f50000", @ANYRES32=r3, @ANYBLOB="00000800ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=@newqdisc={0x3c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x0, 0x8}}, [@qdisc_kind_options=@q_codel={{0xa, 0x1, 'codel\x00'}, {0xc, 0x2, [@TCA_CODEL_LIMIT={0x8}]}}]}, 0x3c}}, 0x0) 19:16:27 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) connect$inet6(r0, &(0x7f0000000200), 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000540)='tls\x00', 0x4) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000040)=@gcm_128={{0x303}, '\x00\x00\x00\x00\x00\x00|\x00', "b19c965f3fea724835192913b40bae1d", "3faf4d7f", "c6ca89e4e891a86b"}, 0x28) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendto$inet6(r0, &(0x7f0000000180)="8e", 0x1, 0x8000, 0x0, 0x0) sendto$inet6(r0, &(0x7f0000000300)="98", 0x1, 0x0, 0x0, 0x0) 19:16:27 executing program 4: r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0) ftruncate(r0, 0x2008001) lseek(r0, 0x0, 0x3) 19:16:27 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) [ 1125.336555][T23951] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. 19:16:27 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)) pipe(&(0x7f0000000100)) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket(0x1, 0x803, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0xa8, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x1200}, [@IFLA_LINKINFO={0x78, 0x12, 0x0, 0x1, @vlan={{0x9, 0x1, 'vlan\x00'}, {0x68, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_EGRESS_QOS={0x10, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x3, 0x1}}]}, @IFLA_VLAN_EGRESS_QOS={0x4c, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xffffffff, 0x9}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x7f, 0x2}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x20000003}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x2fc}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x4, 0xfffffffa}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0x5}}]}]}}}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0xa8}}, 0x0) [ 1125.502734][T23961] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. 19:16:27 executing program 4: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$binderN(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r1, &(0x7f00000017c0), 0x218, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, 0x0) [ 1125.754606][T23976] binder: 23973:23976 ioctl c0c0583b 0 returned -22 19:16:30 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:30 executing program 5: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000c00)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a54000000090ac9df000000000000000000000000080005400000002a0900010073797a300000000008000a40000000000900020073797a310000000018000980140002800c000180080001"], 0x7c}}, 0x0) 19:16:30 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) dup2(r0, r0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r1, &(0x7f00000017c0), 0x218, 0x0) 19:16:30 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000000c0)={'team0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="280000001000010400"/20, @ANYRES32=r1, @ANYBLOB="0000000000000000050021"], 0x28}}, 0x0) 19:16:30 executing program 4: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x8}, 0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c) bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000847fff)='X', 0x11f30, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) 19:16:30 executing program 3: r0 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x4, 0x0, 0x12, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb, 0x1, 'taprio\x00'}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x80000001}]}]}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}]}}]}, 0xa4}}, 0x0) 19:16:30 executing program 5: r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x98428d57a99b5f44) io_setup(0xd, &(0x7f0000000100)=0x0) r2 = creat(&(0x7f0000000380)='./bus\x00', 0x0) lseek(r2, 0x7ffffc, 0x0) write$binfmt_elf64(r2, &(0x7f0000000140)=ANY=[], 0xfd14) fallocate(r2, 0x100000003, 0x804000, 0x28120001) io_submit(r1, 0x200002f1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x80000000000000, 0x1, 0x0, r0, &(0x7f0000000000), 0x377140be6b5ef4c7}]) 19:16:30 executing program 2: r0 = socket$inet6(0xa, 0x8000000000080001, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x0, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000000)={0x1, {{0xa, 0x0, 0x0, @mcast1}}, 0x1}, 0x90) 19:16:30 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) dup2(r0, r0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r1, &(0x7f00000017c0), 0x218, 0x0) 19:16:30 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)) perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$bsg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bsg\x00', 0x0, 0x0) syz_open_dev$sg(&(0x7f00000003c0)='/dev/sg#\x00', 0x0, 0x0) pipe(&(0x7f0000000100)) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket(0x1, 0x803, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0xa8, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x1200}, [@IFLA_LINKINFO={0x78, 0x12, 0x0, 0x1, @vlan={{0x9, 0x1, 'vlan\x00'}, {0x68, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_EGRESS_QOS={0x10, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x3, 0x1}}]}, @IFLA_VLAN_EGRESS_QOS={0x4c, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xffffffff, 0x9}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x7f, 0x2}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x20000003}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x2fc}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x4, 0xfffffffa}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x9, 0x5}}]}]}}}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0xa8}}, 0x0) 19:16:30 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0) 19:16:31 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) dup2(r0, r0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r1, &(0x7f00000017c0), 0x218, 0x0) 19:16:33 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x218, 0x0) 19:16:33 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) add_key$keyring(&(0x7f0000000040)='keyring\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000480)={[0x0, 0x0, 0xcdd, 0x0, 0x0, 0x0, 0xfb]}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f0000000140)=ANY=[@ANYBLOB="7f698cbc"]) r3 = socket$inet6(0xa, 0x2, 0x0) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:16:33 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/dev\x00') r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r3, r0, 0x0, 0x20000000000000d8) 19:16:33 executing program 3: writev(0xffffffffffffffff, 0x0, 0x0) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86082, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000002c0), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280)}}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3400000010000124539300"/20, @ANYRES32=r6, @ANYBLOB="ddffffffffffffff140012000c0001006272696467650000040002004a7bcdad645e2b4f436b014dbe92b146588c1b6a238e3c4ad8aaf50c71a900efb4ed6f549d620cab62d981eb6d374923a2b1597449331902ca8bdf6a7b128fe8476d4d6652037756d0ac81399ac0582b151d141fe83ed1d9132ab02d67c1c5acd5789c4893db25c5630cca8a430aeff83dd7770e5485b3580e"], 0x34}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0x6100, 0x2200}, [@IFLA_MASTER={0x8, 0xa, r6}]}, 0x28}}, 0x0) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000300)={[0x35, 0x0, 0x8000, 0x0, 0x1fff], 0x100000}) 19:16:33 executing program 5: r0 = syz_open_dev$video4linux(&(0x7f0000000080)='/dev/v4l-subdev#\x00', 0x0, 0x0) ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc038563c, &(0x7f0000000180)={0x9e0000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) 19:16:33 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 1131.279922][T24060] device bridge1 entered promiscuous mode [ 1131.352571][T24067] device bridge_slave_0 left promiscuous mode [ 1131.365942][T24067] bridge0: port 1(bridge_slave_0) entered disabled state 19:16:33 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x218, 0x0) [ 1131.540132][T24067] bridge1: port 1(bridge_slave_0) entered blocking state [ 1131.548872][T24067] bridge1: port 1(bridge_slave_0) entered disabled state [ 1131.571525][T24067] device bridge_slave_0 entered promiscuous mode [ 1131.592377][T24067] bridge1: port 1(bridge_slave_0) entered blocking state [ 1131.600705][T24067] bridge1: port 1(bridge_slave_0) entered forwarding state 19:16:34 executing program 5: perf_event_open(&(0x7f00000001c0)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sysinfo(&(0x7f00000000c0)=""/181) 19:16:34 executing program 5: perf_event_open(&(0x7f00000001c0)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000000)='wireguard\x00') sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000800)={0x54, r1, 0x409, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x2c, 0x8, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g='\xf4M\xa3g\xa8\x8e\xe6VO\x02\x02\x11Eg\'\b/\\\xeb\xee\x8b\x1b\xf5\xebs74\x1bE\x9b9\"'}]}]}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg1\x00'}]}, 0x54}}, 0x0) 19:16:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa10000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d267d9f8f30f1bb429000f20c06635200000000f22c067f3af", 0x3b}], 0x1, 0x0, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="9ffb01001800e00000000300000000000000000903000000008e"], 0x0, 0x1b}, 0x20) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000580)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x1f000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000000)) 19:16:34 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x218, 0x0) 19:16:34 executing program 3: writev(0xffffffffffffffff, 0x0, 0x0) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfffffecc) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86082, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000002c0), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280)}}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3400000010000124539300"/20, @ANYRES32=r6, @ANYBLOB="ddffffffffffffff140012000c0001006272696467650000040002004a7bcdad645e2b4f436b014dbe92b146588c1b6a238e3c4ad8aaf50c71a900efb4ed6f549d620cab62d981eb6d374923a2b1597449331902ca8bdf6a7b128fe8476d4d6652037756d0ac81399ac0582b151d141fe83ed1d9132ab02d67c1c5acd5789c4893db25c5630cca8a430aeff83dd7770e5485b3580e"], 0x34}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0x6100, 0x2200}, [@IFLA_MASTER={0x8, 0xa, r6}]}, 0x28}}, 0x0) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000300)={[0x35, 0x0, 0x8000, 0x0, 0x1fff], 0x100000}) 19:16:34 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) ptrace$setopts(0x4206, r2, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r2, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x16f, &(0x7f0000000240)="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"}}], 0x1c) ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r2, 0x0, 0x0) [ 1132.453607][T24101] device bridge2 entered promiscuous mode [ 1132.539683][T24101] device bridge_slave_0 left promiscuous mode [ 1132.546795][T24101] bridge1: port 1(bridge_slave_0) entered disabled state [ 1132.611478][T24101] bridge2: port 1(bridge_slave_0) entered blocking state [ 1132.618722][T24101] bridge2: port 1(bridge_slave_0) entered disabled state [ 1132.628166][T24101] device bridge_slave_0 entered promiscuous mode [ 1132.637374][T24101] bridge2: port 1(bridge_slave_0) entered blocking state [ 1132.644684][T24101] bridge2: port 1(bridge_slave_0) entered forwarding state 19:16:36 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:36 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r1, &(0x7f00000017c0), 0x218, 0x0) 19:16:36 executing program 4: r0 = syz_open_dev$video4linux(&(0x7f0000000080)='/dev/v4l-subdev#\x00', 0x5, 0x0) ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205648, &(0x7f0000000180)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) 19:16:36 executing program 2: perf_event_open(&(0x7f00000001c0)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) 19:16:36 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x0, [0x4b564d04, 0x0, 0x3, 0x8, 0xfdfdffff]}) dup2(r5, r4) [ 1134.379589][T24131] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. 19:16:36 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f", 0x1}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:37 executing program 4: r0 = syz_open_dev$video4linux(&(0x7f0000000080)='/dev/v4l-subdev#\x00', 0x0, 0x0) ioctl$VIDIOC_S_EXT_CTRLS(r0, 0x8008563f, 0x0) 19:16:37 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0xc008ae88, &(0x7f00000000c0)={0x3, 0x0, [0xc0000101, 0x0, 0x3, 0x8, 0xc001001b]}) dup2(r5, r4) 19:16:37 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r1, &(0x7f00000017c0), 0x218, 0x0) 19:16:37 executing program 3: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) setuid(0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, 0x0, 0x0) [ 1134.755864][T24154] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. [ 1134.853583][T24165] ucma_write: process 1177 (syz-executor.3) changed security contexts after opening file descriptor, this is not allowed. 19:16:37 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r1, &(0x7f00000017c0), 0x218, 0x0) 19:16:38 executing program 5: 19:16:38 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0) chown(&(0x7f00000001c0)='./file0/bus\x00', 0x0, 0x0) 19:16:38 executing program 2: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x6, 0x108, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa, 0x0, @perf_bp={0x0, 0x8}, 0x208, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x1) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, 0x11, r0, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='clear_refs\x00') r2 = syz_open_procfs(0x0, &(0x7f0000000040)='sessionid\x00') sendfile(r1, r2, 0x0, 0x1) 19:16:38 executing program 3: 19:16:38 executing program 1: r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:38 executing program 3: 19:16:40 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f", 0x1}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="f7f249b9740c9e02007f00000000000032a5b60a00008024c30e478947d190ac00000000000000000000000097ba4ecb40a2ee2e32a3b88aaf3c06f4970e85a63c9a4b0d8b9aad9c9ba4c998db2f7155d302a7be122bb1609f8b0164eb12c07af20200169c864e1d5f8179cba2e431126de0594cf1487e311e84395a80adbe3e7f3622703c353de8e6928bfd5a5f2cc05e4b942d6ed155b67a555f4b2e2b0cd0e93e41c330f70401c1d920006e65fab4fae51bb32a6f3ca61632d15b0c1cec89839cd7fe16d03af16efd5295d2eea42f3e25765b72b9727176c1966620ada4a27b28739a2eed558cee393ecaa3df004548e6f43be3f968529e96628cebee42b6fa46cb0b55a45cadf1f354a424830def8e07cc514d7615c7689e93ad448a65e9ea04c454bcd4e1fb5b77e741b3c87e65d0ea2d0656d3801495d4c269a587ebeda98f311e2af82a9013e4e58004bbbb1be0"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:40 executing program 4: 19:16:40 executing program 2: 19:16:40 executing program 1: r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:40 executing program 5: 19:16:40 executing program 3: 19:16:40 executing program 4: 19:16:40 executing program 2: 19:16:40 executing program 5: 19:16:40 executing program 3: 19:16:40 executing program 1: r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:40 executing program 4: 19:16:43 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f", 0x1}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:43 executing program 5: 19:16:43 executing program 2: 19:16:43 executing program 3: 19:16:43 executing program 1: openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:43 executing program 4: 19:16:43 executing program 5: 19:16:43 executing program 2: 19:16:43 executing program 4: 19:16:43 executing program 1: openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:43 executing program 3: 19:16:43 executing program 5: 19:16:46 executing program 3: 19:16:46 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:46 executing program 1: openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:46 executing program 5: 19:16:46 executing program 4: 19:16:46 executing program 2: 19:16:46 executing program 3: 19:16:46 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x0, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:46 executing program 5: 19:16:46 executing program 4: 19:16:46 executing program 2: 19:16:46 executing program 5: 19:16:46 executing program 3: 19:16:49 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="f7f249b9740c9e02007f00000000000032a5b60a00008024c30e478947d190ac00000000000000000000000097ba4ecb40a2ee2e32a3b88aaf3c06f4970e85a63c9a4b0d8b9aad9c9ba4c998db2f7155d302a7be122bb1609f8b0164eb12c07af20200169c864e1d5f8179cba2e431126de0594cf1487e311e84395a80adbe3e7f3622703c353de8e6928bfd5a5f2cc05e4b942d6ed155b67a555f4b2e2b0cd0e93e41c330f70401c1d920006e65fab4fae51bb32a6f3ca61632d15b0c1cec89839cd7fe16d03af16efd5295d2eea42f3e25765b72b9727176c1966620ada4a27b28739a2eed558cee393ecaa3df004548e6f43be3f968529e96628cebee42b6fa46cb0b55a45cadf1f354a424830def8e07cc514d7615c7689e93ad448a65e9ea04c454bcd4e1fb5b77e741b3c87e65d0ea2d0656d3801495d4c269a587ebeda98f311e2af82a9013e4e58004bbbb1be0"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:49 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x0, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:49 executing program 2: 19:16:49 executing program 4: 19:16:49 executing program 5: 19:16:49 executing program 3: 19:16:49 executing program 4: 19:16:49 executing program 2: r0 = socket(0x2, 0x5, 0x0) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f0000000080), &(0x7f0000000000)=0x74) 19:16:49 executing program 5: r0 = socket$inet_sctp(0x2, 0x1, 0x84) connect$inet(r0, &(0x7f00000000c0)={0x10, 0x2}, 0x10) sendmsg$inet_sctp(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000100)='/', 0x1}], 0x1, &(0x7f0000000040)=ANY=[@ANYBLOB="14"], 0x24}, 0x0) 19:16:49 executing program 3: r0 = socket$inet_sctp(0x2, 0x1, 0x84) connect$inet(r0, &(0x7f0000000200)={0x10, 0x2}, 0x10) sendmsg$inet_sctp(r0, &(0x7f00000013c0)={&(0x7f0000000080)=@in={0x10, 0x2}, 0x10, &(0x7f0000001340)=[{&(0x7f00000000c0)='I', 0x1}], 0x1, &(0x7f0000001380)=[@prinfo={0x14}], 0x14}, 0x0) 19:16:49 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x0, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:49 executing program 4: r0 = socket$inet_sctp(0x2, 0x1, 0x84) connect$inet(r0, &(0x7f00000000c0)={0x10, 0x2}, 0x10) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x7, &(0x7f0000000300), 0x8c) 19:16:52 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:52 executing program 2: r0 = socket(0x2, 0x5, 0x0) bind(r0, &(0x7f0000000180)=@in={0x10, 0x2}, 0x10) connect$inet(r0, &(0x7f0000000140)={0x10, 0x2}, 0x10) 19:16:52 executing program 3: r0 = socket$inet_sctp(0x2, 0x1, 0x84) connect$inet(r0, &(0x7f00000000c0)={0x10, 0x2}, 0x10) sendmsg(r0, &(0x7f0000003880)={0x0, 0x0, 0x0}, 0x20109) 19:16:52 executing program 5: r0 = io_uring_setup(0xa4, &(0x7f0000000080)) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, 0x0, 0x0) 19:16:52 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x9, &(0x7f00000002c0), 0x0) memfd_create(0x0, 0x0) ftruncate(0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x10, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000040)=0x1, 0x4) sendto$inet6(r0, &(0x7f00000000c0)="044a", 0x2, 0x200008c1, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c) 19:16:52 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(0xffffffffffffffff, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:52 executing program 2: unshare(0x40000000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) bind$inet6(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet(0x2, 0x5, 0x0) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000280)={'lo\x00', {0x2, 0x0, @remote}}) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000100)={'lo\x00', {0x2, 0x0, @empty}}) 19:16:52 executing program 4: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) dup(r0) socket$inet(0x2, 0x4000000000000001, 0x0) syz_open_dev$sg(&(0x7f00000003c0)='/dev/sg#\x00', 0x0, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0) 19:16:53 executing program 3: mkdir(&(0x7f0000000300)='./file0\x00', 0x0) mknod$loop(&(0x7f0000000940)='./file0/bus\x00', 0x6210, 0x0) 19:16:53 executing program 5: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x1b0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000440), 0x12f7e5) clone(0x2000000002000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() setsockopt$inet6_buf(r0, 0x29, 0x23, 0x0, 0x0) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x2f) fcntl$setstatus(r0, 0x4, 0x80000000002c00) 19:16:53 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(0xffffffffffffffff, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) [ 1150.664959][T24351] IPVS: ftp: loaded support on port[0] = 21 19:16:53 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r4, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r4, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@newtfilter={0x3c, 0x64, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0xc, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x8, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0x4}]}]}}]}, 0x3c}}, 0x0) [ 1151.025339][T24386] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1151.068859][T24391] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1151.770023][T24351] IPVS: ftp: loaded support on port[0] = 21 [ 1152.091435][T22230] tipc: TX() has been purged, node left! 19:16:55 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0xffffffffffffffff, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="f7f249b9740c9e02007f00000000000032a5b60a00008024c30e478947d190ac00000000000000000000000097ba4ecb40a2ee2e32a3b88aaf3c06f4970e85a63c9a4b0d8b9aad9c9ba4c998db2f7155d302a7be122bb1609f8b0164eb12c07af20200169c864e1d5f8179cba2e431126de0594cf1487e311e84395a80adbe3e7f3622703c353de8e6928bfd5a5f2cc05e4b942d6ed155b67a555f4b2e2b0cd0e93e41c330f70401c1d920006e65fab4fae51bb32a6f3ca61632d15b0c1cec89839cd7fe16d03af16efd5295d2eea42f3e25765b72b9727176c1966620ada4a27b28739a2eed558cee393ecaa3df004548e6f43be3f968529e96628cebee42b6fa46cb0b55a45cadf1f354a424830def8e07cc514d7615c7689e93ad448a65e9ea04c454bcd4e1fb5b77e741b3c87e65d0ea2d0656d3801495d4c269a587ebeda98f311e2af82a9013e4e58004bbbb1be0"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:55 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ffffff9}]}) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) fadvise64(r0, 0x0, 0x0, 0x0) 19:16:55 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x0, 0x0) 19:16:55 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(0xffffffffffffffff, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:55 executing program 4: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@updpolicy={0xb8, 0x13, 0x1, 0x0, 0x0, {{@in6=@mcast1, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2}}}, 0xb8}}, 0x0) 19:16:55 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x220007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) open(0x0, 0x0, 0x0) fchdir(0xffffffffffffffff) sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, 0x0, 0x0) openat$vcsu(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000000)=0x4, 0x4) sendto$inet(r0, &(0x7f0000000380)='\f', 0x1, 0x0, 0x0, 0x0) 19:16:55 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0xffffffffffffffff, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:55 executing program 4: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000380)="895b74e29fc8e535522bed7a32ea79b717bc42ac3a565d019abadd5a3d871dbb918bcc1518839ca88193da410d75165f0b7b52661c355c", 0x37}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sched_setattr(0x0, &(0x7f00000000c0)={0x38}, 0x0) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 1153.571708][T22230] tipc: TX() has been purged, node left! 19:16:56 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0xffffffffffffffff, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:56 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:56 executing program 2: r0 = socket(0x1000000010, 0x80002, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000014c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r3, @ANYBLOB="00000000ffffffff00000000090001006866736300000000080002"], 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="680000002c00270d00000000000000f4ff000000", @ANYRES32=r3, @ANYBLOB="0000000000000000f2ff00000a0001006261736963000000380002003400028008000100f98b0000280002801000010000000000000000008b0000001400020000000700060000000000000001"], 0x68}}, 0x0) sendmmsg$alg(r0, &(0x7f0000000200), 0x4924924924926d3, 0x0) 19:16:56 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 1153.918661][T24460] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. 19:16:56 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) [ 1154.048091][T24460] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'. 19:16:56 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @ipv4={[], [], @local}}], 0x1c) 19:16:56 executing program 3: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f0000000580), 0xefee) write$FUSE_INIT(r0, &(0x7f0000000140)={0x50, 0x0, 0x2, {0x7, 0x8}}, 0x50) 19:16:56 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:56 executing program 2: r0 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x6}, 0x1c) connect$inet6(r0, &(0x7f0000004540)={0xa, 0x4e20, 0x0, @ipv4={[], [], @multicast2}}, 0x1c) sendmmsg(r0, &(0x7f0000004d80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffe0}}], 0x1, 0x4000000) 19:16:56 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:16:56 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, 0x0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/5, 0x5}], 0x3, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 1154.468083][T24481] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 19:16:59 executing program 4: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000180)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000040)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @local, 0x4}, {0xa, 0x0, 0x0, @mcast1}, r1}}, 0x48) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f00000002c0)={0x3, 0x40, 0xfa00, {{0x2, 0x4e24, 0x0, @private1}, {0x2, 0x0, 0xfff7fdc0, @loopback}, r1}}, 0x48) 19:16:59 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ffffff9}]}) setreuid(0x0, 0x0) 19:16:59 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:16:59 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x805, 0x0) write$uinput_user_dev(r0, &(0x7f0000000880)={'syz1\x00'}, 0x45c) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x12) ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0) 19:16:59 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_NESTED_STATE(r4, 0x8400ae8e, &(0x7f0000002a00)={{0x0, 0x0, 0x80}, "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", "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"}) dup2(0xffffffffffffffff, r4) 19:16:59 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r1, &(0x7f00000017c0), 0x218, 0x0) [ 1156.860282][T24518] input: syz1 as /devices/virtual/input/input7 [ 1156.936622][T24522] kvm: vcpu 129: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. 19:16:59 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r1, &(0x7f00000017c0), 0x218, 0x0) [ 1157.030149][T24537] input: syz1 as /devices/virtual/input/input8 19:16:59 executing program 5: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_int(r0, 0x107, 0xc, 0x0, &(0x7f0000000100)) 19:16:59 executing program 4: r0 = socket$kcm(0x10, 0x2, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000003c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x58, r1, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0x44, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ipvlan0\x00'}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1={0xff, 0xe}}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e24}]}]}, 0x58}}, 0x0) 19:16:59 executing program 2: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e24, 0x0, @mcast1, 0x6}, 0x1c) setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8) connect$inet6(r1, &(0x7f0000004540)={0xa, 0x4e20, 0x0, @ipv4={[], [], @multicast2}}, 0x1c) sendmmsg(r1, &(0x7f0000004d80)=[{{0x0, 0x2000000, &(0x7f0000001500)=[{&(0x7f0000000040)="d3622fe131479cee20fb607a9585dc0b411519fd3b65066522d73df58b9257b566c6fc626776defc3a2e249c9120cab00220bc31d41e44f96f67971b8ed8a3dc9eb4123a903d58da02dd1eca653150422bc91e9585fb38", 0x57}, {&(0x7f00000011c0)="7cc3be44ec866303c11f9ec49c2fe80d4ccef580f3bf717b5e129f1dc7766fdf864b7bc35924f34bb5fd1dd89172a4b0db90eea51bdfec78bb53e8d41773cba7f1305a8a40b7368445a71ef7870273f1544930baf73a8bfa6ece09d54376b821b65fdf1e0704f1f3c5a823fa67f635159af010053f5b909f8e944c43d6fb1c4fca639b470d3e6ad140d0838958ecf0fc98a780205474fdeb93a97d27b4f3314a9585129aaec893d7fe36d87fd746841ac5c60b31e1732a1a3ca0afcc4068cdde63b142700c563c1ab59dc0b7200723bf21c694583ed8fed1b2bc5c204df3812c223ce0de2f40b69e7f4e8ba1c3ebc31de2f4190e3f1ceb", 0xf7}, {&(0x7f00000012c0), 0x80fe}, {&(0x7f0000000280)="0c22fcc306e8a4d628dc3f33cd1758b784d34ef62ecd943b96c5573b05e34886b55503a08eeac42aafc204e9fec654b4b0853f4c32d8d6e0968a96b81710a9ed49ae96ea22eb07accdc99ed31fb48b921b4c9ae0278829eb32247169da3593e5e73371e82e3558cd87b9c876b91e091e933496ae3a6b5a00a79f50110980c83af2fd44e0f08908f806be4146080def894a3ac87c3d214e32b0e031c8873b6ed3cdb9c160ee236576cb5a749ee356d4f5df961b35ec3667bcfa641e2c812a5eefbd78546783b6bd280dc4ec1cd015bee7d07f0993d6", 0xd5}, {&(0x7f0000001440)="7b18908bcd34b2f4eef2193c5f89bb79551b5d7000ccc31628374b03e7f0b8bbfe45", 0x22}], 0x5, 0x0, 0x0, 0xffffffe0}}], 0x400000000000132, 0x4000000) 19:16:59 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r1, &(0x7f00000017c0), 0x218, 0x0) 19:16:59 executing program 3: pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0x37cb1133) socket$inet(0x2, 0x3, 0x33) r3 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x5}, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$inet(r2, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}, 0x10) connect$inet(r2, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10) splice(r0, 0x0, r2, 0x0, 0x19404, 0x0) 19:16:59 executing program 4: r0 = add_key$user(&(0x7f0000000080)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000380)="585ccbe4ed83b836c1a6474914dc55e72206297b6895b66147b3c7218a9169a85ea0bdc9e1587a0500000000000000422cb4963a160161b1cd3923dd4a71c2ff06007b6b4816122d2550829eaa9435c99926022b8753a188748c569f435fb3bae96efb74b50ec93c152f5e8e198a29e5c0d0c60000ce0637ce0000b4ec24c53d3d661ff5ff70e48884ca000018cea71fcfacf40d32e4b58a8d2725561f6110fd7b06f90b5274cc5c1e298a16324fe27da2a9d5ba9ff3c009d308bd73f4772539", 0x34d, 0xfffffffffffffffe) r1 = add_key$user(&(0x7f0000000200)='user\x00', &(0x7f00000005c0)={'syz'}, &(0x7f0000000100)="01", 0x1, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f00000001c0)={r1, r0, r1}, 0x0, 0x0, 0x0) 19:16:59 executing program 5: setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x11, 0x800000003, 0x0) bind(r0, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r0, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000400)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd, 0x1, 'fq_codel\x00'}, {0x4}}]}, 0x38}}, 0x0) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, 0x0, 0x0) [ 1158.548250][T24556] not chained 1010000 origins [ 1158.552973][T24556] CPU: 1 PID: 24556 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 1158.561717][T24556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1158.571846][T24556] Call Trace: [ 1158.575174][T24556] dump_stack+0x1df/0x240 [ 1158.579500][T24556] kmsan_internal_chain_origin+0x6f/0x130 [ 1158.585205][T24556] ? kmsan_get_metadata+0x11d/0x180 [ 1158.590410][T24556] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1158.596300][T24556] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1158.602379][T24556] ? sched_clock_cpu+0x7c/0x930 [ 1158.607216][T24556] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1158.613273][T24556] ? sched_clock_cpu+0x7c/0x930 [ 1158.618192][T24556] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1158.624007][T24556] ? kmsan_get_metadata+0x11d/0x180 [ 1158.629223][T24556] ? kmsan_get_metadata+0x11d/0x180 [ 1158.634429][T24556] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1158.640228][T24556] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 1158.646315][T24556] ? idle_cpu+0x9a/0x1d0 [ 1158.650548][T24556] ? kmsan_get_metadata+0x4f/0x180 [ 1158.655649][T24556] ? kmsan_set_origin_checked+0x95/0xf0 [ 1158.661186][T24556] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 1158.667248][T24556] ? _copy_from_user+0x15b/0x260 [ 1158.672178][T24556] ? kmsan_get_metadata+0x4f/0x180 [ 1158.677276][T24556] __msan_chain_origin+0x50/0x90 [ 1158.682208][T24556] __copy_msghdr_from_user+0x555/0xaf0 [ 1158.687758][T24556] __sys_sendmmsg+0x558/0xd80 [ 1158.692435][T24556] ? kmsan_get_metadata+0x4f/0x180 [ 1158.697534][T24556] ? kmsan_internal_set_origin+0x75/0xb0 [ 1158.703168][T24556] ? kmsan_get_metadata+0x11d/0x180 [ 1158.708355][T24556] ? kmsan_get_metadata+0x11d/0x180 [ 1158.713544][T24556] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1158.719358][T24556] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 1158.725524][T24556] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 1158.731420][T24556] __se_sys_sendmmsg+0xbd/0xe0 [ 1158.736182][T24556] __x64_sys_sendmmsg+0x56/0x70 [ 1158.741026][T24556] do_syscall_64+0xb0/0x150 [ 1158.745524][T24556] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1158.751409][T24556] RIP: 0033:0x45c1d9 [ 1158.755387][T24556] Code: Bad RIP value. [ 1158.759436][T24556] RSP: 002b:00007f2678e1bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 1158.767834][T24556] RAX: ffffffffffffffda RBX: 0000000000025a40 RCX: 000000000045c1d9 [ 1158.775824][T24556] RDX: 0400000000000132 RSI: 0000000020004d80 RDI: 0000000000000004 [ 1158.783869][T24556] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000 [ 1158.791842][T24556] R10: 0000000004000000 R11: 0000000000000246 R12: 000000000078bf0c [ 1158.799933][T24556] R13: 0000000000c9fb6f R14: 00007f2678e1c9c0 R15: 000000000078bf0c [ 1158.807905][T24556] Uninit was stored to memory at: [ 1158.812948][T24556] kmsan_internal_chain_origin+0xad/0x130 [ 1158.818657][T24556] __msan_chain_origin+0x50/0x90 [ 1158.823607][T24556] __copy_msghdr_from_user+0x555/0xaf0 [ 1158.829066][T24556] __sys_sendmmsg+0x558/0xd80 [ 1158.833743][T24556] __se_sys_sendmmsg+0xbd/0xe0 [ 1158.838625][T24556] __x64_sys_sendmmsg+0x56/0x70 [ 1158.843472][T24556] do_syscall_64+0xb0/0x150 [ 1158.847967][T24556] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1158.853843][T24556] [ 1158.856155][T24556] Uninit was stored to memory at: [ 1158.861171][T24556] kmsan_internal_chain_origin+0xad/0x130 [ 1158.866875][T24556] __msan_chain_origin+0x50/0x90 [ 1158.871807][T24556] __copy_msghdr_from_user+0x555/0xaf0 [ 1158.877337][T24556] __sys_sendmmsg+0x558/0xd80 [ 1158.882010][T24556] __se_sys_sendmmsg+0xbd/0xe0 [ 1158.886846][T24556] __x64_sys_sendmmsg+0x56/0x70 [ 1158.891682][T24556] do_syscall_64+0xb0/0x150 [ 1158.896184][T24556] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1158.902068][T24556] [ 1158.904386][T24556] Uninit was stored to memory at: [ 1158.909398][T24556] kmsan_internal_chain_origin+0xad/0x130 [ 1158.915103][T24556] __msan_chain_origin+0x50/0x90 [ 1158.920036][T24556] __copy_msghdr_from_user+0x555/0xaf0 [ 1158.925482][T24556] __sys_sendmmsg+0x558/0xd80 [ 1158.930140][T24556] __se_sys_sendmmsg+0xbd/0xe0 [ 1158.934888][T24556] __x64_sys_sendmmsg+0x56/0x70 [ 1158.939721][T24556] do_syscall_64+0xb0/0x150 [ 1158.944208][T24556] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1158.950077][T24556] [ 1158.952387][T24556] Uninit was stored to memory at: [ 1158.957398][T24556] kmsan_internal_chain_origin+0xad/0x130 [ 1158.963109][T24556] __msan_chain_origin+0x50/0x90 [ 1158.968031][T24556] __copy_msghdr_from_user+0x555/0xaf0 [ 1158.973476][T24556] __sys_sendmmsg+0x558/0xd80 [ 1158.978140][T24556] __se_sys_sendmmsg+0xbd/0xe0 [ 1158.982890][T24556] __x64_sys_sendmmsg+0x56/0x70 [ 1158.987739][T24556] do_syscall_64+0xb0/0x150 [ 1158.992241][T24556] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1158.998106][T24556] [ 1159.000413][T24556] Uninit was stored to memory at: [ 1159.005422][T24556] kmsan_internal_chain_origin+0xad/0x130 [ 1159.011126][T24556] __msan_chain_origin+0x50/0x90 [ 1159.016220][T24556] __copy_msghdr_from_user+0x555/0xaf0 [ 1159.021663][T24556] __sys_sendmmsg+0x558/0xd80 [ 1159.026321][T24556] __se_sys_sendmmsg+0xbd/0xe0 [ 1159.031066][T24556] __x64_sys_sendmmsg+0x56/0x70 [ 1159.035903][T24556] do_syscall_64+0xb0/0x150 [ 1159.040391][T24556] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1159.046275][T24556] [ 1159.048584][T24556] Uninit was stored to memory at: [ 1159.053593][T24556] kmsan_internal_chain_origin+0xad/0x130 [ 1159.059295][T24556] __msan_chain_origin+0x50/0x90 [ 1159.064224][T24556] __copy_msghdr_from_user+0x555/0xaf0 [ 1159.069665][T24556] __sys_sendmmsg+0x558/0xd80 [ 1159.074336][T24556] __se_sys_sendmmsg+0xbd/0xe0 [ 1159.079080][T24556] __x64_sys_sendmmsg+0x56/0x70 [ 1159.083915][T24556] do_syscall_64+0xb0/0x150 [ 1159.088402][T24556] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1159.094265][T24556] [ 1159.096572][T24556] Uninit was stored to memory at: [ 1159.101582][T24556] kmsan_internal_chain_origin+0xad/0x130 [ 1159.107370][T24556] __msan_chain_origin+0x50/0x90 [ 1159.112307][T24556] __copy_msghdr_from_user+0x555/0xaf0 [ 1159.117765][T24556] __sys_sendmmsg+0x558/0xd80 [ 1159.122426][T24556] __se_sys_sendmmsg+0xbd/0xe0 [ 1159.127175][T24556] __x64_sys_sendmmsg+0x56/0x70 [ 1159.132271][T24556] do_syscall_64+0xb0/0x150 [ 1159.138150][T24556] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1159.144021][T24556] [ 1159.146332][T24556] Local variable ----msg_sys@__sys_sendmmsg created at: [ 1159.153248][T24556] __sys_sendmmsg+0xb7/0xd80 [ 1159.157822][T24556] __sys_sendmmsg+0xb7/0xd80 19:17:02 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="f7f249b9740c9e02007f00000000000032a5b60a00008024c30e478947d190ac00000000000000000000000097ba4ecb40a2ee2e32a3b88aaf3c06f4970e85a63c9a4b0d8b9aad9c9ba4c998db2f7155d302a7be122bb1609f8b0164eb12c07af20200169c864e1d5f8179cba2e431126de0594cf1487e311e84395a80adbe3e7f3622703c353de8e6928bfd5a5f2cc05e4b942d6ed155b67a555f4b2e2b0cd0e93e41c330f70401c1d920006e65fab4fae51bb32a6f3ca61632d15b0c1cec89839cd7fe16d03af16efd5295d2eea42f3e25765b72b9727176c1966620ada4a27b28739a2eed558cee393ecaa3df004548e6f43be3f968529e96628cebee42b6fa46cb0b55a45cadf1f354a424830def8e07cc514d7615c7689e93ad448a65e9ea04c454bcd4e1fb5b77e741b3c87e65d0ea2d0656d3801495d4c269a587ebeda98f311e2af82a9013e4e58004bbbb1be0"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:17:02 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:17:02 executing program 4: clone(0x8100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$vsock_stream(0x28, 0x1, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(r1, 0x0, 0x0) request_key(&(0x7f000000aff5)='asymmetric\x00', &(0x7f0000000000)={'syz', 0x2, 0x4c}, &(0x7f00000000c0)='R\x10rist\x18m\x84\x89\xa5$\x04Vi0\x97ddR\xd1\x06\xd39\x90J%P\x0f\x82[\n~P\xd7\x12\x805\xa9\xfd\x98A\xe5\xec\x00E#~\x0f);\xf0\xca\xe5\x8c\xd5\x9c\x0f\x88\xbe\xcc', 0xfffffffffffffffb) 19:17:02 executing program 5: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) fsopen(&(0x7f0000000000)='ceph\x00', 0x0) 19:17:02 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x669, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x220007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) recvmmsg(r0, &(0x7f0000005540)=[{{0x0, 0xe00480f3, &(0x7f0000000240)=[{&(0x7f0000001340)=""/4067, 0x20002323}], 0x1, 0x0, 0xef013080, 0x1f4}}], 0x1, 0x100, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) fchdir(r1) syz_genetlink_get_family_id$tipc2(0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4) setsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000000)=0x4, 0x4) sendto$inet(r0, &(0x7f0000000380)="0c268a927f1f6588b967480a41ba7860f46ef65ac618ded897948255a84895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0xbe) 19:17:02 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macsec={{0xb, 0x1, 'macsec\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACSEC_REPLAY_PROTECT={0x5}, @IFLA_MACSEC_ES={0x5}]}}}]}, 0x44}}, 0x0) 19:17:02 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x0, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f000003f000/0x18000)=nil, &(0x7f00000001c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) 19:17:03 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x11, 0x800000003, 0x0) bind(r0, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r0, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000400)=@newqdisc={0x5c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}, @qdisc_kind_options=@q_fq_codel={{0xd, 0x1, 'fq_codel\x00'}, {0x4}}]}, 0x5c}}, 0x0) 19:17:03 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:17:03 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ffffff9}]}) setgid(0x0) 19:17:03 executing program 5: r0 = getpid() sched_setscheduler(r0, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e24, 0x0, @mcast1, 0x6}, 0x1c) setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8) connect$inet6(r1, &(0x7f0000004540)={0xa, 0x4e20, 0x0, @ipv4={[], [], @multicast2}}, 0x1c) sendmmsg(r1, &(0x7f0000004d80)=[{{0x0, 0x2000000, &(0x7f0000001500)=[{&(0x7f0000000040)="d3622fe131479cee20fb607a9585dc0b411519fd3b65066522d73df58b9257b566c6fc626776defc3a2e249c9120cab00220bc31d41e44f96f67971b8ed8a3dc9eb4123a903d58da02dd1eca653150422bc91e9585fb38", 0x57}, {&(0x7f00000011c0)="7cc3be44ec866303c11f9ec49c2fe80d4ccef580f3bf717b5e129f1dc7766fdf864b7bc35924f34bb5fd1dd89172a4b0db90eea51bdfec78bb53e8d41773cba7f1305a8a40b7368445a71ef7870273f1544930baf73a8bfa6ece09d54376b821b65fdf1e0704f1f3c5a823fa67f635159af010053f5b909f8e944c43d6fb1c4fca639b470d3e6ad140d0838958ecf0fc98a780205474fdeb93a97d27b4f3314a9585129aaec893d7fe36d87fd746841ac5c60b31e1732a1a3ca0afcc4068cdde63b142700c563c1ab59dc0b7200723bf21c694583ed8fed1b2bc5c204df3812c223ce0de2f40b69e7f4e8ba1c3ebc31de2f4190e3f1ceb", 0xf7}, {&(0x7f00000012c0), 0x80fe}, {&(0x7f0000000280)="0c22fcc306e8a4d628dc3f33cd1758b784d34ef62ecd943b96c5573b05e34886b55503a08eeac42aafc204e9fec654b4b0853f4c32d8d6e0968a96b81710a9ed49ae96ea22eb07accdc99ed31fb48b921b4c9ae0278829eb32247169da3593e5e73371e82e3558cd87b9c876b91e091e933496ae3a6b5a00a79f50110980c83af2fd44e0f08908f806be4146080def894a3ac87c3d214e32b0e031c8873b6ed3cdb9c160ee236576cb5a749ee356d4f5df961b35ec3667bcfa641e2c812a5eefbd78546783b6bd280dc4ec1cd015bee7d07f0993d6", 0xd5}, {&(0x7f0000001440)="7b18908bcd34b2f4eef2193c5f89bb79551b5d7000ccc31628374b03e7f0b8bbfe45", 0x22}], 0x5, 0x0, 0x0, 0xffffffe0}}], 0x400000000000132, 0x4000000) [ 1161.228547][T24624] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 19:17:03 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ffffff9}]}) setgid(0x0) 19:17:05 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:17:05 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) preadv(0xffffffffffffffff, &(0x7f00000023c0)=[{&(0x7f0000000180)=""/4082, 0xff2}], 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:17:05 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x11, 0x800000003, 0x0) bind(r0, &(0x7f0000000100)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r0, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000400)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd, 0x1, 'fq_codel\x00'}, {0x4}}]}, 0x38}}, 0x0) 19:17:05 executing program 3: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000740)=@raw={'raw\x00', 0x3c1, 0x3, 0x3c0, 0x228, 0x200, 0x200, 0x0, 0x5, 0x2f0, 0x308, 0x308, 0x2f0, 0x308, 0x7fffffe, 0x0, {[{{@uncond, 0x0, 0x1c0, 0x228, 0x0, {}, [@common=@unspec=@string={{0xc0, 'string\x00'}, {0x0, 0x0, 'kmp\x00', "cfcaf867672f61cd00ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c34873a80df6de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e6726401fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1, 0x2}}, @common=@inet=@hashlimit1={{0x58, 'hashlimit\x00'}, {'syzkaller1\x00', {0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x4, 0xa6}}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'syz0\x00', 'syz1\x00'}}}, {{@ipv6={@local, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'veth0_to_team\x00', 'netdevsim0\x00'}, 0x0, 0xa8, 0xc8}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x420) 19:17:05 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ffffff9}]}) setgid(0x0) 19:17:05 executing program 5: r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000380)='/dev/autofs\x00', 0x0, 0x0) ioctl(r2, 0x937e, &(0x7f0000000000)="010000000000001f18") [ 1163.219635][T24644] autofs4:pid:24644:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.520093696), cmd(0x0000937e) [ 1163.234145][T24644] autofs4:pid:24644:validate_dev_ioctl: invalid device control module version supplied for cmd(0x0000937e) [ 1163.240097][T24646] xt_hashlimit: max too large, truncated to 1048576 [ 1163.252803][T24646] xt_hashlimit: overflow, try lower: 0/0 19:17:05 executing program 3: r0 = msgget$private(0x0, 0xa0) msgsnd(r0, &(0x7f0000000c80)={0x1, "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"}, 0x44b, 0x800) [ 1163.276860][T24649] xt_hashlimit: max too large, truncated to 1048576 [ 1163.283814][T24649] xt_hashlimit: overflow, try lower: 0/0 19:17:05 executing program 4: r0 = msgget$private(0x0, 0xa0) msgsnd(r0, &(0x7f0000000c80)={0x1, "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"}, 0x44b, 0x800) msgsnd(r0, 0x0, 0x4a4, 0x0) 19:17:05 executing program 2: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000000)=""/73, 0x49}], 0x100000000000022c}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r1, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000000)=""/73, 0x49}], 0x100000000000022c}, 0x0) execve(0x0, 0x0, 0x0) 19:17:06 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) ioctl$SIOCGSTAMP(r0, 0x8906, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) recvmmsg(r0, &(0x7f0000008880), 0x45b, 0x0, 0x0) 19:17:06 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:17:06 executing program 5: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000740)=@raw={'raw\x00', 0x3c1, 0x3, 0x3c0, 0x228, 0x200, 0x200, 0x0, 0x5, 0x2f0, 0x308, 0x308, 0x2f0, 0x308, 0x7fffffe, 0x0, {[{{@uncond, 0x0, 0x1c0, 0x228, 0x0, {}, [@common=@unspec=@string={{0xc0, 'string\x00'}, {0x0, 0x0, 'kmp\x00', "cfcaf867672f61cd00ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c34873a80df6de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e6726401fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1}}, @common=@inet=@hashlimit1={{0x58, 'hashlimit\x00'}, {'syzkaller1\x00', {0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x4, 0xa6}}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'syz0\x00', 'syz1\x00'}}}, {{@ipv6={@local, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'veth0_to_team\x00', 'netdevsim0\x00'}, 0x0, 0xa8, 0xc8}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x420) [ 1163.810979][T24675] xt_hashlimit: max too large, truncated to 1048576 [ 1163.818246][T24675] xt_hashlimit: overflow, try lower: 0/0 [ 1163.847019][T24676] xt_hashlimit: max too large, truncated to 1048576 [ 1163.854028][T24676] xt_hashlimit: overflow, try lower: 0/0 19:17:08 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x2, 0x0, 0xf000, 0x2000, &(0x7f0000002000/0x2000)=nil}) 19:17:08 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "080002000000000008ff43944eeba71a4976e252922cb18f6e2e48ba000000012e0b385404b03ae96d09800000000000000101013c5811039e15825527ecba66fd767ce7a7f6e1b6b408561839ede6dd248a00000000000000000000000000000006ad8e5ecc326d3a09ffc2c6540200e4f200"}, 0x80) ptrace$setopts(0x4206, r0, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}], 0x2, 0x0, 0x0, 0x0) tkill(r0, 0x40) write$sndseq(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x151, &(0x7f00000003c0)="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"}}], 0x1c) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x7, r0, 0x0, 0x0) 19:17:08 executing program 4: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/autofs\x00', 0x0, 0x0) ioctl(r0, 0x9374, &(0x7f00000002c0)="010000000100000018") 19:17:08 executing program 2: r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) write$UHID_INPUT(r0, &(0x7f0000000280)={0x8, {"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", 0x1000}}, 0x1006) ftruncate(0xffffffffffffffff, 0x0) mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x4, 0x2812, r0, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 19:17:08 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:17:08 executing program 3: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000100)={'syzkaller1\x00', 0xa732}) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', {0x7, 0x0, @empty}}) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180)='TIPC\x00') openat$proc_capi20ncci(0xffffff9c, &(0x7f0000000040)='/proc/capi/capi20ncci\x00', 0x444100, 0x0) sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="93b20000000000000000010000000000000001410000001c001700020000000000006574683a73797a6b616c6c657231"], 0x38}}, 0x0) close(r0) [ 1166.517189][T24705] tipc: Enabling of bearer rejected, failed to enable media 19:17:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="baa10000eef36cba2100ec66b9800000c00f326635001000000f30bad104ecc80080d2dce5f30f1bb429000f20c06635200000000f22c067f3af", 0x3a}], 0x1, 0x0, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="08ea4f1f912a"], 0x0, 0x1b}, 0x20) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff], 0x10000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 1166.627183][T24714] tipc: Enabling of bearer rejected, failed to enable media 19:17:09 executing program 2: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000940)='/proc/keys\x00', 0x0, 0x0) preadv(r0, &(0x7f00000007c0)=[{&(0x7f0000000140)=""/83, 0x53}, {&(0x7f00000001c0)=""/235, 0xeb}, {&(0x7f00000002c0)=""/163, 0xa3}, {&(0x7f0000000380)=""/195, 0xc3}, {&(0x7f00000004c0)=""/188, 0xbc}, {&(0x7f0000000580)=""/145, 0x91}, {&(0x7f0000000640)=""/107, 0x6b}], 0x7, 0x0) 19:17:09 executing program 1: openat$binder_debug(0xffffffffffffff9c, &(0x7f0000001180)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x218, 0x0) 19:17:09 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x1) r1 = socket$inet6(0xa, 0x3, 0x1) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev, 0x22}, 0x1c) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='pagemap\x00') sendfile(r1, r2, 0x0, 0xa808) 19:17:09 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/dev_mcast\x00') r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f0000000040)=0x100000001, 0x4) connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) sendfile(r1, r0, 0x0, 0x10000edbe) [ 1166.887340][T24727] x_tables: duplicate underflow at hook 2 [ 1166.960274][T24727] ===================================================== [ 1166.967330][T24727] BUG: KMSAN: uninit-value in nf_conntrack_invert_icmp_tuple+0xaa/0x2c0 [ 1166.975670][T24727] CPU: 0 PID: 24727 Comm: syz-executor.5 Not tainted 5.8.0-rc5-syzkaller #0 [ 1166.984347][T24727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1166.994410][T24727] Call Trace: [ 1166.997721][T24727] dump_stack+0x1df/0x240 [ 1167.002073][T24727] kmsan_report+0xf7/0x1e0 [ 1167.006506][T24727] __msan_warning+0x58/0xa0 [ 1167.011030][T24727] nf_conntrack_invert_icmp_tuple+0xaa/0x2c0 [ 1167.017028][T24727] nf_ct_invert_tuple+0x346/0x590 [ 1167.022073][T24727] init_conntrack+0x116/0x1ff0 [ 1167.026869][T24727] nf_conntrack_in+0x1341/0x26b1 [ 1167.031848][T24727] ipv6_conntrack_local+0x68/0x80 [ 1167.036894][T24727] ? ipv6_conntrack_in+0x80/0x80 [ 1167.041845][T24727] nf_hook_slow+0x16e/0x400 [ 1167.046427][T24727] __ip6_local_out+0x56d/0x750 [ 1167.051250][T24727] ? __ip6_local_out+0x750/0x750 [ 1167.056297][T24727] ip6_local_out+0xa4/0x1d0 [ 1167.060869][T24727] ip6_push_pending_frames+0x213/0x4f0 [ 1167.066388][T24727] rawv6_sendmsg+0x4233/0x5c30 [ 1167.071143][T24727] ? is_module_text_address+0x4d/0x2a0 [ 1167.076595][T24727] ? kmsan_get_metadata+0x11d/0x180 [ 1167.081800][T24727] ? kmsan_get_metadata+0x11d/0x180 [ 1167.086987][T24727] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1167.092814][T24727] ? udp_cmsg_send+0x5d0/0x5d0 [ 1167.097569][T24727] ? compat_rawv6_ioctl+0x100/0x100 [ 1167.102755][T24727] inet_sendmsg+0x2d8/0x2e0 [ 1167.107251][T24727] ? inet_send_prepare+0x600/0x600 [ 1167.112350][T24727] kernel_sendmsg+0x384/0x440 [ 1167.117021][T24727] sock_no_sendpage+0x235/0x300 [ 1167.121872][T24727] ? sock_no_mmap+0x30/0x30 [ 1167.126368][T24727] sock_sendpage+0x1e1/0x2c0 [ 1167.130954][T24727] pipe_to_sendpage+0x38c/0x4c0 [ 1167.135794][T24727] ? sock_fasync+0x250/0x250 [ 1167.140383][T24727] __splice_from_pipe+0x565/0xf00 [ 1167.145405][T24727] ? generic_splice_sendpage+0x2d0/0x2d0 [ 1167.151038][T24727] generic_splice_sendpage+0x1d5/0x2d0 [ 1167.156505][T24727] ? iter_file_splice_write+0x1800/0x1800 [ 1167.162211][T24727] direct_splice_actor+0x1fd/0x580 [ 1167.167315][T24727] ? kmsan_get_metadata+0x4f/0x180 [ 1167.172419][T24727] splice_direct_to_actor+0x6b2/0xf50 [ 1167.177788][T24727] ? do_splice_direct+0x580/0x580 [ 1167.182813][T24727] do_splice_direct+0x342/0x580 [ 1167.187660][T24727] do_sendfile+0x101b/0x1d40 [ 1167.192255][T24727] __se_sys_sendfile64+0x2bb/0x360 [ 1167.197448][T24727] ? kmsan_get_metadata+0x4f/0x180 [ 1167.202637][T24727] __x64_sys_sendfile64+0x56/0x70 [ 1167.207650][T24727] do_syscall_64+0xb0/0x150 [ 1167.212143][T24727] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1167.218016][T24727] RIP: 0033:0x45c1d9 [ 1167.221901][T24727] Code: Bad RIP value. [ 1167.226223][T24727] RSP: 002b:00007fb257fe4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1167.234616][T24727] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9 [ 1167.242572][T24727] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1167.250549][T24727] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000 [ 1167.258514][T24727] R10: 000000000000a808 R11: 0000000000000246 R12: 000000000078bf0c [ 1167.266486][T24727] R13: 0000000000c9fb6f R14: 00007fb257fe59c0 R15: 000000000078bf0c [ 1167.274449][T24727] [ 1167.276758][T24727] Uninit was stored to memory at: [ 1167.281772][T24727] kmsan_internal_chain_origin+0xad/0x130 [ 1167.287484][T24727] __msan_chain_origin+0x50/0x90 [ 1167.292425][T24727] icmp_pkt_to_tuple+0x35a/0x400 [ 1167.297358][T24727] nf_ct_get_tuple+0xb9a/0x1530 [ 1167.302192][T24727] nf_conntrack_in+0x6e0/0x26b1 [ 1167.307027][T24727] ipv6_conntrack_local+0x68/0x80 [ 1167.312036][T24727] nf_hook_slow+0x16e/0x400 [ 1167.316523][T24727] __ip6_local_out+0x56d/0x750 [ 1167.321268][T24727] ip6_local_out+0xa4/0x1d0 [ 1167.325761][T24727] ip6_push_pending_frames+0x213/0x4f0 [ 1167.331204][T24727] rawv6_sendmsg+0x4233/0x5c30 [ 1167.335952][T24727] inet_sendmsg+0x2d8/0x2e0 [ 1167.340437][T24727] kernel_sendmsg+0x384/0x440 [ 1167.345114][T24727] sock_no_sendpage+0x235/0x300 [ 1167.349949][T24727] sock_sendpage+0x1e1/0x2c0 [ 1167.354527][T24727] pipe_to_sendpage+0x38c/0x4c0 [ 1167.359361][T24727] __splice_from_pipe+0x565/0xf00 [ 1167.364370][T24727] generic_splice_sendpage+0x1d5/0x2d0 [ 1167.369813][T24727] direct_splice_actor+0x1fd/0x580 [ 1167.374911][T24727] splice_direct_to_actor+0x6b2/0xf50 [ 1167.380266][T24727] do_splice_direct+0x342/0x580 [ 1167.385115][T24727] do_sendfile+0x101b/0x1d40 [ 1167.389688][T24727] __se_sys_sendfile64+0x2bb/0x360 [ 1167.394782][T24727] __x64_sys_sendfile64+0x56/0x70 [ 1167.399793][T24727] do_syscall_64+0xb0/0x150 [ 1167.404278][T24727] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1167.410149][T24727] [ 1167.412462][T24727] Uninit was stored to memory at: [ 1167.417470][T24727] kmsan_internal_chain_origin+0xad/0x130 [ 1167.423175][T24727] kmsan_memcpy_memmove_metadata+0x272/0x2e0 [ 1167.429155][T24727] kmsan_memcpy_metadata+0xb/0x10 [ 1167.434161][T24727] __msan_memcpy+0x43/0x50 [ 1167.438562][T24727] csum_partial_copy+0xae/0x100 [ 1167.443404][T24727] csum_and_copy_from_iter_full+0xdca/0x1800 [ 1167.449418][T24727] ip_generic_getfrag+0x1fb/0x3c0 [ 1167.454434][T24727] raw6_getfrag+0x552/0x600 [ 1167.458920][T24727] __ip6_append_data+0x507b/0x6320 [ 1167.464015][T24727] ip6_append_data+0x3cb/0x660 [ 1167.468764][T24727] rawv6_sendmsg+0x32bb/0x5c30 [ 1167.473513][T24727] inet_sendmsg+0x2d8/0x2e0 [ 1167.477997][T24727] kernel_sendmsg+0x384/0x440 [ 1167.482657][T24727] sock_no_sendpage+0x235/0x300 [ 1167.487496][T24727] sock_sendpage+0x1e1/0x2c0 [ 1167.492071][T24727] pipe_to_sendpage+0x38c/0x4c0 [ 1167.496906][T24727] __splice_from_pipe+0x565/0xf00 [ 1167.501915][T24727] generic_splice_sendpage+0x1d5/0x2d0 [ 1167.507355][T24727] direct_splice_actor+0x1fd/0x580 [ 1167.512454][T24727] splice_direct_to_actor+0x6b2/0xf50 [ 1167.517812][T24727] do_splice_direct+0x342/0x580 [ 1167.522662][T24727] do_sendfile+0x101b/0x1d40 [ 1167.527233][T24727] __se_sys_sendfile64+0x2bb/0x360 [ 1167.532326][T24727] __x64_sys_sendfile64+0x56/0x70 [ 1167.537335][T24727] do_syscall_64+0xb0/0x150 [ 1167.541826][T24727] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1167.547693][T24727] [ 1167.550001][T24727] Uninit was created at: [ 1167.554228][T24727] kmsan_save_stack_with_flags+0x3c/0x90 [ 1167.559858][T24727] kmsan_alloc_page+0xb9/0x180 [ 1167.564607][T24727] __alloc_pages_nodemask+0x56a2/0x5dc0 [ 1167.570137][T24727] alloc_pages_current+0x672/0x990 [ 1167.575233][T24727] push_pipe+0x605/0xb70 [ 1167.579469][T24727] iov_iter_get_pages_alloc+0x18a9/0x21c0 [ 1167.585172][T24727] do_splice_to+0x4fc/0x14f0 [ 1167.589746][T24727] splice_direct_to_actor+0x45c/0xf50 [ 1167.595102][T24727] do_splice_direct+0x342/0x580 [ 1167.599954][T24727] do_sendfile+0x101b/0x1d40 [ 1167.604536][T24727] __se_sys_sendfile64+0x2bb/0x360 [ 1167.609639][T24727] __x64_sys_sendfile64+0x56/0x70 [ 1167.614711][T24727] do_syscall_64+0xb0/0x150 [ 1167.619202][T24727] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1167.625076][T24727] ===================================================== [ 1167.632001][T24727] Disabling lock debugging due to kernel taint [ 1167.638156][T24727] Kernel panic - not syncing: panic_on_warn set ... [ 1167.644735][T24727] CPU: 0 PID: 24727 Comm: syz-executor.5 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 1167.654774][T24727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1167.664812][T24727] Call Trace: [ 1167.668103][T24727] dump_stack+0x1df/0x240 [ 1167.672426][T24727] panic+0x3d5/0xc3e [ 1167.676326][T24727] kmsan_report+0x1df/0x1e0 [ 1167.680825][T24727] __msan_warning+0x58/0xa0 [ 1167.685323][T24727] nf_conntrack_invert_icmp_tuple+0xaa/0x2c0 [ 1167.691291][T24727] nf_ct_invert_tuple+0x346/0x590 [ 1167.696309][T24727] init_conntrack+0x116/0x1ff0 [ 1167.701074][T24727] nf_conntrack_in+0x1341/0x26b1 [ 1167.706021][T24727] ipv6_conntrack_local+0x68/0x80 [ 1167.711034][T24727] ? ipv6_conntrack_in+0x80/0x80 [ 1167.716565][T24727] nf_hook_slow+0x16e/0x400 [ 1167.721061][T24727] __ip6_local_out+0x56d/0x750 [ 1167.725822][T24727] ? __ip6_local_out+0x750/0x750 [ 1167.730745][T24727] ip6_local_out+0xa4/0x1d0 [ 1167.735241][T24727] ip6_push_pending_frames+0x213/0x4f0 [ 1167.740701][T24727] rawv6_sendmsg+0x4233/0x5c30 [ 1167.745452][T24727] ? is_module_text_address+0x4d/0x2a0 [ 1167.750902][T24727] ? kmsan_get_metadata+0x11d/0x180 [ 1167.756108][T24727] ? kmsan_get_metadata+0x11d/0x180 [ 1167.761291][T24727] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 1167.767091][T24727] ? udp_cmsg_send+0x5d0/0x5d0 [ 1167.771845][T24727] ? compat_rawv6_ioctl+0x100/0x100 [ 1167.777028][T24727] inet_sendmsg+0x2d8/0x2e0 [ 1167.781527][T24727] ? inet_send_prepare+0x600/0x600 [ 1167.786625][T24727] kernel_sendmsg+0x384/0x440 [ 1167.791320][T24727] sock_no_sendpage+0x235/0x300 [ 1167.796179][T24727] ? sock_no_mmap+0x30/0x30 [ 1167.800675][T24727] sock_sendpage+0x1e1/0x2c0 [ 1167.805357][T24727] pipe_to_sendpage+0x38c/0x4c0 [ 1167.810194][T24727] ? sock_fasync+0x250/0x250 [ 1167.814778][T24727] __splice_from_pipe+0x565/0xf00 [ 1167.819790][T24727] ? generic_splice_sendpage+0x2d0/0x2d0 [ 1167.825418][T24727] generic_splice_sendpage+0x1d5/0x2d0 [ 1167.830872][T24727] ? iter_file_splice_write+0x1800/0x1800 [ 1167.836579][T24727] direct_splice_actor+0x1fd/0x580 [ 1167.841685][T24727] ? kmsan_get_metadata+0x4f/0x180 [ 1167.846785][T24727] splice_direct_to_actor+0x6b2/0xf50 [ 1167.852145][T24727] ? do_splice_direct+0x580/0x580 [ 1167.857185][T24727] do_splice_direct+0x342/0x580 [ 1167.862032][T24727] do_sendfile+0x101b/0x1d40 [ 1167.866625][T24727] __se_sys_sendfile64+0x2bb/0x360 [ 1167.871725][T24727] ? kmsan_get_metadata+0x4f/0x180 [ 1167.876833][T24727] __x64_sys_sendfile64+0x56/0x70 [ 1167.881848][T24727] do_syscall_64+0xb0/0x150 [ 1167.886356][T24727] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 1167.892232][T24727] RIP: 0033:0x45c1d9 [ 1167.896103][T24727] Code: Bad RIP value. [ 1167.900151][T24727] RSP: 002b:00007fb257fe4c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 1167.908543][T24727] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9 [ 1167.916498][T24727] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 1167.924455][T24727] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000 [ 1167.932411][T24727] R10: 000000000000a808 R11: 0000000000000246 R12: 000000000078bf0c [ 1167.940382][T24727] R13: 0000000000c9fb6f R14: 00007fb257fe59c0 R15: 000000000078bf0c [ 1167.949906][T24727] Kernel Offset: 0x19200000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 1167.961568][T24727] Rebooting in 86400 seconds..