ast_syscall_32+0x77/0xd0 [ 594.550880][T18796] do_SYSENTER_32+0x73/0x90 [ 594.555365][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 594.561686][T18796] [ 594.564277][T18796] Uninit was stored to memory at: [ 594.569270][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 594.574968][T18796] __msan_chain_origin+0x54/0xa0 [ 594.579887][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 594.584992][T18796] get_compat_msghdr+0x108/0x2b0 [ 594.589910][T18796] do_recvmmsg+0xdc1/0x22d0 [ 594.594396][T18796] __sys_recvmmsg+0x519/0x6f0 [ 594.599049][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 594.605097][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 594.611272][T18796] __do_fast_syscall_32+0x127/0x180 [ 594.616451][T18796] do_fast_syscall_32+0x77/0xd0 [ 594.621283][T18796] do_SYSENTER_32+0x73/0x90 [ 594.625788][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 594.632117][T18796] [ 594.634426][T18796] Uninit was stored to memory at: [ 594.639420][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 594.645122][T18796] __msan_chain_origin+0x54/0xa0 [ 594.650041][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 594.655129][T18796] get_compat_msghdr+0x108/0x2b0 [ 594.660049][T18796] do_recvmmsg+0xdc1/0x22d0 [ 594.664548][T18796] __sys_recvmmsg+0x519/0x6f0 [ 594.669203][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 594.675260][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 594.681398][T18796] __do_fast_syscall_32+0x127/0x180 [ 594.686606][T18796] do_fast_syscall_32+0x77/0xd0 [ 594.691435][T18796] do_SYSENTER_32+0x73/0x90 [ 594.695931][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 594.702235][T18796] [ 594.704545][T18796] Uninit was stored to memory at: [ 594.709536][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 594.715231][T18796] __msan_chain_origin+0x54/0xa0 [ 594.720169][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 594.725268][T18796] get_compat_msghdr+0x108/0x2b0 [ 594.730187][T18796] do_recvmmsg+0xdc1/0x22d0 [ 594.734671][T18796] __sys_recvmmsg+0x519/0x6f0 [ 594.739346][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 594.745405][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 594.751550][T18796] __do_fast_syscall_32+0x127/0x180 [ 594.756740][T18796] do_fast_syscall_32+0x77/0xd0 [ 594.761567][T18796] do_SYSENTER_32+0x73/0x90 [ 594.766047][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 594.772371][T18796] [ 594.774672][T18796] Uninit was stored to memory at: [ 594.779697][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 594.785394][T18796] __msan_chain_origin+0x54/0xa0 [ 594.790330][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 594.795421][T18796] get_compat_msghdr+0x108/0x2b0 [ 594.800346][T18796] do_recvmmsg+0xdc1/0x22d0 [ 594.804832][T18796] __sys_recvmmsg+0x519/0x6f0 [ 594.809499][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 594.815562][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 594.821707][T18796] __do_fast_syscall_32+0x127/0x180 [ 594.826881][T18796] do_fast_syscall_32+0x77/0xd0 [ 594.831706][T18796] do_SYSENTER_32+0x73/0x90 [ 594.836198][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 594.844674][T18796] [ 594.846980][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 594.853623][T18796] do_recvmmsg+0xbf/0x22d0 [ 594.858024][T18796] do_recvmmsg+0xbf/0x22d0 [ 595.035951][T18796] not chained 180000 origins [ 595.040544][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 595.049285][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 595.059406][T18796] Call Trace: [ 595.062670][T18796] dump_stack+0x24c/0x2e0 [ 595.066992][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 595.072693][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 595.078079][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 595.083632][T18796] ? kmsan_get_metadata+0x116/0x180 [ 595.088832][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 595.094450][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 595.100499][T18796] ? kmsan_get_metadata+0x116/0x180 [ 595.105682][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 595.111471][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 595.117531][T18796] ? kmsan_get_metadata+0x116/0x180 [ 595.122706][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 595.128315][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 595.134375][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 595.139636][T18796] ? _copy_from_user+0x1fd/0x300 [ 595.144557][T18796] __msan_chain_origin+0x54/0xa0 [ 595.149914][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 595.155006][T18796] get_compat_msghdr+0x108/0x2b0 [ 595.159924][T18796] do_recvmmsg+0xdc1/0x22d0 [ 595.164413][T18796] ? kmsan_get_metadata+0x116/0x180 [ 595.169587][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 595.175196][T18796] ? __msan_poison_alloca+0xec/0x110 [ 595.180479][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 595.185231][T18796] __sys_recvmmsg+0x519/0x6f0 [ 595.189896][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.195977][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.202128][T18796] __do_fast_syscall_32+0x127/0x180 [ 595.207311][T18796] do_fast_syscall_32+0x77/0xd0 [ 595.212158][T18796] do_SYSENTER_32+0x73/0x90 [ 595.216647][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.222978][T18796] RIP: 0023:0xf7fe5549 [ 595.227046][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 595.246641][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 595.255051][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 595.263004][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 595.270955][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 595.278906][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 595.286857][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 595.294820][T18796] Uninit was stored to memory at: [ 595.299823][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 595.305529][T18796] __msan_chain_origin+0x54/0xa0 [ 595.310456][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 595.315555][T18796] get_compat_msghdr+0x108/0x2b0 [ 595.320475][T18796] do_recvmmsg+0xdc1/0x22d0 [ 595.324966][T18796] __sys_recvmmsg+0x519/0x6f0 [ 595.329708][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.335754][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.341897][T18796] __do_fast_syscall_32+0x127/0x180 [ 595.347096][T18796] do_fast_syscall_32+0x77/0xd0 [ 595.351929][T18796] do_SYSENTER_32+0x73/0x90 [ 595.356423][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.362739][T18796] [ 595.365038][T18796] Uninit was stored to memory at: [ 595.370028][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 595.375726][T18796] __msan_chain_origin+0x54/0xa0 [ 595.380644][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 595.385738][T18796] get_compat_msghdr+0x108/0x2b0 [ 595.390658][T18796] do_recvmmsg+0xdc1/0x22d0 [ 595.395145][T18796] __sys_recvmmsg+0x519/0x6f0 [ 595.399832][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.405889][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.412021][T18796] __do_fast_syscall_32+0x127/0x180 [ 595.417211][T18796] do_fast_syscall_32+0x77/0xd0 [ 595.422043][T18796] do_SYSENTER_32+0x73/0x90 [ 595.426536][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.432858][T18796] [ 595.435161][T18796] Uninit was stored to memory at: [ 595.440352][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 595.446068][T18796] __msan_chain_origin+0x54/0xa0 [ 595.450980][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 595.456070][T18796] get_compat_msghdr+0x108/0x2b0 [ 595.460997][T18796] do_recvmmsg+0xdc1/0x22d0 [ 595.465497][T18796] __sys_recvmmsg+0x519/0x6f0 [ 595.470258][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.476495][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.482634][T18796] __do_fast_syscall_32+0x127/0x180 [ 595.487827][T18796] do_fast_syscall_32+0x77/0xd0 [ 595.492667][T18796] do_SYSENTER_32+0x73/0x90 [ 595.497153][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.503483][T18796] [ 595.505803][T18796] Uninit was stored to memory at: [ 595.510804][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 595.516517][T18796] __msan_chain_origin+0x54/0xa0 [ 595.521455][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 595.526565][T18796] get_compat_msghdr+0x108/0x2b0 [ 595.531481][T18796] do_recvmmsg+0xdc1/0x22d0 [ 595.535967][T18796] __sys_recvmmsg+0x519/0x6f0 [ 595.540632][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.546685][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.552821][T18796] __do_fast_syscall_32+0x127/0x180 [ 595.557998][T18796] do_fast_syscall_32+0x77/0xd0 [ 595.562831][T18796] do_SYSENTER_32+0x73/0x90 [ 595.567315][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.573657][T18796] [ 595.575955][T18796] Uninit was stored to memory at: [ 595.580944][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 595.586643][T18796] __msan_chain_origin+0x54/0xa0 [ 595.591557][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 595.596656][T18796] get_compat_msghdr+0x108/0x2b0 [ 595.601575][T18796] do_recvmmsg+0xdc1/0x22d0 [ 595.606063][T18796] __sys_recvmmsg+0x519/0x6f0 [ 595.610719][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.616779][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.622929][T18796] __do_fast_syscall_32+0x127/0x180 [ 595.628132][T18796] do_fast_syscall_32+0x77/0xd0 [ 595.632965][T18796] do_SYSENTER_32+0x73/0x90 [ 595.637448][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.643753][T18796] [ 595.646063][T18796] Uninit was stored to memory at: [ 595.651053][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 595.656756][T18796] __msan_chain_origin+0x54/0xa0 [ 595.661673][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 595.666765][T18796] get_compat_msghdr+0x108/0x2b0 [ 595.671679][T18796] do_recvmmsg+0xdc1/0x22d0 [ 595.676171][T18796] __sys_recvmmsg+0x519/0x6f0 [ 595.680828][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.686876][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.693007][T18796] __do_fast_syscall_32+0x127/0x180 [ 595.698205][T18796] do_fast_syscall_32+0x77/0xd0 [ 595.703121][T18796] do_SYSENTER_32+0x73/0x90 [ 595.707619][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.713925][T18796] [ 595.716221][T18796] Uninit was stored to memory at: [ 595.721231][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 595.726941][T18796] __msan_chain_origin+0x54/0xa0 [ 595.731851][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 595.736948][T18796] get_compat_msghdr+0x108/0x2b0 [ 595.741862][T18796] do_recvmmsg+0xdc1/0x22d0 [ 595.746344][T18796] __sys_recvmmsg+0x519/0x6f0 [ 595.750995][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 595.757056][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 595.763189][T18796] __do_fast_syscall_32+0x127/0x180 [ 595.768369][T18796] do_fast_syscall_32+0x77/0xd0 [ 595.773210][T18796] do_SYSENTER_32+0x73/0x90 [ 595.777694][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 595.784096][T18796] [ 595.786394][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 595.793044][T18796] do_recvmmsg+0xbf/0x22d0 [ 595.797435][T18796] do_recvmmsg+0xbf/0x22d0 [ 595.983860][T18796] not chained 190000 origins [ 595.988448][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 595.997191][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 596.007228][T18796] Call Trace: [ 596.010492][T18796] dump_stack+0x24c/0x2e0 [ 596.014907][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 596.020613][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 596.025975][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 596.031525][T18796] ? kmsan_get_metadata+0x116/0x180 [ 596.036706][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 596.042321][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 596.048378][T18796] ? kmsan_get_metadata+0x116/0x180 [ 596.053669][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 596.059461][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 596.065521][T18796] ? kmsan_get_metadata+0x116/0x180 [ 596.070743][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 596.076359][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 596.082406][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 596.087685][T18796] ? _copy_from_user+0x1fd/0x300 [ 596.092606][T18796] __msan_chain_origin+0x54/0xa0 [ 596.097528][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 596.102648][T18796] get_compat_msghdr+0x108/0x2b0 [ 596.107571][T18796] do_recvmmsg+0xdc1/0x22d0 [ 596.112074][T18796] ? kmsan_get_metadata+0x116/0x180 [ 596.117280][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 596.122903][T18796] ? __msan_poison_alloca+0xec/0x110 [ 596.128175][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 596.132945][T18796] __sys_recvmmsg+0x519/0x6f0 [ 596.137605][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.143658][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.149791][T18796] __do_fast_syscall_32+0x127/0x180 [ 596.154982][T18796] do_fast_syscall_32+0x77/0xd0 [ 596.159814][T18796] do_SYSENTER_32+0x73/0x90 [ 596.164296][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.170602][T18796] RIP: 0023:0xf7fe5549 [ 596.174647][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 596.194233][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 596.202625][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 596.210588][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 596.218543][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 596.226496][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 596.234445][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 596.242415][T18796] Uninit was stored to memory at: [ 596.247413][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 596.253133][T18796] __msan_chain_origin+0x54/0xa0 [ 596.258045][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 596.263160][T18796] get_compat_msghdr+0x108/0x2b0 [ 596.268075][T18796] do_recvmmsg+0xdc1/0x22d0 [ 596.272556][T18796] __sys_recvmmsg+0x519/0x6f0 [ 596.277208][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.283264][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.289398][T18796] __do_fast_syscall_32+0x127/0x180 [ 596.294574][T18796] do_fast_syscall_32+0x77/0xd0 [ 596.299401][T18796] do_SYSENTER_32+0x73/0x90 [ 596.303877][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.310181][T18796] [ 596.312481][T18796] Uninit was stored to memory at: [ 596.317476][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 596.323177][T18796] __msan_chain_origin+0x54/0xa0 [ 596.328088][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 596.333178][T18796] get_compat_msghdr+0x108/0x2b0 [ 596.338090][T18796] do_recvmmsg+0xdc1/0x22d0 [ 596.342580][T18796] __sys_recvmmsg+0x519/0x6f0 [ 596.347232][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.353278][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.359409][T18796] __do_fast_syscall_32+0x127/0x180 [ 596.364596][T18796] do_fast_syscall_32+0x77/0xd0 [ 596.369470][T18796] do_SYSENTER_32+0x73/0x90 [ 596.373951][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.380255][T18796] [ 596.382569][T18796] Uninit was stored to memory at: [ 596.387571][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 596.393265][T18796] __msan_chain_origin+0x54/0xa0 [ 596.398177][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 596.403282][T18796] get_compat_msghdr+0x108/0x2b0 [ 596.408195][T18796] do_recvmmsg+0xdc1/0x22d0 [ 596.412674][T18796] __sys_recvmmsg+0x519/0x6f0 [ 596.417342][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.423390][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.429552][T18796] __do_fast_syscall_32+0x127/0x180 [ 596.434731][T18796] do_fast_syscall_32+0x77/0xd0 [ 596.439559][T18796] do_SYSENTER_32+0x73/0x90 [ 596.444059][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.450380][T18796] [ 596.452686][T18796] Uninit was stored to memory at: [ 596.457680][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 596.463435][T18796] __msan_chain_origin+0x54/0xa0 [ 596.468349][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 596.473440][T18796] get_compat_msghdr+0x108/0x2b0 [ 596.478354][T18796] do_recvmmsg+0xdc1/0x22d0 [ 596.482836][T18796] __sys_recvmmsg+0x519/0x6f0 [ 596.487512][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.493564][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.499800][T18796] __do_fast_syscall_32+0x127/0x180 [ 596.504982][T18796] do_fast_syscall_32+0x77/0xd0 [ 596.509813][T18796] do_SYSENTER_32+0x73/0x90 [ 596.514313][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.520629][T18796] [ 596.522935][T18796] Uninit was stored to memory at: [ 596.527934][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 596.533633][T18796] __msan_chain_origin+0x54/0xa0 [ 596.538549][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 596.543640][T18796] get_compat_msghdr+0x108/0x2b0 [ 596.548561][T18796] do_recvmmsg+0xdc1/0x22d0 [ 596.553056][T18796] __sys_recvmmsg+0x519/0x6f0 [ 596.557712][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.563759][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.569923][T18796] __do_fast_syscall_32+0x127/0x180 [ 596.575113][T18796] do_fast_syscall_32+0x77/0xd0 [ 596.579947][T18796] do_SYSENTER_32+0x73/0x90 [ 596.584431][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.590741][T18796] [ 596.593038][T18796] Uninit was stored to memory at: [ 596.598051][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 596.603747][T18796] __msan_chain_origin+0x54/0xa0 [ 596.608664][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 596.613755][T18796] get_compat_msghdr+0x108/0x2b0 [ 596.618688][T18796] do_recvmmsg+0xdc1/0x22d0 [ 596.623172][T18796] __sys_recvmmsg+0x519/0x6f0 [ 596.627871][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.633932][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.640071][T18796] __do_fast_syscall_32+0x127/0x180 [ 596.645343][T18796] do_fast_syscall_32+0x77/0xd0 [ 596.650176][T18796] do_SYSENTER_32+0x73/0x90 [ 596.654673][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.660982][T18796] [ 596.663282][T18796] Uninit was stored to memory at: [ 596.668283][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 596.673998][T18796] __msan_chain_origin+0x54/0xa0 [ 596.678915][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 596.684011][T18796] get_compat_msghdr+0x108/0x2b0 [ 596.688925][T18796] do_recvmmsg+0xdc1/0x22d0 [ 596.693405][T18796] __sys_recvmmsg+0x519/0x6f0 [ 596.698071][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 596.704116][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 596.710258][T18796] __do_fast_syscall_32+0x127/0x180 [ 596.715444][T18796] do_fast_syscall_32+0x77/0xd0 [ 596.720294][T18796] do_SYSENTER_32+0x73/0x90 [ 596.724797][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 596.731110][T18796] [ 596.733412][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 596.740073][T18796] do_recvmmsg+0xbf/0x22d0 [ 596.744473][T18796] do_recvmmsg+0xbf/0x22d0 [ 596.928550][T18796] not chained 200000 origins [ 596.933200][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 596.941983][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 596.952025][T18796] Call Trace: [ 596.955295][T18796] dump_stack+0x24c/0x2e0 [ 596.959621][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 596.965367][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 596.970726][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 596.976258][T18796] ? kmsan_get_metadata+0x116/0x180 [ 596.981449][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 596.987061][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 596.993105][T18796] ? kmsan_get_metadata+0x116/0x180 [ 596.998319][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 597.004107][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 597.010157][T18796] ? kmsan_get_metadata+0x116/0x180 [ 597.015341][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 597.020961][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 597.027010][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 597.032271][T18796] ? _copy_from_user+0x1fd/0x300 [ 597.037187][T18796] __msan_chain_origin+0x54/0xa0 [ 597.042111][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 597.047206][T18796] get_compat_msghdr+0x108/0x2b0 [ 597.052133][T18796] do_recvmmsg+0xdc1/0x22d0 [ 597.056619][T18796] ? kmsan_get_metadata+0x116/0x180 [ 597.061791][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 597.067419][T18796] ? __msan_poison_alloca+0xec/0x110 [ 597.072681][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 597.077440][T18796] __sys_recvmmsg+0x519/0x6f0 [ 597.082101][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.088166][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.094320][T18796] __do_fast_syscall_32+0x127/0x180 [ 597.099542][T18796] do_fast_syscall_32+0x77/0xd0 [ 597.104378][T18796] do_SYSENTER_32+0x73/0x90 [ 597.108865][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.115192][T18796] RIP: 0023:0xf7fe5549 [ 597.119244][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 597.138836][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 597.147246][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 597.155198][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 597.163149][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 597.171104][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 597.179072][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 597.187033][T18796] Uninit was stored to memory at: [ 597.192031][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 597.197739][T18796] __msan_chain_origin+0x54/0xa0 [ 597.202656][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 597.207766][T18796] get_compat_msghdr+0x108/0x2b0 [ 597.212696][T18796] do_recvmmsg+0xdc1/0x22d0 [ 597.217184][T18796] __sys_recvmmsg+0x519/0x6f0 [ 597.221845][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.227895][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.234030][T18796] __do_fast_syscall_32+0x127/0x180 [ 597.239231][T18796] do_fast_syscall_32+0x77/0xd0 [ 597.244067][T18796] do_SYSENTER_32+0x73/0x90 [ 597.248551][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.254863][T18796] [ 597.257165][T18796] Uninit was stored to memory at: [ 597.262158][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 597.267861][T18796] __msan_chain_origin+0x54/0xa0 [ 597.272777][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 597.277893][T18796] get_compat_msghdr+0x108/0x2b0 [ 597.282808][T18796] do_recvmmsg+0xdc1/0x22d0 [ 597.287293][T18796] __sys_recvmmsg+0x519/0x6f0 [ 597.291948][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.297998][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.304133][T18796] __do_fast_syscall_32+0x127/0x180 [ 597.309326][T18796] do_fast_syscall_32+0x77/0xd0 [ 597.314163][T18796] do_SYSENTER_32+0x73/0x90 [ 597.318644][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.324954][T18796] [ 597.327258][T18796] Uninit was stored to memory at: [ 597.332247][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 597.338004][T18796] __msan_chain_origin+0x54/0xa0 [ 597.342946][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 597.348040][T18796] get_compat_msghdr+0x108/0x2b0 [ 597.352966][T18796] do_recvmmsg+0xdc1/0x22d0 [ 597.357448][T18796] __sys_recvmmsg+0x519/0x6f0 [ 597.362111][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.368157][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.374290][T18796] __do_fast_syscall_32+0x127/0x180 [ 597.379468][T18796] do_fast_syscall_32+0x77/0xd0 [ 597.384303][T18796] do_SYSENTER_32+0x73/0x90 [ 597.388786][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.395120][T18796] [ 597.397515][T18796] Uninit was stored to memory at: [ 597.402508][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 597.408207][T18796] __msan_chain_origin+0x54/0xa0 [ 597.413123][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 597.418213][T18796] get_compat_msghdr+0x108/0x2b0 [ 597.423127][T18796] do_recvmmsg+0xdc1/0x22d0 [ 597.427624][T18796] __sys_recvmmsg+0x519/0x6f0 [ 597.432278][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.438324][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.444461][T18796] __do_fast_syscall_32+0x127/0x180 [ 597.449643][T18796] do_fast_syscall_32+0x77/0xd0 [ 597.454485][T18796] do_SYSENTER_32+0x73/0x90 [ 597.458974][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.465281][T18796] [ 597.467580][T18796] Uninit was stored to memory at: [ 597.472569][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 597.478274][T18796] __msan_chain_origin+0x54/0xa0 [ 597.483189][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 597.488282][T18796] get_compat_msghdr+0x108/0x2b0 [ 597.493198][T18796] do_recvmmsg+0xdc1/0x22d0 [ 597.497680][T18796] __sys_recvmmsg+0x519/0x6f0 [ 597.502336][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.508397][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.514526][T18796] __do_fast_syscall_32+0x127/0x180 [ 597.519705][T18796] do_fast_syscall_32+0x77/0xd0 [ 597.524545][T18796] do_SYSENTER_32+0x73/0x90 [ 597.529048][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.535355][T18796] [ 597.537662][T18796] Uninit was stored to memory at: [ 597.542652][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 597.548357][T18796] __msan_chain_origin+0x54/0xa0 [ 597.553269][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 597.558354][T18796] get_compat_msghdr+0x108/0x2b0 [ 597.563273][T18796] do_recvmmsg+0xdc1/0x22d0 [ 597.567753][T18796] __sys_recvmmsg+0x519/0x6f0 [ 597.572411][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.578453][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.584577][T18796] __do_fast_syscall_32+0x127/0x180 [ 597.589755][T18796] do_fast_syscall_32+0x77/0xd0 [ 597.594632][T18796] do_SYSENTER_32+0x73/0x90 [ 597.599137][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.605464][T18796] [ 597.607789][T18796] Uninit was stored to memory at: [ 597.612782][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 597.618478][T18796] __msan_chain_origin+0x54/0xa0 [ 597.623415][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 597.628504][T18796] get_compat_msghdr+0x108/0x2b0 [ 597.633414][T18796] do_recvmmsg+0xdc1/0x22d0 [ 597.637892][T18796] __sys_recvmmsg+0x519/0x6f0 [ 597.642542][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 597.648590][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 597.654728][T18796] __do_fast_syscall_32+0x127/0x180 [ 597.659911][T18796] do_fast_syscall_32+0x77/0xd0 [ 597.664750][T18796] do_SYSENTER_32+0x73/0x90 [ 597.669246][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 597.675556][T18796] [ 597.677858][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 597.684505][T18796] do_recvmmsg+0xbf/0x22d0 [ 597.688904][T18796] do_recvmmsg+0xbf/0x22d0 [ 597.869343][T18796] not chained 210000 origins [ 597.873943][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 597.882678][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 597.892710][T18796] Call Trace: [ 597.895967][T18796] dump_stack+0x24c/0x2e0 [ 597.900280][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 597.905990][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 597.911365][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 597.916911][T18796] ? kmsan_get_metadata+0x116/0x180 [ 597.922103][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 597.927718][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 597.933773][T18796] ? kmsan_get_metadata+0x116/0x180 [ 597.938957][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 597.944797][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 597.950868][T18796] ? kmsan_get_metadata+0x116/0x180 [ 597.956047][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 597.961684][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 597.967725][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 597.972992][T18796] ? _copy_from_user+0x1fd/0x300 [ 597.977913][T18796] __msan_chain_origin+0x54/0xa0 [ 597.982905][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 597.988010][T18796] get_compat_msghdr+0x108/0x2b0 [ 597.992935][T18796] do_recvmmsg+0xdc1/0x22d0 [ 597.997504][T18796] ? kmsan_get_metadata+0x116/0x180 [ 598.002733][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 598.008346][T18796] ? __msan_poison_alloca+0xec/0x110 [ 598.013605][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 598.018347][T18796] __sys_recvmmsg+0x519/0x6f0 [ 598.023000][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.029045][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.035179][T18796] __do_fast_syscall_32+0x127/0x180 [ 598.040384][T18796] do_fast_syscall_32+0x77/0xd0 [ 598.045219][T18796] do_SYSENTER_32+0x73/0x90 [ 598.049702][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.056007][T18796] RIP: 0023:0xf7fe5549 [ 598.060082][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 598.079669][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 598.088060][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 598.096018][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 598.103965][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 598.111909][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 598.119855][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 598.127804][T18796] Uninit was stored to memory at: [ 598.132797][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 598.138497][T18796] __msan_chain_origin+0x54/0xa0 [ 598.143407][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 598.148494][T18796] get_compat_msghdr+0x108/0x2b0 [ 598.153410][T18796] do_recvmmsg+0xdc1/0x22d0 [ 598.157892][T18796] __sys_recvmmsg+0x519/0x6f0 [ 598.162547][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.168598][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.174727][T18796] __do_fast_syscall_32+0x127/0x180 [ 598.179906][T18796] do_fast_syscall_32+0x77/0xd0 [ 598.184734][T18796] do_SYSENTER_32+0x73/0x90 [ 598.189255][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.195556][T18796] [ 598.197855][T18796] Uninit was stored to memory at: [ 598.202842][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 598.208538][T18796] __msan_chain_origin+0x54/0xa0 [ 598.213447][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 598.218537][T18796] get_compat_msghdr+0x108/0x2b0 [ 598.223457][T18796] do_recvmmsg+0xdc1/0x22d0 [ 598.227976][T18796] __sys_recvmmsg+0x519/0x6f0 [ 598.232633][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.238682][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.244814][T18796] __do_fast_syscall_32+0x127/0x180 [ 598.249994][T18796] do_fast_syscall_32+0x77/0xd0 [ 598.254826][T18796] do_SYSENTER_32+0x73/0x90 [ 598.259308][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.265628][T18796] [ 598.267990][T18796] Uninit was stored to memory at: [ 598.272981][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 598.278683][T18796] __msan_chain_origin+0x54/0xa0 [ 598.283600][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 598.288727][T18796] get_compat_msghdr+0x108/0x2b0 [ 598.293643][T18796] do_recvmmsg+0xdc1/0x22d0 [ 598.298128][T18796] __sys_recvmmsg+0x519/0x6f0 [ 598.302787][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.308931][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.315095][T18796] __do_fast_syscall_32+0x127/0x180 [ 598.320279][T18796] do_fast_syscall_32+0x77/0xd0 [ 598.325142][T18796] do_SYSENTER_32+0x73/0x90 [ 598.329653][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.335980][T18796] [ 598.338284][T18796] Uninit was stored to memory at: [ 598.343310][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 598.349029][T18796] __msan_chain_origin+0x54/0xa0 [ 598.353973][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 598.359073][T18796] get_compat_msghdr+0x108/0x2b0 [ 598.364011][T18796] do_recvmmsg+0xdc1/0x22d0 [ 598.368527][T18796] __sys_recvmmsg+0x519/0x6f0 [ 598.373280][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.379357][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.385496][T18796] __do_fast_syscall_32+0x127/0x180 [ 598.390683][T18796] do_fast_syscall_32+0x77/0xd0 [ 598.395517][T18796] do_SYSENTER_32+0x73/0x90 [ 598.400006][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.406320][T18796] [ 598.408627][T18796] Uninit was stored to memory at: [ 598.413652][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 598.419361][T18796] __msan_chain_origin+0x54/0xa0 [ 598.424279][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 598.429372][T18796] get_compat_msghdr+0x108/0x2b0 [ 598.434339][T18796] do_recvmmsg+0xdc1/0x22d0 [ 598.438832][T18796] __sys_recvmmsg+0x519/0x6f0 [ 598.443494][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.449549][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.455700][T18796] __do_fast_syscall_32+0x127/0x180 [ 598.460921][T18796] do_fast_syscall_32+0x77/0xd0 [ 598.465759][T18796] do_SYSENTER_32+0x73/0x90 [ 598.470248][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.476566][T18796] [ 598.478883][T18796] Uninit was stored to memory at: [ 598.483879][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 598.489609][T18796] __msan_chain_origin+0x54/0xa0 [ 598.494529][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 598.499620][T18796] get_compat_msghdr+0x108/0x2b0 [ 598.504554][T18796] do_recvmmsg+0xdc1/0x22d0 [ 598.509063][T18796] __sys_recvmmsg+0x519/0x6f0 [ 598.513726][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.519781][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.525922][T18796] __do_fast_syscall_32+0x127/0x180 [ 598.531120][T18796] do_fast_syscall_32+0x77/0xd0 [ 598.535954][T18796] do_SYSENTER_32+0x73/0x90 [ 598.540442][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.546771][T18796] [ 598.549074][T18796] Uninit was stored to memory at: [ 598.554068][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 598.559768][T18796] __msan_chain_origin+0x54/0xa0 [ 598.564683][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 598.569780][T18796] get_compat_msghdr+0x108/0x2b0 [ 598.574714][T18796] do_recvmmsg+0xdc1/0x22d0 [ 598.579203][T18796] __sys_recvmmsg+0x519/0x6f0 [ 598.583861][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.589909][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.596044][T18796] __do_fast_syscall_32+0x127/0x180 [ 598.601228][T18796] do_fast_syscall_32+0x77/0xd0 [ 598.606076][T18796] do_SYSENTER_32+0x73/0x90 [ 598.610560][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 598.616866][T18796] [ 598.619167][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 598.625810][T18796] do_recvmmsg+0xbf/0x22d0 [ 598.630206][T18796] do_recvmmsg+0xbf/0x22d0 [ 598.817742][T18796] not chained 220000 origins [ 598.822438][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 598.831200][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 598.841242][T18796] Call Trace: [ 598.844510][T18796] dump_stack+0x24c/0x2e0 [ 598.848832][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 598.854544][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 598.859909][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 598.865445][T18796] ? kmsan_get_metadata+0x116/0x180 [ 598.871011][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 598.876633][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 598.882815][T18796] ? kmsan_get_metadata+0x116/0x180 [ 598.888132][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 598.893933][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 598.899990][T18796] ? kmsan_get_metadata+0x116/0x180 [ 598.905175][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 598.910788][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 598.916886][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 598.922157][T18796] ? _copy_from_user+0x1fd/0x300 [ 598.927085][T18796] __msan_chain_origin+0x54/0xa0 [ 598.932011][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 598.937110][T18796] get_compat_msghdr+0x108/0x2b0 [ 598.942031][T18796] do_recvmmsg+0xdc1/0x22d0 [ 598.946520][T18796] ? kmsan_get_metadata+0x116/0x180 [ 598.951728][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 598.957343][T18796] ? __msan_poison_alloca+0xec/0x110 [ 598.962647][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 598.967394][T18796] __sys_recvmmsg+0x519/0x6f0 [ 598.972058][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 598.978110][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 598.984250][T18796] __do_fast_syscall_32+0x127/0x180 [ 598.989436][T18796] do_fast_syscall_32+0x77/0xd0 [ 598.994435][T18796] do_SYSENTER_32+0x73/0x90 [ 598.998924][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.005234][T18796] RIP: 0023:0xf7fe5549 [ 599.009283][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 599.028875][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 599.037270][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 599.045226][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 599.053238][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 599.061362][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 599.069333][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 599.077296][T18796] Uninit was stored to memory at: [ 599.082290][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 599.087989][T18796] __msan_chain_origin+0x54/0xa0 [ 599.092900][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 599.097987][T18796] get_compat_msghdr+0x108/0x2b0 [ 599.102916][T18796] do_recvmmsg+0xdc1/0x22d0 [ 599.107425][T18796] __sys_recvmmsg+0x519/0x6f0 [ 599.112099][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.118141][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.124283][T18796] __do_fast_syscall_32+0x127/0x180 [ 599.129476][T18796] do_fast_syscall_32+0x77/0xd0 [ 599.134306][T18796] do_SYSENTER_32+0x73/0x90 [ 599.138786][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.145103][T18796] [ 599.147422][T18796] Uninit was stored to memory at: [ 599.152509][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 599.158204][T18796] __msan_chain_origin+0x54/0xa0 [ 599.163130][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 599.168221][T18796] get_compat_msghdr+0x108/0x2b0 [ 599.173235][T18796] do_recvmmsg+0xdc1/0x22d0 [ 599.177726][T18796] __sys_recvmmsg+0x519/0x6f0 [ 599.182378][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.188422][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.194559][T18796] __do_fast_syscall_32+0x127/0x180 [ 599.199736][T18796] do_fast_syscall_32+0x77/0xd0 [ 599.204587][T18796] do_SYSENTER_32+0x73/0x90 [ 599.209069][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.215446][T18796] [ 599.217764][T18796] Uninit was stored to memory at: [ 599.222751][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 599.228471][T18796] __msan_chain_origin+0x54/0xa0 [ 599.233384][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 599.238472][T18796] get_compat_msghdr+0x108/0x2b0 [ 599.243385][T18796] do_recvmmsg+0xdc1/0x22d0 [ 599.247864][T18796] __sys_recvmmsg+0x519/0x6f0 [ 599.252529][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.258673][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.264805][T18796] __do_fast_syscall_32+0x127/0x180 [ 599.269982][T18796] do_fast_syscall_32+0x77/0xd0 [ 599.274812][T18796] do_SYSENTER_32+0x73/0x90 [ 599.279293][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.285611][T18796] [ 599.287922][T18796] Uninit was stored to memory at: [ 599.292918][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 599.298619][T18796] __msan_chain_origin+0x54/0xa0 [ 599.303532][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 599.308621][T18796] get_compat_msghdr+0x108/0x2b0 [ 599.313589][T18796] do_recvmmsg+0xdc1/0x22d0 [ 599.318076][T18796] __sys_recvmmsg+0x519/0x6f0 [ 599.322732][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.328805][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.334935][T18796] __do_fast_syscall_32+0x127/0x180 [ 599.340141][T18796] do_fast_syscall_32+0x77/0xd0 [ 599.344991][T18796] do_SYSENTER_32+0x73/0x90 [ 599.349482][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.355793][T18796] [ 599.358092][T18796] Uninit was stored to memory at: [ 599.363087][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 599.368783][T18796] __msan_chain_origin+0x54/0xa0 [ 599.373695][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 599.378796][T18796] get_compat_msghdr+0x108/0x2b0 [ 599.383724][T18796] do_recvmmsg+0xdc1/0x22d0 [ 599.388211][T18796] __sys_recvmmsg+0x519/0x6f0 [ 599.392888][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.398937][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.405068][T18796] __do_fast_syscall_32+0x127/0x180 [ 599.410249][T18796] do_fast_syscall_32+0x77/0xd0 [ 599.415078][T18796] do_SYSENTER_32+0x73/0x90 [ 599.419560][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.425894][T18796] [ 599.428231][T18796] Uninit was stored to memory at: [ 599.433233][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 599.438931][T18796] __msan_chain_origin+0x54/0xa0 [ 599.443844][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 599.448935][T18796] get_compat_msghdr+0x108/0x2b0 [ 599.453847][T18796] do_recvmmsg+0xdc1/0x22d0 [ 599.458328][T18796] __sys_recvmmsg+0x519/0x6f0 [ 599.462980][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.469113][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.475351][T18796] __do_fast_syscall_32+0x127/0x180 [ 599.480536][T18796] do_fast_syscall_32+0x77/0xd0 [ 599.485372][T18796] do_SYSENTER_32+0x73/0x90 [ 599.489854][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.496163][T18796] [ 599.498506][T18796] Uninit was stored to memory at: [ 599.503498][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 599.509195][T18796] __msan_chain_origin+0x54/0xa0 [ 599.514109][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 599.519287][T18796] get_compat_msghdr+0x108/0x2b0 [ 599.524206][T18796] do_recvmmsg+0xdc1/0x22d0 [ 599.528693][T18796] __sys_recvmmsg+0x519/0x6f0 [ 599.533353][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.539410][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.545550][T18796] __do_fast_syscall_32+0x127/0x180 [ 599.550732][T18796] do_fast_syscall_32+0x77/0xd0 [ 599.555565][T18796] do_SYSENTER_32+0x73/0x90 [ 599.560051][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.566363][T18796] [ 599.568674][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 599.575320][T18796] do_recvmmsg+0xbf/0x22d0 [ 599.579735][T18796] do_recvmmsg+0xbf/0x22d0 [ 599.758497][T18796] not chained 230000 origins [ 599.763106][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 599.771861][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 599.781893][T18796] Call Trace: [ 599.785338][T18796] dump_stack+0x24c/0x2e0 [ 599.789678][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 599.795379][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 599.800738][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 599.806279][T18796] ? kmsan_get_metadata+0x116/0x180 [ 599.811469][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 599.817080][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 599.823125][T18796] ? kmsan_get_metadata+0x116/0x180 [ 599.828304][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 599.834111][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 599.840175][T18796] ? kmsan_get_metadata+0x116/0x180 [ 599.845372][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 599.850988][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 599.857036][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 599.862301][T18796] ? _copy_from_user+0x1fd/0x300 [ 599.867235][T18796] __msan_chain_origin+0x54/0xa0 [ 599.872165][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 599.877261][T18796] get_compat_msghdr+0x108/0x2b0 [ 599.882190][T18796] do_recvmmsg+0xdc1/0x22d0 [ 599.886683][T18796] ? kmsan_get_metadata+0x116/0x180 [ 599.891877][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 599.897493][T18796] ? __msan_poison_alloca+0xec/0x110 [ 599.902787][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 599.907538][T18796] __sys_recvmmsg+0x519/0x6f0 [ 599.912205][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 599.918258][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 599.924400][T18796] __do_fast_syscall_32+0x127/0x180 [ 599.929618][T18796] do_fast_syscall_32+0x77/0xd0 [ 599.934470][T18796] do_SYSENTER_32+0x73/0x90 [ 599.938957][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 599.945376][T18796] RIP: 0023:0xf7fe5549 [ 599.949442][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 599.969123][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 599.977563][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 599.985530][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 599.993489][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 600.001459][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 600.009432][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 600.017411][T18796] Uninit was stored to memory at: [ 600.022426][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 600.028131][T18796] __msan_chain_origin+0x54/0xa0 [ 600.033066][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 600.038169][T18796] get_compat_msghdr+0x108/0x2b0 [ 600.043101][T18796] do_recvmmsg+0xdc1/0x22d0 [ 600.047599][T18796] __sys_recvmmsg+0x519/0x6f0 [ 600.052296][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.058396][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.064534][T18796] __do_fast_syscall_32+0x127/0x180 [ 600.069766][T18796] do_fast_syscall_32+0x77/0xd0 [ 600.074602][T18796] do_SYSENTER_32+0x73/0x90 [ 600.079086][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.085408][T18796] [ 600.087798][T18796] Uninit was stored to memory at: [ 600.092793][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 600.098495][T18796] __msan_chain_origin+0x54/0xa0 [ 600.103431][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 600.108528][T18796] get_compat_msghdr+0x108/0x2b0 [ 600.113458][T18796] do_recvmmsg+0xdc1/0x22d0 [ 600.117945][T18796] __sys_recvmmsg+0x519/0x6f0 [ 600.122634][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.128685][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.134820][T18796] __do_fast_syscall_32+0x127/0x180 [ 600.140107][T18796] do_fast_syscall_32+0x77/0xd0 [ 600.144941][T18796] do_SYSENTER_32+0x73/0x90 [ 600.149425][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.155735][T18796] [ 600.158035][T18796] Uninit was stored to memory at: [ 600.163024][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 600.168739][T18796] __msan_chain_origin+0x54/0xa0 [ 600.173655][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 600.178748][T18796] get_compat_msghdr+0x108/0x2b0 [ 600.183679][T18796] do_recvmmsg+0xdc1/0x22d0 [ 600.188166][T18796] __sys_recvmmsg+0x519/0x6f0 [ 600.192822][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.198870][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.205004][T18796] __do_fast_syscall_32+0x127/0x180 [ 600.210186][T18796] do_fast_syscall_32+0x77/0xd0 [ 600.215021][T18796] do_SYSENTER_32+0x73/0x90 [ 600.219502][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.225811][T18796] [ 600.228112][T18796] Uninit was stored to memory at: [ 600.233106][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 600.238805][T18796] __msan_chain_origin+0x54/0xa0 [ 600.243721][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 600.248812][T18796] get_compat_msghdr+0x108/0x2b0 [ 600.253728][T18796] do_recvmmsg+0xdc1/0x22d0 [ 600.258210][T18796] __sys_recvmmsg+0x519/0x6f0 [ 600.262867][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.268913][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.275045][T18796] __do_fast_syscall_32+0x127/0x180 [ 600.280228][T18796] do_fast_syscall_32+0x77/0xd0 [ 600.285059][T18796] do_SYSENTER_32+0x73/0x90 [ 600.289539][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.295843][T18796] [ 600.298142][T18796] Uninit was stored to memory at: [ 600.303134][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 600.308831][T18796] __msan_chain_origin+0x54/0xa0 [ 600.313759][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 600.318866][T18796] get_compat_msghdr+0x108/0x2b0 [ 600.323782][T18796] do_recvmmsg+0xdc1/0x22d0 [ 600.328267][T18796] __sys_recvmmsg+0x519/0x6f0 [ 600.332921][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.338979][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.345128][T18796] __do_fast_syscall_32+0x127/0x180 [ 600.350311][T18796] do_fast_syscall_32+0x77/0xd0 [ 600.355145][T18796] do_SYSENTER_32+0x73/0x90 [ 600.359641][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.365957][T18796] [ 600.368273][T18796] Uninit was stored to memory at: [ 600.373266][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 600.378985][T18796] __msan_chain_origin+0x54/0xa0 [ 600.383896][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 600.388988][T18796] get_compat_msghdr+0x108/0x2b0 [ 600.393914][T18796] do_recvmmsg+0xdc1/0x22d0 [ 600.398393][T18796] __sys_recvmmsg+0x519/0x6f0 [ 600.403050][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.409095][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.415250][T18796] __do_fast_syscall_32+0x127/0x180 [ 600.420463][T18796] do_fast_syscall_32+0x77/0xd0 [ 600.425299][T18796] do_SYSENTER_32+0x73/0x90 [ 600.429785][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.436097][T18796] [ 600.438426][T18796] Uninit was stored to memory at: [ 600.443435][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 600.449159][T18796] __msan_chain_origin+0x54/0xa0 [ 600.454098][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 600.459188][T18796] get_compat_msghdr+0x108/0x2b0 [ 600.464104][T18796] do_recvmmsg+0xdc1/0x22d0 [ 600.468583][T18796] __sys_recvmmsg+0x519/0x6f0 [ 600.473238][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.479283][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.485940][T18796] __do_fast_syscall_32+0x127/0x180 [ 600.491135][T18796] do_fast_syscall_32+0x77/0xd0 [ 600.495968][T18796] do_SYSENTER_32+0x73/0x90 [ 600.500452][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.506775][T18796] [ 600.509073][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 600.515723][T18796] do_recvmmsg+0xbf/0x22d0 [ 600.520228][T18796] do_recvmmsg+0xbf/0x22d0 [ 600.697241][T18796] not chained 240000 origins [ 600.701851][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 600.710617][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 600.720656][T18796] Call Trace: [ 600.723919][T18796] dump_stack+0x24c/0x2e0 [ 600.728255][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 600.733959][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 600.739317][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 600.744848][T18796] ? kmsan_get_metadata+0x116/0x180 [ 600.750028][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 600.755654][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 600.761713][T18796] ? kmsan_get_metadata+0x116/0x180 [ 600.766901][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 600.772692][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 600.778754][T18796] ? kmsan_get_metadata+0x116/0x180 [ 600.783951][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 600.789579][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 600.795627][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 600.800906][T18796] ? _copy_from_user+0x1fd/0x300 [ 600.805841][T18796] __msan_chain_origin+0x54/0xa0 [ 600.810788][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 600.815886][T18796] get_compat_msghdr+0x108/0x2b0 [ 600.820901][T18796] do_recvmmsg+0xdc1/0x22d0 [ 600.825405][T18796] ? kmsan_get_metadata+0x116/0x180 [ 600.830611][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 600.836228][T18796] ? __msan_poison_alloca+0xec/0x110 [ 600.841533][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 600.846295][T18796] __sys_recvmmsg+0x519/0x6f0 [ 600.850966][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.857024][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 600.863161][T18796] __do_fast_syscall_32+0x127/0x180 [ 600.868352][T18796] do_fast_syscall_32+0x77/0xd0 [ 600.873205][T18796] do_SYSENTER_32+0x73/0x90 [ 600.877692][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 600.884009][T18796] RIP: 0023:0xf7fe5549 [ 600.888064][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 600.907653][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 600.916058][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 600.924020][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 600.931985][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 600.939941][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 600.947897][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 600.955854][T18796] Uninit was stored to memory at: [ 600.960857][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 600.966570][T18796] __msan_chain_origin+0x54/0xa0 [ 600.971513][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 600.976642][T18796] get_compat_msghdr+0x108/0x2b0 [ 600.981563][T18796] do_recvmmsg+0xdc1/0x22d0 [ 600.986052][T18796] __sys_recvmmsg+0x519/0x6f0 [ 600.990756][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 600.996822][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.002954][T18796] __do_fast_syscall_32+0x127/0x180 [ 601.008139][T18796] do_fast_syscall_32+0x77/0xd0 [ 601.012970][T18796] do_SYSENTER_32+0x73/0x90 [ 601.017458][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.023765][T18796] [ 601.026068][T18796] Uninit was stored to memory at: [ 601.031060][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 601.036762][T18796] __msan_chain_origin+0x54/0xa0 [ 601.041678][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 601.046782][T18796] get_compat_msghdr+0x108/0x2b0 [ 601.051695][T18796] do_recvmmsg+0xdc1/0x22d0 [ 601.056179][T18796] __sys_recvmmsg+0x519/0x6f0 [ 601.060837][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.066886][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.073039][T18796] __do_fast_syscall_32+0x127/0x180 [ 601.078233][T18796] do_fast_syscall_32+0x77/0xd0 [ 601.083073][T18796] do_SYSENTER_32+0x73/0x90 [ 601.087553][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.093857][T18796] [ 601.096157][T18796] Uninit was stored to memory at: [ 601.101152][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 601.106867][T18796] __msan_chain_origin+0x54/0xa0 [ 601.111783][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 601.116873][T18796] get_compat_msghdr+0x108/0x2b0 [ 601.121802][T18796] do_recvmmsg+0xdc1/0x22d0 [ 601.126297][T18796] __sys_recvmmsg+0x519/0x6f0 [ 601.130969][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.137017][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.143166][T18796] __do_fast_syscall_32+0x127/0x180 [ 601.148451][T18796] do_fast_syscall_32+0x77/0xd0 [ 601.153283][T18796] do_SYSENTER_32+0x73/0x90 [ 601.157779][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.164089][T18796] [ 601.166400][T18796] Uninit was stored to memory at: [ 601.171405][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 601.177107][T18796] __msan_chain_origin+0x54/0xa0 [ 601.182020][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 601.187120][T18796] get_compat_msghdr+0x108/0x2b0 [ 601.192042][T18796] do_recvmmsg+0xdc1/0x22d0 [ 601.196540][T18796] __sys_recvmmsg+0x519/0x6f0 [ 601.201195][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.207242][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.213375][T18796] __do_fast_syscall_32+0x127/0x180 [ 601.218557][T18796] do_fast_syscall_32+0x77/0xd0 [ 601.223405][T18796] do_SYSENTER_32+0x73/0x90 [ 601.227896][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.234213][T18796] [ 601.236514][T18796] Uninit was stored to memory at: [ 601.241506][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 601.247657][T18796] __msan_chain_origin+0x54/0xa0 [ 601.252577][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 601.257668][T18796] get_compat_msghdr+0x108/0x2b0 [ 601.262584][T18796] do_recvmmsg+0xdc1/0x22d0 [ 601.267069][T18796] __sys_recvmmsg+0x519/0x6f0 [ 601.272159][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.278307][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.284444][T18796] __do_fast_syscall_32+0x127/0x180 [ 601.289622][T18796] do_fast_syscall_32+0x77/0xd0 [ 601.294452][T18796] do_SYSENTER_32+0x73/0x90 [ 601.298936][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.305299][T18796] [ 601.307614][T18796] Uninit was stored to memory at: [ 601.312627][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 601.318326][T18796] __msan_chain_origin+0x54/0xa0 [ 601.323241][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 601.328343][T18796] get_compat_msghdr+0x108/0x2b0 [ 601.333259][T18796] do_recvmmsg+0xdc1/0x22d0 [ 601.337747][T18796] __sys_recvmmsg+0x519/0x6f0 [ 601.342423][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.348490][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.354623][T18796] __do_fast_syscall_32+0x127/0x180 [ 601.359801][T18796] do_fast_syscall_32+0x77/0xd0 [ 601.364629][T18796] do_SYSENTER_32+0x73/0x90 [ 601.369140][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.375487][T18796] [ 601.377808][T18796] Uninit was stored to memory at: [ 601.382815][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 601.388514][T18796] __msan_chain_origin+0x54/0xa0 [ 601.393430][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 601.398525][T18796] get_compat_msghdr+0x108/0x2b0 [ 601.403440][T18796] do_recvmmsg+0xdc1/0x22d0 [ 601.407921][T18796] __sys_recvmmsg+0x519/0x6f0 [ 601.412692][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.418738][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.424881][T18796] __do_fast_syscall_32+0x127/0x180 [ 601.430063][T18796] do_fast_syscall_32+0x77/0xd0 [ 601.434932][T18796] do_SYSENTER_32+0x73/0x90 [ 601.439426][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.445743][T18796] [ 601.448042][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 601.454792][T18796] do_recvmmsg+0xbf/0x22d0 [ 601.459193][T18796] do_recvmmsg+0xbf/0x22d0 [ 601.654444][T18796] not chained 250000 origins [ 601.659044][T18796] CPU: 1 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 601.667784][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 601.677822][T18796] Call Trace: [ 601.681094][T18796] dump_stack+0x24c/0x2e0 [ 601.685451][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 601.691160][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 601.696542][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 601.702073][T18796] ? kmsan_get_metadata+0x116/0x180 [ 601.707273][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 601.712889][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 601.718938][T18796] ? kmsan_get_metadata+0x116/0x180 [ 601.724122][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 601.729915][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 601.735967][T18796] ? kmsan_get_metadata+0x116/0x180 [ 601.741152][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 601.746796][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 601.752854][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 601.758125][T18796] ? _copy_from_user+0x1fd/0x300 [ 601.763043][T18796] __msan_chain_origin+0x54/0xa0 [ 601.767970][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 601.773077][T18796] get_compat_msghdr+0x108/0x2b0 [ 601.777996][T18796] do_recvmmsg+0xdc1/0x22d0 [ 601.782552][T18796] ? kmsan_get_metadata+0x116/0x180 [ 601.787734][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 601.793376][T18796] ? __msan_poison_alloca+0xec/0x110 [ 601.798642][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 601.803392][T18796] __sys_recvmmsg+0x519/0x6f0 [ 601.808080][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.814139][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.820290][T18796] __do_fast_syscall_32+0x127/0x180 [ 601.825577][T18796] do_fast_syscall_32+0x77/0xd0 [ 601.830417][T18796] do_SYSENTER_32+0x73/0x90 [ 601.834906][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.841220][T18796] RIP: 0023:0xf7fe5549 [ 601.845281][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 601.864889][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 601.873443][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 601.881407][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 601.889391][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 601.897449][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 601.905400][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 601.913358][T18796] Uninit was stored to memory at: [ 601.918379][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 601.924086][T18796] __msan_chain_origin+0x54/0xa0 [ 601.929020][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 601.934110][T18796] get_compat_msghdr+0x108/0x2b0 [ 601.939026][T18796] do_recvmmsg+0xdc1/0x22d0 [ 601.943509][T18796] __sys_recvmmsg+0x519/0x6f0 [ 601.948170][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 601.954235][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 601.960383][T18796] __do_fast_syscall_32+0x127/0x180 [ 601.965652][T18796] do_fast_syscall_32+0x77/0xd0 [ 601.970486][T18796] do_SYSENTER_32+0x73/0x90 [ 601.974969][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 601.981282][T18796] [ 601.983597][T18796] Uninit was stored to memory at: [ 601.988588][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 601.994287][T18796] __msan_chain_origin+0x54/0xa0 [ 601.999204][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 602.004319][T18796] get_compat_msghdr+0x108/0x2b0 [ 602.009247][T18796] do_recvmmsg+0xdc1/0x22d0 [ 602.013772][T18796] __sys_recvmmsg+0x519/0x6f0 [ 602.018447][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.024504][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.030647][T18796] __do_fast_syscall_32+0x127/0x180 [ 602.035856][T18796] do_fast_syscall_32+0x77/0xd0 [ 602.040701][T18796] do_SYSENTER_32+0x73/0x90 [ 602.045218][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.051536][T18796] [ 602.053849][T18796] Uninit was stored to memory at: [ 602.058867][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 602.064570][T18796] __msan_chain_origin+0x54/0xa0 [ 602.069492][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 602.074582][T18796] get_compat_msghdr+0x108/0x2b0 [ 602.079502][T18796] do_recvmmsg+0xdc1/0x22d0 [ 602.084008][T18796] __sys_recvmmsg+0x519/0x6f0 [ 602.088684][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.094751][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.100892][T18796] __do_fast_syscall_32+0x127/0x180 [ 602.106101][T18796] do_fast_syscall_32+0x77/0xd0 [ 602.110942][T18796] do_SYSENTER_32+0x73/0x90 [ 602.115455][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.121791][T18796] [ 602.124105][T18796] Uninit was stored to memory at: [ 602.129101][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 602.134824][T18796] __msan_chain_origin+0x54/0xa0 [ 602.139838][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 602.144965][T18796] get_compat_msghdr+0x108/0x2b0 [ 602.149934][T18796] do_recvmmsg+0xdc1/0x22d0 [ 602.154427][T18796] __sys_recvmmsg+0x519/0x6f0 [ 602.159105][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.165172][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.171323][T18796] __do_fast_syscall_32+0x127/0x180 [ 602.176504][T18796] do_fast_syscall_32+0x77/0xd0 [ 602.181424][T18796] do_SYSENTER_32+0x73/0x90 [ 602.185944][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.192259][T18796] [ 602.194559][T18796] Uninit was stored to memory at: [ 602.199554][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 602.205277][T18796] __msan_chain_origin+0x54/0xa0 [ 602.210216][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 602.215345][T18796] get_compat_msghdr+0x108/0x2b0 [ 602.220282][T18796] do_recvmmsg+0xdc1/0x22d0 [ 602.224813][T18796] __sys_recvmmsg+0x519/0x6f0 [ 602.229477][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.235532][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.241692][T18796] __do_fast_syscall_32+0x127/0x180 [ 602.246909][T18796] do_fast_syscall_32+0x77/0xd0 [ 602.251964][T18796] do_SYSENTER_32+0x73/0x90 [ 602.256488][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.262891][T18796] [ 602.265193][T18796] Uninit was stored to memory at: [ 602.270185][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 602.276246][T18796] __msan_chain_origin+0x54/0xa0 [ 602.281191][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 602.286325][T18796] get_compat_msghdr+0x108/0x2b0 [ 602.291251][T18796] do_recvmmsg+0xdc1/0x22d0 [ 602.295776][T18796] __sys_recvmmsg+0x519/0x6f0 [ 602.300454][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.306540][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.312775][T18796] __do_fast_syscall_32+0x127/0x180 [ 602.317965][T18796] do_fast_syscall_32+0x77/0xd0 [ 602.322936][T18796] do_SYSENTER_32+0x73/0x90 [ 602.327538][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.333847][T18796] [ 602.336175][T18796] Uninit was stored to memory at: [ 602.341264][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 602.346992][T18796] __msan_chain_origin+0x54/0xa0 [ 602.351960][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 602.357057][T18796] get_compat_msghdr+0x108/0x2b0 [ 602.361980][T18796] do_recvmmsg+0xdc1/0x22d0 [ 602.366512][T18796] __sys_recvmmsg+0x519/0x6f0 [ 602.371198][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.377255][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.383410][T18796] __do_fast_syscall_32+0x127/0x180 [ 602.388602][T18796] do_fast_syscall_32+0x77/0xd0 [ 602.393442][T18796] do_SYSENTER_32+0x73/0x90 [ 602.397928][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.404269][T18796] [ 602.406617][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 602.413270][T18796] do_recvmmsg+0xbf/0x22d0 [ 602.417707][T18796] do_recvmmsg+0xbf/0x22d0 [ 602.606928][T18796] not chained 260000 origins [ 602.611648][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 602.620629][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 602.630680][T18796] Call Trace: [ 602.633960][T18796] dump_stack+0x24c/0x2e0 [ 602.638303][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 602.644075][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 602.649438][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 602.654974][T18796] ? kmsan_get_metadata+0x116/0x180 [ 602.660161][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 602.665790][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 602.671878][T18796] ? kmsan_get_metadata+0x116/0x180 [ 602.677073][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 602.683008][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 602.689161][T18796] ? kmsan_get_metadata+0x116/0x180 [ 602.694542][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 602.700252][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 602.706444][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 602.711721][T18796] ? _copy_from_user+0x1fd/0x300 [ 602.716656][T18796] __msan_chain_origin+0x54/0xa0 [ 602.721700][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 602.726814][T18796] get_compat_msghdr+0x108/0x2b0 [ 602.731743][T18796] do_recvmmsg+0xdc1/0x22d0 [ 602.736243][T18796] ? kmsan_get_metadata+0x116/0x180 [ 602.741520][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 602.747153][T18796] ? __msan_poison_alloca+0xec/0x110 [ 602.752509][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 602.757293][T18796] __sys_recvmmsg+0x519/0x6f0 [ 602.761960][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.768040][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.774219][T18796] __do_fast_syscall_32+0x127/0x180 [ 602.779422][T18796] do_fast_syscall_32+0x77/0xd0 [ 602.784284][T18796] do_SYSENTER_32+0x73/0x90 [ 602.788817][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.795133][T18796] RIP: 0023:0xf7fe5549 [ 602.799214][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 602.818917][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 602.827340][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 602.835299][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 602.843265][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 602.851256][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 602.859222][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 602.867186][T18796] Uninit was stored to memory at: [ 602.872213][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 602.877950][T18796] __msan_chain_origin+0x54/0xa0 [ 602.882871][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 602.887971][T18796] get_compat_msghdr+0x108/0x2b0 [ 602.892912][T18796] do_recvmmsg+0xdc1/0x22d0 [ 602.897399][T18796] __sys_recvmmsg+0x519/0x6f0 [ 602.902085][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.908142][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.914284][T18796] __do_fast_syscall_32+0x127/0x180 [ 602.919483][T18796] do_fast_syscall_32+0x77/0xd0 [ 602.924326][T18796] do_SYSENTER_32+0x73/0x90 [ 602.928864][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 602.935183][T18796] [ 602.937499][T18796] Uninit was stored to memory at: [ 602.942523][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 602.948231][T18796] __msan_chain_origin+0x54/0xa0 [ 602.953155][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 602.958255][T18796] get_compat_msghdr+0x108/0x2b0 [ 602.963270][T18796] do_recvmmsg+0xdc1/0x22d0 [ 602.967948][T18796] __sys_recvmmsg+0x519/0x6f0 [ 602.972631][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 602.978711][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 602.984861][T18796] __do_fast_syscall_32+0x127/0x180 [ 602.990049][T18796] do_fast_syscall_32+0x77/0xd0 [ 602.994887][T18796] do_SYSENTER_32+0x73/0x90 [ 602.999377][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.005723][T18796] [ 603.008034][T18796] Uninit was stored to memory at: [ 603.013055][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 603.018767][T18796] __msan_chain_origin+0x54/0xa0 [ 603.023695][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 603.028815][T18796] get_compat_msghdr+0x108/0x2b0 [ 603.033741][T18796] do_recvmmsg+0xdc1/0x22d0 [ 603.038252][T18796] __sys_recvmmsg+0x519/0x6f0 [ 603.042918][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.048975][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.055121][T18796] __do_fast_syscall_32+0x127/0x180 [ 603.060309][T18796] do_fast_syscall_32+0x77/0xd0 [ 603.065161][T18796] do_SYSENTER_32+0x73/0x90 [ 603.069650][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.075970][T18796] [ 603.078286][T18796] Uninit was stored to memory at: [ 603.083285][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 603.088991][T18796] __msan_chain_origin+0x54/0xa0 [ 603.093911][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 603.099074][T18796] get_compat_msghdr+0x108/0x2b0 [ 603.103996][T18796] do_recvmmsg+0xdc1/0x22d0 [ 603.108530][T18796] __sys_recvmmsg+0x519/0x6f0 [ 603.113192][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.119245][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.125385][T18796] __do_fast_syscall_32+0x127/0x180 [ 603.130588][T18796] do_fast_syscall_32+0x77/0xd0 [ 603.135445][T18796] do_SYSENTER_32+0x73/0x90 [ 603.139933][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.146246][T18796] [ 603.148569][T18796] Uninit was stored to memory at: [ 603.153568][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 603.159295][T18796] __msan_chain_origin+0x54/0xa0 [ 603.164271][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 603.169484][T18796] get_compat_msghdr+0x108/0x2b0 [ 603.174452][T18796] do_recvmmsg+0xdc1/0x22d0 [ 603.178956][T18796] __sys_recvmmsg+0x519/0x6f0 [ 603.183621][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.189674][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.195843][T18796] __do_fast_syscall_32+0x127/0x180 [ 603.201037][T18796] do_fast_syscall_32+0x77/0xd0 [ 603.205889][T18796] do_SYSENTER_32+0x73/0x90 [ 603.210380][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.216694][T18796] [ 603.218996][T18796] Uninit was stored to memory at: [ 603.223992][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 603.229694][T18796] __msan_chain_origin+0x54/0xa0 [ 603.234637][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 603.239766][T18796] get_compat_msghdr+0x108/0x2b0 [ 603.244693][T18796] do_recvmmsg+0xdc1/0x22d0 [ 603.249187][T18796] __sys_recvmmsg+0x519/0x6f0 [ 603.253864][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.259914][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.266056][T18796] __do_fast_syscall_32+0x127/0x180 [ 603.271270][T18796] do_fast_syscall_32+0x77/0xd0 [ 603.276107][T18796] do_SYSENTER_32+0x73/0x90 [ 603.280600][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.286946][T18796] [ 603.289259][T18796] Uninit was stored to memory at: [ 603.294286][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 603.300000][T18796] __msan_chain_origin+0x54/0xa0 [ 603.304923][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 603.310018][T18796] get_compat_msghdr+0x108/0x2b0 [ 603.314960][T18796] do_recvmmsg+0xdc1/0x22d0 [ 603.319452][T18796] __sys_recvmmsg+0x519/0x6f0 [ 603.324115][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.330273][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.336414][T18796] __do_fast_syscall_32+0x127/0x180 [ 603.341602][T18796] do_fast_syscall_32+0x77/0xd0 [ 603.346467][T18796] do_SYSENTER_32+0x73/0x90 [ 603.350959][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.357275][T18796] [ 603.359581][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 603.366272][T18796] do_recvmmsg+0xbf/0x22d0 [ 603.370674][T18796] do_recvmmsg+0xbf/0x22d0 [ 603.548009][T18796] not chained 270000 origins [ 603.552735][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 603.561654][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 603.571728][T18796] Call Trace: [ 603.574996][T18796] dump_stack+0x24c/0x2e0 [ 603.579320][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 603.585028][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 603.590412][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 603.595956][T18796] ? kmsan_get_metadata+0x116/0x180 [ 603.601141][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 603.606761][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 603.612839][T18796] ? kmsan_get_metadata+0x116/0x180 [ 603.618048][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 603.623866][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 603.629923][T18796] ? kmsan_get_metadata+0x116/0x180 [ 603.635113][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 603.640846][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 603.646936][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 603.652232][T18796] ? _copy_from_user+0x1fd/0x300 [ 603.657162][T18796] __msan_chain_origin+0x54/0xa0 [ 603.662089][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 603.667239][T18796] get_compat_msghdr+0x108/0x2b0 [ 603.672190][T18796] do_recvmmsg+0xdc1/0x22d0 [ 603.676688][T18796] ? kmsan_get_metadata+0x116/0x180 [ 603.681875][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 603.687498][T18796] ? __msan_poison_alloca+0xec/0x110 [ 603.692775][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 603.697619][T18796] __sys_recvmmsg+0x519/0x6f0 [ 603.702323][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.708382][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.714525][T18796] __do_fast_syscall_32+0x127/0x180 [ 603.719809][T18796] do_fast_syscall_32+0x77/0xd0 [ 603.724648][T18796] do_SYSENTER_32+0x73/0x90 [ 603.729138][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.735497][T18796] RIP: 0023:0xf7fe5549 [ 603.739550][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 603.759147][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 603.767568][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 603.775614][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 603.783611][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 603.791571][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 603.799552][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 603.807550][T18796] Uninit was stored to memory at: [ 603.812621][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 603.818464][T18796] __msan_chain_origin+0x54/0xa0 [ 603.823406][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 603.828504][T18796] get_compat_msghdr+0x108/0x2b0 [ 603.833478][T18796] do_recvmmsg+0xdc1/0x22d0 [ 603.837974][T18796] __sys_recvmmsg+0x519/0x6f0 [ 603.842638][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.848695][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.854864][T18796] __do_fast_syscall_32+0x127/0x180 [ 603.860141][T18796] do_fast_syscall_32+0x77/0xd0 [ 603.865002][T18796] do_SYSENTER_32+0x73/0x90 [ 603.869492][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.875809][T18796] [ 603.878147][T18796] Uninit was stored to memory at: [ 603.883165][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 603.888869][T18796] __msan_chain_origin+0x54/0xa0 [ 603.893789][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 603.898907][T18796] get_compat_msghdr+0x108/0x2b0 [ 603.904024][T18796] do_recvmmsg+0xdc1/0x22d0 [ 603.908621][T18796] __sys_recvmmsg+0x519/0x6f0 [ 603.913309][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.919368][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.925642][T18796] __do_fast_syscall_32+0x127/0x180 [ 603.930847][T18796] do_fast_syscall_32+0x77/0xd0 [ 603.935691][T18796] do_SYSENTER_32+0x73/0x90 [ 603.940184][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 603.946529][T18796] [ 603.949040][T18796] Uninit was stored to memory at: [ 603.954035][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 603.959787][T18796] __msan_chain_origin+0x54/0xa0 [ 603.964709][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 603.969805][T18796] get_compat_msghdr+0x108/0x2b0 [ 603.974735][T18796] do_recvmmsg+0xdc1/0x22d0 [ 603.979220][T18796] __sys_recvmmsg+0x519/0x6f0 [ 603.983881][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 603.989981][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 603.996216][T18796] __do_fast_syscall_32+0x127/0x180 [ 604.001434][T18796] do_fast_syscall_32+0x77/0xd0 [ 604.006280][T18796] do_SYSENTER_32+0x73/0x90 [ 604.010772][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.017171][T18796] [ 604.019482][T18796] Uninit was stored to memory at: [ 604.024483][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 604.030228][T18796] __msan_chain_origin+0x54/0xa0 [ 604.035177][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 604.040308][T18796] get_compat_msghdr+0x108/0x2b0 [ 604.045300][T18796] do_recvmmsg+0xdc1/0x22d0 [ 604.049820][T18796] __sys_recvmmsg+0x519/0x6f0 [ 604.054504][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.060657][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.066803][T18796] __do_fast_syscall_32+0x127/0x180 [ 604.072005][T18796] do_fast_syscall_32+0x77/0xd0 [ 604.076855][T18796] do_SYSENTER_32+0x73/0x90 [ 604.081353][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.087670][T18796] [ 604.090001][T18796] Uninit was stored to memory at: [ 604.095046][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 604.100783][T18796] __msan_chain_origin+0x54/0xa0 [ 604.105712][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 604.110912][T18796] get_compat_msghdr+0x108/0x2b0 [ 604.115842][T18796] do_recvmmsg+0xdc1/0x22d0 [ 604.120359][T18796] __sys_recvmmsg+0x519/0x6f0 [ 604.125044][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.131124][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.137266][T18796] __do_fast_syscall_32+0x127/0x180 [ 604.142497][T18796] do_fast_syscall_32+0x77/0xd0 [ 604.147349][T18796] do_SYSENTER_32+0x73/0x90 [ 604.151838][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.158149][T18796] [ 604.160484][T18796] Uninit was stored to memory at: [ 604.165588][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 604.171294][T18796] __msan_chain_origin+0x54/0xa0 [ 604.176259][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 604.181358][T18796] get_compat_msghdr+0x108/0x2b0 [ 604.186281][T18796] do_recvmmsg+0xdc1/0x22d0 [ 604.190798][T18796] __sys_recvmmsg+0x519/0x6f0 [ 604.195466][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.201540][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.207727][T18796] __do_fast_syscall_32+0x127/0x180 [ 604.212919][T18796] do_fast_syscall_32+0x77/0xd0 [ 604.217775][T18796] do_SYSENTER_32+0x73/0x90 [ 604.222266][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.228583][T18796] [ 604.230890][T18796] Uninit was stored to memory at: [ 604.235911][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 604.241621][T18796] __msan_chain_origin+0x54/0xa0 [ 604.246545][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 604.251659][T18796] get_compat_msghdr+0x108/0x2b0 [ 604.256584][T18796] do_recvmmsg+0xdc1/0x22d0 [ 604.261132][T18796] __sys_recvmmsg+0x519/0x6f0 [ 604.265796][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.271853][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.277992][T18796] __do_fast_syscall_32+0x127/0x180 [ 604.283176][T18796] do_fast_syscall_32+0x77/0xd0 [ 604.288027][T18796] do_SYSENTER_32+0x73/0x90 [ 604.292516][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.298956][T18796] [ 604.301271][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 604.307925][T18796] do_recvmmsg+0xbf/0x22d0 [ 604.312336][T18796] do_recvmmsg+0xbf/0x22d0 [ 604.527621][T18796] not chained 280000 origins [ 604.532220][T18796] CPU: 1 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 604.540962][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 604.551006][T18796] Call Trace: [ 604.554286][T18796] dump_stack+0x24c/0x2e0 [ 604.558626][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 604.564333][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 604.569702][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 604.575291][T18796] ? kmsan_get_metadata+0x116/0x180 [ 604.580513][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 604.586133][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 604.592190][T18796] ? kmsan_get_metadata+0x116/0x180 [ 604.597435][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 604.603228][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 604.609287][T18796] ? kmsan_get_metadata+0x116/0x180 [ 604.614616][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 604.620238][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 604.626292][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 604.631569][T18796] ? _copy_from_user+0x1fd/0x300 [ 604.636544][T18796] __msan_chain_origin+0x54/0xa0 [ 604.641485][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 604.646609][T18796] get_compat_msghdr+0x108/0x2b0 [ 604.651566][T18796] do_recvmmsg+0xdc1/0x22d0 [ 604.656116][T18796] ? kmsan_get_metadata+0x116/0x180 [ 604.661310][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 604.666974][T18796] ? __msan_poison_alloca+0xec/0x110 [ 604.672268][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 604.677019][T18796] __sys_recvmmsg+0x519/0x6f0 [ 604.681709][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.687790][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.693933][T18796] __do_fast_syscall_32+0x127/0x180 [ 604.699122][T18796] do_fast_syscall_32+0x77/0xd0 [ 604.703968][T18796] do_SYSENTER_32+0x73/0x90 [ 604.708457][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.714807][T18796] RIP: 0023:0xf7fe5549 [ 604.718901][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 604.738525][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 604.746927][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 604.754886][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 604.762842][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 604.770811][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 604.778781][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 604.786761][T18796] Uninit was stored to memory at: [ 604.791767][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 604.797505][T18796] __msan_chain_origin+0x54/0xa0 [ 604.802478][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 604.807602][T18796] get_compat_msghdr+0x108/0x2b0 [ 604.812527][T18796] do_recvmmsg+0xdc1/0x22d0 [ 604.817037][T18796] __sys_recvmmsg+0x519/0x6f0 [ 604.821754][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.827812][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.834055][T18796] __do_fast_syscall_32+0x127/0x180 [ 604.839250][T18796] do_fast_syscall_32+0x77/0xd0 [ 604.844111][T18796] do_SYSENTER_32+0x73/0x90 [ 604.848657][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.854988][T18796] [ 604.857302][T18796] Uninit was stored to memory at: [ 604.862301][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 604.868011][T18796] __msan_chain_origin+0x54/0xa0 [ 604.872934][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 604.878032][T18796] get_compat_msghdr+0x108/0x2b0 [ 604.882957][T18796] do_recvmmsg+0xdc1/0x22d0 [ 604.887471][T18796] __sys_recvmmsg+0x519/0x6f0 [ 604.892136][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.898231][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.904370][T18796] __do_fast_syscall_32+0x127/0x180 [ 604.909565][T18796] do_fast_syscall_32+0x77/0xd0 [ 604.914428][T18796] do_SYSENTER_32+0x73/0x90 [ 604.918925][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.925265][T18796] [ 604.927572][T18796] Uninit was stored to memory at: [ 604.932569][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 604.938274][T18796] __msan_chain_origin+0x54/0xa0 [ 604.943212][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 604.948371][T18796] get_compat_msghdr+0x108/0x2b0 [ 604.953301][T18796] do_recvmmsg+0xdc1/0x22d0 [ 604.957801][T18796] __sys_recvmmsg+0x519/0x6f0 [ 604.962464][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 604.968519][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 604.974661][T18796] __do_fast_syscall_32+0x127/0x180 [ 604.979963][T18796] do_fast_syscall_32+0x77/0xd0 [ 604.984804][T18796] do_SYSENTER_32+0x73/0x90 [ 604.989298][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 604.995652][T18796] [ 604.997971][T18796] Uninit was stored to memory at: [ 605.002998][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 605.008702][T18796] __msan_chain_origin+0x54/0xa0 [ 605.013624][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 605.018716][T18796] get_compat_msghdr+0x108/0x2b0 [ 605.023633][T18796] do_recvmmsg+0xdc1/0x22d0 [ 605.028119][T18796] __sys_recvmmsg+0x519/0x6f0 [ 605.032777][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.038834][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.044978][T18796] __do_fast_syscall_32+0x127/0x180 [ 605.050167][T18796] do_fast_syscall_32+0x77/0xd0 [ 605.055031][T18796] do_SYSENTER_32+0x73/0x90 [ 605.059519][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.065833][T18796] [ 605.068140][T18796] Uninit was stored to memory at: [ 605.073139][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 605.078845][T18796] __msan_chain_origin+0x54/0xa0 [ 605.083766][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 605.088862][T18796] get_compat_msghdr+0x108/0x2b0 [ 605.093780][T18796] do_recvmmsg+0xdc1/0x22d0 [ 605.098264][T18796] __sys_recvmmsg+0x519/0x6f0 [ 605.102928][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.109032][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.115172][T18796] __do_fast_syscall_32+0x127/0x180 [ 605.120358][T18796] do_fast_syscall_32+0x77/0xd0 [ 605.125220][T18796] do_SYSENTER_32+0x73/0x90 [ 605.129715][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.136059][T18796] [ 605.138373][T18796] Uninit was stored to memory at: [ 605.143412][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 605.149121][T18796] __msan_chain_origin+0x54/0xa0 [ 605.154051][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 605.159151][T18796] get_compat_msghdr+0x108/0x2b0 [ 605.164125][T18796] do_recvmmsg+0xdc1/0x22d0 [ 605.168615][T18796] __sys_recvmmsg+0x519/0x6f0 [ 605.173275][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.179386][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.185600][T18796] __do_fast_syscall_32+0x127/0x180 [ 605.190791][T18796] do_fast_syscall_32+0x77/0xd0 [ 605.195658][T18796] do_SYSENTER_32+0x73/0x90 [ 605.200152][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.206552][T18796] [ 605.208876][T18796] Uninit was stored to memory at: [ 605.213888][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 605.219708][T18796] __msan_chain_origin+0x54/0xa0 [ 605.224634][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 605.229734][T18796] get_compat_msghdr+0x108/0x2b0 [ 605.234679][T18796] do_recvmmsg+0xdc1/0x22d0 [ 605.239169][T18796] __sys_recvmmsg+0x519/0x6f0 [ 605.243855][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.249912][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.256080][T18796] __do_fast_syscall_32+0x127/0x180 [ 605.261458][T18796] do_fast_syscall_32+0x77/0xd0 [ 605.266322][T18796] do_SYSENTER_32+0x73/0x90 [ 605.270818][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.277160][T18796] [ 605.279466][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 605.286117][T18796] do_recvmmsg+0xbf/0x22d0 [ 605.290528][T18796] do_recvmmsg+0xbf/0x22d0 [ 605.472682][T18796] not chained 290000 origins [ 605.477364][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 605.486263][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 605.496302][T18796] Call Trace: [ 605.499570][T18796] dump_stack+0x24c/0x2e0 [ 605.503893][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 605.509595][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 605.514954][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 605.520518][T18796] ? kmsan_get_metadata+0x116/0x180 [ 605.525703][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 605.531318][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 605.537372][T18796] ? kmsan_get_metadata+0x116/0x180 [ 605.542603][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 605.548417][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 605.554485][T18796] ? kmsan_get_metadata+0x116/0x180 [ 605.559670][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 605.565286][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 605.571360][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 605.576642][T18796] ? _copy_from_user+0x1fd/0x300 [ 605.581582][T18796] __msan_chain_origin+0x54/0xa0 [ 605.586525][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 605.591645][T18796] get_compat_msghdr+0x108/0x2b0 [ 605.596570][T18796] do_recvmmsg+0xdc1/0x22d0 [ 605.601152][T18796] ? kmsan_get_metadata+0x116/0x180 [ 605.606334][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 605.611974][T18796] ? __msan_poison_alloca+0xec/0x110 [ 605.617241][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 605.621988][T18796] __sys_recvmmsg+0x519/0x6f0 [ 605.626651][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.632716][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.638854][T18796] __do_fast_syscall_32+0x127/0x180 [ 605.644040][T18796] do_fast_syscall_32+0x77/0xd0 [ 605.648873][T18796] do_SYSENTER_32+0x73/0x90 [ 605.653358][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.659672][T18796] RIP: 0023:0xf7fe5549 [ 605.663721][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 605.683335][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 605.691736][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 605.699693][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 605.707646][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 605.715600][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 605.723582][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 605.731537][T18796] Uninit was stored to memory at: [ 605.736534][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 605.742268][T18796] __msan_chain_origin+0x54/0xa0 [ 605.747193][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 605.752300][T18796] get_compat_msghdr+0x108/0x2b0 [ 605.757217][T18796] do_recvmmsg+0xdc1/0x22d0 [ 605.761704][T18796] __sys_recvmmsg+0x519/0x6f0 [ 605.766392][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.772463][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.778613][T18796] __do_fast_syscall_32+0x127/0x180 [ 605.783804][T18796] do_fast_syscall_32+0x77/0xd0 [ 605.788640][T18796] do_SYSENTER_32+0x73/0x90 [ 605.793129][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.799476][T18796] [ 605.801814][T18796] Uninit was stored to memory at: [ 605.806810][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 605.812630][T18796] __msan_chain_origin+0x54/0xa0 [ 605.817570][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 605.822662][T18796] get_compat_msghdr+0x108/0x2b0 [ 605.827578][T18796] do_recvmmsg+0xdc1/0x22d0 [ 605.832338][T18796] __sys_recvmmsg+0x519/0x6f0 [ 605.836994][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.843093][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.849720][T18796] __do_fast_syscall_32+0x127/0x180 [ 605.855546][T18796] do_fast_syscall_32+0x77/0xd0 [ 605.860407][T18796] do_SYSENTER_32+0x73/0x90 [ 605.864901][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.871218][T18796] [ 605.873524][T18796] Uninit was stored to memory at: [ 605.878520][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 605.884375][T18796] __msan_chain_origin+0x54/0xa0 [ 605.889301][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 605.894454][T18796] get_compat_msghdr+0x108/0x2b0 [ 605.899526][T18796] do_recvmmsg+0xdc1/0x22d0 [ 605.904140][T18796] __sys_recvmmsg+0x519/0x6f0 [ 605.908820][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.914878][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.921022][T18796] __do_fast_syscall_32+0x127/0x180 [ 605.926246][T18796] do_fast_syscall_32+0x77/0xd0 [ 605.931106][T18796] do_SYSENTER_32+0x73/0x90 [ 605.935596][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 605.941955][T18796] [ 605.944279][T18796] Uninit was stored to memory at: [ 605.949282][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 605.955109][T18796] __msan_chain_origin+0x54/0xa0 [ 605.960181][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 605.965289][T18796] get_compat_msghdr+0x108/0x2b0 [ 605.970273][T18796] do_recvmmsg+0xdc1/0x22d0 [ 605.974775][T18796] __sys_recvmmsg+0x519/0x6f0 [ 605.979442][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 605.985498][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 605.991641][T18796] __do_fast_syscall_32+0x127/0x180 [ 605.996829][T18796] do_fast_syscall_32+0x77/0xd0 [ 606.001720][T18796] do_SYSENTER_32+0x73/0x90 [ 606.006212][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.012532][T18796] [ 606.014842][T18796] Uninit was stored to memory at: [ 606.019849][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 606.025563][T18796] __msan_chain_origin+0x54/0xa0 [ 606.030523][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 606.035624][T18796] get_compat_msghdr+0x108/0x2b0 [ 606.040571][T18796] do_recvmmsg+0xdc1/0x22d0 [ 606.045072][T18796] __sys_recvmmsg+0x519/0x6f0 [ 606.049761][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.055815][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.061972][T18796] __do_fast_syscall_32+0x127/0x180 [ 606.067164][T18796] do_fast_syscall_32+0x77/0xd0 [ 606.072001][T18796] do_SYSENTER_32+0x73/0x90 [ 606.076577][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.082921][T18796] [ 606.085227][T18796] Uninit was stored to memory at: [ 606.090223][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 606.095923][T18796] __msan_chain_origin+0x54/0xa0 [ 606.100846][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 606.105949][T18796] get_compat_msghdr+0x108/0x2b0 [ 606.110872][T18796] do_recvmmsg+0xdc1/0x22d0 [ 606.115358][T18796] __sys_recvmmsg+0x519/0x6f0 [ 606.120012][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.126085][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.132228][T18796] __do_fast_syscall_32+0x127/0x180 [ 606.137411][T18796] do_fast_syscall_32+0x77/0xd0 [ 606.142261][T18796] do_SYSENTER_32+0x73/0x90 [ 606.146754][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.153133][T18796] [ 606.155464][T18796] Uninit was stored to memory at: [ 606.160465][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 606.166174][T18796] __msan_chain_origin+0x54/0xa0 [ 606.171184][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 606.176305][T18796] get_compat_msghdr+0x108/0x2b0 [ 606.181232][T18796] do_recvmmsg+0xdc1/0x22d0 [ 606.185732][T18796] __sys_recvmmsg+0x519/0x6f0 [ 606.190411][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.196497][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.202648][T18796] __do_fast_syscall_32+0x127/0x180 [ 606.207890][T18796] do_fast_syscall_32+0x77/0xd0 [ 606.212751][T18796] do_SYSENTER_32+0x73/0x90 [ 606.217261][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.223576][T18796] [ 606.225885][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 606.232547][T18796] do_recvmmsg+0xbf/0x22d0 [ 606.236954][T18796] do_recvmmsg+0xbf/0x22d0 [ 606.414617][T18796] not chained 300000 origins [ 606.419312][T18796] CPU: 1 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 606.428070][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 606.438111][T18796] Call Trace: [ 606.441378][T18796] dump_stack+0x24c/0x2e0 [ 606.445733][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 606.451442][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 606.456824][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 606.462356][T18796] ? kmsan_get_metadata+0x116/0x180 [ 606.467561][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 606.473181][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 606.479262][T18796] ? kmsan_get_metadata+0x116/0x180 [ 606.484466][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 606.490278][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 606.496440][T18796] ? kmsan_get_metadata+0x116/0x180 [ 606.501634][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 606.507255][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 606.513308][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 606.518595][T18796] ? _copy_from_user+0x1fd/0x300 [ 606.523515][T18796] __msan_chain_origin+0x54/0xa0 [ 606.528433][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 606.533532][T18796] get_compat_msghdr+0x108/0x2b0 [ 606.538462][T18796] do_recvmmsg+0xdc1/0x22d0 [ 606.542970][T18796] ? kmsan_get_metadata+0x116/0x180 [ 606.548153][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 606.553791][T18796] ? __msan_poison_alloca+0xec/0x110 [ 606.559057][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 606.563810][T18796] __sys_recvmmsg+0x519/0x6f0 [ 606.568474][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.574559][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.580705][T18796] __do_fast_syscall_32+0x127/0x180 [ 606.585922][T18796] do_fast_syscall_32+0x77/0xd0 [ 606.590767][T18796] do_SYSENTER_32+0x73/0x90 [ 606.595278][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.601591][T18796] RIP: 0023:0xf7fe5549 [ 606.605641][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 606.625231][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 606.633629][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 606.641587][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 606.649545][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 606.657516][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 606.665557][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 606.673547][T18796] Uninit was stored to memory at: [ 606.678548][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 606.684292][T18796] __msan_chain_origin+0x54/0xa0 [ 606.689221][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 606.694339][T18796] get_compat_msghdr+0x108/0x2b0 [ 606.699292][T18796] do_recvmmsg+0xdc1/0x22d0 [ 606.703806][T18796] __sys_recvmmsg+0x519/0x6f0 [ 606.708469][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.714614][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.720766][T18796] __do_fast_syscall_32+0x127/0x180 [ 606.725957][T18796] do_fast_syscall_32+0x77/0xd0 [ 606.730880][T18796] do_SYSENTER_32+0x73/0x90 [ 606.735395][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.741802][T18796] [ 606.744125][T18796] Uninit was stored to memory at: [ 606.749166][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 606.754892][T18796] __msan_chain_origin+0x54/0xa0 [ 606.759816][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 606.764912][T18796] get_compat_msghdr+0x108/0x2b0 [ 606.769840][T18796] do_recvmmsg+0xdc1/0x22d0 [ 606.774353][T18796] __sys_recvmmsg+0x519/0x6f0 [ 606.779014][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.785059][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.791204][T18796] __do_fast_syscall_32+0x127/0x180 [ 606.796413][T18796] do_fast_syscall_32+0x77/0xd0 [ 606.801454][T18796] do_SYSENTER_32+0x73/0x90 [ 606.806024][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.812350][T18796] [ 606.814673][T18796] Uninit was stored to memory at: [ 606.819803][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 606.825507][T18796] __msan_chain_origin+0x54/0xa0 [ 606.830427][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 606.835588][T18796] get_compat_msghdr+0x108/0x2b0 [ 606.840590][T18796] do_recvmmsg+0xdc1/0x22d0 [ 606.845084][T18796] __sys_recvmmsg+0x519/0x6f0 [ 606.849749][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.855969][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.862380][T18796] __do_fast_syscall_32+0x127/0x180 [ 606.867666][T18796] do_fast_syscall_32+0x77/0xd0 [ 606.872512][T18796] do_SYSENTER_32+0x73/0x90 [ 606.877090][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.883424][T18796] [ 606.885748][T18796] Uninit was stored to memory at: [ 606.890748][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 606.896474][T18796] __msan_chain_origin+0x54/0xa0 [ 606.901437][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 606.906537][T18796] get_compat_msghdr+0x108/0x2b0 [ 606.911466][T18796] do_recvmmsg+0xdc1/0x22d0 [ 606.916026][T18796] __sys_recvmmsg+0x519/0x6f0 [ 606.920731][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.926836][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 606.933013][T18796] __do_fast_syscall_32+0x127/0x180 [ 606.938195][T18796] do_fast_syscall_32+0x77/0xd0 [ 606.943034][T18796] do_SYSENTER_32+0x73/0x90 [ 606.947519][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 606.953875][T18796] [ 606.956189][T18796] Uninit was stored to memory at: [ 606.961195][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 606.966902][T18796] __msan_chain_origin+0x54/0xa0 [ 606.971839][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 606.976935][T18796] get_compat_msghdr+0x108/0x2b0 [ 606.981889][T18796] do_recvmmsg+0xdc1/0x22d0 [ 606.986376][T18796] __sys_recvmmsg+0x519/0x6f0 [ 606.991042][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 606.997209][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.003356][T18796] __do_fast_syscall_32+0x127/0x180 [ 607.008547][T18796] do_fast_syscall_32+0x77/0xd0 [ 607.013389][T18796] do_SYSENTER_32+0x73/0x90 [ 607.017880][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.024197][T18796] [ 607.026516][T18796] Uninit was stored to memory at: [ 607.031519][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 607.037263][T18796] __msan_chain_origin+0x54/0xa0 [ 607.042239][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 607.047385][T18796] get_compat_msghdr+0x108/0x2b0 [ 607.052306][T18796] do_recvmmsg+0xdc1/0x22d0 [ 607.056807][T18796] __sys_recvmmsg+0x519/0x6f0 [ 607.061495][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.067547][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.073693][T18796] __do_fast_syscall_32+0x127/0x180 [ 607.078880][T18796] do_fast_syscall_32+0x77/0xd0 [ 607.083711][T18796] do_SYSENTER_32+0x73/0x90 [ 607.088190][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.094552][T18796] [ 607.096890][T18796] Uninit was stored to memory at: [ 607.101883][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 607.107582][T18796] __msan_chain_origin+0x54/0xa0 [ 607.112517][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 607.117609][T18796] get_compat_msghdr+0x108/0x2b0 [ 607.122526][T18796] do_recvmmsg+0xdc1/0x22d0 [ 607.127009][T18796] __sys_recvmmsg+0x519/0x6f0 [ 607.131672][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.137744][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.143882][T18796] __do_fast_syscall_32+0x127/0x180 [ 607.149068][T18796] do_fast_syscall_32+0x77/0xd0 [ 607.153924][T18796] do_SYSENTER_32+0x73/0x90 [ 607.158415][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.164745][T18796] [ 607.167046][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 607.173696][T18796] do_recvmmsg+0xbf/0x22d0 [ 607.178117][T18796] do_recvmmsg+0xbf/0x22d0 [ 607.356264][T18796] not chained 310000 origins [ 607.360875][T18796] CPU: 1 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 607.369648][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 607.379690][T18796] Call Trace: [ 607.382955][T18796] dump_stack+0x24c/0x2e0 [ 607.387293][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 607.393011][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 607.398368][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 607.403929][T18796] ? kmsan_get_metadata+0x116/0x180 [ 607.409117][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 607.414737][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 607.420794][T18796] ? kmsan_get_metadata+0x116/0x180 [ 607.425979][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 607.431769][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 607.437817][T18796] ? kmsan_get_metadata+0x116/0x180 [ 607.443019][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 607.448639][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 607.454687][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 607.459962][T18796] ? _copy_from_user+0x1fd/0x300 [ 607.464912][T18796] __msan_chain_origin+0x54/0xa0 [ 607.469838][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 607.474963][T18796] get_compat_msghdr+0x108/0x2b0 [ 607.479892][T18796] do_recvmmsg+0xdc1/0x22d0 [ 607.484417][T18796] ? kmsan_get_metadata+0x116/0x180 [ 607.489621][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 607.495328][T18796] ? __msan_poison_alloca+0xec/0x110 [ 607.500601][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 607.505405][T18796] __sys_recvmmsg+0x519/0x6f0 [ 607.510071][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.516130][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.522285][T18796] __do_fast_syscall_32+0x127/0x180 [ 607.527497][T18796] do_fast_syscall_32+0x77/0xd0 [ 607.532330][T18796] do_SYSENTER_32+0x73/0x90 [ 607.536818][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.543132][T18796] RIP: 0023:0xf7fe5549 [ 607.547183][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 607.566773][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 607.575174][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 607.583138][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 607.591115][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 607.599070][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 607.607023][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 607.614980][T18796] Uninit was stored to memory at: [ 607.619992][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 607.625698][T18796] __msan_chain_origin+0x54/0xa0 [ 607.630616][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 607.635724][T18796] get_compat_msghdr+0x108/0x2b0 [ 607.640648][T18796] do_recvmmsg+0xdc1/0x22d0 [ 607.645141][T18796] __sys_recvmmsg+0x519/0x6f0 [ 607.649795][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.655847][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.661988][T18796] __do_fast_syscall_32+0x127/0x180 [ 607.667174][T18796] do_fast_syscall_32+0x77/0xd0 [ 607.672010][T18796] do_SYSENTER_32+0x73/0x90 [ 607.676500][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.682820][T18796] [ 607.685142][T18796] Uninit was stored to memory at: [ 607.690159][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 607.695897][T18796] __msan_chain_origin+0x54/0xa0 [ 607.700822][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 607.705923][T18796] get_compat_msghdr+0x108/0x2b0 [ 607.710844][T18796] do_recvmmsg+0xdc1/0x22d0 [ 607.715331][T18796] __sys_recvmmsg+0x519/0x6f0 [ 607.719986][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.726129][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.732270][T18796] __do_fast_syscall_32+0x127/0x180 [ 607.737487][T18796] do_fast_syscall_32+0x77/0xd0 [ 607.742317][T18796] do_SYSENTER_32+0x73/0x90 [ 607.746808][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.753135][T18796] [ 607.755438][T18796] Uninit was stored to memory at: [ 607.760452][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 607.766159][T18796] __msan_chain_origin+0x54/0xa0 [ 607.771083][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 607.776184][T18796] get_compat_msghdr+0x108/0x2b0 [ 607.781195][T18796] do_recvmmsg+0xdc1/0x22d0 [ 607.785687][T18796] __sys_recvmmsg+0x519/0x6f0 [ 607.790484][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.796566][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.802712][T18796] __do_fast_syscall_32+0x127/0x180 [ 607.807905][T18796] do_fast_syscall_32+0x77/0xd0 [ 607.812744][T18796] do_SYSENTER_32+0x73/0x90 [ 607.817234][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.823550][T18796] [ 607.825859][T18796] Uninit was stored to memory at: [ 607.830856][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 607.836649][T18796] __msan_chain_origin+0x54/0xa0 [ 607.841574][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 607.846671][T18796] get_compat_msghdr+0x108/0x2b0 [ 607.851595][T18796] do_recvmmsg+0xdc1/0x22d0 [ 607.856105][T18796] __sys_recvmmsg+0x519/0x6f0 [ 607.860770][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.866862][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.873001][T18796] __do_fast_syscall_32+0x127/0x180 [ 607.878187][T18796] do_fast_syscall_32+0x77/0xd0 [ 607.883025][T18796] do_SYSENTER_32+0x73/0x90 [ 607.887523][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.893867][T18796] [ 607.896194][T18796] Uninit was stored to memory at: [ 607.901197][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 607.906938][T18796] __msan_chain_origin+0x54/0xa0 [ 607.911860][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 607.916959][T18796] get_compat_msghdr+0x108/0x2b0 [ 607.921894][T18796] do_recvmmsg+0xdc1/0x22d0 [ 607.926386][T18796] __sys_recvmmsg+0x519/0x6f0 [ 607.931051][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 607.937103][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 607.943240][T18796] __do_fast_syscall_32+0x127/0x180 [ 607.948426][T18796] do_fast_syscall_32+0x77/0xd0 [ 607.953262][T18796] do_SYSENTER_32+0x73/0x90 [ 607.957755][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 607.964064][T18796] [ 607.966368][T18796] Uninit was stored to memory at: [ 607.971364][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 607.977067][T18796] __msan_chain_origin+0x54/0xa0 [ 607.981997][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 607.987088][T18796] get_compat_msghdr+0x108/0x2b0 [ 607.992006][T18796] do_recvmmsg+0xdc1/0x22d0 [ 607.996495][T18796] __sys_recvmmsg+0x519/0x6f0 [ 608.001160][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.007213][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.013353][T18796] __do_fast_syscall_32+0x127/0x180 [ 608.018558][T18796] do_fast_syscall_32+0x77/0xd0 [ 608.023398][T18796] do_SYSENTER_32+0x73/0x90 [ 608.027887][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.034200][T18796] [ 608.036507][T18796] Uninit was stored to memory at: [ 608.041503][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 608.047203][T18796] __msan_chain_origin+0x54/0xa0 [ 608.052120][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 608.057212][T18796] get_compat_msghdr+0x108/0x2b0 [ 608.062127][T18796] do_recvmmsg+0xdc1/0x22d0 [ 608.066613][T18796] __sys_recvmmsg+0x519/0x6f0 [ 608.071275][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.077439][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.083578][T18796] __do_fast_syscall_32+0x127/0x180 [ 608.088761][T18796] do_fast_syscall_32+0x77/0xd0 [ 608.093596][T18796] do_SYSENTER_32+0x73/0x90 [ 608.098102][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.104431][T18796] [ 608.106735][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 608.113383][T18796] do_recvmmsg+0xbf/0x22d0 [ 608.117783][T18796] do_recvmmsg+0xbf/0x22d0 [ 608.290620][T18796] not chained 320000 origins [ 608.295246][T18796] CPU: 1 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 608.304058][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 608.314104][T18796] Call Trace: [ 608.317376][T18796] dump_stack+0x24c/0x2e0 [ 608.321706][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 608.327442][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 608.332811][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 608.338461][T18796] ? kmsan_get_metadata+0x116/0x180 [ 608.343652][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 608.349300][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 608.355377][T18796] ? kmsan_get_metadata+0x116/0x180 [ 608.360570][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 608.366420][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 608.372474][T18796] ? kmsan_get_metadata+0x116/0x180 [ 608.377655][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 608.383265][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 608.389470][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 608.394768][T18796] ? _copy_from_user+0x1fd/0x300 [ 608.399697][T18796] __msan_chain_origin+0x54/0xa0 [ 608.404648][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 608.409760][T18796] get_compat_msghdr+0x108/0x2b0 [ 608.414794][T18796] do_recvmmsg+0xdc1/0x22d0 [ 608.419411][T18796] ? kmsan_get_metadata+0x116/0x180 [ 608.424709][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 608.430332][T18796] ? __msan_poison_alloca+0xec/0x110 [ 608.435652][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 608.440418][T18796] __sys_recvmmsg+0x519/0x6f0 [ 608.445192][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.451254][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.457433][T18796] __do_fast_syscall_32+0x127/0x180 [ 608.462621][T18796] do_fast_syscall_32+0x77/0xd0 [ 608.467455][T18796] do_SYSENTER_32+0x73/0x90 [ 608.471946][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.478288][T18796] RIP: 0023:0xf7fe5549 [ 608.482470][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 608.502083][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 608.510526][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 608.518506][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 608.526467][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 608.534428][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 608.542404][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 608.550370][T18796] Uninit was stored to memory at: [ 608.555390][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 608.561134][T18796] __msan_chain_origin+0x54/0xa0 [ 608.566087][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 608.571209][T18796] get_compat_msghdr+0x108/0x2b0 [ 608.576136][T18796] do_recvmmsg+0xdc1/0x22d0 [ 608.580633][T18796] __sys_recvmmsg+0x519/0x6f0 [ 608.585321][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.591393][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.597531][T18796] __do_fast_syscall_32+0x127/0x180 [ 608.602716][T18796] do_fast_syscall_32+0x77/0xd0 [ 608.607555][T18796] do_SYSENTER_32+0x73/0x90 [ 608.612045][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.618387][T18796] [ 608.620694][T18796] Uninit was stored to memory at: [ 608.625868][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 608.631599][T18796] __msan_chain_origin+0x54/0xa0 [ 608.638542][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 608.643743][T18796] get_compat_msghdr+0x108/0x2b0 [ 608.648665][T18796] do_recvmmsg+0xdc1/0x22d0 [ 608.653150][T18796] __sys_recvmmsg+0x519/0x6f0 [ 608.657845][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.663895][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.670054][T18796] __do_fast_syscall_32+0x127/0x180 [ 608.675258][T18796] do_fast_syscall_32+0x77/0xd0 [ 608.680097][T18796] do_SYSENTER_32+0x73/0x90 [ 608.684615][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.690930][T18796] [ 608.693246][T18796] Uninit was stored to memory at: [ 608.698258][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 608.703981][T18796] __msan_chain_origin+0x54/0xa0 [ 608.708904][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 608.714001][T18796] get_compat_msghdr+0x108/0x2b0 [ 608.718968][T18796] do_recvmmsg+0xdc1/0x22d0 [ 608.723454][T18796] __sys_recvmmsg+0x519/0x6f0 [ 608.728114][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.734165][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.740309][T18796] __do_fast_syscall_32+0x127/0x180 [ 608.745560][T18796] do_fast_syscall_32+0x77/0xd0 [ 608.750399][T18796] do_SYSENTER_32+0x73/0x90 [ 608.754907][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.761221][T18796] [ 608.763564][T18796] Uninit was stored to memory at: [ 608.768566][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 608.774276][T18796] __msan_chain_origin+0x54/0xa0 [ 608.779201][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 608.784404][T18796] get_compat_msghdr+0x108/0x2b0 [ 608.789329][T18796] do_recvmmsg+0xdc1/0x22d0 [ 608.793960][T18796] __sys_recvmmsg+0x519/0x6f0 [ 608.798626][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.804680][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.810825][T18796] __do_fast_syscall_32+0x127/0x180 [ 608.816032][T18796] do_fast_syscall_32+0x77/0xd0 [ 608.820963][T18796] do_SYSENTER_32+0x73/0x90 [ 608.825515][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.832486][T18796] [ 608.834796][T18796] Uninit was stored to memory at: [ 608.839809][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 608.845687][T18796] __msan_chain_origin+0x54/0xa0 [ 608.850749][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 608.855878][T18796] get_compat_msghdr+0x108/0x2b0 [ 608.860835][T18796] do_recvmmsg+0xdc1/0x22d0 [ 608.865329][T18796] __sys_recvmmsg+0x519/0x6f0 [ 608.869991][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.876069][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.882211][T18796] __do_fast_syscall_32+0x127/0x180 [ 608.887395][T18796] do_fast_syscall_32+0x77/0xd0 [ 608.892252][T18796] do_SYSENTER_32+0x73/0x90 [ 608.896764][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.903084][T18796] [ 608.905395][T18796] Uninit was stored to memory at: [ 608.910664][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 608.916585][T18796] __msan_chain_origin+0x54/0xa0 [ 608.921549][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 608.926690][T18796] get_compat_msghdr+0x108/0x2b0 [ 608.931619][T18796] do_recvmmsg+0xdc1/0x22d0 [ 608.936308][T18796] __sys_recvmmsg+0x519/0x6f0 [ 608.941060][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 608.947122][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 608.953265][T18796] __do_fast_syscall_32+0x127/0x180 [ 608.958476][T18796] do_fast_syscall_32+0x77/0xd0 [ 608.963317][T18796] do_SYSENTER_32+0x73/0x90 [ 608.967921][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 608.974236][T18796] [ 608.976550][T18796] Uninit was stored to memory at: [ 608.981639][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 608.987344][T18796] __msan_chain_origin+0x54/0xa0 [ 608.992271][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 608.997384][T18796] get_compat_msghdr+0x108/0x2b0 [ 609.002304][T18796] do_recvmmsg+0xdc1/0x22d0 [ 609.006819][T18796] __sys_recvmmsg+0x519/0x6f0 [ 609.011483][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.017625][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.023783][T18796] __do_fast_syscall_32+0x127/0x180 [ 609.028970][T18796] do_fast_syscall_32+0x77/0xd0 [ 609.033837][T18796] do_SYSENTER_32+0x73/0x90 [ 609.038334][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.044654][T18796] [ 609.046959][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 609.053607][T18796] do_recvmmsg+0xbf/0x22d0 [ 609.058009][T18796] do_recvmmsg+0xbf/0x22d0 [ 609.235511][T18796] not chained 330000 origins [ 609.240106][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 609.248843][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 609.258922][T18796] Call Trace: [ 609.262213][T18796] dump_stack+0x24c/0x2e0 [ 609.266531][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 609.272274][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 609.277631][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 609.283154][T18796] ? kmsan_get_metadata+0x116/0x180 [ 609.288330][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 609.293939][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 609.299987][T18796] ? kmsan_get_metadata+0x116/0x180 [ 609.305168][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 609.310957][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 609.317018][T18796] ? kmsan_get_metadata+0x116/0x180 [ 609.322210][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 609.327824][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 609.333873][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 609.339180][T18796] ? _copy_from_user+0x1fd/0x300 [ 609.344411][T18796] __msan_chain_origin+0x54/0xa0 [ 609.349370][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 609.354486][T18796] get_compat_msghdr+0x108/0x2b0 [ 609.359496][T18796] do_recvmmsg+0xdc1/0x22d0 [ 609.363988][T18796] ? kmsan_get_metadata+0x116/0x180 [ 609.369169][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 609.374803][T18796] ? __msan_poison_alloca+0xec/0x110 [ 609.380067][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 609.384812][T18796] __sys_recvmmsg+0x519/0x6f0 [ 609.389475][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.395532][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.401672][T18796] __do_fast_syscall_32+0x127/0x180 [ 609.406902][T18796] do_fast_syscall_32+0x77/0xd0 [ 609.411829][T18796] do_SYSENTER_32+0x73/0x90 [ 609.416318][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.422635][T18796] RIP: 0023:0xf7fe5549 [ 609.426689][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 609.446286][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 609.454703][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 609.462740][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 609.470694][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 609.478652][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 609.486627][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 609.494588][T18796] Uninit was stored to memory at: [ 609.499607][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 609.505314][T18796] __msan_chain_origin+0x54/0xa0 [ 609.510232][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 609.515337][T18796] get_compat_msghdr+0x108/0x2b0 [ 609.520355][T18796] do_recvmmsg+0xdc1/0x22d0 [ 609.524871][T18796] __sys_recvmmsg+0x519/0x6f0 [ 609.529549][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.535622][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.541760][T18796] __do_fast_syscall_32+0x127/0x180 [ 609.546947][T18796] do_fast_syscall_32+0x77/0xd0 [ 609.551889][T18796] do_SYSENTER_32+0x73/0x90 [ 609.556382][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.562717][T18796] [ 609.565035][T18796] Uninit was stored to memory at: [ 609.570026][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 609.575723][T18796] __msan_chain_origin+0x54/0xa0 [ 609.580661][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 609.585757][T18796] get_compat_msghdr+0x108/0x2b0 [ 609.590669][T18796] do_recvmmsg+0xdc1/0x22d0 [ 609.595585][T18796] __sys_recvmmsg+0x519/0x6f0 [ 609.600258][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.606307][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.612442][T18796] __do_fast_syscall_32+0x127/0x180 [ 609.617649][T18796] do_fast_syscall_32+0x77/0xd0 [ 609.622481][T18796] do_SYSENTER_32+0x73/0x90 [ 609.626966][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.633287][T18796] [ 609.635586][T18796] Uninit was stored to memory at: [ 609.640596][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 609.646303][T18796] __msan_chain_origin+0x54/0xa0 [ 609.651222][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 609.656313][T18796] get_compat_msghdr+0x108/0x2b0 [ 609.661237][T18796] do_recvmmsg+0xdc1/0x22d0 [ 609.665727][T18796] __sys_recvmmsg+0x519/0x6f0 [ 609.670384][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.676436][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.682576][T18796] __do_fast_syscall_32+0x127/0x180 [ 609.687756][T18796] do_fast_syscall_32+0x77/0xd0 [ 609.692587][T18796] do_SYSENTER_32+0x73/0x90 [ 609.697106][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.703445][T18796] [ 609.705746][T18796] Uninit was stored to memory at: [ 609.710738][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 609.716437][T18796] __msan_chain_origin+0x54/0xa0 [ 609.721364][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 609.726463][T18796] get_compat_msghdr+0x108/0x2b0 [ 609.731401][T18796] do_recvmmsg+0xdc1/0x22d0 [ 609.735907][T18796] __sys_recvmmsg+0x519/0x6f0 [ 609.740573][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.746627][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.752770][T18796] __do_fast_syscall_32+0x127/0x180 [ 609.757950][T18796] do_fast_syscall_32+0x77/0xd0 [ 609.762779][T18796] do_SYSENTER_32+0x73/0x90 [ 609.767284][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.773592][T18796] [ 609.775890][T18796] Uninit was stored to memory at: [ 609.780883][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 609.786587][T18796] __msan_chain_origin+0x54/0xa0 [ 609.791505][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 609.796596][T18796] get_compat_msghdr+0x108/0x2b0 [ 609.801518][T18796] do_recvmmsg+0xdc1/0x22d0 [ 609.806008][T18796] __sys_recvmmsg+0x519/0x6f0 [ 609.810694][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.816744][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.822942][T18796] __do_fast_syscall_32+0x127/0x180 [ 609.828120][T18796] do_fast_syscall_32+0x77/0xd0 [ 609.833038][T18796] do_SYSENTER_32+0x73/0x90 [ 609.837546][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.843882][T18796] [ 609.846189][T18796] Uninit was stored to memory at: [ 609.851207][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 609.856929][T18796] __msan_chain_origin+0x54/0xa0 [ 609.861934][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 609.867028][T18796] get_compat_msghdr+0x108/0x2b0 [ 609.871949][T18796] do_recvmmsg+0xdc1/0x22d0 [ 609.876455][T18796] __sys_recvmmsg+0x519/0x6f0 [ 609.881117][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.887168][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.893303][T18796] __do_fast_syscall_32+0x127/0x180 [ 609.898490][T18796] do_fast_syscall_32+0x77/0xd0 [ 609.903319][T18796] do_SYSENTER_32+0x73/0x90 [ 609.907803][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.914119][T18796] [ 609.916440][T18796] Uninit was stored to memory at: [ 609.921442][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 609.927160][T18796] __msan_chain_origin+0x54/0xa0 [ 609.932094][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 609.937189][T18796] get_compat_msghdr+0x108/0x2b0 [ 609.942116][T18796] do_recvmmsg+0xdc1/0x22d0 [ 609.946603][T18796] __sys_recvmmsg+0x519/0x6f0 [ 609.951262][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 609.957306][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 609.963441][T18796] __do_fast_syscall_32+0x127/0x180 [ 609.968623][T18796] do_fast_syscall_32+0x77/0xd0 [ 609.973454][T18796] do_SYSENTER_32+0x73/0x90 [ 609.977959][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 609.984269][T18796] [ 609.986591][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 609.993237][T18796] do_recvmmsg+0xbf/0x22d0 [ 609.997633][T18796] do_recvmmsg+0xbf/0x22d0 [ 610.172694][T18796] not chained 340000 origins [ 610.177304][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 610.186114][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 610.196171][T18796] Call Trace: [ 610.199432][T18796] dump_stack+0x24c/0x2e0 [ 610.203747][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 610.209446][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 610.214802][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 610.220412][T18796] ? kmsan_get_metadata+0x116/0x180 [ 610.225596][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 610.231212][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 610.237281][T18796] ? kmsan_get_metadata+0x116/0x180 [ 610.242462][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 610.248269][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 610.254327][T18796] ? kmsan_get_metadata+0x116/0x180 [ 610.259509][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 610.265129][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 610.271205][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 610.276496][T18796] ? _copy_from_user+0x1fd/0x300 [ 610.281429][T18796] __msan_chain_origin+0x54/0xa0 [ 610.286557][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 610.291660][T18796] get_compat_msghdr+0x108/0x2b0 [ 610.296585][T18796] do_recvmmsg+0xdc1/0x22d0 [ 610.301082][T18796] ? kmsan_get_metadata+0x116/0x180 [ 610.306266][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 610.311883][T18796] ? __msan_poison_alloca+0xec/0x110 [ 610.317164][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 610.321934][T18796] __sys_recvmmsg+0x519/0x6f0 [ 610.326606][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.332661][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.338797][T18796] __do_fast_syscall_32+0x127/0x180 [ 610.343978][T18796] do_fast_syscall_32+0x77/0xd0 [ 610.348830][T18796] do_SYSENTER_32+0x73/0x90 [ 610.353406][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.359715][T18796] RIP: 0023:0xf7fe5549 [ 610.363760][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 610.383349][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 610.391850][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 610.399803][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 610.407755][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 610.415714][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 610.423665][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 610.431619][T18796] Uninit was stored to memory at: [ 610.436637][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 610.442352][T18796] __msan_chain_origin+0x54/0xa0 [ 610.447271][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 610.452381][T18796] get_compat_msghdr+0x108/0x2b0 [ 610.457302][T18796] do_recvmmsg+0xdc1/0x22d0 [ 610.461791][T18796] __sys_recvmmsg+0x519/0x6f0 [ 610.466453][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.472527][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.478667][T18796] __do_fast_syscall_32+0x127/0x180 [ 610.483923][T18796] do_fast_syscall_32+0x77/0xd0 [ 610.488777][T18796] do_SYSENTER_32+0x73/0x90 [ 610.493257][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.499566][T18796] [ 610.501873][T18796] Uninit was stored to memory at: [ 610.506870][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 610.512574][T18796] __msan_chain_origin+0x54/0xa0 [ 610.517490][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 610.522604][T18796] get_compat_msghdr+0x108/0x2b0 [ 610.527525][T18796] do_recvmmsg+0xdc1/0x22d0 [ 610.532006][T18796] __sys_recvmmsg+0x519/0x6f0 [ 610.536662][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.542713][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.548844][T18796] __do_fast_syscall_32+0x127/0x180 [ 610.554023][T18796] do_fast_syscall_32+0x77/0xd0 [ 610.558872][T18796] do_SYSENTER_32+0x73/0x90 [ 610.563353][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.569663][T18796] [ 610.571965][T18796] Uninit was stored to memory at: [ 610.576962][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 610.582665][T18796] __msan_chain_origin+0x54/0xa0 [ 610.587581][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 610.592674][T18796] get_compat_msghdr+0x108/0x2b0 [ 610.597598][T18796] do_recvmmsg+0xdc1/0x22d0 [ 610.602080][T18796] __sys_recvmmsg+0x519/0x6f0 [ 610.606740][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.612791][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.618930][T18796] __do_fast_syscall_32+0x127/0x180 [ 610.624116][T18796] do_fast_syscall_32+0x77/0xd0 [ 610.628965][T18796] do_SYSENTER_32+0x73/0x90 [ 610.633454][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.639772][T18796] [ 610.642079][T18796] Uninit was stored to memory at: [ 610.647078][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 610.652809][T18796] __msan_chain_origin+0x54/0xa0 [ 610.657750][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 610.662855][T18796] get_compat_msghdr+0x108/0x2b0 [ 610.667776][T18796] do_recvmmsg+0xdc1/0x22d0 [ 610.672284][T18796] __sys_recvmmsg+0x519/0x6f0 [ 610.676963][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.683016][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.689184][T18796] __do_fast_syscall_32+0x127/0x180 [ 610.694388][T18796] do_fast_syscall_32+0x77/0xd0 [ 610.699222][T18796] do_SYSENTER_32+0x73/0x90 [ 610.703725][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.710034][T18796] [ 610.712336][T18796] Uninit was stored to memory at: [ 610.717330][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 610.723033][T18796] __msan_chain_origin+0x54/0xa0 [ 610.727954][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 610.733050][T18796] get_compat_msghdr+0x108/0x2b0 [ 610.737969][T18796] do_recvmmsg+0xdc1/0x22d0 [ 610.742480][T18796] __sys_recvmmsg+0x519/0x6f0 [ 610.747152][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.753201][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.759342][T18796] __do_fast_syscall_32+0x127/0x180 [ 610.764549][T18796] do_fast_syscall_32+0x77/0xd0 [ 610.769502][T18796] do_SYSENTER_32+0x73/0x90 [ 610.773992][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.780306][T18796] [ 610.782612][T18796] Uninit was stored to memory at: [ 610.787608][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 610.793310][T18796] __msan_chain_origin+0x54/0xa0 [ 610.798252][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 610.803345][T18796] get_compat_msghdr+0x108/0x2b0 [ 610.808322][T18796] do_recvmmsg+0xdc1/0x22d0 [ 610.812838][T18796] __sys_recvmmsg+0x519/0x6f0 [ 610.817503][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.823555][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.829736][T18796] __do_fast_syscall_32+0x127/0x180 [ 610.835047][T18796] do_fast_syscall_32+0x77/0xd0 [ 610.839889][T18796] do_SYSENTER_32+0x73/0x90 [ 610.844379][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.850693][T18796] [ 610.853021][T18796] Uninit was stored to memory at: [ 610.858030][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 610.863872][T18796] __msan_chain_origin+0x54/0xa0 [ 610.868799][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 610.873890][T18796] get_compat_msghdr+0x108/0x2b0 [ 610.878811][T18796] do_recvmmsg+0xdc1/0x22d0 [ 610.883341][T18796] __sys_recvmmsg+0x519/0x6f0 [ 610.888043][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 610.894094][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 610.900233][T18796] __do_fast_syscall_32+0x127/0x180 [ 610.905423][T18796] do_fast_syscall_32+0x77/0xd0 [ 610.910259][T18796] do_SYSENTER_32+0x73/0x90 [ 610.914749][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 610.921184][T18796] [ 610.923493][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 610.930194][T18796] do_recvmmsg+0xbf/0x22d0 [ 610.934597][T18796] do_recvmmsg+0xbf/0x22d0 [ 611.114946][T18796] not chained 350000 origins [ 611.119687][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 611.128448][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 611.138486][T18796] Call Trace: [ 611.141900][T18796] dump_stack+0x24c/0x2e0 [ 611.146271][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 611.152007][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 611.157375][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 611.163044][T18796] ? kmsan_get_metadata+0x116/0x180 [ 611.168268][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 611.173918][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 611.179976][T18796] ? kmsan_get_metadata+0x116/0x180 [ 611.185173][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 611.190971][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 611.197030][T18796] ? kmsan_get_metadata+0x116/0x180 [ 611.202244][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 611.207885][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 611.213947][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 611.219311][T18796] ? _copy_from_user+0x1fd/0x300 [ 611.224262][T18796] __msan_chain_origin+0x54/0xa0 [ 611.229191][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 611.234521][T18796] get_compat_msghdr+0x108/0x2b0 [ 611.239458][T18796] do_recvmmsg+0xdc1/0x22d0 [ 611.243956][T18796] ? kmsan_get_metadata+0x116/0x180 [ 611.249138][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 611.254757][T18796] ? __msan_poison_alloca+0xec/0x110 [ 611.260032][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 611.264781][T18796] __sys_recvmmsg+0x519/0x6f0 [ 611.269448][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.275508][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.281647][T18796] __do_fast_syscall_32+0x127/0x180 [ 611.286837][T18796] do_fast_syscall_32+0x77/0xd0 [ 611.291805][T18796] do_SYSENTER_32+0x73/0x90 [ 611.296330][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.302674][T18796] RIP: 0023:0xf7fe5549 [ 611.306728][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 611.326350][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 611.334780][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 611.342765][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 611.350743][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 611.358700][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 611.366656][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 611.374622][T18796] Uninit was stored to memory at: [ 611.379626][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 611.385340][T18796] __msan_chain_origin+0x54/0xa0 [ 611.390267][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 611.395380][T18796] get_compat_msghdr+0x108/0x2b0 [ 611.400305][T18796] do_recvmmsg+0xdc1/0x22d0 [ 611.404811][T18796] __sys_recvmmsg+0x519/0x6f0 [ 611.409535][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.415608][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.421773][T18796] __do_fast_syscall_32+0x127/0x180 [ 611.426960][T18796] do_fast_syscall_32+0x77/0xd0 [ 611.431958][T18796] do_SYSENTER_32+0x73/0x90 [ 611.436454][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.442770][T18796] [ 611.445075][T18796] Uninit was stored to memory at: [ 611.450086][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 611.455793][T18796] __msan_chain_origin+0x54/0xa0 [ 611.460783][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 611.465903][T18796] get_compat_msghdr+0x108/0x2b0 [ 611.470826][T18796] do_recvmmsg+0xdc1/0x22d0 [ 611.475321][T18796] __sys_recvmmsg+0x519/0x6f0 [ 611.479994][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.486053][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.492198][T18796] __do_fast_syscall_32+0x127/0x180 [ 611.497388][T18796] do_fast_syscall_32+0x77/0xd0 [ 611.502224][T18796] do_SYSENTER_32+0x73/0x90 [ 611.506715][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.513028][T18796] [ 611.515332][T18796] Uninit was stored to memory at: [ 611.520329][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 611.526093][T18796] __msan_chain_origin+0x54/0xa0 [ 611.531031][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 611.536172][T18796] get_compat_msghdr+0x108/0x2b0 [ 611.541102][T18796] do_recvmmsg+0xdc1/0x22d0 [ 611.545596][T18796] __sys_recvmmsg+0x519/0x6f0 [ 611.550258][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.556350][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.562521][T18796] __do_fast_syscall_32+0x127/0x180 [ 611.567707][T18796] do_fast_syscall_32+0x77/0xd0 [ 611.572538][T18796] do_SYSENTER_32+0x73/0x90 [ 611.577117][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.583451][T18796] [ 611.585755][T18796] Uninit was stored to memory at: [ 611.590753][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 611.596485][T18796] __msan_chain_origin+0x54/0xa0 [ 611.601410][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 611.606521][T18796] get_compat_msghdr+0x108/0x2b0 [ 611.611445][T18796] do_recvmmsg+0xdc1/0x22d0 [ 611.615936][T18796] __sys_recvmmsg+0x519/0x6f0 [ 611.620605][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.626687][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.632832][T18796] __do_fast_syscall_32+0x127/0x180 [ 611.638018][T18796] do_fast_syscall_32+0x77/0xd0 [ 611.642851][T18796] do_SYSENTER_32+0x73/0x90 [ 611.647359][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.653679][T18796] [ 611.655984][T18796] Uninit was stored to memory at: [ 611.661006][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 611.666714][T18796] __msan_chain_origin+0x54/0xa0 [ 611.671636][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 611.676735][T18796] get_compat_msghdr+0x108/0x2b0 [ 611.681678][T18796] do_recvmmsg+0xdc1/0x22d0 [ 611.686173][T18796] __sys_recvmmsg+0x519/0x6f0 [ 611.690833][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.696916][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.703083][T18796] __do_fast_syscall_32+0x127/0x180 [ 611.708290][T18796] do_fast_syscall_32+0x77/0xd0 [ 611.713132][T18796] do_SYSENTER_32+0x73/0x90 [ 611.717625][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.723963][T18796] [ 611.726293][T18796] Uninit was stored to memory at: [ 611.731316][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 611.737023][T18796] __msan_chain_origin+0x54/0xa0 [ 611.741965][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 611.747062][T18796] get_compat_msghdr+0x108/0x2b0 [ 611.752008][T18796] do_recvmmsg+0xdc1/0x22d0 [ 611.756524][T18796] __sys_recvmmsg+0x519/0x6f0 [ 611.761189][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.767253][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.773400][T18796] __do_fast_syscall_32+0x127/0x180 [ 611.778589][T18796] do_fast_syscall_32+0x77/0xd0 [ 611.783445][T18796] do_SYSENTER_32+0x73/0x90 [ 611.787949][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.794350][T18796] [ 611.796663][T18796] Uninit was stored to memory at: [ 611.801660][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 611.807363][T18796] __msan_chain_origin+0x54/0xa0 [ 611.812286][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 611.817381][T18796] get_compat_msghdr+0x108/0x2b0 [ 611.822348][T18796] do_recvmmsg+0xdc1/0x22d0 [ 611.826840][T18796] __sys_recvmmsg+0x519/0x6f0 [ 611.831517][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 611.837572][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 611.843733][T18796] __do_fast_syscall_32+0x127/0x180 [ 611.848915][T18796] do_fast_syscall_32+0x77/0xd0 [ 611.853750][T18796] do_SYSENTER_32+0x73/0x90 [ 611.858243][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 611.864692][T18796] [ 611.867056][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 611.873739][T18796] do_recvmmsg+0xbf/0x22d0 [ 611.878138][T18796] do_recvmmsg+0xbf/0x22d0 [ 612.065302][T18796] not chained 360000 origins [ 612.069925][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 612.078704][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 612.088771][T18796] Call Trace: [ 612.092037][T18796] dump_stack+0x24c/0x2e0 [ 612.096361][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 612.102071][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 612.107470][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 612.113022][T18796] ? kmsan_get_metadata+0x116/0x180 [ 612.118203][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 612.123815][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 612.129915][T18796] ? kmsan_get_metadata+0x116/0x180 [ 612.135131][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 612.140943][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 612.146998][T18796] ? kmsan_get_metadata+0x116/0x180 [ 612.152182][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 612.157794][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 612.163865][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 612.169141][T18796] ? _copy_from_user+0x1fd/0x300 [ 612.174148][T18796] __msan_chain_origin+0x54/0xa0 [ 612.179071][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 612.184167][T18796] get_compat_msghdr+0x108/0x2b0 [ 612.189095][T18796] do_recvmmsg+0xdc1/0x22d0 [ 612.193616][T18796] ? kmsan_get_metadata+0x116/0x180 [ 612.198798][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 612.204413][T18796] ? __msan_poison_alloca+0xec/0x110 [ 612.209681][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 612.214433][T18796] __sys_recvmmsg+0x519/0x6f0 [ 612.219098][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.225159][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.231298][T18796] __do_fast_syscall_32+0x127/0x180 [ 612.236663][T18796] do_fast_syscall_32+0x77/0xd0 [ 612.241509][T18796] do_SYSENTER_32+0x73/0x90 [ 612.246015][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.252347][T18796] RIP: 0023:0xf7fe5549 [ 612.256413][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 612.276117][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 612.284531][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 612.292496][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 612.300462][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 612.308419][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 612.316474][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 612.324431][T18796] Uninit was stored to memory at: [ 612.329440][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 612.335154][T18796] __msan_chain_origin+0x54/0xa0 [ 612.340073][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 612.345169][T18796] get_compat_msghdr+0x108/0x2b0 [ 612.350085][T18796] do_recvmmsg+0xdc1/0x22d0 [ 612.354572][T18796] __sys_recvmmsg+0x519/0x6f0 [ 612.359225][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.365277][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.371430][T18796] __do_fast_syscall_32+0x127/0x180 [ 612.376727][T18796] do_fast_syscall_32+0x77/0xd0 [ 612.381639][T18796] do_SYSENTER_32+0x73/0x90 [ 612.386125][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.392441][T18796] [ 612.394747][T18796] Uninit was stored to memory at: [ 612.399745][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 612.405447][T18796] __msan_chain_origin+0x54/0xa0 [ 612.410466][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 612.415599][T18796] get_compat_msghdr+0x108/0x2b0 [ 612.420523][T18796] do_recvmmsg+0xdc1/0x22d0 [ 612.425098][T18796] __sys_recvmmsg+0x519/0x6f0 [ 612.429755][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.435812][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.441951][T18796] __do_fast_syscall_32+0x127/0x180 [ 612.447135][T18796] do_fast_syscall_32+0x77/0xd0 [ 612.451967][T18796] do_SYSENTER_32+0x73/0x90 [ 612.456451][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.462763][T18796] [ 612.465071][T18796] Uninit was stored to memory at: [ 612.470066][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 612.475767][T18796] __msan_chain_origin+0x54/0xa0 [ 612.480685][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 612.485779][T18796] get_compat_msghdr+0x108/0x2b0 [ 612.490709][T18796] do_recvmmsg+0xdc1/0x22d0 [ 612.495228][T18796] __sys_recvmmsg+0x519/0x6f0 [ 612.499906][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.506006][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.512150][T18796] __do_fast_syscall_32+0x127/0x180 [ 612.517338][T18796] do_fast_syscall_32+0x77/0xd0 [ 612.522199][T18796] do_SYSENTER_32+0x73/0x90 [ 612.526687][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.532995][T18796] [ 612.535295][T18796] Uninit was stored to memory at: [ 612.540292][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 612.546000][T18796] __msan_chain_origin+0x54/0xa0 [ 612.550914][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 612.556002][T18796] get_compat_msghdr+0x108/0x2b0 [ 612.560913][T18796] do_recvmmsg+0xdc1/0x22d0 [ 612.565396][T18796] __sys_recvmmsg+0x519/0x6f0 [ 612.570049][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.576095][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.582225][T18796] __do_fast_syscall_32+0x127/0x180 [ 612.587519][T18796] do_fast_syscall_32+0x77/0xd0 [ 612.592350][T18796] do_SYSENTER_32+0x73/0x90 [ 612.596836][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.603151][T18796] [ 612.605456][T18796] Uninit was stored to memory at: [ 612.610446][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 612.616148][T18796] __msan_chain_origin+0x54/0xa0 [ 612.621073][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 612.626175][T18796] get_compat_msghdr+0x108/0x2b0 [ 612.631085][T18796] do_recvmmsg+0xdc1/0x22d0 [ 612.635564][T18796] __sys_recvmmsg+0x519/0x6f0 [ 612.640227][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.646271][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.652415][T18796] __do_fast_syscall_32+0x127/0x180 [ 612.657605][T18796] do_fast_syscall_32+0x77/0xd0 [ 612.662435][T18796] do_SYSENTER_32+0x73/0x90 [ 612.666917][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.673226][T18796] [ 612.675526][T18796] Uninit was stored to memory at: [ 612.680517][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 612.686233][T18796] __msan_chain_origin+0x54/0xa0 [ 612.691147][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 612.696247][T18796] get_compat_msghdr+0x108/0x2b0 [ 612.701166][T18796] do_recvmmsg+0xdc1/0x22d0 [ 612.705674][T18796] __sys_recvmmsg+0x519/0x6f0 [ 612.710332][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.716390][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.722528][T18796] __do_fast_syscall_32+0x127/0x180 [ 612.727712][T18796] do_fast_syscall_32+0x77/0xd0 [ 612.732548][T18796] do_SYSENTER_32+0x73/0x90 [ 612.737043][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.743447][T18796] [ 612.745788][T18796] Uninit was stored to memory at: [ 612.750782][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 612.756481][T18796] __msan_chain_origin+0x54/0xa0 [ 612.761428][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 612.766666][T18796] get_compat_msghdr+0x108/0x2b0 [ 612.771595][T18796] do_recvmmsg+0xdc1/0x22d0 [ 612.776173][T18796] __sys_recvmmsg+0x519/0x6f0 [ 612.780835][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 612.786888][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 612.793039][T18796] __do_fast_syscall_32+0x127/0x180 [ 612.798231][T18796] do_fast_syscall_32+0x77/0xd0 [ 612.803071][T18796] do_SYSENTER_32+0x73/0x90 [ 612.807597][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 612.813912][T18796] [ 612.816210][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 612.822854][T18796] do_recvmmsg+0xbf/0x22d0 [ 612.827271][T18796] do_recvmmsg+0xbf/0x22d0 [ 613.015302][T18796] not chained 370000 origins [ 613.019984][T18796] CPU: 1 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 613.028735][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 613.038805][T18796] Call Trace: [ 613.042064][T18796] dump_stack+0x24c/0x2e0 [ 613.046422][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 613.052156][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 613.057507][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 613.063030][T18796] ? kmsan_get_metadata+0x116/0x180 [ 613.068210][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 613.073832][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 613.079883][T18796] ? kmsan_get_metadata+0x116/0x180 [ 613.085087][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 613.090873][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 613.096919][T18796] ? kmsan_get_metadata+0x116/0x180 [ 613.102097][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 613.107717][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 613.113761][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 613.119026][T18796] ? _copy_from_user+0x1fd/0x300 [ 613.123946][T18796] __msan_chain_origin+0x54/0xa0 [ 613.128861][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 613.133951][T18796] get_compat_msghdr+0x108/0x2b0 [ 613.138880][T18796] do_recvmmsg+0xdc1/0x22d0 [ 613.143366][T18796] ? kmsan_get_metadata+0x116/0x180 [ 613.148544][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 613.154149][T18796] ? __msan_poison_alloca+0xec/0x110 [ 613.159413][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 613.164156][T18796] __sys_recvmmsg+0x519/0x6f0 [ 613.168808][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.174853][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.180998][T18796] __do_fast_syscall_32+0x127/0x180 [ 613.186180][T18796] do_fast_syscall_32+0x77/0xd0 [ 613.191025][T18796] do_SYSENTER_32+0x73/0x90 [ 613.195535][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.201847][T18796] RIP: 0023:0xf7fe5549 [ 613.205890][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 613.225475][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 613.233877][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 613.241831][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 613.249781][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 613.257829][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 613.265804][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 613.273758][T18796] Uninit was stored to memory at: [ 613.278767][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 613.284472][T18796] __msan_chain_origin+0x54/0xa0 [ 613.289406][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 613.294525][T18796] get_compat_msghdr+0x108/0x2b0 [ 613.299446][T18796] do_recvmmsg+0xdc1/0x22d0 [ 613.303974][T18796] __sys_recvmmsg+0x519/0x6f0 [ 613.308631][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.314678][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.320840][T18796] __do_fast_syscall_32+0x127/0x180 [ 613.326022][T18796] do_fast_syscall_32+0x77/0xd0 [ 613.330849][T18796] do_SYSENTER_32+0x73/0x90 [ 613.335332][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.341642][T18796] [ 613.343950][T18796] Uninit was stored to memory at: [ 613.348941][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 613.354645][T18796] __msan_chain_origin+0x54/0xa0 [ 613.359559][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 613.364646][T18796] get_compat_msghdr+0x108/0x2b0 [ 613.369566][T18796] do_recvmmsg+0xdc1/0x22d0 [ 613.374085][T18796] __sys_recvmmsg+0x519/0x6f0 [ 613.378737][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.384776][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.390920][T18796] __do_fast_syscall_32+0x127/0x180 [ 613.396120][T18796] do_fast_syscall_32+0x77/0xd0 [ 613.400953][T18796] do_SYSENTER_32+0x73/0x90 [ 613.405444][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.411751][T18796] [ 613.414057][T18796] Uninit was stored to memory at: [ 613.419046][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 613.424744][T18796] __msan_chain_origin+0x54/0xa0 [ 613.429661][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 613.434782][T18796] get_compat_msghdr+0x108/0x2b0 [ 613.439709][T18796] do_recvmmsg+0xdc1/0x22d0 [ 613.444208][T18796] __sys_recvmmsg+0x519/0x6f0 [ 613.448858][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.454899][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.461032][T18796] __do_fast_syscall_32+0x127/0x180 [ 613.466207][T18796] do_fast_syscall_32+0x77/0xd0 [ 613.471032][T18796] do_SYSENTER_32+0x73/0x90 [ 613.475511][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.481828][T18796] [ 613.484146][T18796] Uninit was stored to memory at: [ 613.489135][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 613.494830][T18796] __msan_chain_origin+0x54/0xa0 [ 613.499747][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 613.504862][T18796] get_compat_msghdr+0x108/0x2b0 [ 613.509794][T18796] do_recvmmsg+0xdc1/0x22d0 [ 613.514296][T18796] __sys_recvmmsg+0x519/0x6f0 [ 613.518948][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.524992][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.531129][T18796] __do_fast_syscall_32+0x127/0x180 [ 613.536333][T18796] do_fast_syscall_32+0x77/0xd0 [ 613.541205][T18796] do_SYSENTER_32+0x73/0x90 [ 613.545692][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.552006][T18796] [ 613.554301][T18796] Uninit was stored to memory at: [ 613.559287][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 613.564978][T18796] __msan_chain_origin+0x54/0xa0 [ 613.569890][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 613.574979][T18796] get_compat_msghdr+0x108/0x2b0 [ 613.579886][T18796] do_recvmmsg+0xdc1/0x22d0 [ 613.584364][T18796] __sys_recvmmsg+0x519/0x6f0 [ 613.589010][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.595072][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.601207][T18796] __do_fast_syscall_32+0x127/0x180 [ 613.606390][T18796] do_fast_syscall_32+0x77/0xd0 [ 613.611220][T18796] do_SYSENTER_32+0x73/0x90 [ 613.615720][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.622024][T18796] [ 613.624364][T18796] Uninit was stored to memory at: [ 613.629365][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 613.635099][T18796] __msan_chain_origin+0x54/0xa0 [ 613.640026][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 613.645113][T18796] get_compat_msghdr+0x108/0x2b0 [ 613.650023][T18796] do_recvmmsg+0xdc1/0x22d0 [ 613.654515][T18796] __sys_recvmmsg+0x519/0x6f0 [ 613.659167][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.665252][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.671381][T18796] __do_fast_syscall_32+0x127/0x180 [ 613.676559][T18796] do_fast_syscall_32+0x77/0xd0 [ 613.681391][T18796] do_SYSENTER_32+0x73/0x90 [ 613.685872][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.692174][T18796] [ 613.694475][T18796] Uninit was stored to memory at: [ 613.699465][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 613.705167][T18796] __msan_chain_origin+0x54/0xa0 [ 613.710092][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 613.715179][T18796] get_compat_msghdr+0x108/0x2b0 [ 613.720092][T18796] do_recvmmsg+0xdc1/0x22d0 [ 613.724597][T18796] __sys_recvmmsg+0x519/0x6f0 [ 613.729280][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 613.735380][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 613.741517][T18796] __do_fast_syscall_32+0x127/0x180 [ 613.746718][T18796] do_fast_syscall_32+0x77/0xd0 [ 613.751550][T18796] do_SYSENTER_32+0x73/0x90 [ 613.756028][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 613.762341][T18796] [ 613.764635][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 613.771306][T18796] do_recvmmsg+0xbf/0x22d0 [ 613.775716][T18796] do_recvmmsg+0xbf/0x22d0 [ 613.946278][T18796] not chained 380000 origins [ 613.950936][T18796] CPU: 1 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 613.959699][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 613.969814][T18796] Call Trace: [ 613.973082][T18796] dump_stack+0x24c/0x2e0 [ 613.977397][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 613.983189][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 613.988551][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 613.994076][T18796] ? kmsan_get_metadata+0x116/0x180 [ 613.999260][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 614.004921][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 614.010973][T18796] ? kmsan_get_metadata+0x116/0x180 [ 614.016171][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 614.021961][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 614.028004][T18796] ? kmsan_get_metadata+0x116/0x180 [ 614.033181][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 614.038829][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 614.044873][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 614.050136][T18796] ? _copy_from_user+0x1fd/0x300 [ 614.055091][T18796] __msan_chain_origin+0x54/0xa0 [ 614.060008][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 614.065105][T18796] get_compat_msghdr+0x108/0x2b0 [ 614.070049][T18796] do_recvmmsg+0xdc1/0x22d0 [ 614.074579][T18796] ? kmsan_get_metadata+0x116/0x180 [ 614.079776][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 614.085418][T18796] ? __msan_poison_alloca+0xec/0x110 [ 614.090698][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 614.095472][T18796] __sys_recvmmsg+0x519/0x6f0 [ 614.100148][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.106227][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.112390][T18796] __do_fast_syscall_32+0x127/0x180 [ 614.117572][T18796] do_fast_syscall_32+0x77/0xd0 [ 614.122398][T18796] do_SYSENTER_32+0x73/0x90 [ 614.126890][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.133202][T18796] RIP: 0023:0xf7fe5549 [ 614.137252][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 614.156937][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 614.165345][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 614.173298][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 614.181251][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 614.189224][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 614.197190][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 614.205143][T18796] Uninit was stored to memory at: [ 614.210140][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 614.215869][T18796] __msan_chain_origin+0x54/0xa0 [ 614.220787][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 614.225888][T18796] get_compat_msghdr+0x108/0x2b0 [ 614.230807][T18796] do_recvmmsg+0xdc1/0x22d0 [ 614.235322][T18796] __sys_recvmmsg+0x519/0x6f0 [ 614.239983][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.246035][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.252168][T18796] __do_fast_syscall_32+0x127/0x180 [ 614.257353][T18796] do_fast_syscall_32+0x77/0xd0 [ 614.262186][T18796] do_SYSENTER_32+0x73/0x90 [ 614.266669][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.272981][T18796] [ 614.275291][T18796] Uninit was stored to memory at: [ 614.280283][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 614.285980][T18796] __msan_chain_origin+0x54/0xa0 [ 614.290892][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 614.295999][T18796] get_compat_msghdr+0x108/0x2b0 [ 614.300927][T18796] do_recvmmsg+0xdc1/0x22d0 [ 614.305411][T18796] __sys_recvmmsg+0x519/0x6f0 [ 614.310069][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.316135][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.322267][T18796] __do_fast_syscall_32+0x127/0x180 [ 614.327470][T18796] do_fast_syscall_32+0x77/0xd0 [ 614.332300][T18796] do_SYSENTER_32+0x73/0x90 [ 614.336781][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.343088][T18796] [ 614.345385][T18796] Uninit was stored to memory at: [ 614.350378][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 614.356115][T18796] __msan_chain_origin+0x54/0xa0 [ 614.361044][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 614.366145][T18796] get_compat_msghdr+0x108/0x2b0 [ 614.371059][T18796] do_recvmmsg+0xdc1/0x22d0 [ 614.375562][T18796] __sys_recvmmsg+0x519/0x6f0 [ 614.380218][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.386408][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.392549][T18796] __do_fast_syscall_32+0x127/0x180 [ 614.397733][T18796] do_fast_syscall_32+0x77/0xd0 [ 614.402569][T18796] do_SYSENTER_32+0x73/0x90 [ 614.407078][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.413409][T18796] [ 614.415720][T18796] Uninit was stored to memory at: [ 614.420711][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 614.426428][T18796] __msan_chain_origin+0x54/0xa0 [ 614.431344][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 614.436442][T18796] get_compat_msghdr+0x108/0x2b0 [ 614.441364][T18796] do_recvmmsg+0xdc1/0x22d0 [ 614.445884][T18796] __sys_recvmmsg+0x519/0x6f0 [ 614.450547][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.456637][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.462773][T18796] __do_fast_syscall_32+0x127/0x180 [ 614.467954][T18796] do_fast_syscall_32+0x77/0xd0 [ 614.472783][T18796] do_SYSENTER_32+0x73/0x90 [ 614.477282][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.483592][T18796] [ 614.485903][T18796] Uninit was stored to memory at: [ 614.490896][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 614.496616][T18796] __msan_chain_origin+0x54/0xa0 [ 614.501536][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 614.506624][T18796] get_compat_msghdr+0x108/0x2b0 [ 614.511541][T18796] do_recvmmsg+0xdc1/0x22d0 [ 614.516057][T18796] __sys_recvmmsg+0x519/0x6f0 [ 614.520724][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.526773][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.532907][T18796] __do_fast_syscall_32+0x127/0x180 [ 614.538085][T18796] do_fast_syscall_32+0x77/0xd0 [ 614.542911][T18796] do_SYSENTER_32+0x73/0x90 [ 614.547488][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.553810][T18796] [ 614.556125][T18796] Uninit was stored to memory at: [ 614.561125][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 614.566821][T18796] __msan_chain_origin+0x54/0xa0 [ 614.571737][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 614.576828][T18796] get_compat_msghdr+0x108/0x2b0 [ 614.581829][T18796] do_recvmmsg+0xdc1/0x22d0 [ 614.586403][T18796] __sys_recvmmsg+0x519/0x6f0 [ 614.591085][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.597159][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.603300][T18796] __do_fast_syscall_32+0x127/0x180 [ 614.608478][T18796] do_fast_syscall_32+0x77/0xd0 [ 614.613310][T18796] do_SYSENTER_32+0x73/0x90 [ 614.617792][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.624109][T18796] [ 614.626416][T18796] Uninit was stored to memory at: [ 614.631407][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 614.637221][T18796] __msan_chain_origin+0x54/0xa0 [ 614.642135][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 614.647226][T18796] get_compat_msghdr+0x108/0x2b0 [ 614.652167][T18796] do_recvmmsg+0xdc1/0x22d0 [ 614.656650][T18796] __sys_recvmmsg+0x519/0x6f0 [ 614.661312][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 614.667369][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 614.673515][T18796] __do_fast_syscall_32+0x127/0x180 [ 614.678693][T18796] do_fast_syscall_32+0x77/0xd0 [ 614.683523][T18796] do_SYSENTER_32+0x73/0x90 [ 614.688004][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 614.694313][T18796] [ 614.696614][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 614.703256][T18796] do_recvmmsg+0xbf/0x22d0 [ 614.707652][T18796] do_recvmmsg+0xbf/0x22d0 [ 614.874195][T18796] not chained 390000 origins [ 614.878886][T18796] CPU: 1 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 614.887663][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 614.897834][T18796] Call Trace: [ 614.901100][T18796] dump_stack+0x24c/0x2e0 [ 614.905440][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 614.911140][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 614.916504][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 614.922036][T18796] ? kmsan_get_metadata+0x116/0x180 [ 614.927369][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 614.932999][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 614.939078][T18796] ? kmsan_get_metadata+0x116/0x180 [ 614.944356][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 614.950150][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 614.956220][T18796] ? kmsan_get_metadata+0x116/0x180 [ 614.961423][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 614.967065][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 614.973118][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 614.978475][T18796] ? _copy_from_user+0x1fd/0x300 [ 614.983393][T18796] __msan_chain_origin+0x54/0xa0 [ 614.988307][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 614.993424][T18796] get_compat_msghdr+0x108/0x2b0 [ 614.998347][T18796] do_recvmmsg+0xdc1/0x22d0 [ 615.002832][T18796] ? kmsan_get_metadata+0x116/0x180 [ 615.008009][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 615.013630][T18796] ? __msan_poison_alloca+0xec/0x110 [ 615.018930][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 615.023687][T18796] __sys_recvmmsg+0x519/0x6f0 [ 615.028348][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.034420][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.040562][T18796] __do_fast_syscall_32+0x127/0x180 [ 615.045774][T18796] do_fast_syscall_32+0x77/0xd0 [ 615.050659][T18796] do_SYSENTER_32+0x73/0x90 [ 615.055140][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.061453][T18796] RIP: 0023:0xf7fe5549 [ 615.065538][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 615.085120][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 615.093528][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 615.101502][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 615.109471][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 615.117436][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 615.125397][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 615.133434][T18796] Uninit was stored to memory at: [ 615.138423][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 615.144121][T18796] __msan_chain_origin+0x54/0xa0 [ 615.149032][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 615.154117][T18796] get_compat_msghdr+0x108/0x2b0 [ 615.159034][T18796] do_recvmmsg+0xdc1/0x22d0 [ 615.163545][T18796] __sys_recvmmsg+0x519/0x6f0 [ 615.168200][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.174241][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.180378][T18796] __do_fast_syscall_32+0x127/0x180 [ 615.185596][T18796] do_fast_syscall_32+0x77/0xd0 [ 615.190422][T18796] do_SYSENTER_32+0x73/0x90 [ 615.194897][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.201202][T18796] [ 615.203514][T18796] Uninit was stored to memory at: [ 615.208520][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 615.214215][T18796] __msan_chain_origin+0x54/0xa0 [ 615.219129][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 615.224216][T18796] get_compat_msghdr+0x108/0x2b0 [ 615.229128][T18796] do_recvmmsg+0xdc1/0x22d0 [ 615.233618][T18796] __sys_recvmmsg+0x519/0x6f0 [ 615.238288][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.244331][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.250477][T18796] __do_fast_syscall_32+0x127/0x180 [ 615.255673][T18796] do_fast_syscall_32+0x77/0xd0 [ 615.260504][T18796] do_SYSENTER_32+0x73/0x90 [ 615.265016][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.271348][T18796] [ 615.273656][T18796] Uninit was stored to memory at: [ 615.278643][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 615.284337][T18796] __msan_chain_origin+0x54/0xa0 [ 615.289278][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 615.294384][T18796] get_compat_msghdr+0x108/0x2b0 [ 615.299297][T18796] do_recvmmsg+0xdc1/0x22d0 [ 615.303799][T18796] __sys_recvmmsg+0x519/0x6f0 [ 615.308474][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.314516][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.320655][T18796] __do_fast_syscall_32+0x127/0x180 [ 615.325859][T18796] do_fast_syscall_32+0x77/0xd0 [ 615.330686][T18796] do_SYSENTER_32+0x73/0x90 [ 615.335167][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.341481][T18796] [ 615.343795][T18796] Uninit was stored to memory at: [ 615.348788][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 615.354489][T18796] __msan_chain_origin+0x54/0xa0 [ 615.359411][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 615.364531][T18796] get_compat_msghdr+0x108/0x2b0 [ 615.369496][T18796] do_recvmmsg+0xdc1/0x22d0 [ 615.373996][T18796] __sys_recvmmsg+0x519/0x6f0 [ 615.378647][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.384687][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.390822][T18796] __do_fast_syscall_32+0x127/0x180 [ 615.396021][T18796] do_fast_syscall_32+0x77/0xd0 [ 615.400851][T18796] do_SYSENTER_32+0x73/0x90 [ 615.405362][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.411673][T18796] [ 615.413969][T18796] Uninit was stored to memory at: [ 615.418955][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 615.424648][T18796] __msan_chain_origin+0x54/0xa0 [ 615.429564][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 615.434670][T18796] get_compat_msghdr+0x108/0x2b0 [ 615.439601][T18796] do_recvmmsg+0xdc1/0x22d0 [ 615.444108][T18796] __sys_recvmmsg+0x519/0x6f0 [ 615.448758][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.454798][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.460933][T18796] __do_fast_syscall_32+0x127/0x180 [ 615.466140][T18796] do_fast_syscall_32+0x77/0xd0 [ 615.470988][T18796] do_SYSENTER_32+0x73/0x90 [ 615.475466][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.481772][T18796] [ 615.484082][T18796] Uninit was stored to memory at: [ 615.489097][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 615.494793][T18796] __msan_chain_origin+0x54/0xa0 [ 615.499712][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 615.504833][T18796] get_compat_msghdr+0x108/0x2b0 [ 615.509773][T18796] do_recvmmsg+0xdc1/0x22d0 [ 615.514273][T18796] __sys_recvmmsg+0x519/0x6f0 [ 615.518929][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.524978][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.531132][T18796] __do_fast_syscall_32+0x127/0x180 [ 615.536322][T18796] do_fast_syscall_32+0x77/0xd0 [ 615.541163][T18796] do_SYSENTER_32+0x73/0x90 [ 615.545672][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.551988][T18796] [ 615.554306][T18796] Uninit was stored to memory at: [ 615.559319][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 615.565044][T18796] __msan_chain_origin+0x54/0xa0 [ 615.569964][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 615.575090][T18796] get_compat_msghdr+0x108/0x2b0 [ 615.580010][T18796] do_recvmmsg+0xdc1/0x22d0 [ 615.584538][T18796] __sys_recvmmsg+0x519/0x6f0 [ 615.589199][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.595284][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.601436][T18796] __do_fast_syscall_32+0x127/0x180 [ 615.606648][T18796] do_fast_syscall_32+0x77/0xd0 [ 615.611482][T18796] do_SYSENTER_32+0x73/0x90 [ 615.615985][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 615.622296][T18796] [ 615.624595][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 615.631234][T18796] do_recvmmsg+0xbf/0x22d0 [ 615.635628][T18796] do_recvmmsg+0xbf/0x22d0 [ 615.813431][T18796] not chained 400000 origins [ 615.818030][T18796] CPU: 1 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 615.826767][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 615.836803][T18796] Call Trace: [ 615.840073][T18796] dump_stack+0x24c/0x2e0 [ 615.844399][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 615.850113][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 615.855476][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 615.861001][T18796] ? kmsan_get_metadata+0x116/0x180 [ 615.866176][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 615.871795][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 615.877860][T18796] ? kmsan_get_metadata+0x116/0x180 [ 615.883045][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 615.888835][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 615.894883][T18796] ? kmsan_get_metadata+0x116/0x180 [ 615.900059][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 615.905668][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 615.911710][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 615.916970][T18796] ? _copy_from_user+0x1fd/0x300 [ 615.921894][T18796] __msan_chain_origin+0x54/0xa0 [ 615.926831][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 615.931930][T18796] get_compat_msghdr+0x108/0x2b0 [ 615.936858][T18796] do_recvmmsg+0xdc1/0x22d0 [ 615.941361][T18796] ? kmsan_get_metadata+0x116/0x180 [ 615.946569][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 615.952184][T18796] ? __msan_poison_alloca+0xec/0x110 [ 615.957462][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 615.962213][T18796] __sys_recvmmsg+0x519/0x6f0 [ 615.966868][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 615.972917][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 615.979149][T18796] __do_fast_syscall_32+0x127/0x180 [ 615.984339][T18796] do_fast_syscall_32+0x77/0xd0 [ 615.989172][T18796] do_SYSENTER_32+0x73/0x90 [ 615.993664][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.000082][T18796] RIP: 0023:0xf7fe5549 [ 616.004130][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 616.023716][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 616.032546][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 616.040517][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 616.048469][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 616.056437][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 616.064399][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 616.072392][T18796] Uninit was stored to memory at: [ 616.077410][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 616.083123][T18796] __msan_chain_origin+0x54/0xa0 [ 616.088067][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 616.093159][T18796] get_compat_msghdr+0x108/0x2b0 [ 616.098072][T18796] do_recvmmsg+0xdc1/0x22d0 [ 616.102564][T18796] __sys_recvmmsg+0x519/0x6f0 [ 616.107277][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.113338][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.119527][T18796] __do_fast_syscall_32+0x127/0x180 [ 616.124754][T18796] do_fast_syscall_32+0x77/0xd0 [ 616.129581][T18796] do_SYSENTER_32+0x73/0x90 [ 616.134060][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.140376][T18796] [ 616.142722][T18796] Uninit was stored to memory at: [ 616.147718][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 616.153420][T18796] __msan_chain_origin+0x54/0xa0 [ 616.158360][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 616.163462][T18796] get_compat_msghdr+0x108/0x2b0 [ 616.168379][T18796] do_recvmmsg+0xdc1/0x22d0 [ 616.172889][T18796] __sys_recvmmsg+0x519/0x6f0 [ 616.177559][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.183729][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.189863][T18796] __do_fast_syscall_32+0x127/0x180 [ 616.195065][T18796] do_fast_syscall_32+0x77/0xd0 [ 616.199899][T18796] do_SYSENTER_32+0x73/0x90 [ 616.204389][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.210717][T18796] [ 616.213018][T18796] Uninit was stored to memory at: [ 616.218008][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 616.223714][T18796] __msan_chain_origin+0x54/0xa0 [ 616.228640][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 616.233738][T18796] get_compat_msghdr+0x108/0x2b0 [ 616.238661][T18796] do_recvmmsg+0xdc1/0x22d0 [ 616.243145][T18796] __sys_recvmmsg+0x519/0x6f0 [ 616.247805][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.253857][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.260013][T18796] __do_fast_syscall_32+0x127/0x180 [ 616.265195][T18796] do_fast_syscall_32+0x77/0xd0 [ 616.270033][T18796] do_SYSENTER_32+0x73/0x90 [ 616.274568][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.280883][T18796] [ 616.283185][T18796] Uninit was stored to memory at: [ 616.288180][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 616.293973][T18796] __msan_chain_origin+0x54/0xa0 [ 616.298978][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 616.304084][T18796] get_compat_msghdr+0x108/0x2b0 [ 616.308998][T18796] do_recvmmsg+0xdc1/0x22d0 [ 616.313481][T18796] __sys_recvmmsg+0x519/0x6f0 [ 616.318137][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.324197][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.330348][T18796] __do_fast_syscall_32+0x127/0x180 [ 616.335553][T18796] do_fast_syscall_32+0x77/0xd0 [ 616.340424][T18796] do_SYSENTER_32+0x73/0x90 [ 616.344931][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.351236][T18796] [ 616.353535][T18796] Uninit was stored to memory at: [ 616.358524][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 616.364223][T18796] __msan_chain_origin+0x54/0xa0 [ 616.369139][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 616.374226][T18796] get_compat_msghdr+0x108/0x2b0 [ 616.379152][T18796] do_recvmmsg+0xdc1/0x22d0 [ 616.383634][T18796] __sys_recvmmsg+0x519/0x6f0 [ 616.388295][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.394368][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.400519][T18796] __do_fast_syscall_32+0x127/0x180 [ 616.405700][T18796] do_fast_syscall_32+0x77/0xd0 [ 616.410527][T18796] do_SYSENTER_32+0x73/0x90 [ 616.415022][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.421357][T18796] [ 616.423679][T18796] Uninit was stored to memory at: [ 616.428668][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 616.434363][T18796] __msan_chain_origin+0x54/0xa0 [ 616.439282][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 616.444385][T18796] get_compat_msghdr+0x108/0x2b0 [ 616.449302][T18796] do_recvmmsg+0xdc1/0x22d0 [ 616.453803][T18796] __sys_recvmmsg+0x519/0x6f0 [ 616.458464][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.464513][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.470651][T18796] __do_fast_syscall_32+0x127/0x180 [ 616.475857][T18796] do_fast_syscall_32+0x77/0xd0 [ 616.480691][T18796] do_SYSENTER_32+0x73/0x90 [ 616.485175][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.491505][T18796] [ 616.493825][T18796] Uninit was stored to memory at: [ 616.498829][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 616.504549][T18796] __msan_chain_origin+0x54/0xa0 [ 616.509469][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 616.514587][T18796] get_compat_msghdr+0x108/0x2b0 [ 616.519501][T18796] do_recvmmsg+0xdc1/0x22d0 [ 616.523983][T18796] __sys_recvmmsg+0x519/0x6f0 [ 616.528656][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.534705][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.540843][T18796] __do_fast_syscall_32+0x127/0x180 [ 616.546025][T18796] do_fast_syscall_32+0x77/0xd0 [ 616.550853][T18796] do_SYSENTER_32+0x73/0x90 [ 616.555334][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.561661][T18796] [ 616.563967][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 616.570608][T18796] do_recvmmsg+0xbf/0x22d0 [ 616.575007][T18796] do_recvmmsg+0xbf/0x22d0 [ 616.750194][T18796] not chained 410000 origins [ 616.754804][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 616.763548][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 616.773620][T18796] Call Trace: [ 616.776886][T18796] dump_stack+0x24c/0x2e0 [ 616.781207][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 616.787006][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 616.792412][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 616.798010][T18796] ? kmsan_get_metadata+0x116/0x180 [ 616.803188][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 616.808814][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 616.814901][T18796] ? kmsan_get_metadata+0x116/0x180 [ 616.820076][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 616.825859][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 616.831901][T18796] ? kmsan_get_metadata+0x116/0x180 [ 616.837123][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 616.842799][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 616.848937][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 616.854225][T18796] ? _copy_from_user+0x1fd/0x300 [ 616.859154][T18796] __msan_chain_origin+0x54/0xa0 [ 616.864097][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 616.869192][T18796] get_compat_msghdr+0x108/0x2b0 [ 616.874129][T18796] do_recvmmsg+0xdc1/0x22d0 [ 616.878617][T18796] ? kmsan_get_metadata+0x116/0x180 [ 616.883798][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 616.889409][T18796] ? __msan_poison_alloca+0xec/0x110 [ 616.894671][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 616.899419][T18796] __sys_recvmmsg+0x519/0x6f0 [ 616.904101][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 616.910165][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 616.916321][T18796] __do_fast_syscall_32+0x127/0x180 [ 616.921517][T18796] do_fast_syscall_32+0x77/0xd0 [ 616.926349][T18796] do_SYSENTER_32+0x73/0x90 [ 616.930839][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 616.937163][T18796] RIP: 0023:0xf7fe5549 [ 616.941210][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 616.960810][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 616.969207][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 616.977180][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 616.985136][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 616.993084][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 617.001039][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 617.009018][T18796] Uninit was stored to memory at: [ 617.014045][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 617.019744][T18796] __msan_chain_origin+0x54/0xa0 [ 617.024672][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 617.029795][T18796] get_compat_msghdr+0x108/0x2b0 [ 617.034738][T18796] do_recvmmsg+0xdc1/0x22d0 [ 617.039220][T18796] __sys_recvmmsg+0x519/0x6f0 [ 617.043912][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.049971][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.056102][T18796] __do_fast_syscall_32+0x127/0x180 [ 617.061282][T18796] do_fast_syscall_32+0x77/0xd0 [ 617.066110][T18796] do_SYSENTER_32+0x73/0x90 [ 617.070588][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.076896][T18796] [ 617.079199][T18796] Uninit was stored to memory at: [ 617.084200][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 617.089896][T18796] __msan_chain_origin+0x54/0xa0 [ 617.094838][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 617.099964][T18796] get_compat_msghdr+0x108/0x2b0 [ 617.104878][T18796] do_recvmmsg+0xdc1/0x22d0 [ 617.109361][T18796] __sys_recvmmsg+0x519/0x6f0 [ 617.114020][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.120063][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.126208][T18796] __do_fast_syscall_32+0x127/0x180 [ 617.131387][T18796] do_fast_syscall_32+0x77/0xd0 [ 617.136241][T18796] do_SYSENTER_32+0x73/0x90 [ 617.140723][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.147033][T18796] [ 617.149329][T18796] Uninit was stored to memory at: [ 617.154318][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 617.160023][T18796] __msan_chain_origin+0x54/0xa0 [ 617.164934][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 617.170018][T18796] get_compat_msghdr+0x108/0x2b0 [ 617.174940][T18796] do_recvmmsg+0xdc1/0x22d0 [ 617.179445][T18796] __sys_recvmmsg+0x519/0x6f0 [ 617.184098][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.190149][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.196294][T18796] __do_fast_syscall_32+0x127/0x180 [ 617.201491][T18796] do_fast_syscall_32+0x77/0xd0 [ 617.206321][T18796] do_SYSENTER_32+0x73/0x90 [ 617.210826][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.217132][T18796] [ 617.219433][T18796] Uninit was stored to memory at: [ 617.224421][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 617.230114][T18796] __msan_chain_origin+0x54/0xa0 [ 617.235022][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 617.240106][T18796] get_compat_msghdr+0x108/0x2b0 [ 617.245021][T18796] do_recvmmsg+0xdc1/0x22d0 [ 617.249507][T18796] __sys_recvmmsg+0x519/0x6f0 [ 617.254159][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.260202][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.266334][T18796] __do_fast_syscall_32+0x127/0x180 [ 617.271513][T18796] do_fast_syscall_32+0x77/0xd0 [ 617.276340][T18796] do_SYSENTER_32+0x73/0x90 [ 617.280821][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.287132][T18796] [ 617.289432][T18796] Uninit was stored to memory at: [ 617.294426][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 617.300131][T18796] __msan_chain_origin+0x54/0xa0 [ 617.305054][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 617.310142][T18796] get_compat_msghdr+0x108/0x2b0 [ 617.315052][T18796] do_recvmmsg+0xdc1/0x22d0 [ 617.319528][T18796] __sys_recvmmsg+0x519/0x6f0 [ 617.324180][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.330219][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.336345][T18796] __do_fast_syscall_32+0x127/0x180 [ 617.341522][T18796] do_fast_syscall_32+0x77/0xd0 [ 617.346363][T18796] do_SYSENTER_32+0x73/0x90 [ 617.350844][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.357145][T18796] [ 617.359448][T18796] Uninit was stored to memory at: [ 617.364450][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 617.370143][T18796] __msan_chain_origin+0x54/0xa0 [ 617.375054][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 617.380141][T18796] get_compat_msghdr+0x108/0x2b0 [ 617.385063][T18796] do_recvmmsg+0xdc1/0x22d0 [ 617.389541][T18796] __sys_recvmmsg+0x519/0x6f0 [ 617.394204][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.400250][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.406386][T18796] __do_fast_syscall_32+0x127/0x180 [ 617.411570][T18796] do_fast_syscall_32+0x77/0xd0 [ 617.416425][T18796] do_SYSENTER_32+0x73/0x90 [ 617.420910][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.427219][T18796] [ 617.429517][T18796] Uninit was stored to memory at: [ 617.434507][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 617.440203][T18796] __msan_chain_origin+0x54/0xa0 [ 617.445118][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 617.450209][T18796] get_compat_msghdr+0x108/0x2b0 [ 617.455121][T18796] do_recvmmsg+0xdc1/0x22d0 [ 617.459610][T18796] __sys_recvmmsg+0x519/0x6f0 [ 617.464263][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.470306][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.476433][T18796] __do_fast_syscall_32+0x127/0x180 [ 617.481619][T18796] do_fast_syscall_32+0x77/0xd0 [ 617.486448][T18796] do_SYSENTER_32+0x73/0x90 [ 617.491018][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.497327][T18796] [ 617.499628][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 617.506270][T18796] do_recvmmsg+0xbf/0x22d0 [ 617.510677][T18796] do_recvmmsg+0xbf/0x22d0 [ 617.675124][T18796] not chained 420000 origins [ 617.679720][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 617.688490][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 617.698521][T18796] Call Trace: [ 617.701775][T18796] dump_stack+0x24c/0x2e0 [ 617.706083][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 617.711796][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 617.717148][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 617.722676][T18796] ? kmsan_get_metadata+0x116/0x180 [ 617.727856][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 617.733461][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 617.739504][T18796] ? kmsan_get_metadata+0x116/0x180 [ 617.744689][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 617.750471][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 617.756513][T18796] ? kmsan_get_metadata+0x116/0x180 [ 617.761690][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 617.767401][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 617.773464][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 617.778727][T18796] ? _copy_from_user+0x1fd/0x300 [ 617.783646][T18796] __msan_chain_origin+0x54/0xa0 [ 617.788585][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 617.793679][T18796] get_compat_msghdr+0x108/0x2b0 [ 617.798606][T18796] do_recvmmsg+0xdc1/0x22d0 [ 617.803096][T18796] ? kmsan_get_metadata+0x116/0x180 [ 617.808273][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 617.813894][T18796] ? __msan_poison_alloca+0xec/0x110 [ 617.819190][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 617.823971][T18796] __sys_recvmmsg+0x519/0x6f0 [ 617.828643][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.834698][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.840840][T18796] __do_fast_syscall_32+0x127/0x180 [ 617.846050][T18796] do_fast_syscall_32+0x77/0xd0 [ 617.850887][T18796] do_SYSENTER_32+0x73/0x90 [ 617.855378][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 617.861690][T18796] RIP: 0023:0xf7fe5549 [ 617.865734][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 617.885317][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 617.893892][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 617.901840][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 617.909839][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 617.917904][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 617.925879][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 617.934198][T18796] Uninit was stored to memory at: [ 617.939212][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 617.944937][T18796] __msan_chain_origin+0x54/0xa0 [ 617.949872][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 617.954977][T18796] get_compat_msghdr+0x108/0x2b0 [ 617.959911][T18796] do_recvmmsg+0xdc1/0x22d0 [ 617.964397][T18796] __sys_recvmmsg+0x519/0x6f0 [ 617.969056][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 617.975115][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 617.981259][T18796] __do_fast_syscall_32+0x127/0x180 [ 617.986497][T18796] do_fast_syscall_32+0x77/0xd0 [ 617.991327][T18796] do_SYSENTER_32+0x73/0x90 [ 617.995823][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.002373][T18796] [ 618.004682][T18796] Uninit was stored to memory at: [ 618.009675][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 618.015374][T18796] __msan_chain_origin+0x54/0xa0 [ 618.020362][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 618.025496][T18796] get_compat_msghdr+0x108/0x2b0 [ 618.030447][T18796] do_recvmmsg+0xdc1/0x22d0 [ 618.034984][T18796] __sys_recvmmsg+0x519/0x6f0 [ 618.039640][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.045695][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.051838][T18796] __do_fast_syscall_32+0x127/0x180 [ 618.057041][T18796] do_fast_syscall_32+0x77/0xd0 [ 618.061914][T18796] do_SYSENTER_32+0x73/0x90 [ 618.066455][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.072770][T18796] [ 618.075510][T18796] Uninit was stored to memory at: [ 618.080509][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 618.086218][T18796] __msan_chain_origin+0x54/0xa0 [ 618.091140][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 618.096232][T18796] get_compat_msghdr+0x108/0x2b0 [ 618.101149][T18796] do_recvmmsg+0xdc1/0x22d0 [ 618.105737][T18796] __sys_recvmmsg+0x519/0x6f0 [ 618.110471][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.116624][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.122761][T18796] __do_fast_syscall_32+0x127/0x180 [ 618.127944][T18796] do_fast_syscall_32+0x77/0xd0 [ 618.132799][T18796] do_SYSENTER_32+0x73/0x90 [ 618.137285][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.143597][T18796] [ 618.145898][T18796] Uninit was stored to memory at: [ 618.150891][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 618.156591][T18796] __msan_chain_origin+0x54/0xa0 [ 618.161512][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 618.166607][T18796] get_compat_msghdr+0x108/0x2b0 [ 618.171525][T18796] do_recvmmsg+0xdc1/0x22d0 [ 618.176006][T18796] __sys_recvmmsg+0x519/0x6f0 [ 618.180663][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.186732][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.192886][T18796] __do_fast_syscall_32+0x127/0x180 [ 618.198066][T18796] do_fast_syscall_32+0x77/0xd0 [ 618.202908][T18796] do_SYSENTER_32+0x73/0x90 [ 618.207419][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.213754][T18796] [ 618.216052][T18796] Uninit was stored to memory at: [ 618.221047][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 618.226779][T18796] __msan_chain_origin+0x54/0xa0 [ 618.231806][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 618.236902][T18796] get_compat_msghdr+0x108/0x2b0 [ 618.241820][T18796] do_recvmmsg+0xdc1/0x22d0 [ 618.246301][T18796] __sys_recvmmsg+0x519/0x6f0 [ 618.250957][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.257006][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.263144][T18796] __do_fast_syscall_32+0x127/0x180 [ 618.268325][T18796] do_fast_syscall_32+0x77/0xd0 [ 618.273245][T18796] do_SYSENTER_32+0x73/0x90 [ 618.277732][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.284070][T18796] [ 618.286371][T18796] Uninit was stored to memory at: [ 618.291364][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 618.297070][T18796] __msan_chain_origin+0x54/0xa0 [ 618.301986][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 618.307079][T18796] get_compat_msghdr+0x108/0x2b0 [ 618.311999][T18796] do_recvmmsg+0xdc1/0x22d0 [ 618.316484][T18796] __sys_recvmmsg+0x519/0x6f0 [ 618.321143][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.327207][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.333348][T18796] __do_fast_syscall_32+0x127/0x180 [ 618.338558][T18796] do_fast_syscall_32+0x77/0xd0 [ 618.343420][T18796] do_SYSENTER_32+0x73/0x90 [ 618.347905][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.354222][T18796] [ 618.356521][T18796] Uninit was stored to memory at: [ 618.361518][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 618.367218][T18796] __msan_chain_origin+0x54/0xa0 [ 618.372135][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 618.377226][T18796] get_compat_msghdr+0x108/0x2b0 [ 618.382170][T18796] do_recvmmsg+0xdc1/0x22d0 [ 618.386727][T18796] __sys_recvmmsg+0x519/0x6f0 [ 618.391490][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.397650][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.403785][T18796] __do_fast_syscall_32+0x127/0x180 [ 618.408965][T18796] do_fast_syscall_32+0x77/0xd0 [ 618.413800][T18796] do_SYSENTER_32+0x73/0x90 [ 618.418279][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.424585][T18796] [ 618.426887][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 618.433545][T18796] do_recvmmsg+0xbf/0x22d0 [ 618.437943][T18796] do_recvmmsg+0xbf/0x22d0 [ 618.606648][T18796] not chained 430000 origins [ 618.611278][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 618.620141][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 618.630201][T18796] Call Trace: [ 618.633488][T18796] dump_stack+0x24c/0x2e0 [ 618.637841][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 618.643559][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 618.648916][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 618.654448][T18796] ? kmsan_get_metadata+0x116/0x180 [ 618.659624][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 618.665324][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 618.671377][T18796] ? kmsan_get_metadata+0x116/0x180 [ 618.676561][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 618.682348][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 618.688428][T18796] ? kmsan_get_metadata+0x116/0x180 [ 618.693610][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 618.699244][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 618.705415][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 618.710780][T18796] ? _copy_from_user+0x1fd/0x300 [ 618.715813][T18796] __msan_chain_origin+0x54/0xa0 [ 618.720733][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 618.725849][T18796] get_compat_msghdr+0x108/0x2b0 [ 618.730771][T18796] do_recvmmsg+0xdc1/0x22d0 [ 618.735269][T18796] ? kmsan_get_metadata+0x116/0x180 [ 618.740460][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 618.746184][T18796] ? __msan_poison_alloca+0xec/0x110 [ 618.751488][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 618.756252][T18796] __sys_recvmmsg+0x519/0x6f0 [ 618.760919][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.766992][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.773132][T18796] __do_fast_syscall_32+0x127/0x180 [ 618.778312][T18796] do_fast_syscall_32+0x77/0xd0 [ 618.783148][T18796] do_SYSENTER_32+0x73/0x90 [ 618.787650][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.793975][T18796] RIP: 0023:0xf7fe5549 [ 618.798019][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 618.817601][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 618.826022][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 618.833972][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 618.841921][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 618.849871][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 618.857846][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 618.865814][T18796] Uninit was stored to memory at: [ 618.870807][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 618.876509][T18796] __msan_chain_origin+0x54/0xa0 [ 618.881424][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 618.886609][T18796] get_compat_msghdr+0x108/0x2b0 [ 618.891524][T18796] do_recvmmsg+0xdc1/0x22d0 [ 618.896031][T18796] __sys_recvmmsg+0x519/0x6f0 [ 618.900775][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.906843][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.912979][T18796] __do_fast_syscall_32+0x127/0x180 [ 618.918159][T18796] do_fast_syscall_32+0x77/0xd0 [ 618.922983][T18796] do_SYSENTER_32+0x73/0x90 [ 618.927464][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 618.933791][T18796] [ 618.936087][T18796] Uninit was stored to memory at: [ 618.941087][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 618.946789][T18796] __msan_chain_origin+0x54/0xa0 [ 618.951728][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 618.956906][T18796] get_compat_msghdr+0x108/0x2b0 [ 618.961829][T18796] do_recvmmsg+0xdc1/0x22d0 [ 618.966320][T18796] __sys_recvmmsg+0x519/0x6f0 [ 618.970981][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 618.977034][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 618.983167][T18796] __do_fast_syscall_32+0x127/0x180 [ 618.988348][T18796] do_fast_syscall_32+0x77/0xd0 [ 618.993221][T18796] do_SYSENTER_32+0x73/0x90 [ 618.997714][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.004025][T18796] [ 619.006339][T18796] Uninit was stored to memory at: [ 619.011334][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 619.017035][T18796] __msan_chain_origin+0x54/0xa0 [ 619.021951][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 619.027055][T18796] get_compat_msghdr+0x108/0x2b0 [ 619.031972][T18796] do_recvmmsg+0xdc1/0x22d0 [ 619.036452][T18796] __sys_recvmmsg+0x519/0x6f0 [ 619.041105][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.047154][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.053291][T18796] __do_fast_syscall_32+0x127/0x180 [ 619.058471][T18796] do_fast_syscall_32+0x77/0xd0 [ 619.063297][T18796] do_SYSENTER_32+0x73/0x90 [ 619.067780][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.074111][T18796] [ 619.076419][T18796] Uninit was stored to memory at: [ 619.081425][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 619.087136][T18796] __msan_chain_origin+0x54/0xa0 [ 619.092053][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 619.097144][T18796] get_compat_msghdr+0x108/0x2b0 [ 619.102062][T18796] do_recvmmsg+0xdc1/0x22d0 [ 619.106543][T18796] __sys_recvmmsg+0x519/0x6f0 [ 619.111208][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.117265][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.123398][T18796] __do_fast_syscall_32+0x127/0x180 [ 619.128574][T18796] do_fast_syscall_32+0x77/0xd0 [ 619.133399][T18796] do_SYSENTER_32+0x73/0x90 [ 619.137892][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.144196][T18796] [ 619.146513][T18796] Uninit was stored to memory at: [ 619.151506][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 619.157232][T18796] __msan_chain_origin+0x54/0xa0 [ 619.162153][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 619.167241][T18796] get_compat_msghdr+0x108/0x2b0 [ 619.172165][T18796] do_recvmmsg+0xdc1/0x22d0 [ 619.176644][T18796] __sys_recvmmsg+0x519/0x6f0 [ 619.181298][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.187349][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.193488][T18796] __do_fast_syscall_32+0x127/0x180 [ 619.198664][T18796] do_fast_syscall_32+0x77/0xd0 [ 619.203488][T18796] do_SYSENTER_32+0x73/0x90 [ 619.207968][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.214273][T18796] [ 619.216573][T18796] Uninit was stored to memory at: [ 619.221566][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 619.227291][T18796] __msan_chain_origin+0x54/0xa0 [ 619.232214][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 619.237323][T18796] get_compat_msghdr+0x108/0x2b0 [ 619.242244][T18796] do_recvmmsg+0xdc1/0x22d0 [ 619.246724][T18796] __sys_recvmmsg+0x519/0x6f0 [ 619.251392][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.257440][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.263583][T18796] __do_fast_syscall_32+0x127/0x180 [ 619.268878][T18796] do_fast_syscall_32+0x77/0xd0 [ 619.273719][T18796] do_SYSENTER_32+0x73/0x90 [ 619.278204][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.284510][T18796] [ 619.286855][T18796] Uninit was stored to memory at: [ 619.291845][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 619.297544][T18796] __msan_chain_origin+0x54/0xa0 [ 619.302458][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 619.307562][T18796] get_compat_msghdr+0x108/0x2b0 [ 619.312482][T18796] do_recvmmsg+0xdc1/0x22d0 [ 619.316967][T18796] __sys_recvmmsg+0x519/0x6f0 [ 619.321635][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.327683][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.333816][T18796] __do_fast_syscall_32+0x127/0x180 [ 619.338996][T18796] do_fast_syscall_32+0x77/0xd0 [ 619.343854][T18796] do_SYSENTER_32+0x73/0x90 [ 619.348340][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.354652][T18796] [ 619.356957][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 619.363612][T18796] do_recvmmsg+0xbf/0x22d0 [ 619.368006][T18796] do_recvmmsg+0xbf/0x22d0 [ 619.545710][T18796] not chained 440000 origins [ 619.550321][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 619.559089][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 619.569133][T18796] Call Trace: [ 619.572413][T18796] dump_stack+0x24c/0x2e0 [ 619.576726][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 619.582435][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 619.587802][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 619.593341][T18796] ? kmsan_get_metadata+0x116/0x180 [ 619.598533][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 619.604143][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 619.610187][T18796] ? kmsan_get_metadata+0x116/0x180 [ 619.615364][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 619.621145][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 619.627194][T18796] ? kmsan_get_metadata+0x116/0x180 [ 619.632372][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 619.638002][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 619.644049][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 619.649310][T18796] ? _copy_from_user+0x1fd/0x300 [ 619.654239][T18796] __msan_chain_origin+0x54/0xa0 [ 619.659175][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 619.664281][T18796] get_compat_msghdr+0x108/0x2b0 [ 619.669231][T18796] do_recvmmsg+0xdc1/0x22d0 [ 619.673750][T18796] ? kmsan_get_metadata+0x116/0x180 [ 619.678929][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 619.684540][T18796] ? __msan_poison_alloca+0xec/0x110 [ 619.689806][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 619.694552][T18796] __sys_recvmmsg+0x519/0x6f0 [ 619.699212][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.705285][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.711417][T18796] __do_fast_syscall_32+0x127/0x180 [ 619.716620][T18796] do_fast_syscall_32+0x77/0xd0 [ 619.721477][T18796] do_SYSENTER_32+0x73/0x90 [ 619.725974][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.732281][T18796] RIP: 0023:0xf7fe5549 [ 619.736326][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 619.755928][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 619.764320][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 619.772273][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 619.780243][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 619.788192][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 619.796140][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 619.804091][T18796] Uninit was stored to memory at: [ 619.809092][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 619.814790][T18796] __msan_chain_origin+0x54/0xa0 [ 619.819704][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 619.824789][T18796] get_compat_msghdr+0x108/0x2b0 [ 619.829711][T18796] do_recvmmsg+0xdc1/0x22d0 [ 619.834191][T18796] __sys_recvmmsg+0x519/0x6f0 [ 619.838837][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.844876][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.851002][T18796] __do_fast_syscall_32+0x127/0x180 [ 619.856176][T18796] do_fast_syscall_32+0x77/0xd0 [ 619.861006][T18796] do_SYSENTER_32+0x73/0x90 [ 619.865487][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.871793][T18796] [ 619.874093][T18796] Uninit was stored to memory at: [ 619.879090][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 619.884789][T18796] __msan_chain_origin+0x54/0xa0 [ 619.889700][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 619.894787][T18796] get_compat_msghdr+0x108/0x2b0 [ 619.899740][T18796] do_recvmmsg+0xdc1/0x22d0 [ 619.904226][T18796] __sys_recvmmsg+0x519/0x6f0 [ 619.908877][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.914921][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.921053][T18796] __do_fast_syscall_32+0x127/0x180 [ 619.926233][T18796] do_fast_syscall_32+0x77/0xd0 [ 619.931064][T18796] do_SYSENTER_32+0x73/0x90 [ 619.935547][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 619.941854][T18796] [ 619.944151][T18796] Uninit was stored to memory at: [ 619.949138][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 619.954835][T18796] __msan_chain_origin+0x54/0xa0 [ 619.959750][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 619.964842][T18796] get_compat_msghdr+0x108/0x2b0 [ 619.969753][T18796] do_recvmmsg+0xdc1/0x22d0 [ 619.974249][T18796] __sys_recvmmsg+0x519/0x6f0 [ 619.978961][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 619.985023][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 619.991167][T18796] __do_fast_syscall_32+0x127/0x180 [ 619.996361][T18796] do_fast_syscall_32+0x77/0xd0 [ 620.001192][T18796] do_SYSENTER_32+0x73/0x90 [ 620.005672][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.011976][T18796] [ 620.014275][T18796] Uninit was stored to memory at: [ 620.019271][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 620.024976][T18796] __msan_chain_origin+0x54/0xa0 [ 620.030014][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 620.035148][T18796] get_compat_msghdr+0x108/0x2b0 [ 620.040100][T18796] do_recvmmsg+0xdc1/0x22d0 [ 620.044618][T18796] __sys_recvmmsg+0x519/0x6f0 [ 620.049355][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.055463][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.061597][T18796] __do_fast_syscall_32+0x127/0x180 [ 620.066875][T18796] do_fast_syscall_32+0x77/0xd0 [ 620.071710][T18796] do_SYSENTER_32+0x73/0x90 [ 620.076197][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.082514][T18796] [ 620.084818][T18796] Uninit was stored to memory at: [ 620.089813][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 620.095514][T18796] __msan_chain_origin+0x54/0xa0 [ 620.100432][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 620.105527][T18796] get_compat_msghdr+0x108/0x2b0 [ 620.110458][T18796] do_recvmmsg+0xdc1/0x22d0 [ 620.114951][T18796] __sys_recvmmsg+0x519/0x6f0 [ 620.119604][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.125650][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.131778][T18796] __do_fast_syscall_32+0x127/0x180 [ 620.136954][T18796] do_fast_syscall_32+0x77/0xd0 [ 620.141783][T18796] do_SYSENTER_32+0x73/0x90 [ 620.146260][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.152562][T18796] [ 620.154860][T18796] Uninit was stored to memory at: [ 620.159850][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 620.165561][T18796] __msan_chain_origin+0x54/0xa0 [ 620.170474][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 620.175563][T18796] get_compat_msghdr+0x108/0x2b0 [ 620.180503][T18796] do_recvmmsg+0xdc1/0x22d0 [ 620.184988][T18796] __sys_recvmmsg+0x519/0x6f0 [ 620.189641][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.195700][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.201832][T18796] __do_fast_syscall_32+0x127/0x180 [ 620.207011][T18796] do_fast_syscall_32+0x77/0xd0 [ 620.211851][T18796] do_SYSENTER_32+0x73/0x90 [ 620.216333][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.222732][T18796] [ 620.225041][T18796] Uninit was stored to memory at: [ 620.230033][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 620.235732][T18796] __msan_chain_origin+0x54/0xa0 [ 620.240660][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 620.245751][T18796] get_compat_msghdr+0x108/0x2b0 [ 620.250671][T18796] do_recvmmsg+0xdc1/0x22d0 [ 620.255155][T18796] __sys_recvmmsg+0x519/0x6f0 [ 620.259830][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.265884][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.272017][T18796] __do_fast_syscall_32+0x127/0x180 [ 620.277215][T18796] do_fast_syscall_32+0x77/0xd0 [ 620.282047][T18796] do_SYSENTER_32+0x73/0x90 [ 620.286533][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.292929][T18796] [ 620.295232][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 620.301874][T18796] do_recvmmsg+0xbf/0x22d0 [ 620.306272][T18796] do_recvmmsg+0xbf/0x22d0 [ 620.478860][T18796] not chained 450000 origins [ 620.483475][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 620.492242][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 620.502293][T18796] Call Trace: [ 620.505551][T18796] dump_stack+0x24c/0x2e0 [ 620.509864][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 620.515563][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 620.520942][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 620.526487][T18796] ? kmsan_get_metadata+0x116/0x180 [ 620.531664][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 620.537273][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 620.543320][T18796] ? kmsan_get_metadata+0x116/0x180 [ 620.548499][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 620.554283][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 620.560331][T18796] ? kmsan_get_metadata+0x116/0x180 [ 620.565515][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 620.571128][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 620.577172][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 620.582447][T18796] ? _copy_from_user+0x1fd/0x300 [ 620.587372][T18796] __msan_chain_origin+0x54/0xa0 [ 620.592297][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 620.597392][T18796] get_compat_msghdr+0x108/0x2b0 [ 620.602312][T18796] do_recvmmsg+0xdc1/0x22d0 [ 620.606802][T18796] ? kmsan_get_metadata+0x116/0x180 [ 620.611978][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 620.617597][T18796] ? __msan_poison_alloca+0xec/0x110 [ 620.622980][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 620.627723][T18796] __sys_recvmmsg+0x519/0x6f0 [ 620.632411][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.638476][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.644609][T18796] __do_fast_syscall_32+0x127/0x180 [ 620.649792][T18796] do_fast_syscall_32+0x77/0xd0 [ 620.654623][T18796] do_SYSENTER_32+0x73/0x90 [ 620.659109][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.665544][T18796] RIP: 0023:0xf7fe5549 [ 620.669600][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 620.689203][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 620.697624][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 620.705596][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 620.713546][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 620.721502][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 620.729468][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 620.737425][T18796] Uninit was stored to memory at: [ 620.742422][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 620.748127][T18796] __msan_chain_origin+0x54/0xa0 [ 620.753043][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 620.758157][T18796] get_compat_msghdr+0x108/0x2b0 [ 620.763073][T18796] do_recvmmsg+0xdc1/0x22d0 [ 620.767554][T18796] __sys_recvmmsg+0x519/0x6f0 [ 620.772310][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.778362][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.784499][T18796] __do_fast_syscall_32+0x127/0x180 [ 620.789683][T18796] do_fast_syscall_32+0x77/0xd0 [ 620.794540][T18796] do_SYSENTER_32+0x73/0x90 [ 620.799042][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.805351][T18796] [ 620.807650][T18796] Uninit was stored to memory at: [ 620.812644][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 620.818344][T18796] __msan_chain_origin+0x54/0xa0 [ 620.823284][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 620.828376][T18796] get_compat_msghdr+0x108/0x2b0 [ 620.833310][T18796] do_recvmmsg+0xdc1/0x22d0 [ 620.837795][T18796] __sys_recvmmsg+0x519/0x6f0 [ 620.842451][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.848500][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.854636][T18796] __do_fast_syscall_32+0x127/0x180 [ 620.859833][T18796] do_fast_syscall_32+0x77/0xd0 [ 620.864686][T18796] do_SYSENTER_32+0x73/0x90 [ 620.869170][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.875482][T18796] [ 620.877785][T18796] Uninit was stored to memory at: [ 620.882777][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 620.888478][T18796] __msan_chain_origin+0x54/0xa0 [ 620.893449][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 620.898568][T18796] get_compat_msghdr+0x108/0x2b0 [ 620.903493][T18796] do_recvmmsg+0xdc1/0x22d0 [ 620.907999][T18796] __sys_recvmmsg+0x519/0x6f0 [ 620.912676][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.918731][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.924878][T18796] __do_fast_syscall_32+0x127/0x180 [ 620.930419][T18796] do_fast_syscall_32+0x77/0xd0 [ 620.935254][T18796] do_SYSENTER_32+0x73/0x90 [ 620.939740][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 620.946053][T18796] [ 620.948387][T18796] Uninit was stored to memory at: [ 620.953472][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 620.959175][T18796] __msan_chain_origin+0x54/0xa0 [ 620.964097][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 620.969214][T18796] get_compat_msghdr+0x108/0x2b0 [ 620.974213][T18796] do_recvmmsg+0xdc1/0x22d0 [ 620.978714][T18796] __sys_recvmmsg+0x519/0x6f0 [ 620.983552][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 620.989612][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 620.995760][T18796] __do_fast_syscall_32+0x127/0x180 [ 621.000971][T18796] do_fast_syscall_32+0x77/0xd0 [ 621.005822][T18796] do_SYSENTER_32+0x73/0x90 [ 621.010348][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.016865][T18796] [ 621.019207][T18796] Uninit was stored to memory at: [ 621.024210][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 621.029912][T18796] __msan_chain_origin+0x54/0xa0 [ 621.034829][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 621.039925][T18796] get_compat_msghdr+0x108/0x2b0 [ 621.044846][T18796] do_recvmmsg+0xdc1/0x22d0 [ 621.049331][T18796] __sys_recvmmsg+0x519/0x6f0 [ 621.053997][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.060153][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.066286][T18796] __do_fast_syscall_32+0x127/0x180 [ 621.071467][T18796] do_fast_syscall_32+0x77/0xd0 [ 621.076302][T18796] do_SYSENTER_32+0x73/0x90 [ 621.080787][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.087101][T18796] [ 621.089420][T18796] Uninit was stored to memory at: [ 621.094414][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 621.100117][T18796] __msan_chain_origin+0x54/0xa0 [ 621.105037][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 621.110147][T18796] get_compat_msghdr+0x108/0x2b0 [ 621.115064][T18796] do_recvmmsg+0xdc1/0x22d0 [ 621.119545][T18796] __sys_recvmmsg+0x519/0x6f0 [ 621.124202][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.130249][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.136421][T18796] __do_fast_syscall_32+0x127/0x180 [ 621.141615][T18796] do_fast_syscall_32+0x77/0xd0 [ 621.146464][T18796] do_SYSENTER_32+0x73/0x90 [ 621.150949][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.157259][T18796] [ 621.159558][T18796] Uninit was stored to memory at: [ 621.164551][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 621.170247][T18796] __msan_chain_origin+0x54/0xa0 [ 621.175161][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 621.180252][T18796] get_compat_msghdr+0x108/0x2b0 [ 621.185168][T18796] do_recvmmsg+0xdc1/0x22d0 [ 621.189653][T18796] __sys_recvmmsg+0x519/0x6f0 [ 621.194308][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.200367][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.206549][T18796] __do_fast_syscall_32+0x127/0x180 [ 621.211746][T18796] do_fast_syscall_32+0x77/0xd0 [ 621.216578][T18796] do_SYSENTER_32+0x73/0x90 [ 621.221067][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.227379][T18796] [ 621.229685][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 621.236329][T18796] do_recvmmsg+0xbf/0x22d0 [ 621.240747][T18796] do_recvmmsg+0xbf/0x22d0 [ 621.430147][T18796] not chained 460000 origins [ 621.434779][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 621.443530][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 621.453572][T18796] Call Trace: [ 621.456846][T18796] dump_stack+0x24c/0x2e0 [ 621.461159][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 621.469814][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 621.475185][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 621.480714][T18796] ? kmsan_get_metadata+0x116/0x180 [ 621.485894][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 621.491532][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 621.497599][T18796] ? kmsan_get_metadata+0x116/0x180 [ 621.502777][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 621.508570][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 621.514617][T18796] ? kmsan_get_metadata+0x116/0x180 [ 621.519789][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 621.525399][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 621.531445][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 621.536723][T18796] ? _copy_from_user+0x1fd/0x300 [ 621.541644][T18796] __msan_chain_origin+0x54/0xa0 [ 621.546565][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 621.551658][T18796] get_compat_msghdr+0x108/0x2b0 [ 621.556587][T18796] do_recvmmsg+0xdc1/0x22d0 [ 621.561093][T18796] ? kmsan_get_metadata+0x116/0x180 [ 621.566272][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 621.571885][T18796] ? __msan_poison_alloca+0xec/0x110 [ 621.577150][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 621.581909][T18796] __sys_recvmmsg+0x519/0x6f0 [ 621.586569][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.592629][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.598782][T18796] __do_fast_syscall_32+0x127/0x180 [ 621.604000][T18796] do_fast_syscall_32+0x77/0xd0 [ 621.608840][T18796] do_SYSENTER_32+0x73/0x90 [ 621.613346][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.619664][T18796] RIP: 0023:0xf7fe5549 [ 621.623707][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 621.643292][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 621.651701][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 621.659653][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 621.667615][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 621.675579][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 621.683527][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 621.691480][T18796] Uninit was stored to memory at: [ 621.696473][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 621.702171][T18796] __msan_chain_origin+0x54/0xa0 [ 621.707089][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 621.712191][T18796] get_compat_msghdr+0x108/0x2b0 [ 621.717161][T18796] do_recvmmsg+0xdc1/0x22d0 [ 621.721668][T18796] __sys_recvmmsg+0x519/0x6f0 [ 621.726444][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.732533][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.738695][T18796] __do_fast_syscall_32+0x127/0x180 [ 621.743891][T18796] do_fast_syscall_32+0x77/0xd0 [ 621.748724][T18796] do_SYSENTER_32+0x73/0x90 [ 621.753206][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.759518][T18796] [ 621.761819][T18796] Uninit was stored to memory at: [ 621.766833][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 621.772532][T18796] __msan_chain_origin+0x54/0xa0 [ 621.777451][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 621.782545][T18796] get_compat_msghdr+0x108/0x2b0 [ 621.787467][T18796] do_recvmmsg+0xdc1/0x22d0 [ 621.791967][T18796] __sys_recvmmsg+0x519/0x6f0 [ 621.796633][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.802679][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.808813][T18796] __do_fast_syscall_32+0x127/0x180 [ 621.813996][T18796] do_fast_syscall_32+0x77/0xd0 [ 621.818854][T18796] do_SYSENTER_32+0x73/0x90 [ 621.823340][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.829752][T18796] [ 621.832055][T18796] Uninit was stored to memory at: [ 621.837049][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 621.842750][T18796] __msan_chain_origin+0x54/0xa0 [ 621.847666][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 621.852756][T18796] get_compat_msghdr+0x108/0x2b0 [ 621.857673][T18796] do_recvmmsg+0xdc1/0x22d0 [ 621.862159][T18796] __sys_recvmmsg+0x519/0x6f0 [ 621.866817][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.872863][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.879009][T18796] __do_fast_syscall_32+0x127/0x180 [ 621.884185][T18796] do_fast_syscall_32+0x77/0xd0 [ 621.889015][T18796] do_SYSENTER_32+0x73/0x90 [ 621.893512][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.899859][T18796] [ 621.902163][T18796] Uninit was stored to memory at: [ 621.907159][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 621.912859][T18796] __msan_chain_origin+0x54/0xa0 [ 621.917778][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 621.922874][T18796] get_compat_msghdr+0x108/0x2b0 [ 621.927791][T18796] do_recvmmsg+0xdc1/0x22d0 [ 621.932277][T18796] __sys_recvmmsg+0x519/0x6f0 [ 621.936935][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 621.942984][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 621.949115][T18796] __do_fast_syscall_32+0x127/0x180 [ 621.954294][T18796] do_fast_syscall_32+0x77/0xd0 [ 621.959126][T18796] do_SYSENTER_32+0x73/0x90 [ 621.963627][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 621.970044][T18796] [ 621.972388][T18796] Uninit was stored to memory at: [ 621.977387][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 621.983151][T18796] __msan_chain_origin+0x54/0xa0 [ 621.988069][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 621.993193][T18796] get_compat_msghdr+0x108/0x2b0 [ 621.998121][T18796] do_recvmmsg+0xdc1/0x22d0 [ 622.002615][T18796] __sys_recvmmsg+0x519/0x6f0 [ 622.007314][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.013372][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.019514][T18796] __do_fast_syscall_32+0x127/0x180 [ 622.024754][T18796] do_fast_syscall_32+0x77/0xd0 [ 622.029605][T18796] do_SYSENTER_32+0x73/0x90 [ 622.034089][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.040571][T18796] [ 622.042875][T18796] Uninit was stored to memory at: [ 622.047869][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 622.053573][T18796] __msan_chain_origin+0x54/0xa0 [ 622.058494][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 622.063600][T18796] get_compat_msghdr+0x108/0x2b0 [ 622.068520][T18796] do_recvmmsg+0xdc1/0x22d0 [ 622.073019][T18796] __sys_recvmmsg+0x519/0x6f0 [ 622.077675][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.083727][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.089861][T18796] __do_fast_syscall_32+0x127/0x180 [ 622.095041][T18796] do_fast_syscall_32+0x77/0xd0 [ 622.099879][T18796] do_SYSENTER_32+0x73/0x90 [ 622.104380][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.110708][T18796] [ 622.113009][T18796] Uninit was stored to memory at: [ 622.118000][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 622.123729][T18796] __msan_chain_origin+0x54/0xa0 [ 622.128650][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 622.133741][T18796] get_compat_msghdr+0x108/0x2b0 [ 622.138679][T18796] do_recvmmsg+0xdc1/0x22d0 [ 622.143178][T18796] __sys_recvmmsg+0x519/0x6f0 [ 622.147833][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.153881][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.160013][T18796] __do_fast_syscall_32+0x127/0x180 [ 622.165191][T18796] do_fast_syscall_32+0x77/0xd0 [ 622.170022][T18796] do_SYSENTER_32+0x73/0x90 [ 622.174504][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.180810][T18796] [ 622.183119][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 622.189761][T18796] do_recvmmsg+0xbf/0x22d0 [ 622.194155][T18796] do_recvmmsg+0xbf/0x22d0 [ 622.369686][T18796] not chained 470000 origins [ 622.374430][T18796] CPU: 0 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 622.383220][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 622.393274][T18796] Call Trace: [ 622.396532][T18796] dump_stack+0x24c/0x2e0 [ 622.400915][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 622.406620][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 622.411975][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 622.417658][T18796] ? kmsan_get_metadata+0x116/0x180 [ 622.422849][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 622.428491][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 622.434565][T18796] ? kmsan_get_metadata+0x116/0x180 [ 622.439812][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 622.445604][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 622.451655][T18796] ? kmsan_get_metadata+0x116/0x180 [ 622.456840][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 622.462454][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 622.468499][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 622.473826][T18796] ? _copy_from_user+0x1fd/0x300 [ 622.478745][T18796] __msan_chain_origin+0x54/0xa0 [ 622.483664][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 622.488787][T18796] get_compat_msghdr+0x108/0x2b0 [ 622.493776][T18796] do_recvmmsg+0xdc1/0x22d0 [ 622.498306][T18796] ? kmsan_get_metadata+0x116/0x180 [ 622.503486][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 622.509100][T18796] ? __msan_poison_alloca+0xec/0x110 [ 622.514371][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 622.519122][T18796] __sys_recvmmsg+0x519/0x6f0 [ 622.523784][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.529965][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.536113][T18796] __do_fast_syscall_32+0x127/0x180 [ 622.541308][T18796] do_fast_syscall_32+0x77/0xd0 [ 622.546187][T18796] do_SYSENTER_32+0x73/0x90 [ 622.550690][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.557002][T18796] RIP: 0023:0xf7fe5549 [ 622.561051][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 622.580643][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 622.589043][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 622.596995][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 622.604950][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 622.612899][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 622.620866][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 622.628846][T18796] Uninit was stored to memory at: [ 622.633843][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 622.639568][T18796] __msan_chain_origin+0x54/0xa0 [ 622.644485][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 622.649578][T18796] get_compat_msghdr+0x108/0x2b0 [ 622.654501][T18796] do_recvmmsg+0xdc1/0x22d0 [ 622.658986][T18796] __sys_recvmmsg+0x519/0x6f0 [ 622.663643][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.669844][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.676422][T18796] __do_fast_syscall_32+0x127/0x180 [ 622.681609][T18796] do_fast_syscall_32+0x77/0xd0 [ 622.686449][T18796] do_SYSENTER_32+0x73/0x90 [ 622.690938][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.697271][T18796] [ 622.699574][T18796] Uninit was stored to memory at: [ 622.704568][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 622.710275][T18796] __msan_chain_origin+0x54/0xa0 [ 622.715209][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 622.720359][T18796] get_compat_msghdr+0x108/0x2b0 [ 622.725329][T18796] do_recvmmsg+0xdc1/0x22d0 [ 622.729837][T18796] __sys_recvmmsg+0x519/0x6f0 [ 622.734496][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.740549][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.746691][T18796] __do_fast_syscall_32+0x127/0x180 [ 622.751885][T18796] do_fast_syscall_32+0x77/0xd0 [ 622.756739][T18796] do_SYSENTER_32+0x73/0x90 [ 622.761231][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.767587][T18796] [ 622.769890][T18796] Uninit was stored to memory at: [ 622.774884][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 622.780588][T18796] __msan_chain_origin+0x54/0xa0 [ 622.785510][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 622.790605][T18796] get_compat_msghdr+0x108/0x2b0 [ 622.795527][T18796] do_recvmmsg+0xdc1/0x22d0 [ 622.800016][T18796] __sys_recvmmsg+0x519/0x6f0 [ 622.804729][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.810800][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.816939][T18796] __do_fast_syscall_32+0x127/0x180 [ 622.822127][T18796] do_fast_syscall_32+0x77/0xd0 [ 622.826963][T18796] do_SYSENTER_32+0x73/0x90 [ 622.831472][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.837786][T18796] [ 622.840110][T18796] Uninit was stored to memory at: [ 622.845110][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 622.850814][T18796] __msan_chain_origin+0x54/0xa0 [ 622.855811][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 622.860913][T18796] get_compat_msghdr+0x108/0x2b0 [ 622.865884][T18796] do_recvmmsg+0xdc1/0x22d0 [ 622.870373][T18796] __sys_recvmmsg+0x519/0x6f0 [ 622.875034][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.881085][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.887223][T18796] __do_fast_syscall_32+0x127/0x180 [ 622.892411][T18796] do_fast_syscall_32+0x77/0xd0 [ 622.897244][T18796] do_SYSENTER_32+0x73/0x90 [ 622.901729][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.908041][T18796] [ 622.910382][T18796] Uninit was stored to memory at: [ 622.915377][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 622.921079][T18796] __msan_chain_origin+0x54/0xa0 [ 622.926000][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 622.931092][T18796] get_compat_msghdr+0x108/0x2b0 [ 622.936022][T18796] do_recvmmsg+0xdc1/0x22d0 [ 622.940508][T18796] __sys_recvmmsg+0x519/0x6f0 [ 622.945220][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 622.951283][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 622.957445][T18796] __do_fast_syscall_32+0x127/0x180 [ 622.962630][T18796] do_fast_syscall_32+0x77/0xd0 [ 622.967500][T18796] do_SYSENTER_32+0x73/0x90 [ 622.971986][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 622.978296][T18796] [ 622.980598][T18796] Uninit was stored to memory at: [ 622.985602][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 622.991306][T18796] __msan_chain_origin+0x54/0xa0 [ 622.996227][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 623.001329][T18796] get_compat_msghdr+0x108/0x2b0 [ 623.006251][T18796] do_recvmmsg+0xdc1/0x22d0 [ 623.010734][T18796] __sys_recvmmsg+0x519/0x6f0 [ 623.015402][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.021533][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.027733][T18796] __do_fast_syscall_32+0x127/0x180 [ 623.032943][T18796] do_fast_syscall_32+0x77/0xd0 [ 623.037783][T18796] do_SYSENTER_32+0x73/0x90 [ 623.042380][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.048716][T18796] [ 623.051024][T18796] Uninit was stored to memory at: [ 623.056020][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 623.061721][T18796] __msan_chain_origin+0x54/0xa0 [ 623.066640][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 623.071862][T18796] get_compat_msghdr+0x108/0x2b0 [ 623.076786][T18796] do_recvmmsg+0xdc1/0x22d0 [ 623.081272][T18796] __sys_recvmmsg+0x519/0x6f0 [ 623.085930][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.091983][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.098142][T18796] __do_fast_syscall_32+0x127/0x180 [ 623.103342][T18796] do_fast_syscall_32+0x77/0xd0 [ 623.108191][T18796] do_SYSENTER_32+0x73/0x90 [ 623.112793][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.119121][T18796] [ 623.121435][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 623.128084][T18796] do_recvmmsg+0xbf/0x22d0 [ 623.132500][T18796] do_recvmmsg+0xbf/0x22d0 [ 623.336292][T18796] not chained 480000 origins [ 623.340913][T18796] CPU: 1 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 623.349682][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 623.359740][T18796] Call Trace: [ 623.363022][T18796] dump_stack+0x24c/0x2e0 [ 623.367372][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 623.373135][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 623.378546][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 623.384100][T18796] ? kmsan_get_metadata+0x116/0x180 [ 623.389312][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 623.394948][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 623.401004][T18796] ? kmsan_get_metadata+0x116/0x180 [ 623.406505][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 623.412296][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 623.418348][T18796] ? kmsan_get_metadata+0x116/0x180 [ 623.423528][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 623.429142][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 623.435192][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 623.440466][T18796] ? _copy_from_user+0x1fd/0x300 [ 623.445847][T18796] __msan_chain_origin+0x54/0xa0 [ 623.450771][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 623.455874][T18796] get_compat_msghdr+0x108/0x2b0 [ 623.460807][T18796] do_recvmmsg+0xdc1/0x22d0 [ 623.465329][T18796] ? kmsan_get_metadata+0x116/0x180 [ 623.470510][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 623.476123][T18796] ? __msan_poison_alloca+0xec/0x110 [ 623.481394][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 623.486168][T18796] __sys_recvmmsg+0x519/0x6f0 [ 623.490836][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.496916][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.503056][T18796] __do_fast_syscall_32+0x127/0x180 [ 623.508294][T18796] do_fast_syscall_32+0x77/0xd0 [ 623.513154][T18796] do_SYSENTER_32+0x73/0x90 [ 623.517642][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.523955][T18796] RIP: 0023:0xf7fe5549 [ 623.528003][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 623.547853][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 623.556259][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 623.564286][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 623.572241][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 623.580196][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 623.588165][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 623.596257][T18796] Uninit was stored to memory at: [ 623.601259][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 623.606989][T18796] __msan_chain_origin+0x54/0xa0 [ 623.611912][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 623.617019][T18796] get_compat_msghdr+0x108/0x2b0 [ 623.621956][T18796] do_recvmmsg+0xdc1/0x22d0 [ 623.626465][T18796] __sys_recvmmsg+0x519/0x6f0 [ 623.631156][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.637641][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.643795][T18796] __do_fast_syscall_32+0x127/0x180 [ 623.648977][T18796] do_fast_syscall_32+0x77/0xd0 [ 623.653807][T18796] do_SYSENTER_32+0x73/0x90 [ 623.658307][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.664655][T18796] [ 623.666958][T18796] Uninit was stored to memory at: [ 623.671951][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 623.677652][T18796] __msan_chain_origin+0x54/0xa0 [ 623.682570][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 623.687665][T18796] get_compat_msghdr+0x108/0x2b0 [ 623.692585][T18796] do_recvmmsg+0xdc1/0x22d0 [ 623.697093][T18796] __sys_recvmmsg+0x519/0x6f0 [ 623.701775][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.707855][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.714025][T18796] __do_fast_syscall_32+0x127/0x180 [ 623.719212][T18796] do_fast_syscall_32+0x77/0xd0 [ 623.724088][T18796] do_SYSENTER_32+0x73/0x90 [ 623.728577][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.734888][T18796] [ 623.737207][T18796] Uninit was stored to memory at: [ 623.742203][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 623.747922][T18796] __msan_chain_origin+0x54/0xa0 [ 623.752839][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 623.757934][T18796] get_compat_msghdr+0x108/0x2b0 [ 623.762857][T18796] do_recvmmsg+0xdc1/0x22d0 [ 623.767374][T18796] __sys_recvmmsg+0x519/0x6f0 [ 623.772037][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.778093][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.784230][T18796] __do_fast_syscall_32+0x127/0x180 [ 623.789415][T18796] do_fast_syscall_32+0x77/0xd0 [ 623.794290][T18796] do_SYSENTER_32+0x73/0x90 [ 623.798774][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.805103][T18796] [ 623.807405][T18796] Uninit was stored to memory at: [ 623.812402][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 623.818126][T18796] __msan_chain_origin+0x54/0xa0 [ 623.823046][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 623.828250][T18796] get_compat_msghdr+0x108/0x2b0 [ 623.833185][T18796] do_recvmmsg+0xdc1/0x22d0 [ 623.837674][T18796] __sys_recvmmsg+0x519/0x6f0 [ 623.842334][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.848389][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.854536][T18796] __do_fast_syscall_32+0x127/0x180 [ 623.859721][T18796] do_fast_syscall_32+0x77/0xd0 [ 623.864712][T18796] do_SYSENTER_32+0x73/0x90 [ 623.869199][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.875525][T18796] [ 623.877864][T18796] Uninit was stored to memory at: [ 623.882860][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 623.888563][T18796] __msan_chain_origin+0x54/0xa0 [ 623.893481][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 623.898624][T18796] get_compat_msghdr+0x108/0x2b0 [ 623.903542][T18796] do_recvmmsg+0xdc1/0x22d0 [ 623.908029][T18796] __sys_recvmmsg+0x519/0x6f0 [ 623.912692][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.918793][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.924933][T18796] __do_fast_syscall_32+0x127/0x180 [ 623.930146][T18796] do_fast_syscall_32+0x77/0xd0 [ 623.935007][T18796] do_SYSENTER_32+0x73/0x90 [ 623.939498][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 623.945837][T18796] [ 623.948140][T18796] Uninit was stored to memory at: [ 623.953248][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 623.958964][T18796] __msan_chain_origin+0x54/0xa0 [ 623.963896][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 623.968996][T18796] get_compat_msghdr+0x108/0x2b0 [ 623.973928][T18796] do_recvmmsg+0xdc1/0x22d0 [ 623.978419][T18796] __sys_recvmmsg+0x519/0x6f0 [ 623.983098][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 623.989150][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 623.995288][T18796] __do_fast_syscall_32+0x127/0x180 [ 624.000478][T18796] do_fast_syscall_32+0x77/0xd0 [ 624.005356][T18796] do_SYSENTER_32+0x73/0x90 [ 624.009845][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.016154][T18796] [ 624.018455][T18796] Uninit was stored to memory at: [ 624.023467][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 624.029167][T18796] __msan_chain_origin+0x54/0xa0 [ 624.034085][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 624.039179][T18796] get_compat_msghdr+0x108/0x2b0 [ 624.044103][T18796] do_recvmmsg+0xdc1/0x22d0 [ 624.048618][T18796] __sys_recvmmsg+0x519/0x6f0 [ 624.053280][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.059336][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.065503][T18796] __do_fast_syscall_32+0x127/0x180 [ 624.070696][T18796] do_fast_syscall_32+0x77/0xd0 [ 624.075550][T18796] do_SYSENTER_32+0x73/0x90 [ 624.080040][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.086387][T18796] [ 624.088691][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 624.095335][T18796] do_recvmmsg+0xbf/0x22d0 [ 624.099743][T18796] do_recvmmsg+0xbf/0x22d0 [ 624.291798][T18796] not chained 490000 origins [ 624.296443][T18796] CPU: 1 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 624.305213][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 624.315270][T18796] Call Trace: [ 624.318591][T18796] dump_stack+0x24c/0x2e0 [ 624.322941][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 624.328702][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 624.334067][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 624.339607][T18796] ? kmsan_get_metadata+0x116/0x180 [ 624.344817][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 624.350435][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 624.356504][T18796] ? kmsan_get_metadata+0x116/0x180 [ 624.361689][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 624.367511][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 624.373585][T18796] ? kmsan_get_metadata+0x116/0x180 [ 624.378768][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 624.384393][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 624.390442][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 624.395705][T18796] ? _copy_from_user+0x1fd/0x300 [ 624.400630][T18796] __msan_chain_origin+0x54/0xa0 [ 624.405592][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 624.410693][T18796] get_compat_msghdr+0x108/0x2b0 [ 624.415739][T18796] do_recvmmsg+0xdc1/0x22d0 [ 624.420241][T18796] ? kmsan_get_metadata+0x116/0x180 [ 624.425467][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 624.431098][T18796] ? __msan_poison_alloca+0xec/0x110 [ 624.436452][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 624.441218][T18796] __sys_recvmmsg+0x519/0x6f0 [ 624.445908][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.451981][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.458119][T18796] __do_fast_syscall_32+0x127/0x180 [ 624.463304][T18796] do_fast_syscall_32+0x77/0xd0 [ 624.468138][T18796] do_SYSENTER_32+0x73/0x90 [ 624.472635][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.478988][T18796] RIP: 0023:0xf7fe5549 [ 624.483044][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 624.502675][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 624.511074][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 624.519029][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 624.527071][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 624.535027][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 624.542998][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 624.550956][T18796] Uninit was stored to memory at: [ 624.555952][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 624.561664][T18796] __msan_chain_origin+0x54/0xa0 [ 624.566601][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 624.571694][T18796] get_compat_msghdr+0x108/0x2b0 [ 624.576615][T18796] do_recvmmsg+0xdc1/0x22d0 [ 624.581104][T18796] __sys_recvmmsg+0x519/0x6f0 [ 624.585799][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.591892][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.598056][T18796] __do_fast_syscall_32+0x127/0x180 [ 624.603263][T18796] do_fast_syscall_32+0x77/0xd0 [ 624.608115][T18796] do_SYSENTER_32+0x73/0x90 [ 624.612602][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.618923][T18796] [ 624.621259][T18796] Uninit was stored to memory at: [ 624.626275][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 624.631977][T18796] __msan_chain_origin+0x54/0xa0 [ 624.636894][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 624.641991][T18796] get_compat_msghdr+0x108/0x2b0 [ 624.646936][T18796] do_recvmmsg+0xdc1/0x22d0 [ 624.651424][T18796] __sys_recvmmsg+0x519/0x6f0 [ 624.656082][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.662135][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.668277][T18796] __do_fast_syscall_32+0x127/0x180 [ 624.673489][T18796] do_fast_syscall_32+0x77/0xd0 [ 624.678324][T18796] do_SYSENTER_32+0x73/0x90 [ 624.682827][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.689164][T18796] [ 624.691470][T18796] Uninit was stored to memory at: [ 624.696480][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 624.702188][T18796] __msan_chain_origin+0x54/0xa0 [ 624.707134][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 624.712246][T18796] get_compat_msghdr+0x108/0x2b0 [ 624.717165][T18796] do_recvmmsg+0xdc1/0x22d0 [ 624.721663][T18796] __sys_recvmmsg+0x519/0x6f0 [ 624.726344][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.732414][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.738552][T18796] __do_fast_syscall_32+0x127/0x180 [ 624.743734][T18796] do_fast_syscall_32+0x77/0xd0 [ 624.748598][T18796] do_SYSENTER_32+0x73/0x90 [ 624.753083][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.759400][T18796] [ 624.761716][T18796] Uninit was stored to memory at: [ 624.766724][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 624.772429][T18796] __msan_chain_origin+0x54/0xa0 [ 624.777348][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 624.782448][T18796] get_compat_msghdr+0x108/0x2b0 [ 624.787441][T18796] do_recvmmsg+0xdc1/0x22d0 [ 624.791987][T18796] __sys_recvmmsg+0x519/0x6f0 [ 624.796664][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.802720][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.809007][T18796] __do_fast_syscall_32+0x127/0x180 [ 624.814193][T18796] do_fast_syscall_32+0x77/0xd0 [ 624.819038][T18796] do_SYSENTER_32+0x73/0x90 [ 624.823527][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.829844][T18796] [ 624.832235][T18796] Uninit was stored to memory at: [ 624.837232][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 624.843027][T18796] __msan_chain_origin+0x54/0xa0 [ 624.847953][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 624.853052][T18796] get_compat_msghdr+0x108/0x2b0 [ 624.857974][T18796] do_recvmmsg+0xdc1/0x22d0 [ 624.862463][T18796] __sys_recvmmsg+0x519/0x6f0 [ 624.867563][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.873635][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.879777][T18796] __do_fast_syscall_32+0x127/0x180 [ 624.884986][T18796] do_fast_syscall_32+0x77/0xd0 [ 624.889824][T18796] do_SYSENTER_32+0x73/0x90 [ 624.894337][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.900652][T18796] [ 624.902969][T18796] Uninit was stored to memory at: [ 624.907963][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 624.913669][T18796] __msan_chain_origin+0x54/0xa0 [ 624.918596][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 624.923712][T18796] get_compat_msghdr+0x108/0x2b0 [ 624.928659][T18796] do_recvmmsg+0xdc1/0x22d0 [ 624.933161][T18796] __sys_recvmmsg+0x519/0x6f0 [ 624.937822][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 624.943880][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 624.950023][T18796] __do_fast_syscall_32+0x127/0x180 [ 624.955204][T18796] do_fast_syscall_32+0x77/0xd0 [ 624.960038][T18796] do_SYSENTER_32+0x73/0x90 [ 624.964549][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 624.970860][T18796] [ 624.973185][T18796] Uninit was stored to memory at: [ 624.978189][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 624.983961][T18796] __msan_chain_origin+0x54/0xa0 [ 624.988887][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 624.994023][T18796] get_compat_msghdr+0x108/0x2b0 [ 624.998945][T18796] do_recvmmsg+0xdc1/0x22d0 [ 625.003432][T18796] __sys_recvmmsg+0x519/0x6f0 [ 625.008128][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.014197][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.020342][T18796] __do_fast_syscall_32+0x127/0x180 [ 625.025566][T18796] do_fast_syscall_32+0x77/0xd0 [ 625.030402][T18796] do_SYSENTER_32+0x73/0x90 [ 625.034927][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.041264][T18796] [ 625.043594][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 625.050259][T18796] do_recvmmsg+0xbf/0x22d0 [ 625.055009][T18796] do_recvmmsg+0xbf/0x22d0 [ 625.234846][T18796] not chained 500000 origins [ 625.239453][T18796] CPU: 1 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 625.248214][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 625.258254][T18796] Call Trace: [ 625.261524][T18796] dump_stack+0x24c/0x2e0 [ 625.265843][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 625.271548][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 625.276946][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 625.282481][T18796] ? kmsan_get_metadata+0x116/0x180 [ 625.287717][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 625.293366][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 625.299546][T18796] ? kmsan_get_metadata+0x116/0x180 [ 625.304755][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 625.310567][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 625.316636][T18796] ? kmsan_get_metadata+0x116/0x180 [ 625.321813][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 625.327425][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 625.333490][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 625.338755][T18796] ? _copy_from_user+0x1fd/0x300 [ 625.343669][T18796] __msan_chain_origin+0x54/0xa0 [ 625.348584][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 625.353700][T18796] get_compat_msghdr+0x108/0x2b0 [ 625.358650][T18796] do_recvmmsg+0xdc1/0x22d0 [ 625.363150][T18796] ? kmsan_get_metadata+0x116/0x180 [ 625.368379][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 625.374005][T18796] ? __msan_poison_alloca+0xec/0x110 [ 625.379280][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 625.384049][T18796] __sys_recvmmsg+0x519/0x6f0 [ 625.388739][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.394795][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.400938][T18796] __do_fast_syscall_32+0x127/0x180 [ 625.406136][T18796] do_fast_syscall_32+0x77/0xd0 [ 625.410973][T18796] do_SYSENTER_32+0x73/0x90 [ 625.415488][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.421801][T18796] RIP: 0023:0xf7fe5549 [ 625.425847][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 625.445434][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 625.453826][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 625.461779][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 625.469751][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 625.477746][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 625.485699][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 625.493665][T18796] Uninit was stored to memory at: [ 625.498658][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 625.504361][T18796] __msan_chain_origin+0x54/0xa0 [ 625.509288][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 625.514412][T18796] get_compat_msghdr+0x108/0x2b0 [ 625.519335][T18796] do_recvmmsg+0xdc1/0x22d0 [ 625.523844][T18796] __sys_recvmmsg+0x519/0x6f0 [ 625.528500][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.534547][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.540776][T18796] __do_fast_syscall_32+0x127/0x180 [ 625.545967][T18796] do_fast_syscall_32+0x77/0xd0 [ 625.550805][T18796] do_SYSENTER_32+0x73/0x90 [ 625.555337][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.561676][T18796] [ 625.563981][T18796] Uninit was stored to memory at: [ 625.568975][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 625.574683][T18796] __msan_chain_origin+0x54/0xa0 [ 625.579628][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 625.584795][T18796] get_compat_msghdr+0x108/0x2b0 [ 625.589719][T18796] do_recvmmsg+0xdc1/0x22d0 [ 625.594221][T18796] __sys_recvmmsg+0x519/0x6f0 [ 625.598879][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.604932][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.611098][T18796] __do_fast_syscall_32+0x127/0x180 [ 625.616303][T18796] do_fast_syscall_32+0x77/0xd0 [ 625.621159][T18796] do_SYSENTER_32+0x73/0x90 [ 625.625679][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.632040][T18796] [ 625.634371][T18796] Uninit was stored to memory at: [ 625.639366][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 625.645089][T18796] __msan_chain_origin+0x54/0xa0 [ 625.650012][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 625.655130][T18796] get_compat_msghdr+0x108/0x2b0 [ 625.660051][T18796] do_recvmmsg+0xdc1/0x22d0 [ 625.664542][T18796] __sys_recvmmsg+0x519/0x6f0 [ 625.669199][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.675254][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.681397][T18796] __do_fast_syscall_32+0x127/0x180 [ 625.686637][T18796] do_fast_syscall_32+0x77/0xd0 [ 625.691476][T18796] do_SYSENTER_32+0x73/0x90 [ 625.695986][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.702298][T18796] [ 625.704616][T18796] Uninit was stored to memory at: [ 625.709615][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 625.715343][T18796] __msan_chain_origin+0x54/0xa0 [ 625.720263][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 625.725359][T18796] get_compat_msghdr+0x108/0x2b0 [ 625.730278][T18796] do_recvmmsg+0xdc1/0x22d0 [ 625.734785][T18796] __sys_recvmmsg+0x519/0x6f0 [ 625.739444][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.745517][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.751659][T18796] __do_fast_syscall_32+0x127/0x180 [ 625.756876][T18796] do_fast_syscall_32+0x77/0xd0 [ 625.761724][T18796] do_SYSENTER_32+0x73/0x90 [ 625.766217][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.772524][T18796] [ 625.774822][T18796] Uninit was stored to memory at: [ 625.779816][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 625.785538][T18796] __msan_chain_origin+0x54/0xa0 [ 625.790458][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 625.795572][T18796] get_compat_msghdr+0x108/0x2b0 [ 625.800495][T18796] do_recvmmsg+0xdc1/0x22d0 [ 625.805013][T18796] __sys_recvmmsg+0x519/0x6f0 [ 625.809807][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.815939][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.822212][T18796] __do_fast_syscall_32+0x127/0x180 [ 625.830105][T18796] do_fast_syscall_32+0x77/0xd0 [ 625.835007][T18796] do_SYSENTER_32+0x73/0x90 [ 625.839501][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.845885][T18796] [ 625.848208][T18796] Uninit was stored to memory at: [ 625.853201][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 625.858908][T18796] __msan_chain_origin+0x54/0xa0 [ 625.863823][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 625.868916][T18796] get_compat_msghdr+0x108/0x2b0 [ 625.873838][T18796] do_recvmmsg+0xdc1/0x22d0 [ 625.878333][T18796] __sys_recvmmsg+0x519/0x6f0 [ 625.882995][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.889044][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.895175][T18796] __do_fast_syscall_32+0x127/0x180 [ 625.900374][T18796] do_fast_syscall_32+0x77/0xd0 [ 625.905267][T18796] do_SYSENTER_32+0x73/0x90 [ 625.909780][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.916119][T18796] [ 625.918433][T18796] Uninit was stored to memory at: [ 625.923445][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 625.929168][T18796] __msan_chain_origin+0x54/0xa0 [ 625.934086][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 625.939182][T18796] get_compat_msghdr+0x108/0x2b0 [ 625.944461][T18796] do_recvmmsg+0xdc1/0x22d0 [ 625.948951][T18796] __sys_recvmmsg+0x519/0x6f0 [ 625.953613][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 625.959680][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 625.965835][T18796] __do_fast_syscall_32+0x127/0x180 [ 625.971023][T18796] do_fast_syscall_32+0x77/0xd0 [ 625.975877][T18796] do_SYSENTER_32+0x73/0x90 [ 625.980365][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 625.986721][T18796] [ 625.989020][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 625.995661][T18796] do_recvmmsg+0xbf/0x22d0 [ 626.000080][T18796] do_recvmmsg+0xbf/0x22d0 [ 626.277262][T18796] not chained 510000 origins [ 626.281876][T18796] CPU: 1 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 626.290644][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 626.300892][T18796] Call Trace: [ 626.304156][T18796] dump_stack+0x24c/0x2e0 [ 626.308510][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 626.314207][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 626.319568][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 626.325127][T18796] ? kmsan_get_metadata+0x116/0x180 [ 626.330335][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 626.335978][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 626.342026][T18796] ? kmsan_get_metadata+0x116/0x180 [ 626.347204][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 626.353076][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 626.359144][T18796] ? kmsan_get_metadata+0x116/0x180 [ 626.364322][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 626.369935][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 626.376004][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 626.381267][T18796] ? _copy_from_user+0x1fd/0x300 [ 626.386188][T18796] __msan_chain_origin+0x54/0xa0 [ 626.391128][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 626.396249][T18796] get_compat_msghdr+0x108/0x2b0 [ 626.401181][T18796] do_recvmmsg+0xdc1/0x22d0 [ 626.405719][T18796] ? kmsan_get_metadata+0x116/0x180 [ 626.410909][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 626.416550][T18796] ? __msan_poison_alloca+0xec/0x110 [ 626.421821][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 626.426597][T18796] __sys_recvmmsg+0x519/0x6f0 [ 626.431273][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.437358][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.443525][T18796] __do_fast_syscall_32+0x127/0x180 [ 626.448706][T18796] do_fast_syscall_32+0x77/0xd0 [ 626.453559][T18796] do_SYSENTER_32+0x73/0x90 [ 626.458049][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.464363][T18796] RIP: 0023:0xf7fe5549 [ 626.468475][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 626.488067][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 626.496466][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 626.504419][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 626.512376][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 626.520326][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 626.528287][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 626.536245][T18796] Uninit was stored to memory at: [ 626.541253][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 626.546959][T18796] __msan_chain_origin+0x54/0xa0 [ 626.551874][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 626.556985][T18796] get_compat_msghdr+0x108/0x2b0 [ 626.561902][T18796] do_recvmmsg+0xdc1/0x22d0 [ 626.566384][T18796] __sys_recvmmsg+0x519/0x6f0 [ 626.571040][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.577113][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.583277][T18796] __do_fast_syscall_32+0x127/0x180 [ 626.588461][T18796] do_fast_syscall_32+0x77/0xd0 [ 626.593316][T18796] do_SYSENTER_32+0x73/0x90 [ 626.597798][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.604122][T18796] [ 626.606418][T18796] Uninit was stored to memory at: [ 626.611408][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 626.617144][T18796] __msan_chain_origin+0x54/0xa0 [ 626.622060][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 626.627155][T18796] get_compat_msghdr+0x108/0x2b0 [ 626.632095][T18796] do_recvmmsg+0xdc1/0x22d0 [ 626.636581][T18796] __sys_recvmmsg+0x519/0x6f0 [ 626.641235][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.647301][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.653443][T18796] __do_fast_syscall_32+0x127/0x180 [ 626.658620][T18796] do_fast_syscall_32+0x77/0xd0 [ 626.663453][T18796] do_SYSENTER_32+0x73/0x90 [ 626.667935][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.674244][T18796] [ 626.676544][T18796] Uninit was stored to memory at: [ 626.681536][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 626.687256][T18796] __msan_chain_origin+0x54/0xa0 [ 626.692175][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 626.697287][T18796] get_compat_msghdr+0x108/0x2b0 [ 626.702207][T18796] do_recvmmsg+0xdc1/0x22d0 [ 626.706708][T18796] __sys_recvmmsg+0x519/0x6f0 [ 626.711368][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.717469][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.723620][T18796] __do_fast_syscall_32+0x127/0x180 [ 626.728811][T18796] do_fast_syscall_32+0x77/0xd0 [ 626.733654][T18796] do_SYSENTER_32+0x73/0x90 [ 626.738168][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.744481][T18796] [ 626.746780][T18796] Uninit was stored to memory at: [ 626.751777][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 626.757516][T18796] __msan_chain_origin+0x54/0xa0 [ 626.762438][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 626.767534][T18796] get_compat_msghdr+0x108/0x2b0 [ 626.772459][T18796] do_recvmmsg+0xdc1/0x22d0 [ 626.776968][T18796] __sys_recvmmsg+0x519/0x6f0 [ 626.781633][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.787697][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.793843][T18796] __do_fast_syscall_32+0x127/0x180 [ 626.799059][T18796] do_fast_syscall_32+0x77/0xd0 [ 626.803916][T18796] do_SYSENTER_32+0x73/0x90 [ 626.808406][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.814719][T18796] [ 626.817048][T18796] Uninit was stored to memory at: [ 626.822058][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 626.827761][T18796] __msan_chain_origin+0x54/0xa0 [ 626.832697][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 626.837824][T18796] get_compat_msghdr+0x108/0x2b0 [ 626.842749][T18796] do_recvmmsg+0xdc1/0x22d0 [ 626.847238][T18796] __sys_recvmmsg+0x519/0x6f0 [ 626.851903][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.857989][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.864141][T18796] __do_fast_syscall_32+0x127/0x180 [ 626.869330][T18796] do_fast_syscall_32+0x77/0xd0 [ 626.874205][T18796] do_SYSENTER_32+0x73/0x90 [ 626.878697][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.885007][T18796] [ 626.887308][T18796] Uninit was stored to memory at: [ 626.892300][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 626.898002][T18796] __msan_chain_origin+0x54/0xa0 [ 626.902925][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 626.908047][T18796] get_compat_msghdr+0x108/0x2b0 [ 626.912971][T18796] do_recvmmsg+0xdc1/0x22d0 [ 626.917472][T18796] __sys_recvmmsg+0x519/0x6f0 [ 626.922132][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.928183][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 626.934327][T18796] __do_fast_syscall_32+0x127/0x180 [ 626.939544][T18796] do_fast_syscall_32+0x77/0xd0 [ 626.944380][T18796] do_SYSENTER_32+0x73/0x90 [ 626.948876][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 626.955200][T18796] [ 626.957510][T18796] Uninit was stored to memory at: [ 626.962654][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 626.968370][T18796] __msan_chain_origin+0x54/0xa0 [ 626.973294][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 626.978426][T18796] get_compat_msghdr+0x108/0x2b0 [ 626.983348][T18796] do_recvmmsg+0xdc1/0x22d0 [ 626.987837][T18796] __sys_recvmmsg+0x519/0x6f0 [ 626.992494][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 626.998546][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.004684][T18796] __do_fast_syscall_32+0x127/0x180 [ 627.009891][T18796] do_fast_syscall_32+0x77/0xd0 [ 627.014763][T18796] do_SYSENTER_32+0x73/0x90 [ 627.019274][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.025633][T18796] [ 627.027933][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 627.034604][T18796] do_recvmmsg+0xbf/0x22d0 [ 627.039007][T18796] do_recvmmsg+0xbf/0x22d0 [ 627.200665][T18796] not chained 520000 origins [ 627.205275][T18796] CPU: 1 PID: 18796 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 627.214013][T18796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 627.224050][T18796] Call Trace: [ 627.227327][T18796] dump_stack+0x24c/0x2e0 [ 627.231661][T18796] kmsan_internal_chain_origin+0x6f/0x130 [ 627.237396][T18796] ? __skb_datagram_iter+0x3cb/0x1210 [ 627.242794][T18796] ? skb_copy_datagram_iter+0x200/0x200 [ 627.248358][T18796] ? kmsan_get_metadata+0x116/0x180 [ 627.253541][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 627.259173][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 627.265222][T18796] ? kmsan_get_metadata+0x116/0x180 [ 627.270434][T18796] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 627.276222][T18796] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 627.282272][T18796] ? kmsan_get_metadata+0x116/0x180 [ 627.287516][T18796] ? kmsan_set_origin_checked+0xa2/0x100 [ 627.293136][T18796] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 627.299182][T18796] ? kmsan_unpoison_shadow+0x74/0xa0 [ 627.304466][T18796] ? _copy_from_user+0x1fd/0x300 [ 627.309471][T18796] __msan_chain_origin+0x54/0xa0 [ 627.314388][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 627.319492][T18796] get_compat_msghdr+0x108/0x2b0 [ 627.324450][T18796] do_recvmmsg+0xdc1/0x22d0 [ 627.328943][T18796] ? kmsan_get_metadata+0x116/0x180 [ 627.334120][T18796] ? kmsan_internal_set_origin+0x82/0xc0 [ 627.339739][T18796] ? __msan_poison_alloca+0xec/0x110 [ 627.345033][T18796] ? __sys_recvmmsg+0xb5/0x6f0 [ 627.349810][T18796] __sys_recvmmsg+0x519/0x6f0 [ 627.354497][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.360558][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.366731][T18796] __do_fast_syscall_32+0x127/0x180 [ 627.371943][T18796] do_fast_syscall_32+0x77/0xd0 [ 627.376792][T18796] do_SYSENTER_32+0x73/0x90 [ 627.381282][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.387605][T18796] RIP: 0023:0xf7fe5549 [ 627.391657][T18796] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 627.411253][T18796] RSP: 002b:00000000f55df5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 627.419667][T18796] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 627.427640][T18796] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 627.435605][T18796] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 627.443557][T18796] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 627.451514][T18796] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 627.459493][T18796] Uninit was stored to memory at: [ 627.464501][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 627.470206][T18796] __msan_chain_origin+0x54/0xa0 [ 627.475267][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 627.480374][T18796] get_compat_msghdr+0x108/0x2b0 [ 627.485342][T18796] do_recvmmsg+0xdc1/0x22d0 [ 627.489826][T18796] __sys_recvmmsg+0x519/0x6f0 [ 627.494502][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.500558][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.506721][T18796] __do_fast_syscall_32+0x127/0x180 [ 627.511902][T18796] do_fast_syscall_32+0x77/0xd0 [ 627.516735][T18796] do_SYSENTER_32+0x73/0x90 [ 627.521228][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.527664][T18796] [ 627.529972][T18796] Uninit was stored to memory at: [ 627.535003][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 627.540709][T18796] __msan_chain_origin+0x54/0xa0 [ 627.545651][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 627.550747][T18796] get_compat_msghdr+0x108/0x2b0 [ 627.555689][T18796] do_recvmmsg+0xdc1/0x22d0 [ 627.560180][T18796] __sys_recvmmsg+0x519/0x6f0 [ 627.564867][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.570940][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.577099][T18796] __do_fast_syscall_32+0x127/0x180 [ 627.584275][T18796] do_fast_syscall_32+0x77/0xd0 [ 627.589109][T18796] do_SYSENTER_32+0x73/0x90 [ 627.593588][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.599897][T18796] [ 627.602206][T18796] Uninit was stored to memory at: [ 627.607199][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 627.612901][T18796] __msan_chain_origin+0x54/0xa0 [ 627.617821][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 627.622911][T18796] get_compat_msghdr+0x108/0x2b0 [ 627.627826][T18796] do_recvmmsg+0xdc1/0x22d0 [ 627.632309][T18796] __sys_recvmmsg+0x519/0x6f0 [ 627.636986][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.643033][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.649169][T18796] __do_fast_syscall_32+0x127/0x180 [ 627.654351][T18796] do_fast_syscall_32+0x77/0xd0 [ 627.659185][T18796] do_SYSENTER_32+0x73/0x90 [ 627.663679][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.669994][T18796] [ 627.672310][T18796] Uninit was stored to memory at: [ 627.677315][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 627.683029][T18796] __msan_chain_origin+0x54/0xa0 [ 627.687949][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 627.693057][T18796] get_compat_msghdr+0x108/0x2b0 [ 627.697980][T18796] do_recvmmsg+0xdc1/0x22d0 [ 627.702465][T18796] __sys_recvmmsg+0x519/0x6f0 [ 627.707121][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.713169][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.719310][T18796] __do_fast_syscall_32+0x127/0x180 [ 627.724513][T18796] do_fast_syscall_32+0x77/0xd0 [ 627.729363][T18796] do_SYSENTER_32+0x73/0x90 [ 627.733872][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.740185][T18796] [ 627.742496][T18796] Uninit was stored to memory at: [ 627.747486][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 627.753195][T18796] __msan_chain_origin+0x54/0xa0 [ 627.758151][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 627.763247][T18796] get_compat_msghdr+0x108/0x2b0 [ 627.768165][T18796] do_recvmmsg+0xdc1/0x22d0 [ 627.772648][T18796] __sys_recvmmsg+0x519/0x6f0 [ 627.777309][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.783366][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.789540][T18796] __do_fast_syscall_32+0x127/0x180 [ 627.794747][T18796] do_fast_syscall_32+0x77/0xd0 [ 627.799591][T18796] do_SYSENTER_32+0x73/0x90 [ 627.804113][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.810428][T18796] [ 627.812744][T18796] Uninit was stored to memory at: [ 627.817777][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 627.823484][T18796] __msan_chain_origin+0x54/0xa0 [ 627.828404][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 627.833500][T18796] get_compat_msghdr+0x108/0x2b0 [ 627.838421][T18796] do_recvmmsg+0xdc1/0x22d0 [ 627.842928][T18796] __sys_recvmmsg+0x519/0x6f0 [ 627.847591][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.853641][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.859783][T18796] __do_fast_syscall_32+0x127/0x180 [ 627.864995][T18796] do_fast_syscall_32+0x77/0xd0 [ 627.869837][T18796] do_SYSENTER_32+0x73/0x90 [ 627.874363][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.880681][T18796] [ 627.882994][T18796] Uninit was stored to memory at: [ 627.887985][T18796] kmsan_internal_chain_origin+0xad/0x130 [ 627.893693][T18796] __msan_chain_origin+0x54/0xa0 [ 627.898632][T18796] __get_compat_msghdr+0x6db/0x9d0 [ 627.903749][T18796] get_compat_msghdr+0x108/0x2b0 [ 627.908667][T18796] do_recvmmsg+0xdc1/0x22d0 [ 627.913152][T18796] __sys_recvmmsg+0x519/0x6f0 [ 627.917808][T18796] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 627.923859][T18796] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 627.929998][T18796] __do_fast_syscall_32+0x127/0x180 [ 627.935220][T18796] do_fast_syscall_32+0x77/0xd0 [ 627.940054][T18796] do_SYSENTER_32+0x73/0x90 [ 627.944564][T18796] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 627.950871][T18796] [ 627.953186][T18796] Local variable ----msg_sys@do_recvmmsg created at: [ 627.959837][T18796] do_recvmmsg+0xbf/0x22d0 [ 627.964259][T18796] do_recvmmsg+0xbf/0x22d0 08:14:14 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001280)=[{&(0x7f0000000b40)={0x1c, 0x1a, 0xcb001091e2ef245f, 0x0, 0x0, "", [@nested={0xa, 0x0, 0x0, 0x1, [@generic="fc7b6ca04e97"]}]}, 0x1c}], 0x1}, 0x0) 08:14:14 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x2c, 0x2c, 0x2, [@func_proto={0x0, 0x4, 0x0, 0xd, 0x0, [{0x10}, {0x10}, {}, {0xf, 0x1}]}]}}, &(0x7f0000000140)=""/148, 0x46, 0x94, 0x1}, 0x20) 08:14:14 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0xd, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:14:14 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB="18000000160011002dbd7000fbdbdf250a"], 0x28}}, 0x0) 08:14:14 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0x5}, @from_mac}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:14:14 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ff", 0x20, 0x1c0}]) [ 628.565781][ T1359] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 628.750926][T18863] loop3: detected capacity change from 0 to 1 [ 628.813009][T18863] Dev loop3: unable to read RDB block 1 [ 628.818838][T18863] loop3: unable to read partition table [ 628.909619][T18863] loop3: partition table beyond EOD, truncated [ 628.916084][T18863] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) 08:14:15 executing program 0: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x6, &(0x7f0000000000)=@raw=[@jmp, @initr0, @generic={0x4}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffb}, @call], &(0x7f0000000080)='syzkaller\x00', 0x5, 0xc5, &(0x7f00000000c0)=""/197, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:14:15 executing program 4: capset(&(0x7f0000000300)={0x19980330}, &(0x7f0000000340)) bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0) 08:14:15 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ff", 0x20, 0x1c0}]) [ 629.256932][ T1359] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 08:14:15 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0xe, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:14:15 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0x6}, @from_mac}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) [ 629.762155][T18885] loop3: detected capacity change from 0 to 1 08:14:15 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{0x0, 0x3}]}]}}, &(0x7f00000000c0)=""/200, 0x32, 0xc8, 0x1}, 0x20) [ 629.890894][T18885] Dev loop3: unable to read RDB block 1 [ 629.896704][T18885] loop3: unable to read partition table [ 629.919996][T18885] loop3: partition table beyond EOD, truncated [ 629.926365][T18885] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) [ 629.954194][ T1359] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 630.434149][ T1359] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 632.644543][ T3129] ieee802154 phy0 wpan0: encryption failed: -22 [ 632.651133][ T3129] ieee802154 phy1 wpan1: encryption failed: -22 [ 634.006559][ T1359] device hsr_slave_0 left promiscuous mode [ 634.038501][ T1359] device hsr_slave_1 left promiscuous mode [ 634.062582][ T1359] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 634.070441][ T1359] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 634.087427][ T1359] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 634.095317][ T1359] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 634.116113][ T1359] device bridge_slave_1 left promiscuous mode [ 634.123188][ T1359] bridge0: port 2(bridge_slave_1) entered disabled state [ 634.138360][ T1359] device bridge_slave_0 left promiscuous mode [ 634.145356][ T1359] bridge0: port 1(bridge_slave_0) entered disabled state [ 634.201131][ T1359] device veth1_macvtap left promiscuous mode [ 634.208058][ T1359] device veth0_macvtap left promiscuous mode [ 634.214473][ T1359] device veth1_vlan left promiscuous mode [ 634.220447][ T1359] device veth0_vlan left promiscuous mode [ 636.736655][ T1359] team0 (unregistering): Port device team_slave_1 removed [ 636.754658][ T1359] team0 (unregistering): Port device team_slave_0 removed [ 636.776400][ T1359] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 636.792669][ T1359] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 636.862192][ T1359] bond0 (unregistering): Released all slaves [ 637.353176][T18955] IPVS: ftp: loaded support on port[0] = 21 [ 637.658234][T18955] chnl_net:caif_netlink_parms(): no params data found [ 637.803446][T18955] bridge0: port 1(bridge_slave_0) entered blocking state [ 637.810945][T18955] bridge0: port 1(bridge_slave_0) entered disabled state [ 637.820999][T18955] device bridge_slave_0 entered promiscuous mode [ 637.836269][T18955] bridge0: port 2(bridge_slave_1) entered blocking state [ 637.843647][T18955] bridge0: port 2(bridge_slave_1) entered disabled state [ 637.854141][T18955] device bridge_slave_1 entered promiscuous mode [ 637.888883][T18955] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 637.908562][T18955] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 637.948100][T18955] team0: Port device team_slave_0 added [ 637.957629][T18955] team0: Port device team_slave_1 added [ 637.987503][T18955] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 637.995477][T18955] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 638.021785][T18955] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 638.040234][T18955] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 638.047285][T18955] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 638.073483][T18955] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 638.122516][T18955] device hsr_slave_0 entered promiscuous mode [ 638.131758][T18955] device hsr_slave_1 entered promiscuous mode [ 638.138789][T18955] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 638.146625][T18955] Cannot create hsr debugfs directory [ 638.432528][T18955] 8021q: adding VLAN 0 to HW filter on device bond0 [ 638.457610][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 638.466205][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 638.483597][T18955] 8021q: adding VLAN 0 to HW filter on device team0 [ 638.504306][ T8455] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 638.515226][ T8455] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 638.524521][ T8455] bridge0: port 1(bridge_slave_0) entered blocking state [ 638.531957][ T8455] bridge0: port 1(bridge_slave_0) entered forwarding state [ 638.541905][ T8455] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 638.562290][ T8455] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 638.572271][ T8455] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 638.581744][ T8455] bridge0: port 2(bridge_slave_1) entered blocking state [ 638.588930][ T8455] bridge0: port 2(bridge_slave_1) entered forwarding state [ 638.598047][ T8455] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 638.621291][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 638.638141][ T8455] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 638.648897][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 638.666281][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 638.684865][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 638.704870][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 638.724363][T18955] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 638.754127][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 638.762189][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 638.782501][T18955] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 638.881775][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 638.918449][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 638.927715][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 638.936777][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 638.957322][T18955] device veth0_vlan entered promiscuous mode [ 638.977654][T18955] device veth1_vlan entered promiscuous mode [ 639.019978][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 639.029725][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 639.047052][T18955] device veth0_macvtap entered promiscuous mode [ 639.063673][T18955] device veth1_macvtap entered promiscuous mode [ 639.098169][T18955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 639.108814][T18955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.118916][T18955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 639.130725][T18955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.141135][T18955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 639.151765][T18955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.161746][T18955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 639.172394][T18955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.182441][T18955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 639.193062][T18955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.205427][T18955] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 639.213967][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 639.223563][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 639.232818][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 639.242752][ T8595] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 639.264876][T18955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 639.275462][T18955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.285855][T18955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 639.296529][T18955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.306568][T18955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 639.317235][T18955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.327898][T18955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 639.339415][T18955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.349494][T18955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 639.360160][T18955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 639.373282][T18955] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 639.386487][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 639.396416][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 639.408354][ T8462] Bluetooth: hci5: command 0x0409 tx timeout [ 639.646788][ T185] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 639.655083][ T185] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 639.666321][ T8468] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 639.757046][ T1359] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 639.765624][ T1359] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 639.774341][ T8468] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 08:14:26 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB="1e000000190001002dbd7000fbdbdf250a"], 0x28}}, 0x0) 08:14:26 executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x17, 0x3, &(0x7f0000000600)=@framed, &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:14:26 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ff", 0x20, 0x1c0}]) 08:14:26 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0x3, &(0x7f00000000c0)=0x3, 0x4) syz_genetlink_get_family_id$batadv(&(0x7f0000000140), r0) 08:14:26 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0x7}, @from_mac}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:14:26 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0xf, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) [ 640.137572][T19199] loop3: detected capacity change from 0 to 1 08:14:26 executing program 4: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(0xffffffffffffffff, &(0x7f000000a180)={0x0, 0x0, 0x0}, 0x0) sendmsg$key(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="020a000002"], 0x10}}, 0x0) recvmmsg(r0, &(0x7f0000003680)=[{{0x0, 0x0, 0x0}}], 0x3ffffffffffff17, 0x22, 0x0) [ 640.278528][T19199] Dev loop3: unable to read RDB block 1 [ 640.284644][T19199] loop3: unable to read partition table 08:14:26 executing program 0: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000940), 0x0) fcntl$lock(r0, 0x6, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1ff}) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000940), 0x0) fcntl$lock(r1, 0x6, &(0x7f0000000140)={0x0, 0x0, 0x1f00}) [ 640.382303][T19199] loop3: partition table beyond EOD, truncated [ 640.388844][T19199] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) 08:14:26 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x11, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) [ 640.445056][T19207] netlink: 2 bytes leftover after parsing attributes in process `syz-executor.5'. 08:14:26 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0x8}, @from_mac}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:14:26 executing program 5: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x1, &(0x7f0000000000)=@raw=[@ldst={0x3}], &(0x7f0000000080)='syzkaller\x00', 0x5, 0xc5, &(0x7f00000000c0)=""/197, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:14:26 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e1000000887700720030", 0x30, 0x1c0}]) 08:14:27 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@struct={0x0, 0x2, 0x0, 0x4, 0x0, 0x0, [{0x0, 0x3}, {0x2}]}]}}, &(0x7f00000000c0)=""/200, 0x3e, 0xc8, 0x1}, 0x20) 08:14:27 executing program 4: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(0xffffffffffffffff, &(0x7f000000a180)={0x0, 0x0, 0x0}, 0x0) sendmsg$key(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="020a000002"], 0x10}}, 0x0) recvmmsg(r0, &(0x7f0000003680)=[{{0x0, 0x0, 0x0}}], 0x3ffffffffffff17, 0x22, 0x0) 08:14:27 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x12, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) [ 641.284159][T19229] loop3: detected capacity change from 0 to 1 08:14:27 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001600)=ANY=[], 0x98}, 0x0) [ 641.351463][T19229] Dev loop3: unable to read RDB block 1 [ 641.357289][T19229] loop3: unable to read partition table [ 641.407321][T19229] loop3: partition table beyond EOD, truncated [ 641.413992][T19229] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) [ 641.450789][ T8468] Bluetooth: hci5: command 0x041b tx timeout 08:14:27 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e1000000887700720030", 0x30, 0x1c0}]) 08:14:27 executing program 0: syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x1200}}}}}]}}]}}, 0x0) 08:14:27 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0x9}, @from_mac}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:14:28 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x13, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:14:28 executing program 4: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(0xffffffffffffffff, &(0x7f000000a180)={0x0, 0x0, 0x0}, 0x0) sendmsg$key(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="020a000002"], 0x10}}, 0x0) recvmmsg(r0, &(0x7f0000003680)=[{{0x0, 0x0, 0x0}}], 0x3ffffffffffff17, 0x22, 0x0) 08:14:28 executing program 5: r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f00000000c0)=0x110802, 0x4) [ 642.097968][T19247] loop3: detected capacity change from 0 to 1 [ 642.141779][T19247] Dev loop3: unable to read RDB block 1 [ 642.147605][T19247] loop3: unable to read partition table [ 642.156439][T19247] loop3: partition table beyond EOD, truncated [ 642.163435][T19247] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) 08:14:28 executing program 5: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x9, 0x3, &(0x7f0000000600)=@framed={{}, [], {0x95, 0x2}}, &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:14:28 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e1000000887700720030", 0x30, 0x1c0}]) [ 642.479817][ T8468] usb 1-1: new high-speed USB device number 3 using dummy_hcd 08:14:28 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x14, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:14:28 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0xf}, @from_mac}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:14:28 executing program 4: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(0xffffffffffffffff, &(0x7f000000a180)={0x0, 0x0, 0x0}, 0x0) sendmsg$key(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="020a000002"], 0x10}}, 0x0) recvmmsg(r0, &(0x7f0000003680)=[{{0x0, 0x0, 0x0}}], 0x3ffffffffffff17, 0x22, 0x0) [ 642.842287][T19274] loop3: detected capacity change from 0 to 1 [ 642.882320][ T8468] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 642.897412][T19274] Dev loop3: unable to read RDB block 1 [ 642.903616][T19274] loop3: unable to read partition table 08:14:29 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2}}, @fwd={0x9}]}}, &(0x7f0000000180)=""/188, 0x3e, 0xbc, 0x1}, 0x20) [ 642.997735][T19274] loop3: partition table beyond EOD, truncated [ 643.004394][T19274] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) [ 643.079719][ T8468] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 643.089222][ T8468] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 643.097602][ T8468] usb 1-1: Product: syz [ 643.102030][ T8468] usb 1-1: Manufacturer: syz [ 643.106748][ T8468] usb 1-1: SerialNumber: syz 08:14:29 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x17, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) [ 643.332477][ T8468] cdc_ether: probe of 1-1:1.0 failed with error -22 [ 643.520377][ T8468] Bluetooth: hci5: command 0x040f tx timeout 08:14:29 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum]}}, &(0x7f00000000c0)=""/200, 0x26, 0xc8, 0x1}, 0x20) 08:14:29 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0x60}, @from_mac}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:14:29 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e10000008877007200300700a6ffffff0000", 0x38, 0x1c0}]) 08:14:29 executing program 4: fork() fork() waitid(0x0, 0x0, 0x0, 0xd, 0x0) [ 643.680672][ T8468] usb 1-1: USB disconnect, device number 3 08:14:29 executing program 5: clone(0x0, &(0x7f0000000140), 0x0, 0x0, 0x0) wait4(0x0, &(0x7f0000000000), 0x40000000, &(0x7f0000000040)) 08:14:30 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x19, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) [ 643.846326][T19307] loop3: detected capacity change from 0 to 1 [ 643.912025][T19307] Dev loop3: unable to read RDB block 1 [ 643.917847][T19307] loop3: unable to read partition table [ 644.032700][T19307] loop3: partition table beyond EOD, truncated [ 644.040907][T19307] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) 08:14:30 executing program 0: add_key$fscrypt_provisioning(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x1}, &(0x7f0000000240)={0x2, 0x0, @b}, 0x48, 0xffffffffffffffff) 08:14:30 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e10000008877007200300700a6ffffff0000", 0x38, 0x1c0}]) 08:14:30 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000100)={'ip_vti0\x00', &(0x7f00000003c0)=ANY=[]}) 08:14:30 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0xb0}, @from_mac}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:14:30 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x1a, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:14:30 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x3c, 0x3c, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1, 0x1}}, @volatile, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x4, 0x2}}]}}, &(0x7f0000000140)=""/148, 0x56, 0x94, 0x1}, 0x20) 08:14:31 executing program 0: ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000004bc0)={'erspan0\x00', &(0x7f0000004b00)={'gre0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0xc, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2, @dev, {[@timestamp_prespec={0x44, 0x1c, 0x0, 0x3, 0x0, [{@broadcast}, {@initdev={0xac, 0x1e, 0x0, 0x0}}, {@local}]}]}}}}}) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="020a000002"], 0x10}}, 0x0) recvmmsg(r0, &(0x7f0000003680)=[{{0x0, 0x0, 0x0}}], 0x3ffffffffffff17, 0x22, 0x0) [ 644.932546][T19342] loop3: detected capacity change from 0 to 1 [ 645.043079][T19342] Dev loop3: unable to read RDB block 1 [ 645.049035][T19342] loop3: unable to read partition table [ 645.132690][T19342] loop3: partition table beyond EOD, truncated [ 645.139233][T19342] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) 08:14:31 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB="28000000190011002dbd7000fbdbdf250a80"], 0x28}}, 0x0) 08:14:31 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x1b, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:14:31 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x3fe, 0x0, 0x6, 0x4, [{}]}]}}, &(0x7f00000000c0)=""/200, 0x2e, 0xc8, 0x1}, 0x20) 08:14:31 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x4}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:14:31 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e10000008877007200300700a6ffffff0000", 0x38, 0x1c0}]) [ 645.610074][ T8468] Bluetooth: hci5: command 0x0419 tx timeout [ 645.648118][T19363] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.5'. 08:14:32 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f00000002c0)={0x9, 0x8, 0x9, 0xffffffff, 0xc2}, 0x40) 08:14:32 executing program 5: bpf$MAP_CREATE(0xa, &(0x7f0000000280), 0x40) 08:14:32 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x1c, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) [ 645.955211][T19373] loop3: detected capacity change from 0 to 1 08:14:32 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x7, 0x0, 0x0, [{}]}]}}, &(0x7f00000000c0)=""/200, 0x32, 0xc8, 0x1}, 0x20) [ 646.052380][T19373] Dev loop3: unable to read RDB block 1 [ 646.058395][T19373] loop3: unable to read partition table [ 646.075204][T19378] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'. [ 646.105240][T19373] loop3: partition table beyond EOD, truncated [ 646.111986][T19373] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) 08:14:32 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0xf}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:14:32 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x22, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:14:32 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e10000008877007200300700a6ffffff000000000080", 0x3c, 0x1c0}]) 08:14:32 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) connect$netlink(r0, &(0x7f00000001c0)=@proc, 0xc) syz_genetlink_get_family_id$batadv(&(0x7f0000000240), r0) 08:14:32 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000005e80)={0x0, 0x0, &(0x7f0000005e00)=[{&(0x7f0000005dc0)={0x24, 0x25, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @typed={0x8, 0x0, 0x0, 0x0, @uid}, @nested={0x4}]}, 0x24}], 0x1}, 0x0) 08:14:32 executing program 4: r0 = socket$netlink(0x10, 0x3, 0xc) sendmsg$netlink(r0, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000061c0)=[{&(0x7f0000004fc0)=ANY=[@ANYBLOB="18000000fedbdf"], 0x18}, {&(0x7f0000005140)={0x1c, 0x51b, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x1c}], 0x2}, 0x0) [ 646.864717][T19400] loop3: detected capacity change from 0 to 1 [ 646.930976][T19400] Dev loop3: unable to read RDB block 1 [ 646.936723][T19400] loop3: unable to read partition table [ 646.946039][T19400] loop3: partition table beyond EOD, truncated [ 646.952509][T19400] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) 08:14:33 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x29, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:14:33 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$inet6(r0, &(0x7f0000000200)={&(0x7f0000000000)={0xa, 0x4e21, 0x0, @dev, 0xfffff2aa}, 0x1c, 0x0}, 0x0) 08:14:33 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e10000008877007200300700a6ffffff000000000080", 0x3c, 0x1c0}]) 08:14:33 executing program 0: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000940), 0x0) fcntl$lock(r0, 0x6, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1ff}) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000940), 0x0) fcntl$lock(r1, 0x6, &(0x7f0000000140)={0x2, 0x0, 0x2}) 08:14:33 executing program 5: r0 = socket$key(0xf, 0x3, 0x2) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_ORIGINATORS(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8010}, 0x0) socket$packet(0x11, 0x0, 0x300) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0) sendmsg$key(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="020a000002000000000000000000000028c838d4c374942016f5359f96a02164116c13b119537a15f1a26a471a0309da6c9d44d6b0340abbe71c8936284656ce967391ad50ff743b433eda69a604"], 0x10}}, 0x0) recvmmsg(r0, &(0x7f0000003680)=[{{0x0, 0x0, 0x0}}], 0x3ffffffffffff17, 0x22, 0x0) 08:14:33 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x10}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) [ 647.577404][T19421] loop3: detected capacity change from 0 to 1 [ 647.645311][T19427] not chained 530000 origins [ 647.649942][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 647.658719][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 647.668782][T19427] Call Trace: [ 647.672065][T19427] dump_stack+0x24c/0x2e0 [ 647.676427][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 647.682165][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 647.687560][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 647.693124][T19427] ? kmsan_get_metadata+0x116/0x180 [ 647.698334][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 647.704008][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 647.710097][T19427] ? kmsan_get_metadata+0x116/0x180 [ 647.715315][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 647.721148][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 647.727234][T19427] ? kmsan_get_metadata+0x116/0x180 [ 647.732450][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 647.738098][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 647.744266][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 647.749567][T19427] ? _copy_from_user+0x1fd/0x300 [ 647.754535][T19427] __msan_chain_origin+0x54/0xa0 [ 647.759491][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 647.764628][T19427] get_compat_msghdr+0x108/0x2b0 [ 647.769595][T19427] do_recvmmsg+0xdc1/0x22d0 [ 647.774141][T19427] ? kmsan_get_metadata+0x116/0x180 [ 647.779368][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 647.785025][T19427] ? __msan_poison_alloca+0xec/0x110 [ 647.790340][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 647.795133][T19427] __sys_recvmmsg+0x519/0x6f0 [ 647.799847][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 647.805941][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 647.812118][T19427] __do_fast_syscall_32+0x127/0x180 [ 647.817342][T19427] do_fast_syscall_32+0x77/0xd0 [ 647.822222][T19427] do_SYSENTER_32+0x73/0x90 [ 647.826859][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 647.833232][T19427] RIP: 0023:0xf7fe1549 [ 647.837316][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 647.856950][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 647.865394][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 647.873374][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 647.881357][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 08:14:34 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x2c, 0x2c, 0x2, [@func_proto={0x0, 0x4, 0x0, 0xd, 0x0, [{0x10}, {0x10}, {0xd}, {0xf, 0x1}]}]}}, &(0x7f0000000140)=""/148, 0x46, 0x94, 0x1}, 0x20) [ 647.889336][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 647.897311][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 647.905296][T19427] Uninit was stored to memory at: [ 647.910316][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 647.916057][T19427] __msan_chain_origin+0x54/0xa0 [ 647.921009][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 647.926142][T19427] get_compat_msghdr+0x108/0x2b0 [ 647.931089][T19427] do_recvmmsg+0xdc1/0x22d0 [ 647.935607][T19427] __sys_recvmmsg+0x519/0x6f0 [ 647.940301][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 08:14:34 executing program 0: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000400)=ANY=[@ANYBLOB="c2452000f8ffff4b0c11000049db721180f682516e3f840e01d997d2d3f433ddadd7b34942fef696be7558cacdb74894463269f7", @ANYRES32, @ANYBLOB="000000000000000018260000", @ANYRES32, @ANYBLOB="00000000010000008510000004000000950000000000000018"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xf1, &(0x7f0000000100)=""/241, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) [ 647.946401][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 647.952667][T19427] __do_fast_syscall_32+0x127/0x180 [ 647.957888][T19427] do_fast_syscall_32+0x77/0xd0 [ 647.962763][T19427] do_SYSENTER_32+0x73/0x90 [ 647.967282][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 647.973631][T19427] [ 647.975962][T19427] Uninit was stored to memory at: [ 647.980979][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 647.986720][T19427] __msan_chain_origin+0x54/0xa0 [ 647.991670][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 647.996800][T19427] get_compat_msghdr+0x108/0x2b0 [ 648.001756][T19427] do_recvmmsg+0xdc1/0x22d0 [ 648.006274][T19427] __sys_recvmmsg+0x519/0x6f0 [ 648.010960][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 648.017043][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 648.023213][T19427] __do_fast_syscall_32+0x127/0x180 [ 648.028431][T19427] do_fast_syscall_32+0x77/0xd0 [ 648.033296][T19427] do_SYSENTER_32+0x73/0x90 [ 648.037812][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.044158][T19427] [ 648.046477][T19427] Uninit was stored to memory at: [ 648.051493][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 648.057230][T19427] __msan_chain_origin+0x54/0xa0 [ 648.062181][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 648.067307][T19427] get_compat_msghdr+0x108/0x2b0 [ 648.072259][T19427] do_recvmmsg+0xdc1/0x22d0 [ 648.076776][T19427] __sys_recvmmsg+0x519/0x6f0 [ 648.081469][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 648.087553][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 648.093719][T19427] __do_fast_syscall_32+0x127/0x180 [ 648.098936][T19427] do_fast_syscall_32+0x77/0xd0 [ 648.103802][T19427] do_SYSENTER_32+0x73/0x90 [ 648.108320][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.114674][T19427] [ 648.116995][T19427] Uninit was stored to memory at: [ 648.122010][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 648.127746][T19427] __msan_chain_origin+0x54/0xa0 [ 648.132712][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 648.137834][T19427] get_compat_msghdr+0x108/0x2b0 [ 648.142782][T19427] do_recvmmsg+0xdc1/0x22d0 08:14:34 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0xf}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) [ 648.147299][T19427] __sys_recvmmsg+0x519/0x6f0 [ 648.152005][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 648.158087][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 648.164254][T19427] __do_fast_syscall_32+0x127/0x180 [ 648.169471][T19427] do_fast_syscall_32+0x77/0xd0 [ 648.174439][T19427] do_SYSENTER_32+0x73/0x90 [ 648.178926][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.185239][T19427] [ 648.187578][T19427] Uninit was stored to memory at: [ 648.192574][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 648.198282][T19427] __msan_chain_origin+0x54/0xa0 [ 648.203203][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 648.208301][T19427] get_compat_msghdr+0x108/0x2b0 [ 648.213248][T19427] do_recvmmsg+0xdc1/0x22d0 [ 648.217747][T19427] __sys_recvmmsg+0x519/0x6f0 [ 648.222438][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 648.228521][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 648.234663][T19427] __do_fast_syscall_32+0x127/0x180 [ 648.239858][T19427] do_fast_syscall_32+0x77/0xd0 [ 648.244722][T19427] do_SYSENTER_32+0x73/0x90 [ 648.249250][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.255604][T19427] [ 648.257931][T19427] Uninit was stored to memory at: [ 648.262936][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 648.268677][T19427] __msan_chain_origin+0x54/0xa0 [ 648.273608][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 648.278734][T19427] get_compat_msghdr+0x108/0x2b0 [ 648.283661][T19427] do_recvmmsg+0xdc1/0x22d0 [ 648.288154][T19427] __sys_recvmmsg+0x519/0x6f0 [ 648.292850][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 648.298929][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 648.305075][T19427] __do_fast_syscall_32+0x127/0x180 [ 648.310293][T19427] do_fast_syscall_32+0x77/0xd0 [ 648.315131][T19427] do_SYSENTER_32+0x73/0x90 [ 648.319626][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.325962][T19427] [ 648.328271][T19427] Uninit was stored to memory at: [ 648.333269][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 648.339010][T19427] __msan_chain_origin+0x54/0xa0 [ 648.343941][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 648.349072][T19427] get_compat_msghdr+0x108/0x2b0 [ 648.353998][T19427] do_recvmmsg+0xdc1/0x22d0 [ 648.358492][T19427] __sys_recvmmsg+0x519/0x6f0 [ 648.363175][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 648.369327][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 648.375496][T19427] __do_fast_syscall_32+0x127/0x180 [ 648.380713][T19427] do_fast_syscall_32+0x77/0xd0 [ 648.385578][T19427] do_SYSENTER_32+0x73/0x90 [ 648.390088][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 648.396425][T19427] 08:14:34 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x73, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) [ 648.398730][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 648.405378][T19427] do_recvmmsg+0xbf/0x22d0 [ 648.409815][T19427] do_recvmmsg+0xbf/0x22d0 [ 648.454005][ T4697] Dev loop3: unable to read RDB block 1 [ 648.459931][ T4697] loop3: unable to read partition table [ 648.472873][ T4697] loop3: partition table beyond EOD, truncated [ 648.482505][T19421] Dev loop3: unable to read RDB block 1 [ 648.488277][T19421] loop3: unable to read partition table [ 648.502840][T19421] loop3: partition table beyond EOD, truncated [ 648.509232][T19421] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) 08:14:34 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e10000008877007200300700a6ffffff000000000080", 0x3c, 0x1c0}]) 08:14:35 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0x2}]}}, &(0x7f00000000c0)=""/200, 0x26, 0xc8, 0x1}, 0x20) 08:14:35 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = getpid() r2 = gettid() gettid() sendmsg$netlink(r0, &(0x7f00000014c0)={&(0x7f0000000040)=@proc, 0xc, 0x0, 0x0, &(0x7f0000001440)=[@cred={{0x1c, 0x1, 0x2, {r1, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r2}}}], 0x40}, 0x0) 08:14:35 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x7c4, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:14:35 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) [ 649.157534][T19457] loop3: detected capacity change from 0 to 1 [ 649.223538][T19457] Dev loop3: unable to read RDB block 1 [ 649.229775][T19457] loop3: unable to read partition table [ 649.235950][T19457] loop3: partition table beyond EOD, truncated [ 649.242479][T19457] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) 08:14:35 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e10000008877007200300700a6ffffff00000000008000da", 0x3e, 0x1c0}]) [ 649.747382][T19475] loop3: detected capacity change from 0 to 1 [ 649.889092][T19475] Dev loop3: unable to read RDB block 1 [ 649.894924][T19475] loop3: unable to read partition table [ 650.003745][T19475] loop3: partition table beyond EOD, truncated [ 650.010451][T19475] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) [ 650.296003][T19427] not chained 540000 origins [ 650.300643][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 650.309508][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 650.319573][T19427] Call Trace: [ 650.322857][T19427] dump_stack+0x24c/0x2e0 [ 650.327211][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 650.332957][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 650.338351][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 650.343913][T19427] ? kmsan_get_metadata+0x116/0x180 [ 650.349141][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 650.354787][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 650.360873][T19427] ? kmsan_get_metadata+0x116/0x180 [ 650.366094][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 650.371913][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 650.378005][T19427] ? kmsan_get_metadata+0x116/0x180 [ 650.383231][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 650.388875][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 650.394961][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 650.400258][T19427] ? _copy_from_user+0x1fd/0x300 [ 650.405213][T19427] __msan_chain_origin+0x54/0xa0 [ 650.410160][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 650.415292][T19427] get_compat_msghdr+0x108/0x2b0 [ 650.420245][T19427] do_recvmmsg+0xdc1/0x22d0 [ 650.424780][T19427] ? kmsan_get_metadata+0x116/0x180 [ 650.429991][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 650.435638][T19427] ? __msan_poison_alloca+0xec/0x110 [ 650.440936][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 650.445721][T19427] __sys_recvmmsg+0x519/0x6f0 [ 650.450423][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.456536][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.462716][T19427] __do_fast_syscall_32+0x127/0x180 [ 650.467946][T19427] do_fast_syscall_32+0x77/0xd0 [ 650.472814][T19427] do_SYSENTER_32+0x73/0x90 [ 650.477330][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.483704][T19427] RIP: 0023:0xf7fe1549 [ 650.487774][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 650.507394][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 650.515828][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 650.523810][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 650.531793][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 650.539775][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 650.547754][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 650.555736][T19427] Uninit was stored to memory at: [ 650.560752][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 650.566751][T19427] __msan_chain_origin+0x54/0xa0 [ 650.571706][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 650.576862][T19427] get_compat_msghdr+0x108/0x2b0 [ 650.581815][T19427] do_recvmmsg+0xdc1/0x22d0 [ 650.586331][T19427] __sys_recvmmsg+0x519/0x6f0 [ 650.591024][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.597104][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.603268][T19427] __do_fast_syscall_32+0x127/0x180 [ 650.608478][T19427] do_fast_syscall_32+0x77/0xd0 [ 650.613340][T19427] do_SYSENTER_32+0x73/0x90 [ 650.617866][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.624206][T19427] [ 650.626524][T19427] Uninit was stored to memory at: [ 650.631536][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 650.637276][T19427] __msan_chain_origin+0x54/0xa0 [ 650.642224][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 650.647352][T19427] get_compat_msghdr+0x108/0x2b0 [ 650.652313][T19427] do_recvmmsg+0xdc1/0x22d0 [ 650.656833][T19427] __sys_recvmmsg+0x519/0x6f0 [ 650.661531][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.667611][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.673775][T19427] __do_fast_syscall_32+0x127/0x180 [ 650.679016][T19427] do_fast_syscall_32+0x77/0xd0 [ 650.683882][T19427] do_SYSENTER_32+0x73/0x90 [ 650.688395][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.694751][T19427] [ 650.697069][T19427] Uninit was stored to memory at: [ 650.702078][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 650.707823][T19427] __msan_chain_origin+0x54/0xa0 [ 650.712765][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 650.717879][T19427] get_compat_msghdr+0x108/0x2b0 [ 650.722855][T19427] do_recvmmsg+0xdc1/0x22d0 [ 650.727364][T19427] __sys_recvmmsg+0x519/0x6f0 [ 650.732067][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.738146][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.744315][T19427] __do_fast_syscall_32+0x127/0x180 [ 650.749530][T19427] do_fast_syscall_32+0x77/0xd0 [ 650.754400][T19427] do_SYSENTER_32+0x73/0x90 [ 650.758920][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.765778][T19427] [ 650.768206][T19427] Uninit was stored to memory at: [ 650.773226][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 650.778955][T19427] __msan_chain_origin+0x54/0xa0 [ 650.783905][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 650.789038][T19427] get_compat_msghdr+0x108/0x2b0 [ 650.793993][T19427] do_recvmmsg+0xdc1/0x22d0 [ 650.798512][T19427] __sys_recvmmsg+0x519/0x6f0 [ 650.803201][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.809282][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.815445][T19427] __do_fast_syscall_32+0x127/0x180 [ 650.820663][T19427] do_fast_syscall_32+0x77/0xd0 [ 650.825531][T19427] do_SYSENTER_32+0x73/0x90 [ 650.830051][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.836395][T19427] [ 650.838731][T19427] Uninit was stored to memory at: [ 650.843768][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 650.849502][T19427] __msan_chain_origin+0x54/0xa0 [ 650.854451][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 650.859580][T19427] get_compat_msghdr+0x108/0x2b0 [ 650.864531][T19427] do_recvmmsg+0xdc1/0x22d0 [ 650.869053][T19427] __sys_recvmmsg+0x519/0x6f0 [ 650.873752][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.879838][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.886016][T19427] __do_fast_syscall_32+0x127/0x180 [ 650.891234][T19427] do_fast_syscall_32+0x77/0xd0 [ 650.896106][T19427] do_SYSENTER_32+0x73/0x90 [ 650.900627][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.907090][T19427] [ 650.909413][T19427] Uninit was stored to memory at: [ 650.914442][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 650.920470][T19427] __msan_chain_origin+0x54/0xa0 [ 650.925425][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 650.930559][T19427] get_compat_msghdr+0x108/0x2b0 [ 650.935522][T19427] do_recvmmsg+0xdc1/0x22d0 [ 650.940043][T19427] __sys_recvmmsg+0x519/0x6f0 [ 650.944739][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 650.950825][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 650.956998][T19427] __do_fast_syscall_32+0x127/0x180 [ 650.962251][T19427] do_fast_syscall_32+0x77/0xd0 [ 650.967122][T19427] do_SYSENTER_32+0x73/0x90 [ 650.971643][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 650.978008][T19427] [ 650.980334][T19427] Uninit was stored to memory at: [ 650.985368][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 650.991100][T19427] __msan_chain_origin+0x54/0xa0 [ 650.996069][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 651.001194][T19427] get_compat_msghdr+0x108/0x2b0 [ 651.006145][T19427] do_recvmmsg+0xdc1/0x22d0 [ 651.010659][T19427] __sys_recvmmsg+0x519/0x6f0 [ 651.015336][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.021418][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.027597][T19427] __do_fast_syscall_32+0x127/0x180 [ 651.032805][T19427] do_fast_syscall_32+0x77/0xd0 [ 651.037663][T19427] do_SYSENTER_32+0x73/0x90 [ 651.042179][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.048524][T19427] [ 651.050839][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 651.057518][T19427] do_recvmmsg+0xbf/0x22d0 [ 651.061946][T19427] do_recvmmsg+0xbf/0x22d0 [ 651.288396][T19427] not chained 550000 origins [ 651.293038][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 651.301804][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 651.311864][T19427] Call Trace: [ 651.315152][T19427] dump_stack+0x24c/0x2e0 [ 651.319550][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 651.325293][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 651.330686][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 651.336283][T19427] ? kmsan_get_metadata+0x116/0x180 [ 651.341504][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 651.347158][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 651.353239][T19427] ? kmsan_get_metadata+0x116/0x180 [ 651.358452][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 651.364273][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 651.370354][T19427] ? kmsan_get_metadata+0x116/0x180 [ 651.375568][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 651.381216][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 651.387295][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 651.392600][T19427] ? _copy_from_user+0x1fd/0x300 [ 651.397551][T19427] __msan_chain_origin+0x54/0xa0 [ 651.402500][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 651.407635][T19427] get_compat_msghdr+0x108/0x2b0 [ 651.412592][T19427] do_recvmmsg+0xdc1/0x22d0 [ 651.417116][T19427] ? kmsan_get_metadata+0x116/0x180 [ 651.422324][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 651.428057][T19427] ? __msan_poison_alloca+0xec/0x110 [ 651.433364][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 651.438157][T19427] __sys_recvmmsg+0x519/0x6f0 [ 651.442855][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.448945][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.455125][T19427] __do_fast_syscall_32+0x127/0x180 [ 651.460338][T19427] do_fast_syscall_32+0x77/0xd0 [ 651.465217][T19427] do_SYSENTER_32+0x73/0x90 [ 651.469730][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.476081][T19427] RIP: 0023:0xf7fe1549 [ 651.480155][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 651.499784][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 651.508399][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 651.516384][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 651.524375][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 651.532782][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 651.540760][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 651.548754][T19427] Uninit was stored to memory at: [ 651.553776][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 651.559533][T19427] __msan_chain_origin+0x54/0xa0 [ 651.564500][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 651.569637][T19427] get_compat_msghdr+0x108/0x2b0 [ 651.574590][T19427] do_recvmmsg+0xdc1/0x22d0 [ 651.579105][T19427] __sys_recvmmsg+0x519/0x6f0 [ 651.583793][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.589866][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.596041][T19427] __do_fast_syscall_32+0x127/0x180 [ 651.601277][T19427] do_fast_syscall_32+0x77/0xd0 [ 651.606142][T19427] do_SYSENTER_32+0x73/0x90 [ 651.610655][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.617011][T19427] [ 651.619327][T19427] Uninit was stored to memory at: [ 651.624336][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 651.630067][T19427] __msan_chain_origin+0x54/0xa0 [ 651.635017][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 651.640226][T19427] get_compat_msghdr+0x108/0x2b0 [ 651.645182][T19427] do_recvmmsg+0xdc1/0x22d0 [ 651.649700][T19427] __sys_recvmmsg+0x519/0x6f0 [ 651.654395][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.660479][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.666650][T19427] __do_fast_syscall_32+0x127/0x180 [ 651.671876][T19427] do_fast_syscall_32+0x77/0xd0 [ 651.676746][T19427] do_SYSENTER_32+0x73/0x90 [ 651.681266][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.687615][T19427] [ 651.689936][T19427] Uninit was stored to memory at: [ 651.694955][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 651.700688][T19427] __msan_chain_origin+0x54/0xa0 [ 651.705678][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 651.710807][T19427] get_compat_msghdr+0x108/0x2b0 [ 651.715759][T19427] do_recvmmsg+0xdc1/0x22d0 [ 651.720278][T19427] __sys_recvmmsg+0x519/0x6f0 [ 651.724971][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.731055][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.737243][T19427] __do_fast_syscall_32+0x127/0x180 [ 651.742459][T19427] do_fast_syscall_32+0x77/0xd0 [ 651.747317][T19427] do_SYSENTER_32+0x73/0x90 [ 651.751835][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.758176][T19427] [ 651.760494][T19427] Uninit was stored to memory at: [ 651.765514][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 651.771248][T19427] __msan_chain_origin+0x54/0xa0 [ 651.776201][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 651.781328][T19427] get_compat_msghdr+0x108/0x2b0 [ 651.786279][T19427] do_recvmmsg+0xdc1/0x22d0 [ 651.790796][T19427] __sys_recvmmsg+0x519/0x6f0 [ 651.795487][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.801577][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.807752][T19427] __do_fast_syscall_32+0x127/0x180 [ 651.812969][T19427] do_fast_syscall_32+0x77/0xd0 [ 651.817829][T19427] do_SYSENTER_32+0x73/0x90 [ 651.822342][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.828685][T19427] [ 651.831002][T19427] Uninit was stored to memory at: [ 651.836016][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 651.841743][T19427] __msan_chain_origin+0x54/0xa0 [ 651.846692][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 651.851826][T19427] get_compat_msghdr+0x108/0x2b0 [ 651.856776][T19427] do_recvmmsg+0xdc1/0x22d0 [ 651.861293][T19427] __sys_recvmmsg+0x519/0x6f0 [ 651.865981][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.872064][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.878235][T19427] __do_fast_syscall_32+0x127/0x180 [ 651.883467][T19427] do_fast_syscall_32+0x77/0xd0 [ 651.888335][T19427] do_SYSENTER_32+0x73/0x90 [ 651.892852][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.899204][T19427] [ 651.901523][T19427] Uninit was stored to memory at: [ 651.906545][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 651.912280][T19427] __msan_chain_origin+0x54/0xa0 [ 651.917226][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 651.922351][T19427] get_compat_msghdr+0x108/0x2b0 [ 651.927292][T19427] do_recvmmsg+0xdc1/0x22d0 [ 651.931801][T19427] __sys_recvmmsg+0x519/0x6f0 [ 651.936480][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 651.942562][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 651.948727][T19427] __do_fast_syscall_32+0x127/0x180 [ 651.953933][T19427] do_fast_syscall_32+0x77/0xd0 [ 651.958792][T19427] do_SYSENTER_32+0x73/0x90 [ 651.963314][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 651.969652][T19427] [ 651.971980][T19427] Uninit was stored to memory at: [ 651.976998][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 651.982723][T19427] __msan_chain_origin+0x54/0xa0 [ 651.987789][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 651.992912][T19427] get_compat_msghdr+0x108/0x2b0 [ 651.997860][T19427] do_recvmmsg+0xdc1/0x22d0 [ 652.002376][T19427] __sys_recvmmsg+0x519/0x6f0 [ 652.007056][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.013217][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.019381][T19427] __do_fast_syscall_32+0x127/0x180 [ 652.024589][T19427] do_fast_syscall_32+0x77/0xd0 [ 652.029452][T19427] do_SYSENTER_32+0x73/0x90 [ 652.033967][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.040305][T19427] [ 652.042623][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 652.049287][T19427] do_recvmmsg+0xbf/0x22d0 [ 652.053706][T19427] do_recvmmsg+0xbf/0x22d0 [ 652.299102][T19427] not chained 560000 origins [ 652.303721][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 652.312506][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 652.322569][T19427] Call Trace: [ 652.325849][T19427] dump_stack+0x24c/0x2e0 [ 652.330207][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 652.335944][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 652.341338][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 652.346926][T19427] ? kmsan_get_metadata+0x116/0x180 [ 652.352152][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 652.357792][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 652.363866][T19427] ? kmsan_get_metadata+0x116/0x180 [ 652.369081][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 652.374902][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 652.380987][T19427] ? kmsan_get_metadata+0x116/0x180 [ 652.386220][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 652.391866][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 652.397953][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 652.403275][T19427] ? _copy_from_user+0x1fd/0x300 [ 652.408225][T19427] __msan_chain_origin+0x54/0xa0 [ 652.413169][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 652.418291][T19427] get_compat_msghdr+0x108/0x2b0 [ 652.423328][T19427] do_recvmmsg+0xdc1/0x22d0 [ 652.427943][T19427] ? kmsan_get_metadata+0x116/0x180 [ 652.433156][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 652.438802][T19427] ? __msan_poison_alloca+0xec/0x110 [ 652.444115][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 652.448907][T19427] __sys_recvmmsg+0x519/0x6f0 [ 652.453610][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.459704][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.465881][T19427] __do_fast_syscall_32+0x127/0x180 [ 652.471105][T19427] do_fast_syscall_32+0x77/0xd0 [ 652.475969][T19427] do_SYSENTER_32+0x73/0x90 [ 652.480483][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.486831][T19427] RIP: 0023:0xf7fe1549 [ 652.490907][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 652.510526][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 652.518956][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 652.526934][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 652.534915][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 652.542894][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 652.550879][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 652.558868][T19427] Uninit was stored to memory at: [ 652.563885][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 652.569631][T19427] __msan_chain_origin+0x54/0xa0 [ 652.574579][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 652.579708][T19427] get_compat_msghdr+0x108/0x2b0 [ 652.584660][T19427] do_recvmmsg+0xdc1/0x22d0 [ 652.589173][T19427] __sys_recvmmsg+0x519/0x6f0 [ 652.593854][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.599949][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.606121][T19427] __do_fast_syscall_32+0x127/0x180 [ 652.611324][T19427] do_fast_syscall_32+0x77/0xd0 [ 652.616180][T19427] do_SYSENTER_32+0x73/0x90 [ 652.620696][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.627049][T19427] [ 652.629360][T19427] Uninit was stored to memory at: [ 652.634364][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 652.640090][T19427] __msan_chain_origin+0x54/0xa0 [ 652.645036][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 652.650153][T19427] get_compat_msghdr+0x108/0x2b0 [ 652.655103][T19427] do_recvmmsg+0xdc1/0x22d0 [ 652.659667][T19427] __sys_recvmmsg+0x519/0x6f0 [ 652.664356][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.670528][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.676697][T19427] __do_fast_syscall_32+0x127/0x180 [ 652.681907][T19427] do_fast_syscall_32+0x77/0xd0 [ 652.686853][T19427] do_SYSENTER_32+0x73/0x90 [ 652.691362][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.697700][T19427] [ 652.700020][T19427] Uninit was stored to memory at: [ 652.705035][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 652.710767][T19427] __msan_chain_origin+0x54/0xa0 [ 652.715717][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 652.720840][T19427] get_compat_msghdr+0x108/0x2b0 [ 652.725796][T19427] do_recvmmsg+0xdc1/0x22d0 [ 652.730312][T19427] __sys_recvmmsg+0x519/0x6f0 [ 652.735012][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.741093][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.747262][T19427] __do_fast_syscall_32+0x127/0x180 [ 652.752472][T19427] do_fast_syscall_32+0x77/0xd0 [ 652.757332][T19427] do_SYSENTER_32+0x73/0x90 [ 652.761851][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.768217][T19427] [ 652.770538][T19427] Uninit was stored to memory at: [ 652.775554][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 652.781306][T19427] __msan_chain_origin+0x54/0xa0 [ 652.786258][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 652.791384][T19427] get_compat_msghdr+0x108/0x2b0 [ 652.796332][T19427] do_recvmmsg+0xdc1/0x22d0 [ 652.800849][T19427] __sys_recvmmsg+0x519/0x6f0 [ 652.805547][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.811670][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.817838][T19427] __do_fast_syscall_32+0x127/0x180 [ 652.823063][T19427] do_fast_syscall_32+0x77/0xd0 [ 652.827932][T19427] do_SYSENTER_32+0x73/0x90 [ 652.832463][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.838803][T19427] [ 652.841168][T19427] Uninit was stored to memory at: [ 652.846183][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 652.851916][T19427] __msan_chain_origin+0x54/0xa0 [ 652.856862][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 652.861990][T19427] get_compat_msghdr+0x108/0x2b0 [ 652.866961][T19427] do_recvmmsg+0xdc1/0x22d0 [ 652.871475][T19427] __sys_recvmmsg+0x519/0x6f0 [ 652.876159][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.882234][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.888398][T19427] __do_fast_syscall_32+0x127/0x180 [ 652.893619][T19427] do_fast_syscall_32+0x77/0xd0 [ 652.898478][T19427] do_SYSENTER_32+0x73/0x90 [ 652.902988][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.909324][T19427] [ 652.911641][T19427] Uninit was stored to memory at: [ 652.916648][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 652.922379][T19427] __msan_chain_origin+0x54/0xa0 [ 652.927341][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 652.932457][T19427] get_compat_msghdr+0x108/0x2b0 [ 652.937398][T19427] do_recvmmsg+0xdc1/0x22d0 [ 652.941916][T19427] __sys_recvmmsg+0x519/0x6f0 [ 652.946598][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 652.952671][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 652.958831][T19427] __do_fast_syscall_32+0x127/0x180 [ 652.964042][T19427] do_fast_syscall_32+0x77/0xd0 [ 652.968902][T19427] do_SYSENTER_32+0x73/0x90 [ 652.973496][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 652.979834][T19427] [ 652.982151][T19427] Uninit was stored to memory at: [ 652.987186][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 652.992914][T19427] __msan_chain_origin+0x54/0xa0 [ 652.997860][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 653.003077][T19427] get_compat_msghdr+0x108/0x2b0 [ 653.008019][T19427] do_recvmmsg+0xdc1/0x22d0 [ 653.012533][T19427] __sys_recvmmsg+0x519/0x6f0 [ 653.017217][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 653.023287][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 653.029454][T19427] __do_fast_syscall_32+0x127/0x180 [ 653.034668][T19427] do_fast_syscall_32+0x77/0xd0 [ 653.039612][T19427] do_SYSENTER_32+0x73/0x90 [ 653.044130][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 653.050477][T19427] [ 653.052796][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 653.059464][T19427] do_recvmmsg+0xbf/0x22d0 [ 653.063889][T19427] do_recvmmsg+0xbf/0x22d0 [ 653.742280][T19427] not chained 570000 origins [ 653.746893][T19427] CPU: 1 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 653.755655][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 653.765711][T19427] Call Trace: [ 653.768989][T19427] dump_stack+0x24c/0x2e0 [ 653.773339][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 653.779072][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 653.784462][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 653.790030][T19427] ? kmsan_get_metadata+0x116/0x180 [ 653.795244][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 653.800888][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 653.806983][T19427] ? kmsan_get_metadata+0x116/0x180 [ 653.812194][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 653.818006][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 653.824082][T19427] ? kmsan_get_metadata+0x116/0x180 [ 653.829289][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 653.835051][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 653.841124][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 653.846433][T19427] ? _copy_from_user+0x1fd/0x300 [ 653.851380][T19427] __msan_chain_origin+0x54/0xa0 [ 653.856323][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 653.861487][T19427] get_compat_msghdr+0x108/0x2b0 [ 653.866433][T19427] do_recvmmsg+0xdc1/0x22d0 [ 653.870962][T19427] ? kmsan_get_metadata+0x116/0x180 [ 653.876164][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 653.881800][T19427] ? __msan_poison_alloca+0xec/0x110 [ 653.887087][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 653.891860][T19427] __sys_recvmmsg+0x519/0x6f0 [ 653.896552][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 653.902636][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 653.908800][T19427] __do_fast_syscall_32+0x127/0x180 [ 653.914015][T19427] do_fast_syscall_32+0x77/0xd0 [ 653.918874][T19427] do_SYSENTER_32+0x73/0x90 [ 653.923398][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 653.929823][T19427] RIP: 0023:0xf7fe1549 [ 653.933903][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 653.953619][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 653.962043][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 653.970211][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 653.978190][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 653.986162][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 653.994151][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 654.002140][T19427] Uninit was stored to memory at: [ 654.007154][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 654.012881][T19427] __msan_chain_origin+0x54/0xa0 [ 654.017856][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 654.022981][T19427] get_compat_msghdr+0x108/0x2b0 [ 654.027931][T19427] do_recvmmsg+0xdc1/0x22d0 [ 654.032442][T19427] __sys_recvmmsg+0x519/0x6f0 [ 654.037213][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.043295][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.049464][T19427] __do_fast_syscall_32+0x127/0x180 [ 654.054687][T19427] do_fast_syscall_32+0x77/0xd0 [ 654.059550][T19427] do_SYSENTER_32+0x73/0x90 [ 654.064056][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.070392][T19427] [ 654.072714][T19427] Uninit was stored to memory at: [ 654.077725][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 654.083454][T19427] __msan_chain_origin+0x54/0xa0 [ 654.088396][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 654.093546][T19427] get_compat_msghdr+0x108/0x2b0 [ 654.098486][T19427] do_recvmmsg+0xdc1/0x22d0 [ 654.102998][T19427] __sys_recvmmsg+0x519/0x6f0 [ 654.107677][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.113748][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.119921][T19427] __do_fast_syscall_32+0x127/0x180 [ 654.125135][T19427] do_fast_syscall_32+0x77/0xd0 [ 654.129998][T19427] do_SYSENTER_32+0x73/0x90 [ 654.134512][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.140852][T19427] [ 654.143172][T19427] Uninit was stored to memory at: [ 654.148179][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 654.153902][T19427] __msan_chain_origin+0x54/0xa0 [ 654.158863][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 654.163989][T19427] get_compat_msghdr+0x108/0x2b0 [ 654.168930][T19427] do_recvmmsg+0xdc1/0x22d0 [ 654.173440][T19427] __sys_recvmmsg+0x519/0x6f0 [ 654.178122][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.184196][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.190357][T19427] __do_fast_syscall_32+0x127/0x180 [ 654.195569][T19427] do_fast_syscall_32+0x77/0xd0 [ 654.200421][T19427] do_SYSENTER_32+0x73/0x90 [ 654.204951][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.211318][T19427] [ 654.213633][T19427] Uninit was stored to memory at: [ 654.218645][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 654.224366][T19427] __msan_chain_origin+0x54/0xa0 [ 654.229302][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 654.234414][T19427] get_compat_msghdr+0x108/0x2b0 [ 654.239349][T19427] do_recvmmsg+0xdc1/0x22d0 [ 654.243854][T19427] __sys_recvmmsg+0x519/0x6f0 [ 654.248539][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.254616][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.260773][T19427] __do_fast_syscall_32+0x127/0x180 [ 654.265996][T19427] do_fast_syscall_32+0x77/0xd0 [ 654.270856][T19427] do_SYSENTER_32+0x73/0x90 [ 654.275374][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.281711][T19427] [ 654.284024][T19427] Uninit was stored to memory at: [ 654.289030][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 654.294760][T19427] __msan_chain_origin+0x54/0xa0 [ 654.299705][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 654.304870][T19427] get_compat_msghdr+0x108/0x2b0 [ 654.309842][T19427] do_recvmmsg+0xdc1/0x22d0 [ 654.314360][T19427] __sys_recvmmsg+0x519/0x6f0 [ 654.319043][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.325117][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.331278][T19427] __do_fast_syscall_32+0x127/0x180 [ 654.336483][T19427] do_fast_syscall_32+0x77/0xd0 [ 654.341341][T19427] do_SYSENTER_32+0x73/0x90 [ 654.345856][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.352201][T19427] [ 654.354528][T19427] Uninit was stored to memory at: [ 654.359540][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 654.365264][T19427] __msan_chain_origin+0x54/0xa0 [ 654.370206][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 654.375327][T19427] get_compat_msghdr+0x108/0x2b0 [ 654.380270][T19427] do_recvmmsg+0xdc1/0x22d0 [ 654.384787][T19427] __sys_recvmmsg+0x519/0x6f0 [ 654.389471][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.395550][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.401718][T19427] __do_fast_syscall_32+0x127/0x180 [ 654.406928][T19427] do_fast_syscall_32+0x77/0xd0 [ 654.411780][T19427] do_SYSENTER_32+0x73/0x90 [ 654.416285][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.422618][T19427] [ 654.424930][T19427] Uninit was stored to memory at: [ 654.429940][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 654.435668][T19427] __msan_chain_origin+0x54/0xa0 [ 654.440606][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 654.445729][T19427] get_compat_msghdr+0x108/0x2b0 [ 654.450674][T19427] do_recvmmsg+0xdc1/0x22d0 [ 654.455189][T19427] __sys_recvmmsg+0x519/0x6f0 [ 654.459870][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.465954][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.472110][T19427] __do_fast_syscall_32+0x127/0x180 [ 654.477319][T19427] do_fast_syscall_32+0x77/0xd0 [ 654.482204][T19427] do_SYSENTER_32+0x73/0x90 [ 654.486712][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.493047][T19427] [ 654.495368][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 654.502048][T19427] do_recvmmsg+0xbf/0x22d0 [ 654.506484][T19427] do_recvmmsg+0xbf/0x22d0 [ 654.795848][T19427] not chained 580000 origins [ 654.800594][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 654.809332][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 654.819361][T19427] Call Trace: [ 654.822627][T19427] dump_stack+0x24c/0x2e0 [ 654.826936][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 654.832631][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 654.838006][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 654.843529][T19427] ? kmsan_get_metadata+0x116/0x180 [ 654.848794][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 654.854517][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 654.860586][T19427] ? kmsan_get_metadata+0x116/0x180 [ 654.865839][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 654.871670][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 654.877716][T19427] ? kmsan_get_metadata+0x116/0x180 [ 654.882893][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 654.888505][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 654.894570][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 654.899851][T19427] ? _copy_from_user+0x1fd/0x300 [ 654.904800][T19427] __msan_chain_origin+0x54/0xa0 [ 654.909837][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 654.914937][T19427] get_compat_msghdr+0x108/0x2b0 [ 654.919856][T19427] do_recvmmsg+0xdc1/0x22d0 [ 654.924383][T19427] ? kmsan_get_metadata+0x116/0x180 [ 654.929568][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 654.935203][T19427] ? __msan_poison_alloca+0xec/0x110 [ 654.940473][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 654.945277][T19427] __sys_recvmmsg+0x519/0x6f0 [ 654.949941][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 654.955997][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 654.963641][T19427] __do_fast_syscall_32+0x127/0x180 [ 654.968841][T19427] do_fast_syscall_32+0x77/0xd0 [ 654.973700][T19427] do_SYSENTER_32+0x73/0x90 [ 654.978190][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 654.984504][T19427] RIP: 0023:0xf7fe1549 [ 654.988548][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 655.008134][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 655.016534][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 655.024484][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 655.032436][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 655.040402][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 655.048358][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 655.056318][T19427] Uninit was stored to memory at: [ 655.061317][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 655.067021][T19427] __msan_chain_origin+0x54/0xa0 [ 655.071932][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 655.077040][T19427] get_compat_msghdr+0x108/0x2b0 [ 655.081957][T19427] do_recvmmsg+0xdc1/0x22d0 [ 655.086476][T19427] __sys_recvmmsg+0x519/0x6f0 [ 655.091171][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.097258][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.103392][T19427] __do_fast_syscall_32+0x127/0x180 [ 655.108569][T19427] do_fast_syscall_32+0x77/0xd0 [ 655.113416][T19427] do_SYSENTER_32+0x73/0x90 [ 655.117934][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.124244][T19427] [ 655.126546][T19427] Uninit was stored to memory at: [ 655.131590][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 655.137319][T19427] __msan_chain_origin+0x54/0xa0 [ 655.142417][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 655.147511][T19427] get_compat_msghdr+0x108/0x2b0 [ 655.152427][T19427] do_recvmmsg+0xdc1/0x22d0 [ 655.156926][T19427] __sys_recvmmsg+0x519/0x6f0 [ 655.161582][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.167631][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.173763][T19427] __do_fast_syscall_32+0x127/0x180 [ 655.178943][T19427] do_fast_syscall_32+0x77/0xd0 [ 655.183787][T19427] do_SYSENTER_32+0x73/0x90 [ 655.188275][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.194599][T19427] [ 655.196907][T19427] Uninit was stored to memory at: [ 655.201922][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 655.207625][T19427] __msan_chain_origin+0x54/0xa0 [ 655.212594][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 655.217710][T19427] get_compat_msghdr+0x108/0x2b0 [ 655.222627][T19427] do_recvmmsg+0xdc1/0x22d0 [ 655.227121][T19427] __sys_recvmmsg+0x519/0x6f0 [ 655.231790][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.237893][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.244071][T19427] __do_fast_syscall_32+0x127/0x180 [ 655.249255][T19427] do_fast_syscall_32+0x77/0xd0 [ 655.254088][T19427] do_SYSENTER_32+0x73/0x90 [ 655.258573][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.264885][T19427] [ 655.267181][T19427] Uninit was stored to memory at: [ 655.272173][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 655.277933][T19427] __msan_chain_origin+0x54/0xa0 [ 655.282846][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 655.287931][T19427] get_compat_msghdr+0x108/0x2b0 [ 655.292844][T19427] do_recvmmsg+0xdc1/0x22d0 [ 655.297325][T19427] __sys_recvmmsg+0x519/0x6f0 [ 655.301979][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.308029][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.314160][T19427] __do_fast_syscall_32+0x127/0x180 [ 655.319340][T19427] do_fast_syscall_32+0x77/0xd0 [ 655.324193][T19427] do_SYSENTER_32+0x73/0x90 [ 655.328679][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.334989][T19427] [ 655.337287][T19427] Uninit was stored to memory at: [ 655.342277][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 655.347977][T19427] __msan_chain_origin+0x54/0xa0 [ 655.352888][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 655.357976][T19427] get_compat_msghdr+0x108/0x2b0 [ 655.362888][T19427] do_recvmmsg+0xdc1/0x22d0 [ 655.367388][T19427] __sys_recvmmsg+0x519/0x6f0 [ 655.372051][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.378122][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.384271][T19427] __do_fast_syscall_32+0x127/0x180 [ 655.389452][T19427] do_fast_syscall_32+0x77/0xd0 [ 655.394298][T19427] do_SYSENTER_32+0x73/0x90 [ 655.398870][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.405173][T19427] [ 655.407471][T19427] Uninit was stored to memory at: [ 655.412465][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 655.418164][T19427] __msan_chain_origin+0x54/0xa0 [ 655.423080][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 655.428184][T19427] get_compat_msghdr+0x108/0x2b0 [ 655.433096][T19427] do_recvmmsg+0xdc1/0x22d0 [ 655.437589][T19427] __sys_recvmmsg+0x519/0x6f0 [ 655.442244][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.448311][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.454436][T19427] __do_fast_syscall_32+0x127/0x180 [ 655.459614][T19427] do_fast_syscall_32+0x77/0xd0 [ 655.464440][T19427] do_SYSENTER_32+0x73/0x90 [ 655.468958][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.475260][T19427] [ 655.477597][T19427] Uninit was stored to memory at: [ 655.482589][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 655.488285][T19427] __msan_chain_origin+0x54/0xa0 [ 655.493206][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 655.498297][T19427] get_compat_msghdr+0x108/0x2b0 [ 655.503211][T19427] do_recvmmsg+0xdc1/0x22d0 [ 655.507695][T19427] __sys_recvmmsg+0x519/0x6f0 [ 655.512353][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.518449][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.524582][T19427] __do_fast_syscall_32+0x127/0x180 [ 655.529762][T19427] do_fast_syscall_32+0x77/0xd0 [ 655.534597][T19427] do_SYSENTER_32+0x73/0x90 [ 655.539107][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.545482][T19427] [ 655.547778][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 655.554419][T19427] do_recvmmsg+0xbf/0x22d0 [ 655.558814][T19427] do_recvmmsg+0xbf/0x22d0 [ 655.741339][T19427] not chained 590000 origins [ 655.745957][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 655.754694][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 655.764724][T19427] Call Trace: [ 655.767979][T19427] dump_stack+0x24c/0x2e0 [ 655.772289][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 655.777998][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 655.783363][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 655.788888][T19427] ? kmsan_get_metadata+0x116/0x180 [ 655.794061][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 655.799671][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 655.805712][T19427] ? kmsan_get_metadata+0x116/0x180 [ 655.810913][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 655.816749][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 655.822794][T19427] ? kmsan_get_metadata+0x116/0x180 [ 655.828006][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 655.833614][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 655.839666][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 655.844929][T19427] ? _copy_from_user+0x1fd/0x300 [ 655.849850][T19427] __msan_chain_origin+0x54/0xa0 [ 655.854825][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 655.859934][T19427] get_compat_msghdr+0x108/0x2b0 [ 655.864858][T19427] do_recvmmsg+0xdc1/0x22d0 [ 655.869373][T19427] ? kmsan_get_metadata+0x116/0x180 [ 655.874572][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 655.880197][T19427] ? __msan_poison_alloca+0xec/0x110 [ 655.885470][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 655.890217][T19427] __sys_recvmmsg+0x519/0x6f0 [ 655.894907][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 655.900983][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 655.907119][T19427] __do_fast_syscall_32+0x127/0x180 [ 655.912299][T19427] do_fast_syscall_32+0x77/0xd0 [ 655.917148][T19427] do_SYSENTER_32+0x73/0x90 [ 655.921629][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 655.927932][T19427] RIP: 0023:0xf7fe1549 [ 655.931997][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 655.951581][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 655.959979][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 655.967955][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 655.975902][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 655.983997][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 655.992029][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 655.999989][T19427] Uninit was stored to memory at: [ 656.004999][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 656.010702][T19427] __msan_chain_origin+0x54/0xa0 [ 656.015626][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 656.020751][T19427] get_compat_msghdr+0x108/0x2b0 [ 656.025671][T19427] do_recvmmsg+0xdc1/0x22d0 [ 656.030153][T19427] __sys_recvmmsg+0x519/0x6f0 [ 656.034912][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.040974][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.047225][T19427] __do_fast_syscall_32+0x127/0x180 [ 656.052450][T19427] do_fast_syscall_32+0x77/0xd0 [ 656.057283][T19427] do_SYSENTER_32+0x73/0x90 [ 656.061766][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.068119][T19427] [ 656.070429][T19427] Uninit was stored to memory at: [ 656.075612][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 656.081317][T19427] __msan_chain_origin+0x54/0xa0 [ 656.086235][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 656.091330][T19427] get_compat_msghdr+0x108/0x2b0 [ 656.096248][T19427] do_recvmmsg+0xdc1/0x22d0 [ 656.100761][T19427] __sys_recvmmsg+0x519/0x6f0 [ 656.105442][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.111513][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.117651][T19427] __do_fast_syscall_32+0x127/0x180 [ 656.122831][T19427] do_fast_syscall_32+0x77/0xd0 [ 656.127664][T19427] do_SYSENTER_32+0x73/0x90 [ 656.132144][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.138454][T19427] [ 656.140751][T19427] Uninit was stored to memory at: [ 656.145742][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 656.151439][T19427] __msan_chain_origin+0x54/0xa0 [ 656.156350][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 656.161442][T19427] get_compat_msghdr+0x108/0x2b0 [ 656.166370][T19427] do_recvmmsg+0xdc1/0x22d0 [ 656.170869][T19427] __sys_recvmmsg+0x519/0x6f0 [ 656.175528][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.181575][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.187704][T19427] __do_fast_syscall_32+0x127/0x180 [ 656.192886][T19427] do_fast_syscall_32+0x77/0xd0 [ 656.197808][T19427] do_SYSENTER_32+0x73/0x90 [ 656.202291][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.208619][T19427] [ 656.210931][T19427] Uninit was stored to memory at: [ 656.215922][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 656.221622][T19427] __msan_chain_origin+0x54/0xa0 [ 656.226575][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 656.231680][T19427] get_compat_msghdr+0x108/0x2b0 [ 656.236613][T19427] do_recvmmsg+0xdc1/0x22d0 [ 656.241097][T19427] __sys_recvmmsg+0x519/0x6f0 [ 656.245755][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.251802][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.257937][T19427] __do_fast_syscall_32+0x127/0x180 [ 656.263379][T19427] do_fast_syscall_32+0x77/0xd0 [ 656.268217][T19427] do_SYSENTER_32+0x73/0x90 [ 656.272702][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.279011][T19427] [ 656.281312][T19427] Uninit was stored to memory at: [ 656.286303][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 656.292000][T19427] __msan_chain_origin+0x54/0xa0 [ 656.296918][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 656.302007][T19427] get_compat_msghdr+0x108/0x2b0 [ 656.306922][T19427] do_recvmmsg+0xdc1/0x22d0 [ 656.311409][T19427] __sys_recvmmsg+0x519/0x6f0 [ 656.316065][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.322109][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.328242][T19427] __do_fast_syscall_32+0x127/0x180 [ 656.333425][T19427] do_fast_syscall_32+0x77/0xd0 [ 656.338260][T19427] do_SYSENTER_32+0x73/0x90 [ 656.342740][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.349045][T19427] [ 656.351344][T19427] Uninit was stored to memory at: [ 656.356335][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 656.362048][T19427] __msan_chain_origin+0x54/0xa0 [ 656.366958][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 656.372042][T19427] get_compat_msghdr+0x108/0x2b0 [ 656.376954][T19427] do_recvmmsg+0xdc1/0x22d0 [ 656.381432][T19427] __sys_recvmmsg+0x519/0x6f0 [ 656.386088][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.392168][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.398301][T19427] __do_fast_syscall_32+0x127/0x180 [ 656.403477][T19427] do_fast_syscall_32+0x77/0xd0 [ 656.408306][T19427] do_SYSENTER_32+0x73/0x90 [ 656.412784][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.419090][T19427] [ 656.421388][T19427] Uninit was stored to memory at: [ 656.426385][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 656.432088][T19427] __msan_chain_origin+0x54/0xa0 [ 656.437000][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 656.442091][T19427] get_compat_msghdr+0x108/0x2b0 [ 656.447009][T19427] do_recvmmsg+0xdc1/0x22d0 [ 656.451491][T19427] __sys_recvmmsg+0x519/0x6f0 [ 656.456147][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.462190][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.468324][T19427] __do_fast_syscall_32+0x127/0x180 [ 656.473499][T19427] do_fast_syscall_32+0x77/0xd0 [ 656.478327][T19427] do_SYSENTER_32+0x73/0x90 [ 656.482808][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.489132][T19427] [ 656.491432][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 656.498074][T19427] do_recvmmsg+0xbf/0x22d0 [ 656.502468][T19427] do_recvmmsg+0xbf/0x22d0 [ 656.676009][T19427] not chained 600000 origins [ 656.680608][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 656.689357][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 656.699413][T19427] Call Trace: [ 656.702688][T19427] dump_stack+0x24c/0x2e0 [ 656.707010][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 656.712716][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 656.718080][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 656.723615][T19427] ? kmsan_get_metadata+0x116/0x180 [ 656.728800][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 656.734421][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 656.740481][T19427] ? kmsan_get_metadata+0x116/0x180 [ 656.745664][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 656.751459][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 656.757534][T19427] ? kmsan_get_metadata+0x116/0x180 [ 656.762731][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 656.768345][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 656.774403][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 656.779718][T19427] ? _copy_from_user+0x1fd/0x300 [ 656.784643][T19427] __msan_chain_origin+0x54/0xa0 [ 656.789577][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 656.794703][T19427] get_compat_msghdr+0x108/0x2b0 [ 656.799634][T19427] do_recvmmsg+0xdc1/0x22d0 [ 656.804136][T19427] ? kmsan_get_metadata+0x116/0x180 [ 656.809318][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 656.814963][T19427] ? __msan_poison_alloca+0xec/0x110 [ 656.820249][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 656.824997][T19427] __sys_recvmmsg+0x519/0x6f0 [ 656.829665][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.835741][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.841904][T19427] __do_fast_syscall_32+0x127/0x180 [ 656.847103][T19427] do_fast_syscall_32+0x77/0xd0 [ 656.852116][T19427] do_SYSENTER_32+0x73/0x90 [ 656.856631][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 656.862944][T19427] RIP: 0023:0xf7fe1549 [ 656.866994][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 656.886586][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 656.895026][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 656.903012][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 656.910980][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 656.919039][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 656.927081][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 656.935039][T19427] Uninit was stored to memory at: [ 656.940046][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 656.945759][T19427] __msan_chain_origin+0x54/0xa0 [ 656.950679][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 656.955800][T19427] get_compat_msghdr+0x108/0x2b0 [ 656.960719][T19427] do_recvmmsg+0xdc1/0x22d0 [ 656.965206][T19427] __sys_recvmmsg+0x519/0x6f0 [ 656.969864][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 656.975947][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 656.982125][T19427] __do_fast_syscall_32+0x127/0x180 [ 656.987401][T19427] do_fast_syscall_32+0x77/0xd0 [ 656.992243][T19427] do_SYSENTER_32+0x73/0x90 [ 656.996796][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.003108][T19427] [ 657.005413][T19427] Uninit was stored to memory at: [ 657.010407][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 657.016133][T19427] __msan_chain_origin+0x54/0xa0 [ 657.021050][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 657.026154][T19427] get_compat_msghdr+0x108/0x2b0 [ 657.031072][T19427] do_recvmmsg+0xdc1/0x22d0 [ 657.035595][T19427] __sys_recvmmsg+0x519/0x6f0 [ 657.040260][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.046339][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.052478][T19427] __do_fast_syscall_32+0x127/0x180 [ 657.057664][T19427] do_fast_syscall_32+0x77/0xd0 [ 657.062501][T19427] do_SYSENTER_32+0x73/0x90 [ 657.066991][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.073300][T19427] [ 657.075605][T19427] Uninit was stored to memory at: [ 657.080644][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 657.086500][T19427] __msan_chain_origin+0x54/0xa0 [ 657.091424][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 657.096545][T19427] get_compat_msghdr+0x108/0x2b0 [ 657.101469][T19427] do_recvmmsg+0xdc1/0x22d0 [ 657.105998][T19427] __sys_recvmmsg+0x519/0x6f0 [ 657.110660][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.116737][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.122872][T19427] __do_fast_syscall_32+0x127/0x180 [ 657.128050][T19427] do_fast_syscall_32+0x77/0xd0 [ 657.132876][T19427] do_SYSENTER_32+0x73/0x90 [ 657.137356][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.143664][T19427] [ 657.145962][T19427] Uninit was stored to memory at: [ 657.150956][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 657.156684][T19427] __msan_chain_origin+0x54/0xa0 [ 657.161607][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 657.166698][T19427] get_compat_msghdr+0x108/0x2b0 [ 657.171612][T19427] do_recvmmsg+0xdc1/0x22d0 [ 657.176128][T19427] __sys_recvmmsg+0x519/0x6f0 [ 657.180784][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.186918][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.193050][T19427] __do_fast_syscall_32+0x127/0x180 [ 657.198242][T19427] do_fast_syscall_32+0x77/0xd0 [ 657.203072][T19427] do_SYSENTER_32+0x73/0x90 [ 657.207556][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.213866][T19427] [ 657.216179][T19427] Uninit was stored to memory at: [ 657.221176][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 657.226878][T19427] __msan_chain_origin+0x54/0xa0 [ 657.231800][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 657.236917][T19427] get_compat_msghdr+0x108/0x2b0 [ 657.241838][T19427] do_recvmmsg+0xdc1/0x22d0 [ 657.246325][T19427] __sys_recvmmsg+0x519/0x6f0 [ 657.250989][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.257065][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.263217][T19427] __do_fast_syscall_32+0x127/0x180 [ 657.268395][T19427] do_fast_syscall_32+0x77/0xd0 [ 657.273231][T19427] do_SYSENTER_32+0x73/0x90 [ 657.277712][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.284019][T19427] [ 657.286330][T19427] Uninit was stored to memory at: [ 657.291329][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 657.297080][T19427] __msan_chain_origin+0x54/0xa0 [ 657.302000][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 657.307118][T19427] get_compat_msghdr+0x108/0x2b0 [ 657.312040][T19427] do_recvmmsg+0xdc1/0x22d0 [ 657.316559][T19427] __sys_recvmmsg+0x519/0x6f0 [ 657.321219][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.327290][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.333424][T19427] __do_fast_syscall_32+0x127/0x180 [ 657.338615][T19427] do_fast_syscall_32+0x77/0xd0 [ 657.343452][T19427] do_SYSENTER_32+0x73/0x90 [ 657.347960][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.354288][T19427] [ 657.356596][T19427] Uninit was stored to memory at: [ 657.361691][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 657.367399][T19427] __msan_chain_origin+0x54/0xa0 [ 657.372316][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 657.377433][T19427] get_compat_msghdr+0x108/0x2b0 [ 657.382351][T19427] do_recvmmsg+0xdc1/0x22d0 [ 657.386837][T19427] __sys_recvmmsg+0x519/0x6f0 [ 657.391615][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.397781][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.403918][T19427] __do_fast_syscall_32+0x127/0x180 [ 657.409102][T19427] do_fast_syscall_32+0x77/0xd0 [ 657.413950][T19427] do_SYSENTER_32+0x73/0x90 [ 657.418448][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.424758][T19427] [ 657.427063][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 657.433706][T19427] do_recvmmsg+0xbf/0x22d0 [ 657.438125][T19427] do_recvmmsg+0xbf/0x22d0 [ 657.605090][T19427] not chained 610000 origins [ 657.609710][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 657.618488][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 657.628524][T19427] Call Trace: [ 657.631784][T19427] dump_stack+0x24c/0x2e0 [ 657.636101][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 657.641804][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 657.647198][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 657.652723][T19427] ? kmsan_get_metadata+0x116/0x180 [ 657.657903][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 657.663520][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 657.669592][T19427] ? kmsan_get_metadata+0x116/0x180 [ 657.674770][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 657.680559][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 657.686639][T19427] ? kmsan_get_metadata+0x116/0x180 [ 657.691850][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 657.697491][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 657.703538][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 657.708801][T19427] ? _copy_from_user+0x1fd/0x300 [ 657.713726][T19427] __msan_chain_origin+0x54/0xa0 [ 657.718672][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 657.723774][T19427] get_compat_msghdr+0x108/0x2b0 [ 657.728694][T19427] do_recvmmsg+0xdc1/0x22d0 [ 657.733201][T19427] ? kmsan_get_metadata+0x116/0x180 [ 657.738377][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 657.743987][T19427] ? __msan_poison_alloca+0xec/0x110 [ 657.749263][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 657.754012][T19427] __sys_recvmmsg+0x519/0x6f0 [ 657.758683][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.764741][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.770889][T19427] __do_fast_syscall_32+0x127/0x180 [ 657.776161][T19427] do_fast_syscall_32+0x77/0xd0 [ 657.781047][T19427] do_SYSENTER_32+0x73/0x90 [ 657.785539][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.791864][T19427] RIP: 0023:0xf7fe1549 [ 657.795971][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 657.815680][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 657.824084][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 657.832044][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 657.840022][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 657.848192][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 657.856152][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 657.864113][T19427] Uninit was stored to memory at: [ 657.869110][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 657.875255][T19427] __msan_chain_origin+0x54/0xa0 [ 657.880202][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 657.885298][T19427] get_compat_msghdr+0x108/0x2b0 [ 657.890219][T19427] do_recvmmsg+0xdc1/0x22d0 [ 657.894922][T19427] __sys_recvmmsg+0x519/0x6f0 [ 657.899590][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.905643][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.911785][T19427] __do_fast_syscall_32+0x127/0x180 [ 657.916992][T19427] do_fast_syscall_32+0x77/0xd0 [ 657.921830][T19427] do_SYSENTER_32+0x73/0x90 [ 657.926328][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 657.932639][T19427] [ 657.934939][T19427] Uninit was stored to memory at: [ 657.939930][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 657.945632][T19427] __msan_chain_origin+0x54/0xa0 [ 657.950555][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 657.955701][T19427] get_compat_msghdr+0x108/0x2b0 [ 657.960708][T19427] do_recvmmsg+0xdc1/0x22d0 [ 657.965212][T19427] __sys_recvmmsg+0x519/0x6f0 [ 657.969873][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 657.975983][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 657.982124][T19427] __do_fast_syscall_32+0x127/0x180 [ 657.987331][T19427] do_fast_syscall_32+0x77/0xd0 [ 657.992168][T19427] do_SYSENTER_32+0x73/0x90 [ 657.996655][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.002999][T19427] [ 658.005304][T19427] Uninit was stored to memory at: [ 658.010304][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 658.016033][T19427] __msan_chain_origin+0x54/0xa0 [ 658.020957][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 658.026086][T19427] get_compat_msghdr+0x108/0x2b0 [ 658.031010][T19427] do_recvmmsg+0xdc1/0x22d0 [ 658.035524][T19427] __sys_recvmmsg+0x519/0x6f0 [ 658.040183][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.046236][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.052374][T19427] __do_fast_syscall_32+0x127/0x180 [ 658.057560][T19427] do_fast_syscall_32+0x77/0xd0 [ 658.062402][T19427] do_SYSENTER_32+0x73/0x90 [ 658.066893][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.073203][T19427] [ 658.075503][T19427] Uninit was stored to memory at: [ 658.080495][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 658.086198][T19427] __msan_chain_origin+0x54/0xa0 [ 658.091130][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 658.096272][T19427] get_compat_msghdr+0x108/0x2b0 [ 658.101208][T19427] do_recvmmsg+0xdc1/0x22d0 [ 658.105695][T19427] __sys_recvmmsg+0x519/0x6f0 [ 658.110357][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.116436][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.122576][T19427] __do_fast_syscall_32+0x127/0x180 [ 658.127756][T19427] do_fast_syscall_32+0x77/0xd0 [ 658.132585][T19427] do_SYSENTER_32+0x73/0x90 [ 658.137081][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.143423][T19427] [ 658.145724][T19427] Uninit was stored to memory at: [ 658.150719][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 658.156549][T19427] __msan_chain_origin+0x54/0xa0 [ 658.161480][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 658.166590][T19427] get_compat_msghdr+0x108/0x2b0 [ 658.171525][T19427] do_recvmmsg+0xdc1/0x22d0 [ 658.176030][T19427] __sys_recvmmsg+0x519/0x6f0 [ 658.180707][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.186756][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.192889][T19427] __do_fast_syscall_32+0x127/0x180 [ 658.198174][T19427] do_fast_syscall_32+0x77/0xd0 [ 658.203015][T19427] do_SYSENTER_32+0x73/0x90 [ 658.207541][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.213850][T19427] [ 658.216163][T19427] Uninit was stored to memory at: [ 658.221156][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 658.226879][T19427] __msan_chain_origin+0x54/0xa0 [ 658.231797][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 658.236925][T19427] get_compat_msghdr+0x108/0x2b0 [ 658.241843][T19427] do_recvmmsg+0xdc1/0x22d0 [ 658.246327][T19427] __sys_recvmmsg+0x519/0x6f0 [ 658.250985][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.257066][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.263205][T19427] __do_fast_syscall_32+0x127/0x180 [ 658.268393][T19427] do_fast_syscall_32+0x77/0xd0 [ 658.273253][T19427] do_SYSENTER_32+0x73/0x90 [ 658.277837][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.284151][T19427] [ 658.286479][T19427] Uninit was stored to memory at: [ 658.291481][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 658.297211][T19427] __msan_chain_origin+0x54/0xa0 [ 658.302135][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 658.307230][T19427] get_compat_msghdr+0x108/0x2b0 [ 658.312149][T19427] do_recvmmsg+0xdc1/0x22d0 [ 658.316657][T19427] __sys_recvmmsg+0x519/0x6f0 [ 658.321319][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.327371][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.333509][T19427] __do_fast_syscall_32+0x127/0x180 [ 658.338690][T19427] do_fast_syscall_32+0x77/0xd0 [ 658.343523][T19427] do_SYSENTER_32+0x73/0x90 [ 658.348008][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.354320][T19427] [ 658.356621][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 658.363260][T19427] do_recvmmsg+0xbf/0x22d0 [ 658.367654][T19427] do_recvmmsg+0xbf/0x22d0 [ 658.550303][T19427] not chained 620000 origins [ 658.554936][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 658.563707][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 658.573813][T19427] Call Trace: [ 658.577075][T19427] dump_stack+0x24c/0x2e0 [ 658.581394][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 658.587171][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 658.592533][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 658.598066][T19427] ? kmsan_get_metadata+0x116/0x180 [ 658.603248][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 658.608874][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 658.614919][T19427] ? kmsan_get_metadata+0x116/0x180 [ 658.620100][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 658.625907][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 658.631951][T19427] ? kmsan_get_metadata+0x116/0x180 [ 658.637145][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 658.642760][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 658.648833][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 658.654102][T19427] ? _copy_from_user+0x1fd/0x300 [ 658.659021][T19427] __msan_chain_origin+0x54/0xa0 [ 658.663935][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 658.669036][T19427] get_compat_msghdr+0x108/0x2b0 [ 658.674014][T19427] do_recvmmsg+0xdc1/0x22d0 [ 658.678512][T19427] ? kmsan_get_metadata+0x116/0x180 [ 658.683711][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 658.689327][T19427] ? __msan_poison_alloca+0xec/0x110 [ 658.694611][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 658.699382][T19427] __sys_recvmmsg+0x519/0x6f0 [ 658.704110][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.710285][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.716468][T19427] __do_fast_syscall_32+0x127/0x180 [ 658.721671][T19427] do_fast_syscall_32+0x77/0xd0 [ 658.726537][T19427] do_SYSENTER_32+0x73/0x90 [ 658.731046][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.737391][T19427] RIP: 0023:0xf7fe1549 [ 658.741439][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 658.761040][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 658.769442][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 658.777414][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 658.785368][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 658.793343][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 658.801314][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 658.809268][T19427] Uninit was stored to memory at: [ 658.814260][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 658.819960][T19427] __msan_chain_origin+0x54/0xa0 [ 658.824874][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 658.829965][T19427] get_compat_msghdr+0x108/0x2b0 [ 658.834905][T19427] do_recvmmsg+0xdc1/0x22d0 [ 658.839412][T19427] __sys_recvmmsg+0x519/0x6f0 [ 658.844091][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.850165][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.856438][T19427] __do_fast_syscall_32+0x127/0x180 [ 658.861625][T19427] do_fast_syscall_32+0x77/0xd0 [ 658.866477][T19427] do_SYSENTER_32+0x73/0x90 [ 658.870972][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.877347][T19427] [ 658.879647][T19427] Uninit was stored to memory at: [ 658.884643][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 658.890372][T19427] __msan_chain_origin+0x54/0xa0 [ 658.895321][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 658.900419][T19427] get_compat_msghdr+0x108/0x2b0 [ 658.905345][T19427] do_recvmmsg+0xdc1/0x22d0 [ 658.909834][T19427] __sys_recvmmsg+0x519/0x6f0 [ 658.914520][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.920632][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.926773][T19427] __do_fast_syscall_32+0x127/0x180 [ 658.931975][T19427] do_fast_syscall_32+0x77/0xd0 [ 658.936836][T19427] do_SYSENTER_32+0x73/0x90 [ 658.941360][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 658.947672][T19427] [ 658.949977][T19427] Uninit was stored to memory at: [ 658.954986][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 658.960698][T19427] __msan_chain_origin+0x54/0xa0 [ 658.965629][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 658.970736][T19427] get_compat_msghdr+0x108/0x2b0 [ 658.975735][T19427] do_recvmmsg+0xdc1/0x22d0 [ 658.980225][T19427] __sys_recvmmsg+0x519/0x6f0 [ 658.984884][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 658.990941][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 658.997149][T19427] __do_fast_syscall_32+0x127/0x180 [ 659.002328][T19427] do_fast_syscall_32+0x77/0xd0 [ 659.007158][T19427] do_SYSENTER_32+0x73/0x90 [ 659.011640][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.017987][T19427] [ 659.020292][T19427] Uninit was stored to memory at: [ 659.025285][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 659.030985][T19427] __msan_chain_origin+0x54/0xa0 [ 659.035928][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 659.041020][T19427] get_compat_msghdr+0x108/0x2b0 [ 659.045947][T19427] do_recvmmsg+0xdc1/0x22d0 [ 659.050436][T19427] __sys_recvmmsg+0x519/0x6f0 [ 659.055139][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.061187][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.067350][T19427] __do_fast_syscall_32+0x127/0x180 [ 659.072534][T19427] do_fast_syscall_32+0x77/0xd0 [ 659.077366][T19427] do_SYSENTER_32+0x73/0x90 [ 659.081867][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.088204][T19427] [ 659.090526][T19427] Uninit was stored to memory at: [ 659.095538][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 659.101270][T19427] __msan_chain_origin+0x54/0xa0 [ 659.106216][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 659.111313][T19427] get_compat_msghdr+0x108/0x2b0 [ 659.116264][T19427] do_recvmmsg+0xdc1/0x22d0 [ 659.120749][T19427] __sys_recvmmsg+0x519/0x6f0 [ 659.125415][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.131478][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.137644][T19427] __do_fast_syscall_32+0x127/0x180 [ 659.142829][T19427] do_fast_syscall_32+0x77/0xd0 [ 659.147745][T19427] do_SYSENTER_32+0x73/0x90 [ 659.152223][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.158531][T19427] [ 659.160830][T19427] Uninit was stored to memory at: [ 659.165823][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 659.171522][T19427] __msan_chain_origin+0x54/0xa0 [ 659.176900][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 659.182006][T19427] get_compat_msghdr+0x108/0x2b0 [ 659.186919][T19427] do_recvmmsg+0xdc1/0x22d0 [ 659.191408][T19427] __sys_recvmmsg+0x519/0x6f0 [ 659.196097][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.202170][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.208304][T19427] __do_fast_syscall_32+0x127/0x180 [ 659.213500][T19427] do_fast_syscall_32+0x77/0xd0 [ 659.218333][T19427] do_SYSENTER_32+0x73/0x90 [ 659.222843][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.229153][T19427] [ 659.231458][T19427] Uninit was stored to memory at: [ 659.236468][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 659.242168][T19427] __msan_chain_origin+0x54/0xa0 [ 659.247086][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 659.252176][T19427] get_compat_msghdr+0x108/0x2b0 [ 659.257089][T19427] do_recvmmsg+0xdc1/0x22d0 [ 659.261569][T19427] __sys_recvmmsg+0x519/0x6f0 [ 659.266225][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.272268][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.278401][T19427] __do_fast_syscall_32+0x127/0x180 [ 659.283584][T19427] do_fast_syscall_32+0x77/0xd0 [ 659.288413][T19427] do_SYSENTER_32+0x73/0x90 [ 659.292915][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.299244][T19427] [ 659.301548][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 659.308206][T19427] do_recvmmsg+0xbf/0x22d0 [ 659.312603][T19427] do_recvmmsg+0xbf/0x22d0 [ 659.478016][T19427] not chained 630000 origins [ 659.482634][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 659.491411][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 659.501465][T19427] Call Trace: [ 659.504750][T19427] dump_stack+0x24c/0x2e0 [ 659.509066][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 659.514764][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 659.520132][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 659.525696][T19427] ? kmsan_get_metadata+0x116/0x180 [ 659.530901][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 659.536519][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 659.542585][T19427] ? kmsan_get_metadata+0x116/0x180 [ 659.547774][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 659.553556][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 659.559607][T19427] ? kmsan_get_metadata+0x116/0x180 [ 659.564811][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 659.570426][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 659.576487][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 659.581753][T19427] ? _copy_from_user+0x1fd/0x300 [ 659.586724][T19427] __msan_chain_origin+0x54/0xa0 [ 659.591670][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 659.596763][T19427] get_compat_msghdr+0x108/0x2b0 [ 659.601690][T19427] do_recvmmsg+0xdc1/0x22d0 [ 659.606231][T19427] ? kmsan_get_metadata+0x116/0x180 [ 659.611423][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 659.617037][T19427] ? __msan_poison_alloca+0xec/0x110 [ 659.622321][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 659.627070][T19427] __sys_recvmmsg+0x519/0x6f0 [ 659.631734][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.637808][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.643958][T19427] __do_fast_syscall_32+0x127/0x180 [ 659.649155][T19427] do_fast_syscall_32+0x77/0xd0 [ 659.653982][T19427] do_SYSENTER_32+0x73/0x90 [ 659.658476][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.664804][T19427] RIP: 0023:0xf7fe1549 [ 659.668852][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 659.688447][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 659.696860][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 659.704813][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 659.712798][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 659.720755][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 659.728740][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 659.736694][T19427] Uninit was stored to memory at: [ 659.741690][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 659.747500][T19427] __msan_chain_origin+0x54/0xa0 [ 659.752424][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 659.757537][T19427] get_compat_msghdr+0x108/0x2b0 [ 659.762471][T19427] do_recvmmsg+0xdc1/0x22d0 [ 659.766985][T19427] __sys_recvmmsg+0x519/0x6f0 [ 659.771674][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.777765][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.783899][T19427] __do_fast_syscall_32+0x127/0x180 [ 659.789080][T19427] do_fast_syscall_32+0x77/0xd0 [ 659.793916][T19427] do_SYSENTER_32+0x73/0x90 [ 659.798397][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.804725][T19427] [ 659.807038][T19427] Uninit was stored to memory at: [ 659.812036][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 659.817758][T19427] __msan_chain_origin+0x54/0xa0 [ 659.822674][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 659.827764][T19427] get_compat_msghdr+0x108/0x2b0 [ 659.832676][T19427] do_recvmmsg+0xdc1/0x22d0 [ 659.837159][T19427] __sys_recvmmsg+0x519/0x6f0 [ 659.841812][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.847858][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.853995][T19427] __do_fast_syscall_32+0x127/0x180 [ 659.859200][T19427] do_fast_syscall_32+0x77/0xd0 [ 659.864034][T19427] do_SYSENTER_32+0x73/0x90 [ 659.868519][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.874825][T19427] [ 659.877123][T19427] Uninit was stored to memory at: [ 659.882114][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 659.887814][T19427] __msan_chain_origin+0x54/0xa0 [ 659.892738][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 659.897854][T19427] get_compat_msghdr+0x108/0x2b0 [ 659.902773][T19427] do_recvmmsg+0xdc1/0x22d0 [ 659.907264][T19427] __sys_recvmmsg+0x519/0x6f0 [ 659.911946][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.918025][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.924161][T19427] __do_fast_syscall_32+0x127/0x180 [ 659.929344][T19427] do_fast_syscall_32+0x77/0xd0 [ 659.934200][T19427] do_SYSENTER_32+0x73/0x90 [ 659.938685][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 659.944992][T19427] [ 659.947311][T19427] Uninit was stored to memory at: [ 659.952309][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 659.958008][T19427] __msan_chain_origin+0x54/0xa0 [ 659.962929][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 659.968040][T19427] get_compat_msghdr+0x108/0x2b0 [ 659.972958][T19427] do_recvmmsg+0xdc1/0x22d0 [ 659.977471][T19427] __sys_recvmmsg+0x519/0x6f0 [ 659.982127][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 659.988271][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 659.994466][T19427] __do_fast_syscall_32+0x127/0x180 [ 659.999653][T19427] do_fast_syscall_32+0x77/0xd0 [ 660.004485][T19427] do_SYSENTER_32+0x73/0x90 [ 660.008980][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.015309][T19427] [ 660.017689][T19427] Uninit was stored to memory at: [ 660.022700][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 660.028415][T19427] __msan_chain_origin+0x54/0xa0 [ 660.033352][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 660.038462][T19427] get_compat_msghdr+0x108/0x2b0 [ 660.043418][T19427] do_recvmmsg+0xdc1/0x22d0 [ 660.047910][T19427] __sys_recvmmsg+0x519/0x6f0 [ 660.052577][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.058628][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.064765][T19427] __do_fast_syscall_32+0x127/0x180 [ 660.069958][T19427] do_fast_syscall_32+0x77/0xd0 [ 660.074823][T19427] do_SYSENTER_32+0x73/0x90 [ 660.079340][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.085676][T19427] [ 660.087979][T19427] Uninit was stored to memory at: [ 660.092980][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 660.098785][T19427] __msan_chain_origin+0x54/0xa0 [ 660.103713][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 660.108807][T19427] get_compat_msghdr+0x108/0x2b0 [ 660.113724][T19427] do_recvmmsg+0xdc1/0x22d0 [ 660.118306][T19427] __sys_recvmmsg+0x519/0x6f0 [ 660.122964][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.129014][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.135167][T19427] __do_fast_syscall_32+0x127/0x180 [ 660.140348][T19427] do_fast_syscall_32+0x77/0xd0 [ 660.145192][T19427] do_SYSENTER_32+0x73/0x90 [ 660.149676][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.156009][T19427] [ 660.158308][T19427] Uninit was stored to memory at: [ 660.163302][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 660.169031][T19427] __msan_chain_origin+0x54/0xa0 [ 660.173974][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 660.179116][T19427] get_compat_msghdr+0x108/0x2b0 [ 660.184034][T19427] do_recvmmsg+0xdc1/0x22d0 [ 660.188520][T19427] __sys_recvmmsg+0x519/0x6f0 [ 660.193193][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.199258][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.205416][T19427] __do_fast_syscall_32+0x127/0x180 [ 660.210607][T19427] do_fast_syscall_32+0x77/0xd0 [ 660.215470][T19427] do_SYSENTER_32+0x73/0x90 [ 660.219970][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.226282][T19427] [ 660.228580][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 660.235236][T19427] do_recvmmsg+0xbf/0x22d0 [ 660.239634][T19427] do_recvmmsg+0xbf/0x22d0 [ 660.404607][T19427] not chained 640000 origins [ 660.409215][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 660.417977][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 660.428025][T19427] Call Trace: [ 660.431286][T19427] dump_stack+0x24c/0x2e0 [ 660.435617][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 660.441753][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 660.447138][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 660.452664][T19427] ? kmsan_get_metadata+0x116/0x180 [ 660.457854][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 660.463464][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 660.469530][T19427] ? kmsan_get_metadata+0x116/0x180 [ 660.474791][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 660.480584][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 660.486663][T19427] ? kmsan_get_metadata+0x116/0x180 [ 660.491869][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 660.497491][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 660.503548][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 660.508820][T19427] ? _copy_from_user+0x1fd/0x300 [ 660.513737][T19427] __msan_chain_origin+0x54/0xa0 [ 660.518650][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 660.523751][T19427] get_compat_msghdr+0x108/0x2b0 [ 660.528701][T19427] do_recvmmsg+0xdc1/0x22d0 [ 660.533194][T19427] ? kmsan_get_metadata+0x116/0x180 [ 660.538389][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 660.544092][T19427] ? __msan_poison_alloca+0xec/0x110 [ 660.549361][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 660.554171][T19427] __sys_recvmmsg+0x519/0x6f0 [ 660.558848][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.564908][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.571076][T19427] __do_fast_syscall_32+0x127/0x180 [ 660.576263][T19427] do_fast_syscall_32+0x77/0xd0 [ 660.581102][T19427] do_SYSENTER_32+0x73/0x90 [ 660.585617][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.591951][T19427] RIP: 0023:0xf7fe1549 [ 660.596003][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 660.615591][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 660.623991][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 660.631966][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 660.639925][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 660.647897][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 660.655849][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 660.663826][T19427] Uninit was stored to memory at: [ 660.668821][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 660.674525][T19427] __msan_chain_origin+0x54/0xa0 [ 660.679446][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 660.684562][T19427] get_compat_msghdr+0x108/0x2b0 [ 660.689511][T19427] do_recvmmsg+0xdc1/0x22d0 [ 660.694004][T19427] __sys_recvmmsg+0x519/0x6f0 [ 660.698660][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.704709][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.710848][T19427] __do_fast_syscall_32+0x127/0x180 [ 660.716029][T19427] do_fast_syscall_32+0x77/0xd0 [ 660.720861][T19427] do_SYSENTER_32+0x73/0x90 [ 660.725376][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.731694][T19427] [ 660.734024][T19427] Uninit was stored to memory at: [ 660.739030][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 660.745078][T19427] __msan_chain_origin+0x54/0xa0 [ 660.749993][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 660.755086][T19427] get_compat_msghdr+0x108/0x2b0 [ 660.760008][T19427] do_recvmmsg+0xdc1/0x22d0 [ 660.764519][T19427] __sys_recvmmsg+0x519/0x6f0 [ 660.769210][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.775258][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.781396][T19427] __do_fast_syscall_32+0x127/0x180 [ 660.786713][T19427] do_fast_syscall_32+0x77/0xd0 [ 660.791560][T19427] do_SYSENTER_32+0x73/0x90 [ 660.796051][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.802385][T19427] [ 660.804716][T19427] Uninit was stored to memory at: [ 660.809728][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 660.815486][T19427] __msan_chain_origin+0x54/0xa0 [ 660.820430][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 660.825527][T19427] get_compat_msghdr+0x108/0x2b0 [ 660.830453][T19427] do_recvmmsg+0xdc1/0x22d0 [ 660.834980][T19427] __sys_recvmmsg+0x519/0x6f0 [ 660.839644][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.846184][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.852335][T19427] __do_fast_syscall_32+0x127/0x180 [ 660.857543][T19427] do_fast_syscall_32+0x77/0xd0 [ 660.862374][T19427] do_SYSENTER_32+0x73/0x90 [ 660.866858][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.873166][T19427] [ 660.875467][T19427] Uninit was stored to memory at: [ 660.880461][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 660.886215][T19427] __msan_chain_origin+0x54/0xa0 [ 660.891137][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 660.896263][T19427] get_compat_msghdr+0x108/0x2b0 [ 660.901180][T19427] do_recvmmsg+0xdc1/0x22d0 [ 660.905664][T19427] __sys_recvmmsg+0x519/0x6f0 [ 660.910350][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.916426][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.922559][T19427] __do_fast_syscall_32+0x127/0x180 [ 660.927774][T19427] do_fast_syscall_32+0x77/0xd0 [ 660.932619][T19427] do_SYSENTER_32+0x73/0x90 [ 660.937121][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 660.943431][T19427] [ 660.945735][T19427] Uninit was stored to memory at: [ 660.950745][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 660.956483][T19427] __msan_chain_origin+0x54/0xa0 [ 660.961422][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 660.966525][T19427] get_compat_msghdr+0x108/0x2b0 [ 660.971464][T19427] do_recvmmsg+0xdc1/0x22d0 [ 660.976109][T19427] __sys_recvmmsg+0x519/0x6f0 [ 660.980819][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 660.986872][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 660.993057][T19427] __do_fast_syscall_32+0x127/0x180 [ 660.998244][T19427] do_fast_syscall_32+0x77/0xd0 [ 661.003078][T19427] do_SYSENTER_32+0x73/0x90 [ 661.007563][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.013874][T19427] [ 661.016182][T19427] Uninit was stored to memory at: [ 661.021192][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 661.026902][T19427] __msan_chain_origin+0x54/0xa0 [ 661.031832][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 661.037012][T19427] get_compat_msghdr+0x108/0x2b0 [ 661.042279][T19427] do_recvmmsg+0xdc1/0x22d0 [ 661.046762][T19427] __sys_recvmmsg+0x519/0x6f0 [ 661.051430][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.057760][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.063893][T19427] __do_fast_syscall_32+0x127/0x180 [ 661.069078][T19427] do_fast_syscall_32+0x77/0xd0 [ 661.073922][T19427] do_SYSENTER_32+0x73/0x90 [ 661.078419][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.084767][T19427] [ 661.087065][T19427] Uninit was stored to memory at: [ 661.092063][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 661.097792][T19427] __msan_chain_origin+0x54/0xa0 [ 661.102758][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 661.107872][T19427] get_compat_msghdr+0x108/0x2b0 [ 661.112810][T19427] do_recvmmsg+0xdc1/0x22d0 [ 661.117298][T19427] __sys_recvmmsg+0x519/0x6f0 [ 661.121951][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.127998][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.134146][T19427] __do_fast_syscall_32+0x127/0x180 [ 661.139439][T19427] do_fast_syscall_32+0x77/0xd0 [ 661.144910][T19427] do_SYSENTER_32+0x73/0x90 [ 661.149397][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.155735][T19427] [ 661.158047][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 661.164706][T19427] do_recvmmsg+0xbf/0x22d0 [ 661.169114][T19427] do_recvmmsg+0xbf/0x22d0 [ 661.338031][T19427] not chained 650000 origins [ 661.342637][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 661.351377][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 661.361419][T19427] Call Trace: [ 661.364716][T19427] dump_stack+0x24c/0x2e0 [ 661.369029][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 661.374738][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 661.380091][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 661.385633][T19427] ? kmsan_get_metadata+0x116/0x180 [ 661.390814][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 661.396457][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 661.402509][T19427] ? kmsan_get_metadata+0x116/0x180 [ 661.407698][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 661.413501][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 661.419568][T19427] ? kmsan_get_metadata+0x116/0x180 [ 661.424768][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 661.430445][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 661.436507][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 661.441776][T19427] ? _copy_from_user+0x1fd/0x300 [ 661.446720][T19427] __msan_chain_origin+0x54/0xa0 [ 661.451663][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 661.456785][T19427] get_compat_msghdr+0x108/0x2b0 [ 661.461708][T19427] do_recvmmsg+0xdc1/0x22d0 [ 661.466193][T19427] ? kmsan_get_metadata+0x116/0x180 [ 661.471369][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 661.476996][T19427] ? __msan_poison_alloca+0xec/0x110 [ 661.482262][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 661.487107][T19427] __sys_recvmmsg+0x519/0x6f0 [ 661.491763][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.497810][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.503961][T19427] __do_fast_syscall_32+0x127/0x180 [ 661.509145][T19427] do_fast_syscall_32+0x77/0xd0 [ 661.513977][T19427] do_SYSENTER_32+0x73/0x90 [ 661.518477][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.524798][T19427] RIP: 0023:0xf7fe1549 [ 661.528845][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 661.548454][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 661.556877][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 661.564831][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 661.572786][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 661.580738][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 661.588691][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 661.596645][T19427] Uninit was stored to memory at: [ 661.601646][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 661.607378][T19427] __msan_chain_origin+0x54/0xa0 [ 661.612299][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 661.617412][T19427] get_compat_msghdr+0x108/0x2b0 [ 661.622348][T19427] do_recvmmsg+0xdc1/0x22d0 [ 661.626829][T19427] __sys_recvmmsg+0x519/0x6f0 [ 661.631498][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.637544][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.643674][T19427] __do_fast_syscall_32+0x127/0x180 [ 661.648860][T19427] do_fast_syscall_32+0x77/0xd0 [ 661.653710][T19427] do_SYSENTER_32+0x73/0x90 [ 661.658208][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.664518][T19427] [ 661.666819][T19427] Uninit was stored to memory at: [ 661.671915][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 661.677619][T19427] __msan_chain_origin+0x54/0xa0 [ 661.682554][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 661.687656][T19427] get_compat_msghdr+0x108/0x2b0 [ 661.692570][T19427] do_recvmmsg+0xdc1/0x22d0 [ 661.697067][T19427] __sys_recvmmsg+0x519/0x6f0 [ 661.701739][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.707785][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.713913][T19427] __do_fast_syscall_32+0x127/0x180 [ 661.719092][T19427] do_fast_syscall_32+0x77/0xd0 [ 661.723939][T19427] do_SYSENTER_32+0x73/0x90 [ 661.728444][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.734753][T19427] [ 661.737053][T19427] Uninit was stored to memory at: [ 661.742057][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 661.747787][T19427] __msan_chain_origin+0x54/0xa0 [ 661.752709][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 661.757824][T19427] get_compat_msghdr+0x108/0x2b0 [ 661.762760][T19427] do_recvmmsg+0xdc1/0x22d0 [ 661.767245][T19427] __sys_recvmmsg+0x519/0x6f0 [ 661.771907][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.777957][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.784090][T19427] __do_fast_syscall_32+0x127/0x180 [ 661.789269][T19427] do_fast_syscall_32+0x77/0xd0 [ 661.794112][T19427] do_SYSENTER_32+0x73/0x90 [ 661.798591][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.804910][T19427] [ 661.807206][T19427] Uninit was stored to memory at: [ 661.812195][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 661.817895][T19427] __msan_chain_origin+0x54/0xa0 [ 661.822812][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 661.827905][T19427] get_compat_msghdr+0x108/0x2b0 [ 661.832820][T19427] do_recvmmsg+0xdc1/0x22d0 [ 661.837312][T19427] __sys_recvmmsg+0x519/0x6f0 [ 661.841975][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.848056][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.854217][T19427] __do_fast_syscall_32+0x127/0x180 [ 661.859405][T19427] do_fast_syscall_32+0x77/0xd0 [ 661.864260][T19427] do_SYSENTER_32+0x73/0x90 [ 661.868746][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.875051][T19427] [ 661.877348][T19427] Uninit was stored to memory at: [ 661.882348][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 661.888045][T19427] __msan_chain_origin+0x54/0xa0 [ 661.892959][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 661.898049][T19427] get_compat_msghdr+0x108/0x2b0 [ 661.902963][T19427] do_recvmmsg+0xdc1/0x22d0 [ 661.907450][T19427] __sys_recvmmsg+0x519/0x6f0 [ 661.912124][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.918176][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.924308][T19427] __do_fast_syscall_32+0x127/0x180 [ 661.929499][T19427] do_fast_syscall_32+0x77/0xd0 [ 661.934379][T19427] do_SYSENTER_32+0x73/0x90 [ 661.938857][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 661.945165][T19427] [ 661.947463][T19427] Uninit was stored to memory at: [ 661.952451][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 661.958150][T19427] __msan_chain_origin+0x54/0xa0 [ 661.963065][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 661.968162][T19427] get_compat_msghdr+0x108/0x2b0 [ 661.973080][T19427] do_recvmmsg+0xdc1/0x22d0 [ 661.977567][T19427] __sys_recvmmsg+0x519/0x6f0 [ 661.982220][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 661.988268][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 661.994404][T19427] __do_fast_syscall_32+0x127/0x180 [ 661.999587][T19427] do_fast_syscall_32+0x77/0xd0 [ 662.004417][T19427] do_SYSENTER_32+0x73/0x90 [ 662.008897][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.015202][T19427] [ 662.017549][T19427] Uninit was stored to memory at: [ 662.022559][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 662.028254][T19427] __msan_chain_origin+0x54/0xa0 [ 662.033166][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 662.038334][T19427] get_compat_msghdr+0x108/0x2b0 [ 662.043245][T19427] do_recvmmsg+0xdc1/0x22d0 [ 662.047789][T19427] __sys_recvmmsg+0x519/0x6f0 [ 662.052454][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.058540][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.064677][T19427] __do_fast_syscall_32+0x127/0x180 [ 662.069856][T19427] do_fast_syscall_32+0x77/0xd0 [ 662.074688][T19427] do_SYSENTER_32+0x73/0x90 [ 662.079169][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.085484][T19427] [ 662.087806][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 662.094469][T19427] do_recvmmsg+0xbf/0x22d0 [ 662.098874][T19427] do_recvmmsg+0xbf/0x22d0 [ 662.264670][T19427] not chained 660000 origins [ 662.269260][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 662.277993][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 662.288068][T19427] Call Trace: [ 662.291350][T19427] dump_stack+0x24c/0x2e0 [ 662.295669][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 662.301410][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 662.306805][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 662.312344][T19427] ? kmsan_get_metadata+0x116/0x180 [ 662.317517][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 662.323127][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 662.329173][T19427] ? kmsan_get_metadata+0x116/0x180 [ 662.334346][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 662.340139][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 662.346211][T19427] ? kmsan_get_metadata+0x116/0x180 [ 662.351393][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 662.357025][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 662.363072][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 662.368356][T19427] ? _copy_from_user+0x1fd/0x300 [ 662.373282][T19427] __msan_chain_origin+0x54/0xa0 [ 662.378203][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 662.383313][T19427] get_compat_msghdr+0x108/0x2b0 [ 662.388263][T19427] do_recvmmsg+0xdc1/0x22d0 [ 662.392813][T19427] ? kmsan_get_metadata+0x116/0x180 [ 662.397995][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 662.403609][T19427] ? __msan_poison_alloca+0xec/0x110 [ 662.408879][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 662.413630][T19427] __sys_recvmmsg+0x519/0x6f0 [ 662.418294][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.424357][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.430574][T19427] __do_fast_syscall_32+0x127/0x180 [ 662.435777][T19427] do_fast_syscall_32+0x77/0xd0 [ 662.440616][T19427] do_SYSENTER_32+0x73/0x90 [ 662.445255][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.451620][T19427] RIP: 0023:0xf7fe1549 [ 662.455670][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 662.475258][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 662.483723][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 662.491681][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 662.499657][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 662.507628][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 662.515604][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 662.523588][T19427] Uninit was stored to memory at: [ 662.528588][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 662.534311][T19427] __msan_chain_origin+0x54/0xa0 [ 662.539231][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 662.544846][T19427] get_compat_msghdr+0x108/0x2b0 [ 662.549776][T19427] do_recvmmsg+0xdc1/0x22d0 [ 662.554265][T19427] __sys_recvmmsg+0x519/0x6f0 [ 662.559097][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.565154][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.571332][T19427] __do_fast_syscall_32+0x127/0x180 [ 662.576529][T19427] do_fast_syscall_32+0x77/0xd0 [ 662.581372][T19427] do_SYSENTER_32+0x73/0x90 [ 662.585896][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.592204][T19427] [ 662.594507][T19427] Uninit was stored to memory at: [ 662.599502][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 662.605222][T19427] __msan_chain_origin+0x54/0xa0 [ 662.610136][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 662.615335][T19427] get_compat_msghdr+0x108/0x2b0 [ 662.620254][T19427] do_recvmmsg+0xdc1/0x22d0 [ 662.624920][T19427] __sys_recvmmsg+0x519/0x6f0 [ 662.629610][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.635668][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.641808][T19427] __do_fast_syscall_32+0x127/0x180 [ 662.647014][T19427] do_fast_syscall_32+0x77/0xd0 [ 662.651847][T19427] do_SYSENTER_32+0x73/0x90 [ 662.656331][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.662641][T19427] [ 662.664960][T19427] Uninit was stored to memory at: [ 662.669951][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 662.675653][T19427] __msan_chain_origin+0x54/0xa0 [ 662.680577][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 662.685695][T19427] get_compat_msghdr+0x108/0x2b0 [ 662.690612][T19427] do_recvmmsg+0xdc1/0x22d0 [ 662.695095][T19427] __sys_recvmmsg+0x519/0x6f0 [ 662.699755][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.705836][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.711976][T19427] __do_fast_syscall_32+0x127/0x180 [ 662.717271][T19427] do_fast_syscall_32+0x77/0xd0 [ 662.722106][T19427] do_SYSENTER_32+0x73/0x90 [ 662.726616][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.732940][T19427] [ 662.735239][T19427] Uninit was stored to memory at: [ 662.740233][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 662.745965][T19427] __msan_chain_origin+0x54/0xa0 [ 662.750893][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 662.756074][T19427] get_compat_msghdr+0x108/0x2b0 [ 662.760999][T19427] do_recvmmsg+0xdc1/0x22d0 [ 662.765508][T19427] __sys_recvmmsg+0x519/0x6f0 [ 662.770184][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.776234][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.782376][T19427] __do_fast_syscall_32+0x127/0x180 [ 662.787588][T19427] do_fast_syscall_32+0x77/0xd0 [ 662.792418][T19427] do_SYSENTER_32+0x73/0x90 [ 662.796901][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.803212][T19427] [ 662.805574][T19427] Uninit was stored to memory at: [ 662.810571][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 662.816273][T19427] __msan_chain_origin+0x54/0xa0 [ 662.821436][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 662.826555][T19427] get_compat_msghdr+0x108/0x2b0 [ 662.831501][T19427] do_recvmmsg+0xdc1/0x22d0 [ 662.835997][T19427] __sys_recvmmsg+0x519/0x6f0 [ 662.840669][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.846752][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.852932][T19427] __do_fast_syscall_32+0x127/0x180 [ 662.858114][T19427] do_fast_syscall_32+0x77/0xd0 [ 662.862946][T19427] do_SYSENTER_32+0x73/0x90 [ 662.867451][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.873755][T19427] [ 662.876051][T19427] Uninit was stored to memory at: [ 662.881046][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 662.886778][T19427] __msan_chain_origin+0x54/0xa0 [ 662.891717][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 662.896852][T19427] get_compat_msghdr+0x108/0x2b0 [ 662.901772][T19427] do_recvmmsg+0xdc1/0x22d0 [ 662.906254][T19427] __sys_recvmmsg+0x519/0x6f0 [ 662.910912][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.916994][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.923145][T19427] __do_fast_syscall_32+0x127/0x180 [ 662.928328][T19427] do_fast_syscall_32+0x77/0xd0 [ 662.933161][T19427] do_SYSENTER_32+0x73/0x90 [ 662.937666][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 662.944424][T19427] [ 662.946725][T19427] Uninit was stored to memory at: [ 662.951728][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 662.957446][T19427] __msan_chain_origin+0x54/0xa0 [ 662.962363][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 662.967471][T19427] get_compat_msghdr+0x108/0x2b0 [ 662.972388][T19427] do_recvmmsg+0xdc1/0x22d0 [ 662.976886][T19427] __sys_recvmmsg+0x519/0x6f0 [ 662.981548][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 662.987698][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 662.993836][T19427] __do_fast_syscall_32+0x127/0x180 [ 662.999022][T19427] do_fast_syscall_32+0x77/0xd0 [ 663.003854][T19427] do_SYSENTER_32+0x73/0x90 [ 663.008347][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.014655][T19427] [ 663.016957][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 663.023599][T19427] do_recvmmsg+0xbf/0x22d0 [ 663.027995][T19427] do_recvmmsg+0xbf/0x22d0 [ 663.193653][T19427] not chained 670000 origins [ 663.198253][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 663.206990][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 663.217024][T19427] Call Trace: [ 663.220280][T19427] dump_stack+0x24c/0x2e0 [ 663.224590][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 663.230288][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 663.235643][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 663.241168][T19427] ? kmsan_get_metadata+0x116/0x180 [ 663.246365][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 663.251977][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 663.258041][T19427] ? kmsan_get_metadata+0x116/0x180 [ 663.263219][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 663.269003][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 663.275065][T19427] ? kmsan_get_metadata+0x116/0x180 [ 663.280246][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 663.285864][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 663.291935][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 663.297222][T19427] ? _copy_from_user+0x1fd/0x300 [ 663.302136][T19427] __msan_chain_origin+0x54/0xa0 [ 663.307080][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 663.312175][T19427] get_compat_msghdr+0x108/0x2b0 [ 663.317119][T19427] do_recvmmsg+0xdc1/0x22d0 [ 663.321630][T19427] ? kmsan_get_metadata+0x116/0x180 [ 663.326804][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 663.332416][T19427] ? __msan_poison_alloca+0xec/0x110 [ 663.337685][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 663.342429][T19427] __sys_recvmmsg+0x519/0x6f0 [ 663.347090][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.353162][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.359318][T19427] __do_fast_syscall_32+0x127/0x180 [ 663.364516][T19427] do_fast_syscall_32+0x77/0xd0 [ 663.369361][T19427] do_SYSENTER_32+0x73/0x90 [ 663.373863][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.380175][T19427] RIP: 0023:0xf7fe1549 [ 663.384236][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 663.403820][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 663.412209][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 663.420155][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 663.428113][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 663.436062][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 663.444011][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 663.451975][T19427] Uninit was stored to memory at: [ 663.456967][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 663.462682][T19427] __msan_chain_origin+0x54/0xa0 [ 663.467601][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 663.472693][T19427] get_compat_msghdr+0x108/0x2b0 [ 663.477620][T19427] do_recvmmsg+0xdc1/0x22d0 [ 663.482099][T19427] __sys_recvmmsg+0x519/0x6f0 [ 663.486763][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.492811][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.498969][T19427] __do_fast_syscall_32+0x127/0x180 [ 663.504153][T19427] do_fast_syscall_32+0x77/0xd0 [ 663.508979][T19427] do_SYSENTER_32+0x73/0x90 [ 663.513457][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.519766][T19427] [ 663.522065][T19427] Uninit was stored to memory at: [ 663.527053][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 663.532761][T19427] __msan_chain_origin+0x54/0xa0 [ 663.537675][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 663.542763][T19427] get_compat_msghdr+0x108/0x2b0 [ 663.547678][T19427] do_recvmmsg+0xdc1/0x22d0 [ 663.552158][T19427] __sys_recvmmsg+0x519/0x6f0 [ 663.556807][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.562849][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.568977][T19427] __do_fast_syscall_32+0x127/0x180 [ 663.574149][T19427] do_fast_syscall_32+0x77/0xd0 [ 663.578975][T19427] do_SYSENTER_32+0x73/0x90 [ 663.583453][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.589758][T19427] [ 663.592054][T19427] Uninit was stored to memory at: [ 663.597042][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 663.602743][T19427] __msan_chain_origin+0x54/0xa0 [ 663.607677][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 663.612781][T19427] get_compat_msghdr+0x108/0x2b0 [ 663.617699][T19427] do_recvmmsg+0xdc1/0x22d0 [ 663.622177][T19427] __sys_recvmmsg+0x519/0x6f0 [ 663.626851][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.632895][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.639026][T19427] __do_fast_syscall_32+0x127/0x180 [ 663.644204][T19427] do_fast_syscall_32+0x77/0xd0 [ 663.649063][T19427] do_SYSENTER_32+0x73/0x90 [ 663.653546][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.659969][T19427] [ 663.662271][T19427] Uninit was stored to memory at: [ 663.667263][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 663.672960][T19427] __msan_chain_origin+0x54/0xa0 [ 663.677872][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 663.682969][T19427] get_compat_msghdr+0x108/0x2b0 [ 663.687886][T19427] do_recvmmsg+0xdc1/0x22d0 [ 663.692367][T19427] __sys_recvmmsg+0x519/0x6f0 [ 663.697021][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.703067][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.709201][T19427] __do_fast_syscall_32+0x127/0x180 [ 663.714377][T19427] do_fast_syscall_32+0x77/0xd0 [ 663.719211][T19427] do_SYSENTER_32+0x73/0x90 [ 663.723693][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.729998][T19427] [ 663.732296][T19427] Uninit was stored to memory at: [ 663.737283][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 663.742977][T19427] __msan_chain_origin+0x54/0xa0 [ 663.747890][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 663.752993][T19427] get_compat_msghdr+0x108/0x2b0 [ 663.757905][T19427] do_recvmmsg+0xdc1/0x22d0 [ 663.762397][T19427] __sys_recvmmsg+0x519/0x6f0 [ 663.767062][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.773127][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.779270][T19427] __do_fast_syscall_32+0x127/0x180 [ 663.784444][T19427] do_fast_syscall_32+0x77/0xd0 [ 663.789281][T19427] do_SYSENTER_32+0x73/0x90 [ 663.793766][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.800088][T19427] [ 663.802387][T19427] Uninit was stored to memory at: [ 663.807379][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 663.813077][T19427] __msan_chain_origin+0x54/0xa0 [ 663.817989][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 663.823081][T19427] get_compat_msghdr+0x108/0x2b0 [ 663.828006][T19427] do_recvmmsg+0xdc1/0x22d0 [ 663.832487][T19427] __sys_recvmmsg+0x519/0x6f0 [ 663.837145][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.843191][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.849331][T19427] __do_fast_syscall_32+0x127/0x180 [ 663.854537][T19427] do_fast_syscall_32+0x77/0xd0 [ 663.859367][T19427] do_SYSENTER_32+0x73/0x90 [ 663.863867][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.870188][T19427] [ 663.872489][T19427] Uninit was stored to memory at: [ 663.877495][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 663.883190][T19427] __msan_chain_origin+0x54/0xa0 [ 663.888100][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 663.893195][T19427] get_compat_msghdr+0x108/0x2b0 [ 663.898106][T19427] do_recvmmsg+0xdc1/0x22d0 [ 663.902592][T19427] __sys_recvmmsg+0x519/0x6f0 [ 663.907245][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 663.913287][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 663.919424][T19427] __do_fast_syscall_32+0x127/0x180 [ 663.924627][T19427] do_fast_syscall_32+0x77/0xd0 [ 663.929483][T19427] do_SYSENTER_32+0x73/0x90 [ 663.933983][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 663.940288][T19427] [ 663.942589][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 663.949224][T19427] do_recvmmsg+0xbf/0x22d0 [ 663.953707][T19427] do_recvmmsg+0xbf/0x22d0 [ 664.130556][T19427] not chained 680000 origins [ 664.135206][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 664.143973][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 664.154023][T19427] Call Trace: [ 664.157294][T19427] dump_stack+0x24c/0x2e0 [ 664.161614][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 664.167329][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 664.172683][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 664.178209][T19427] ? kmsan_get_metadata+0x116/0x180 [ 664.183382][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 664.188993][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 664.195037][T19427] ? kmsan_get_metadata+0x116/0x180 [ 664.200370][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 664.206200][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 664.212250][T19427] ? kmsan_get_metadata+0x116/0x180 [ 664.217481][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 664.223097][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 664.229159][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 664.234438][T19427] ? _copy_from_user+0x1fd/0x300 [ 664.239368][T19427] __msan_chain_origin+0x54/0xa0 [ 664.244309][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 664.249455][T19427] get_compat_msghdr+0x108/0x2b0 [ 664.254412][T19427] do_recvmmsg+0xdc1/0x22d0 [ 664.258906][T19427] ? kmsan_get_metadata+0x116/0x180 [ 664.264089][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 664.269734][T19427] ? __msan_poison_alloca+0xec/0x110 [ 664.275022][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 664.279773][T19427] __sys_recvmmsg+0x519/0x6f0 [ 664.284633][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.290691][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.296854][T19427] __do_fast_syscall_32+0x127/0x180 [ 664.302057][T19427] do_fast_syscall_32+0x77/0xd0 [ 664.306889][T19427] do_SYSENTER_32+0x73/0x90 [ 664.311380][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.317720][T19427] RIP: 0023:0xf7fe1549 [ 664.321768][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 664.341366][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 664.349764][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 664.357743][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 664.365692][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 664.373644][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 664.381615][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 664.389580][T19427] Uninit was stored to memory at: [ 664.394588][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 664.400294][T19427] __msan_chain_origin+0x54/0xa0 [ 664.405230][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 664.410328][T19427] get_compat_msghdr+0x108/0x2b0 [ 664.415268][T19427] do_recvmmsg+0xdc1/0x22d0 [ 664.419756][T19427] __sys_recvmmsg+0x519/0x6f0 [ 664.424442][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.430504][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.436665][T19427] __do_fast_syscall_32+0x127/0x180 [ 664.441844][T19427] do_fast_syscall_32+0x77/0xd0 [ 664.446691][T19427] do_SYSENTER_32+0x73/0x90 [ 664.451186][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.457497][T19427] [ 664.459801][T19427] Uninit was stored to memory at: [ 664.464805][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 664.470505][T19427] __msan_chain_origin+0x54/0xa0 [ 664.475440][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 664.480541][T19427] get_compat_msghdr+0x108/0x2b0 [ 664.485488][T19427] do_recvmmsg+0xdc1/0x22d0 [ 664.489974][T19427] __sys_recvmmsg+0x519/0x6f0 [ 664.494651][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.500706][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.506865][T19427] __do_fast_syscall_32+0x127/0x180 [ 664.512050][T19427] do_fast_syscall_32+0x77/0xd0 [ 664.516882][T19427] do_SYSENTER_32+0x73/0x90 [ 664.521369][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.527678][T19427] [ 664.529979][T19427] Uninit was stored to memory at: [ 664.534983][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 664.541115][T19427] __msan_chain_origin+0x54/0xa0 [ 664.546044][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 664.551135][T19427] get_compat_msghdr+0x108/0x2b0 [ 664.556053][T19427] do_recvmmsg+0xdc1/0x22d0 [ 664.560539][T19427] __sys_recvmmsg+0x519/0x6f0 [ 664.565224][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.571270][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.577416][T19427] __do_fast_syscall_32+0x127/0x180 [ 664.582626][T19427] do_fast_syscall_32+0x77/0xd0 [ 664.587455][T19427] do_SYSENTER_32+0x73/0x90 [ 664.591943][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.598279][T19427] [ 664.600587][T19427] Uninit was stored to memory at: [ 664.605597][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 664.611312][T19427] __msan_chain_origin+0x54/0xa0 [ 664.616230][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 664.621321][T19427] get_compat_msghdr+0x108/0x2b0 [ 664.626242][T19427] do_recvmmsg+0xdc1/0x22d0 [ 664.630724][T19427] __sys_recvmmsg+0x519/0x6f0 [ 664.635407][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.641460][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.647618][T19427] __do_fast_syscall_32+0x127/0x180 [ 664.652809][T19427] do_fast_syscall_32+0x77/0xd0 [ 664.657639][T19427] do_SYSENTER_32+0x73/0x90 [ 664.662135][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.668446][T19427] [ 664.670749][T19427] Uninit was stored to memory at: [ 664.675769][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 664.681468][T19427] __msan_chain_origin+0x54/0xa0 [ 664.686392][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 664.691487][T19427] get_compat_msghdr+0x108/0x2b0 [ 664.696408][T19427] do_recvmmsg+0xdc1/0x22d0 [ 664.700899][T19427] __sys_recvmmsg+0x519/0x6f0 [ 664.705580][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.711627][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.717793][T19427] __do_fast_syscall_32+0x127/0x180 [ 664.722973][T19427] do_fast_syscall_32+0x77/0xd0 [ 664.727826][T19427] do_SYSENTER_32+0x73/0x90 [ 664.732310][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.738621][T19427] [ 664.740922][T19427] Uninit was stored to memory at: [ 664.745914][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 664.751611][T19427] __msan_chain_origin+0x54/0xa0 [ 664.756526][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 664.761613][T19427] get_compat_msghdr+0x108/0x2b0 [ 664.766541][T19427] do_recvmmsg+0xdc1/0x22d0 [ 664.771018][T19427] __sys_recvmmsg+0x519/0x6f0 [ 664.775778][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.781822][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.787957][T19427] __do_fast_syscall_32+0x127/0x180 [ 664.793142][T19427] do_fast_syscall_32+0x77/0xd0 [ 664.797981][T19427] do_SYSENTER_32+0x73/0x90 [ 664.802463][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.808814][T19427] [ 664.811116][T19427] Uninit was stored to memory at: [ 664.816121][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 664.821823][T19427] __msan_chain_origin+0x54/0xa0 [ 664.826754][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 664.831850][T19427] get_compat_msghdr+0x108/0x2b0 [ 664.836763][T19427] do_recvmmsg+0xdc1/0x22d0 [ 664.841284][T19427] __sys_recvmmsg+0x519/0x6f0 [ 664.845948][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 664.852435][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 664.858676][T19427] __do_fast_syscall_32+0x127/0x180 [ 664.863858][T19427] do_fast_syscall_32+0x77/0xd0 [ 664.868688][T19427] do_SYSENTER_32+0x73/0x90 [ 664.873170][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 664.879480][T19427] [ 664.881810][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 664.888504][T19427] do_recvmmsg+0xbf/0x22d0 [ 664.892905][T19427] do_recvmmsg+0xbf/0x22d0 [ 665.072175][T19427] not chained 690000 origins [ 665.076794][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 665.085576][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 665.095644][T19427] Call Trace: [ 665.098926][T19427] dump_stack+0x24c/0x2e0 [ 665.103271][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 665.108996][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 665.114379][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 665.119941][T19427] ? kmsan_get_metadata+0x116/0x180 [ 665.125144][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 665.130785][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 665.136868][T19427] ? kmsan_get_metadata+0x116/0x180 [ 665.142083][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 665.147898][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 665.153977][T19427] ? kmsan_get_metadata+0x116/0x180 [ 665.159182][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 665.164822][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 665.170901][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 665.176204][T19427] ? _copy_from_user+0x1fd/0x300 [ 665.181144][T19427] __msan_chain_origin+0x54/0xa0 [ 665.186065][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 665.191168][T19427] get_compat_msghdr+0x108/0x2b0 [ 665.196149][T19427] do_recvmmsg+0xdc1/0x22d0 [ 665.200644][T19427] ? kmsan_get_metadata+0x116/0x180 [ 665.205826][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 665.211444][T19427] ? __msan_poison_alloca+0xec/0x110 [ 665.216748][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 665.221515][T19427] __sys_recvmmsg+0x519/0x6f0 [ 665.226179][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.232237][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.238404][T19427] __do_fast_syscall_32+0x127/0x180 [ 665.243601][T19427] do_fast_syscall_32+0x77/0xd0 [ 665.248474][T19427] do_SYSENTER_32+0x73/0x90 [ 665.252963][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.259300][T19427] RIP: 0023:0xf7fe1549 [ 665.263380][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 665.282967][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 665.291363][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 665.299342][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 665.307309][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 665.315277][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 665.323315][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 665.331279][T19427] Uninit was stored to memory at: [ 665.336288][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 665.341993][T19427] __msan_chain_origin+0x54/0xa0 [ 665.346933][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 665.352157][T19427] get_compat_msghdr+0x108/0x2b0 [ 665.357098][T19427] do_recvmmsg+0xdc1/0x22d0 [ 665.361588][T19427] __sys_recvmmsg+0x519/0x6f0 [ 665.366271][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.372319][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.378456][T19427] __do_fast_syscall_32+0x127/0x180 [ 665.383637][T19427] do_fast_syscall_32+0x77/0xd0 [ 665.388488][T19427] do_SYSENTER_32+0x73/0x90 [ 665.392984][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.399360][T19427] [ 665.401675][T19427] Uninit was stored to memory at: [ 665.406673][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 665.412380][T19427] __msan_chain_origin+0x54/0xa0 [ 665.417317][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 665.422413][T19427] get_compat_msghdr+0x108/0x2b0 [ 665.427337][T19427] do_recvmmsg+0xdc1/0x22d0 [ 665.431828][T19427] __sys_recvmmsg+0x519/0x6f0 [ 665.436517][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.442595][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.448836][T19427] __do_fast_syscall_32+0x127/0x180 [ 665.454035][T19427] do_fast_syscall_32+0x77/0xd0 [ 665.458864][T19427] do_SYSENTER_32+0x73/0x90 [ 665.463345][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.469745][T19427] [ 665.472061][T19427] Uninit was stored to memory at: [ 665.477066][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 665.482769][T19427] __msan_chain_origin+0x54/0xa0 [ 665.487682][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 665.492789][T19427] get_compat_msghdr+0x108/0x2b0 [ 665.497713][T19427] do_recvmmsg+0xdc1/0x22d0 [ 665.502223][T19427] __sys_recvmmsg+0x519/0x6f0 [ 665.506878][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.512923][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.519057][T19427] __do_fast_syscall_32+0x127/0x180 [ 665.524236][T19427] do_fast_syscall_32+0x77/0xd0 [ 665.529070][T19427] do_SYSENTER_32+0x73/0x90 [ 665.533559][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.539913][T19427] [ 665.542232][T19427] Uninit was stored to memory at: [ 665.547224][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 665.552920][T19427] __msan_chain_origin+0x54/0xa0 [ 665.557832][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 665.562947][T19427] get_compat_msghdr+0x108/0x2b0 [ 665.567883][T19427] do_recvmmsg+0xdc1/0x22d0 [ 665.572387][T19427] __sys_recvmmsg+0x519/0x6f0 [ 665.577057][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.583108][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.589249][T19427] __do_fast_syscall_32+0x127/0x180 [ 665.594437][T19427] do_fast_syscall_32+0x77/0xd0 [ 665.599292][T19427] do_SYSENTER_32+0x73/0x90 [ 665.603783][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.610094][T19427] [ 665.612404][T19427] Uninit was stored to memory at: [ 665.617403][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 665.623106][T19427] __msan_chain_origin+0x54/0xa0 [ 665.628020][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 665.633129][T19427] get_compat_msghdr+0x108/0x2b0 [ 665.638047][T19427] do_recvmmsg+0xdc1/0x22d0 [ 665.642881][T19427] __sys_recvmmsg+0x519/0x6f0 [ 665.647541][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.653608][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.659758][T19427] __do_fast_syscall_32+0x127/0x180 [ 665.664939][T19427] do_fast_syscall_32+0x77/0xd0 [ 665.669770][T19427] do_SYSENTER_32+0x73/0x90 [ 665.674274][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.680591][T19427] [ 665.682906][T19427] Uninit was stored to memory at: [ 665.687909][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 665.693614][T19427] __msan_chain_origin+0x54/0xa0 [ 665.698563][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 665.703657][T19427] get_compat_msghdr+0x108/0x2b0 [ 665.708587][T19427] do_recvmmsg+0xdc1/0x22d0 [ 665.713086][T19427] __sys_recvmmsg+0x519/0x6f0 [ 665.717741][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.723787][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.729939][T19427] __do_fast_syscall_32+0x127/0x180 [ 665.735136][T19427] do_fast_syscall_32+0x77/0xd0 [ 665.739969][T19427] do_SYSENTER_32+0x73/0x90 [ 665.744462][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.750830][T19427] [ 665.753145][T19427] Uninit was stored to memory at: [ 665.758139][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 665.763971][T19427] __msan_chain_origin+0x54/0xa0 [ 665.768891][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 665.773980][T19427] get_compat_msghdr+0x108/0x2b0 [ 665.778894][T19427] do_recvmmsg+0xdc1/0x22d0 [ 665.783415][T19427] __sys_recvmmsg+0x519/0x6f0 [ 665.788101][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 665.794153][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 665.800295][T19427] __do_fast_syscall_32+0x127/0x180 [ 665.805497][T19427] do_fast_syscall_32+0x77/0xd0 [ 665.810333][T19427] do_SYSENTER_32+0x73/0x90 [ 665.814846][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 665.821158][T19427] [ 665.823459][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 665.830103][T19427] do_recvmmsg+0xbf/0x22d0 [ 665.834521][T19427] do_recvmmsg+0xbf/0x22d0 [ 666.036943][T19427] not chained 700000 origins [ 666.041624][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 666.050365][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 666.060424][T19427] Call Trace: [ 666.063684][T19427] dump_stack+0x24c/0x2e0 [ 666.067997][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 666.073690][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 666.079043][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 666.084583][T19427] ? kmsan_get_metadata+0x116/0x180 [ 666.089763][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 666.095374][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 666.101423][T19427] ? kmsan_get_metadata+0x116/0x180 [ 666.106605][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 666.112521][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 666.118570][T19427] ? kmsan_get_metadata+0x116/0x180 [ 666.123749][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 666.129366][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 666.135434][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 666.140755][T19427] ? _copy_from_user+0x1fd/0x300 [ 666.145682][T19427] __msan_chain_origin+0x54/0xa0 [ 666.150602][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 666.155705][T19427] get_compat_msghdr+0x108/0x2b0 [ 666.160632][T19427] do_recvmmsg+0xdc1/0x22d0 [ 666.165162][T19427] ? kmsan_get_metadata+0x116/0x180 [ 666.170335][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 666.175946][T19427] ? __msan_poison_alloca+0xec/0x110 [ 666.181211][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 666.185957][T19427] __sys_recvmmsg+0x519/0x6f0 [ 666.190617][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.196699][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.202846][T19427] __do_fast_syscall_32+0x127/0x180 [ 666.208030][T19427] do_fast_syscall_32+0x77/0xd0 [ 666.212864][T19427] do_SYSENTER_32+0x73/0x90 [ 666.217351][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.223663][T19427] RIP: 0023:0xf7fe1549 [ 666.227709][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 666.247297][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 666.255694][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 666.263672][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 666.271624][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 666.279574][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 666.287521][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 666.295469][T19427] Uninit was stored to memory at: [ 666.300547][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 666.306253][T19427] __msan_chain_origin+0x54/0xa0 [ 666.311191][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 666.316282][T19427] get_compat_msghdr+0x108/0x2b0 [ 666.321192][T19427] do_recvmmsg+0xdc1/0x22d0 [ 666.325674][T19427] __sys_recvmmsg+0x519/0x6f0 [ 666.330322][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.336364][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.342494][T19427] __do_fast_syscall_32+0x127/0x180 [ 666.347674][T19427] do_fast_syscall_32+0x77/0xd0 [ 666.352504][T19427] do_SYSENTER_32+0x73/0x90 [ 666.357009][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.363329][T19427] [ 666.365625][T19427] Uninit was stored to memory at: [ 666.370612][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 666.376307][T19427] __msan_chain_origin+0x54/0xa0 [ 666.381217][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 666.386309][T19427] get_compat_msghdr+0x108/0x2b0 [ 666.391223][T19427] do_recvmmsg+0xdc1/0x22d0 [ 666.395724][T19427] __sys_recvmmsg+0x519/0x6f0 [ 666.401158][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.407224][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.413355][T19427] __do_fast_syscall_32+0x127/0x180 [ 666.418551][T19427] do_fast_syscall_32+0x77/0xd0 [ 666.423398][T19427] do_SYSENTER_32+0x73/0x90 [ 666.427876][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.434176][T19427] [ 666.436476][T19427] Uninit was stored to memory at: [ 666.441554][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 666.447265][T19427] __msan_chain_origin+0x54/0xa0 [ 666.452174][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 666.457256][T19427] get_compat_msghdr+0x108/0x2b0 [ 666.462169][T19427] do_recvmmsg+0xdc1/0x22d0 [ 666.466674][T19427] __sys_recvmmsg+0x519/0x6f0 [ 666.471335][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.477420][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.483552][T19427] __do_fast_syscall_32+0x127/0x180 [ 666.488731][T19427] do_fast_syscall_32+0x77/0xd0 [ 666.493554][T19427] do_SYSENTER_32+0x73/0x90 [ 666.498036][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.504342][T19427] [ 666.506649][T19427] Uninit was stored to memory at: [ 666.511644][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 666.517344][T19427] __msan_chain_origin+0x54/0xa0 [ 666.522258][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 666.527359][T19427] get_compat_msghdr+0x108/0x2b0 [ 666.532273][T19427] do_recvmmsg+0xdc1/0x22d0 [ 666.536751][T19427] __sys_recvmmsg+0x519/0x6f0 [ 666.541419][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.547468][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.553598][T19427] __do_fast_syscall_32+0x127/0x180 [ 666.558778][T19427] do_fast_syscall_32+0x77/0xd0 [ 666.563612][T19427] do_SYSENTER_32+0x73/0x90 [ 666.568117][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.574446][T19427] [ 666.576759][T19427] Uninit was stored to memory at: [ 666.581763][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 666.587462][T19427] __msan_chain_origin+0x54/0xa0 [ 666.592391][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 666.597505][T19427] get_compat_msghdr+0x108/0x2b0 [ 666.602417][T19427] do_recvmmsg+0xdc1/0x22d0 [ 666.606900][T19427] __sys_recvmmsg+0x519/0x6f0 [ 666.611570][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.617631][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.623762][T19427] __do_fast_syscall_32+0x127/0x180 [ 666.628937][T19427] do_fast_syscall_32+0x77/0xd0 [ 666.633769][T19427] do_SYSENTER_32+0x73/0x90 [ 666.638248][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.644549][T19427] [ 666.646850][T19427] Uninit was stored to memory at: [ 666.651851][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 666.657558][T19427] __msan_chain_origin+0x54/0xa0 [ 666.662472][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 666.667569][T19427] get_compat_msghdr+0x108/0x2b0 [ 666.672490][T19427] do_recvmmsg+0xdc1/0x22d0 [ 666.676979][T19427] __sys_recvmmsg+0x519/0x6f0 [ 666.681635][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.687711][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.693859][T19427] __do_fast_syscall_32+0x127/0x180 [ 666.699039][T19427] do_fast_syscall_32+0x77/0xd0 [ 666.703870][T19427] do_SYSENTER_32+0x73/0x90 [ 666.708354][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.714664][T19427] [ 666.716963][T19427] Uninit was stored to memory at: [ 666.721976][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 666.727699][T19427] __msan_chain_origin+0x54/0xa0 [ 666.732640][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 666.737728][T19427] get_compat_msghdr+0x108/0x2b0 [ 666.742642][T19427] do_recvmmsg+0xdc1/0x22d0 [ 666.747140][T19427] __sys_recvmmsg+0x519/0x6f0 [ 666.751800][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 666.757849][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 666.763980][T19427] __do_fast_syscall_32+0x127/0x180 [ 666.769164][T19427] do_fast_syscall_32+0x77/0xd0 [ 666.774068][T19427] do_SYSENTER_32+0x73/0x90 [ 666.778556][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 666.784864][T19427] [ 666.787182][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 666.793829][T19427] do_recvmmsg+0xbf/0x22d0 [ 666.798264][T19427] do_recvmmsg+0xbf/0x22d0 [ 666.966347][T19427] not chained 710000 origins [ 666.971072][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 666.979838][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 666.989872][T19427] Call Trace: [ 666.993134][T19427] dump_stack+0x24c/0x2e0 [ 666.997553][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 667.003261][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 667.008622][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 667.014152][T19427] ? kmsan_get_metadata+0x116/0x180 [ 667.019334][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 667.024967][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 667.031013][T19427] ? kmsan_get_metadata+0x116/0x180 [ 667.036194][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 667.042330][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 667.048393][T19427] ? kmsan_get_metadata+0x116/0x180 [ 667.053637][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 667.059249][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 667.065293][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 667.070564][T19427] ? _copy_from_user+0x1fd/0x300 [ 667.075486][T19427] __msan_chain_origin+0x54/0xa0 [ 667.080436][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 667.085538][T19427] get_compat_msghdr+0x108/0x2b0 [ 667.090462][T19427] do_recvmmsg+0xdc1/0x22d0 [ 667.094962][T19427] ? kmsan_get_metadata+0x116/0x180 [ 667.100135][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 667.105756][T19427] ? __msan_poison_alloca+0xec/0x110 [ 667.111019][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 667.115766][T19427] __sys_recvmmsg+0x519/0x6f0 [ 667.120463][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.126539][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.132672][T19427] __do_fast_syscall_32+0x127/0x180 [ 667.137866][T19427] do_fast_syscall_32+0x77/0xd0 [ 667.142698][T19427] do_SYSENTER_32+0x73/0x90 [ 667.147180][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.153503][T19427] RIP: 0023:0xf7fe1549 [ 667.157546][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 667.177130][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 667.185542][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 667.193500][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 667.201449][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 667.209414][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 667.217386][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 667.225446][T19427] Uninit was stored to memory at: [ 667.230451][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 667.236185][T19427] __msan_chain_origin+0x54/0xa0 [ 667.241107][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 667.246261][T19427] get_compat_msghdr+0x108/0x2b0 [ 667.251175][T19427] do_recvmmsg+0xdc1/0x22d0 [ 667.255662][T19427] __sys_recvmmsg+0x519/0x6f0 [ 667.260316][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.266410][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.272690][T19427] __do_fast_syscall_32+0x127/0x180 [ 667.277869][T19427] do_fast_syscall_32+0x77/0xd0 [ 667.282699][T19427] do_SYSENTER_32+0x73/0x90 [ 667.287195][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.293543][T19427] [ 667.295843][T19427] Uninit was stored to memory at: [ 667.300923][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 667.306643][T19427] __msan_chain_origin+0x54/0xa0 [ 667.311558][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 667.316650][T19427] get_compat_msghdr+0x108/0x2b0 [ 667.321563][T19427] do_recvmmsg+0xdc1/0x22d0 [ 667.326061][T19427] __sys_recvmmsg+0x519/0x6f0 [ 667.330712][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.336757][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.342886][T19427] __do_fast_syscall_32+0x127/0x180 [ 667.348060][T19427] do_fast_syscall_32+0x77/0xd0 [ 667.352898][T19427] do_SYSENTER_32+0x73/0x90 [ 667.357375][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.363674][T19427] [ 667.365968][T19427] Uninit was stored to memory at: [ 667.370956][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 667.376740][T19427] __msan_chain_origin+0x54/0xa0 [ 667.381665][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 667.386766][T19427] get_compat_msghdr+0x108/0x2b0 [ 667.391681][T19427] do_recvmmsg+0xdc1/0x22d0 [ 667.396179][T19427] __sys_recvmmsg+0x519/0x6f0 [ 667.400832][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.406898][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.413024][T19427] __do_fast_syscall_32+0x127/0x180 [ 667.418196][T19427] do_fast_syscall_32+0x77/0xd0 [ 667.423029][T19427] do_SYSENTER_32+0x73/0x90 [ 667.427514][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.433817][T19427] [ 667.436114][T19427] Uninit was stored to memory at: [ 667.441106][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 667.446806][T19427] __msan_chain_origin+0x54/0xa0 [ 667.451721][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 667.456837][T19427] get_compat_msghdr+0x108/0x2b0 [ 667.461752][T19427] do_recvmmsg+0xdc1/0x22d0 [ 667.466235][T19427] __sys_recvmmsg+0x519/0x6f0 [ 667.470904][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.476961][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.483094][T19427] __do_fast_syscall_32+0x127/0x180 [ 667.488288][T19427] do_fast_syscall_32+0x77/0xd0 [ 667.493120][T19427] do_SYSENTER_32+0x73/0x90 [ 667.497603][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.503909][T19427] [ 667.506207][T19427] Uninit was stored to memory at: [ 667.511197][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 667.517018][T19427] __msan_chain_origin+0x54/0xa0 [ 667.521935][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 667.527039][T19427] get_compat_msghdr+0x108/0x2b0 [ 667.531981][T19427] do_recvmmsg+0xdc1/0x22d0 [ 667.536471][T19427] __sys_recvmmsg+0x519/0x6f0 [ 667.541125][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.547194][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.553328][T19427] __do_fast_syscall_32+0x127/0x180 [ 667.558528][T19427] do_fast_syscall_32+0x77/0xd0 [ 667.563355][T19427] do_SYSENTER_32+0x73/0x90 [ 667.567836][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.574140][T19427] [ 667.576611][T19427] Uninit was stored to memory at: [ 667.581599][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 667.587302][T19427] __msan_chain_origin+0x54/0xa0 [ 667.592251][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 667.597342][T19427] get_compat_msghdr+0x108/0x2b0 [ 667.602254][T19427] do_recvmmsg+0xdc1/0x22d0 [ 667.606755][T19427] __sys_recvmmsg+0x519/0x6f0 [ 667.611408][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.617457][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.623588][T19427] __do_fast_syscall_32+0x127/0x180 [ 667.628765][T19427] do_fast_syscall_32+0x77/0xd0 [ 667.633600][T19427] do_SYSENTER_32+0x73/0x90 [ 667.638076][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.644815][T19427] [ 667.647114][T19427] Uninit was stored to memory at: [ 667.652135][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 667.657832][T19427] __msan_chain_origin+0x54/0xa0 [ 667.662747][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 667.667838][T19427] get_compat_msghdr+0x108/0x2b0 [ 667.672752][T19427] do_recvmmsg+0xdc1/0x22d0 [ 667.677243][T19427] __sys_recvmmsg+0x519/0x6f0 [ 667.681899][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 667.687976][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 667.694104][T19427] __do_fast_syscall_32+0x127/0x180 [ 667.699281][T19427] do_fast_syscall_32+0x77/0xd0 [ 667.704116][T19427] do_SYSENTER_32+0x73/0x90 [ 667.708592][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 667.714900][T19427] [ 667.717197][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 667.723838][T19427] do_recvmmsg+0xbf/0x22d0 [ 667.728237][T19427] do_recvmmsg+0xbf/0x22d0 [ 667.902764][T19427] not chained 720000 origins [ 667.907381][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 667.916165][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 667.926219][T19427] Call Trace: [ 667.929520][T19427] dump_stack+0x24c/0x2e0 [ 667.933864][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 667.939608][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 667.944992][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 667.950524][T19427] ? kmsan_get_metadata+0x116/0x180 [ 667.955737][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 667.961354][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 667.967437][T19427] ? kmsan_get_metadata+0x116/0x180 [ 667.972624][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 667.978406][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 667.984536][T19427] ? kmsan_get_metadata+0x116/0x180 [ 667.989730][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 667.995346][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 668.001400][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 668.006711][T19427] ? _copy_from_user+0x1fd/0x300 [ 668.011634][T19427] __msan_chain_origin+0x54/0xa0 [ 668.016553][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 668.021651][T19427] get_compat_msghdr+0x108/0x2b0 [ 668.026610][T19427] do_recvmmsg+0xdc1/0x22d0 [ 668.031102][T19427] ? kmsan_get_metadata+0x116/0x180 [ 668.036287][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 668.041903][T19427] ? __msan_poison_alloca+0xec/0x110 [ 668.047206][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 668.052066][T19427] __sys_recvmmsg+0x519/0x6f0 [ 668.056728][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.062780][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.068910][T19427] __do_fast_syscall_32+0x127/0x180 [ 668.074088][T19427] do_fast_syscall_32+0x77/0xd0 [ 668.078929][T19427] do_SYSENTER_32+0x73/0x90 [ 668.083418][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.089759][T19427] RIP: 0023:0xf7fe1549 [ 668.093806][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 668.113496][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 668.121898][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 668.129905][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 668.137866][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 668.145810][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 668.153757][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 668.161714][T19427] Uninit was stored to memory at: [ 668.166721][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 668.172446][T19427] __msan_chain_origin+0x54/0xa0 [ 668.177363][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 668.182451][T19427] get_compat_msghdr+0x108/0x2b0 [ 668.187368][T19427] do_recvmmsg+0xdc1/0x22d0 [ 668.191863][T19427] __sys_recvmmsg+0x519/0x6f0 [ 668.196519][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.202582][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.208749][T19427] __do_fast_syscall_32+0x127/0x180 [ 668.213931][T19427] do_fast_syscall_32+0x77/0xd0 [ 668.218854][T19427] do_SYSENTER_32+0x73/0x90 [ 668.223450][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.229785][T19427] [ 668.232087][T19427] Uninit was stored to memory at: [ 668.237093][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 668.242807][T19427] __msan_chain_origin+0x54/0xa0 [ 668.247725][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 668.252820][T19427] get_compat_msghdr+0x108/0x2b0 [ 668.257738][T19427] do_recvmmsg+0xdc1/0x22d0 [ 668.262224][T19427] __sys_recvmmsg+0x519/0x6f0 [ 668.266888][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.273022][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.279168][T19427] __do_fast_syscall_32+0x127/0x180 [ 668.284347][T19427] do_fast_syscall_32+0x77/0xd0 [ 668.289179][T19427] do_SYSENTER_32+0x73/0x90 [ 668.293658][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.299970][T19427] [ 668.302311][T19427] Uninit was stored to memory at: [ 668.307306][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 668.313118][T19427] __msan_chain_origin+0x54/0xa0 [ 668.318038][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 668.323136][T19427] get_compat_msghdr+0x108/0x2b0 [ 668.328144][T19427] do_recvmmsg+0xdc1/0x22d0 [ 668.332631][T19427] __sys_recvmmsg+0x519/0x6f0 [ 668.337315][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.343365][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.349526][T19427] __do_fast_syscall_32+0x127/0x180 [ 668.354721][T19427] do_fast_syscall_32+0x77/0xd0 [ 668.359638][T19427] do_SYSENTER_32+0x73/0x90 [ 668.364141][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.370458][T19427] [ 668.372757][T19427] Uninit was stored to memory at: [ 668.377755][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 668.383483][T19427] __msan_chain_origin+0x54/0xa0 [ 668.388404][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 668.393498][T19427] get_compat_msghdr+0x108/0x2b0 [ 668.398416][T19427] do_recvmmsg+0xdc1/0x22d0 [ 668.402913][T19427] __sys_recvmmsg+0x519/0x6f0 [ 668.407573][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.413629][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.419929][T19427] __do_fast_syscall_32+0x127/0x180 [ 668.425163][T19427] do_fast_syscall_32+0x77/0xd0 [ 668.430007][T19427] do_SYSENTER_32+0x73/0x90 [ 668.434496][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.440815][T19427] [ 668.443132][T19427] Uninit was stored to memory at: [ 668.448140][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 668.453851][T19427] __msan_chain_origin+0x54/0xa0 [ 668.458771][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 668.463864][T19427] get_compat_msghdr+0x108/0x2b0 [ 668.468783][T19427] do_recvmmsg+0xdc1/0x22d0 [ 668.473266][T19427] __sys_recvmmsg+0x519/0x6f0 [ 668.477936][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.483987][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.490171][T19427] __do_fast_syscall_32+0x127/0x180 [ 668.495353][T19427] do_fast_syscall_32+0x77/0xd0 [ 668.500186][T19427] do_SYSENTER_32+0x73/0x90 [ 668.504694][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.511008][T19427] [ 668.513311][T19427] Uninit was stored to memory at: [ 668.518303][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 668.524006][T19427] __msan_chain_origin+0x54/0xa0 [ 668.529011][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 668.534097][T19427] get_compat_msghdr+0x108/0x2b0 [ 668.539024][T19427] do_recvmmsg+0xdc1/0x22d0 [ 668.543504][T19427] __sys_recvmmsg+0x519/0x6f0 [ 668.548161][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.554213][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.560355][T19427] __do_fast_syscall_32+0x127/0x180 [ 668.565678][T19427] do_fast_syscall_32+0x77/0xd0 [ 668.570527][T19427] do_SYSENTER_32+0x73/0x90 [ 668.575038][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.581356][T19427] [ 668.583670][T19427] Uninit was stored to memory at: [ 668.588664][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 668.594448][T19427] __msan_chain_origin+0x54/0xa0 [ 668.599372][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 668.604486][T19427] get_compat_msghdr+0x108/0x2b0 [ 668.609412][T19427] do_recvmmsg+0xdc1/0x22d0 [ 668.613920][T19427] __sys_recvmmsg+0x519/0x6f0 [ 668.618582][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.624638][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.630790][T19427] __do_fast_syscall_32+0x127/0x180 [ 668.635984][T19427] do_fast_syscall_32+0x77/0xd0 [ 668.641173][T19427] do_SYSENTER_32+0x73/0x90 [ 668.645682][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 668.651994][T19427] [ 668.654313][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 668.660962][T19427] do_recvmmsg+0xbf/0x22d0 [ 668.665387][T19427] do_recvmmsg+0xbf/0x22d0 [ 668.832329][T19427] not chained 730000 origins [ 668.836979][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 668.846244][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 668.856286][T19427] Call Trace: [ 668.859557][T19427] dump_stack+0x24c/0x2e0 [ 668.863903][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 668.869607][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 668.874981][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 668.880628][T19427] ? kmsan_get_metadata+0x116/0x180 [ 668.885843][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 668.891495][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 668.897574][T19427] ? kmsan_get_metadata+0x116/0x180 [ 668.902760][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 668.908554][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 668.914605][T19427] ? kmsan_get_metadata+0x116/0x180 [ 668.919789][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 668.925409][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 668.931460][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 668.936771][T19427] ? _copy_from_user+0x1fd/0x300 [ 668.941692][T19427] __msan_chain_origin+0x54/0xa0 [ 668.946630][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 668.951743][T19427] get_compat_msghdr+0x108/0x2b0 [ 668.956749][T19427] do_recvmmsg+0xdc1/0x22d0 [ 668.961247][T19427] ? kmsan_get_metadata+0x116/0x180 [ 668.966433][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 668.972054][T19427] ? __msan_poison_alloca+0xec/0x110 [ 668.977380][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 668.982145][T19427] __sys_recvmmsg+0x519/0x6f0 [ 668.986810][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 668.992870][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 668.999036][T19427] __do_fast_syscall_32+0x127/0x180 [ 669.004224][T19427] do_fast_syscall_32+0x77/0xd0 [ 669.009057][T19427] do_SYSENTER_32+0x73/0x90 [ 669.013541][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.019928][T19427] RIP: 0023:0xf7fe1549 [ 669.023977][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 669.043564][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 669.051962][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 669.059935][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 669.067899][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 669.075940][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 669.083888][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 669.091943][T19427] Uninit was stored to memory at: [ 669.096974][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 669.102685][T19427] __msan_chain_origin+0x54/0xa0 [ 669.107623][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 669.112726][T19427] get_compat_msghdr+0x108/0x2b0 [ 669.117646][T19427] do_recvmmsg+0xdc1/0x22d0 [ 669.122134][T19427] __sys_recvmmsg+0x519/0x6f0 [ 669.126819][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.132892][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.139027][T19427] __do_fast_syscall_32+0x127/0x180 [ 669.144226][T19427] do_fast_syscall_32+0x77/0xd0 [ 669.149056][T19427] do_SYSENTER_32+0x73/0x90 [ 669.153539][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.159853][T19427] [ 669.162165][T19427] Uninit was stored to memory at: [ 669.167156][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 669.172856][T19427] __msan_chain_origin+0x54/0xa0 [ 669.177775][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 669.182865][T19427] get_compat_msghdr+0x108/0x2b0 [ 669.187779][T19427] do_recvmmsg+0xdc1/0x22d0 [ 669.192260][T19427] __sys_recvmmsg+0x519/0x6f0 [ 669.196923][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.202977][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.209111][T19427] __do_fast_syscall_32+0x127/0x180 [ 669.214294][T19427] do_fast_syscall_32+0x77/0xd0 [ 669.219146][T19427] do_SYSENTER_32+0x73/0x90 [ 669.223680][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.230012][T19427] [ 669.232323][T19427] Uninit was stored to memory at: [ 669.237337][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 669.243378][T19427] __msan_chain_origin+0x54/0xa0 [ 669.248309][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 669.253396][T19427] get_compat_msghdr+0x108/0x2b0 [ 669.258332][T19427] do_recvmmsg+0xdc1/0x22d0 [ 669.262812][T19427] __sys_recvmmsg+0x519/0x6f0 [ 669.267491][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.273534][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.279667][T19427] __do_fast_syscall_32+0x127/0x180 [ 669.284847][T19427] do_fast_syscall_32+0x77/0xd0 [ 669.289688][T19427] do_SYSENTER_32+0x73/0x90 [ 669.294194][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.300521][T19427] [ 669.302853][T19427] Uninit was stored to memory at: [ 669.307856][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 669.313553][T19427] __msan_chain_origin+0x54/0xa0 [ 669.318490][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 669.323580][T19427] get_compat_msghdr+0x108/0x2b0 [ 669.328500][T19427] do_recvmmsg+0xdc1/0x22d0 [ 669.333007][T19427] __sys_recvmmsg+0x519/0x6f0 [ 669.337666][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.343709][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.349848][T19427] __do_fast_syscall_32+0x127/0x180 [ 669.355058][T19427] do_fast_syscall_32+0x77/0xd0 [ 669.359895][T19427] do_SYSENTER_32+0x73/0x90 [ 669.364497][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.370829][T19427] [ 669.373167][T19427] Uninit was stored to memory at: [ 669.378165][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 669.383864][T19427] __msan_chain_origin+0x54/0xa0 [ 669.388781][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 669.393871][T19427] get_compat_msghdr+0x108/0x2b0 [ 669.398797][T19427] do_recvmmsg+0xdc1/0x22d0 [ 669.403275][T19427] __sys_recvmmsg+0x519/0x6f0 [ 669.407926][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.413970][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.420104][T19427] __do_fast_syscall_32+0x127/0x180 [ 669.425284][T19427] do_fast_syscall_32+0x77/0xd0 [ 669.430119][T19427] do_SYSENTER_32+0x73/0x90 [ 669.434638][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.440976][T19427] [ 669.443281][T19427] Uninit was stored to memory at: [ 669.448270][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 669.453968][T19427] __msan_chain_origin+0x54/0xa0 [ 669.458883][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 669.463971][T19427] get_compat_msghdr+0x108/0x2b0 [ 669.468908][T19427] do_recvmmsg+0xdc1/0x22d0 [ 669.473424][T19427] __sys_recvmmsg+0x519/0x6f0 [ 669.478081][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.484128][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.490265][T19427] __do_fast_syscall_32+0x127/0x180 [ 669.495480][T19427] do_fast_syscall_32+0x77/0xd0 [ 669.500314][T19427] do_SYSENTER_32+0x73/0x90 [ 669.504834][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.511151][T19427] [ 669.513467][T19427] Uninit was stored to memory at: [ 669.518494][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 669.524193][T19427] __msan_chain_origin+0x54/0xa0 [ 669.529138][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 669.534238][T19427] get_compat_msghdr+0x108/0x2b0 [ 669.539163][T19427] do_recvmmsg+0xdc1/0x22d0 [ 669.543650][T19427] __sys_recvmmsg+0x519/0x6f0 [ 669.548310][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.554360][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.560505][T19427] __do_fast_syscall_32+0x127/0x180 [ 669.565704][T19427] do_fast_syscall_32+0x77/0xd0 [ 669.570552][T19427] do_SYSENTER_32+0x73/0x90 [ 669.575061][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.581371][T19427] [ 669.583670][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 669.590319][T19427] do_recvmmsg+0xbf/0x22d0 [ 669.594755][T19427] do_recvmmsg+0xbf/0x22d0 [ 669.770293][T19427] not chained 740000 origins [ 669.775045][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 669.783807][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 669.793867][T19427] Call Trace: [ 669.797147][T19427] dump_stack+0x24c/0x2e0 [ 669.801495][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 669.807227][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 669.812610][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 669.818259][T19427] ? kmsan_get_metadata+0x116/0x180 [ 669.823467][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 669.829103][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 669.835185][T19427] ? kmsan_get_metadata+0x116/0x180 [ 669.840424][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 669.846297][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 669.852378][T19427] ? kmsan_get_metadata+0x116/0x180 [ 669.857682][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 669.863320][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 669.869419][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 669.874749][T19427] ? _copy_from_user+0x1fd/0x300 [ 669.879703][T19427] __msan_chain_origin+0x54/0xa0 [ 669.884647][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 669.889767][T19427] get_compat_msghdr+0x108/0x2b0 [ 669.894715][T19427] do_recvmmsg+0xdc1/0x22d0 [ 669.899255][T19427] ? kmsan_get_metadata+0x116/0x180 [ 669.904456][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 669.910093][T19427] ? __msan_poison_alloca+0xec/0x110 [ 669.915382][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 669.920170][T19427] __sys_recvmmsg+0x519/0x6f0 [ 669.924866][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 669.930955][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 669.937132][T19427] __do_fast_syscall_32+0x127/0x180 [ 669.942385][T19427] do_fast_syscall_32+0x77/0xd0 [ 669.947266][T19427] do_SYSENTER_32+0x73/0x90 [ 669.951803][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 669.958146][T19427] RIP: 0023:0xf7fe1549 [ 669.962210][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 669.981825][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 669.990255][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 669.998220][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 670.006282][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 670.014239][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 670.022192][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 670.030151][T19427] Uninit was stored to memory at: [ 670.035144][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 670.040871][T19427] __msan_chain_origin+0x54/0xa0 [ 670.045823][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 670.050928][T19427] get_compat_msghdr+0x108/0x2b0 [ 670.055848][T19427] do_recvmmsg+0xdc1/0x22d0 [ 670.060336][T19427] __sys_recvmmsg+0x519/0x6f0 [ 670.065031][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.071121][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.077269][T19427] __do_fast_syscall_32+0x127/0x180 [ 670.082450][T19427] do_fast_syscall_32+0x77/0xd0 [ 670.087292][T19427] do_SYSENTER_32+0x73/0x90 [ 670.091772][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.098086][T19427] [ 670.100387][T19427] Uninit was stored to memory at: [ 670.105449][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 670.111169][T19427] __msan_chain_origin+0x54/0xa0 [ 670.116092][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 670.121187][T19427] get_compat_msghdr+0x108/0x2b0 [ 670.126130][T19427] do_recvmmsg+0xdc1/0x22d0 [ 670.130613][T19427] __sys_recvmmsg+0x519/0x6f0 [ 670.135269][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.141319][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.147492][T19427] __do_fast_syscall_32+0x127/0x180 [ 670.152694][T19427] do_fast_syscall_32+0x77/0xd0 [ 670.157522][T19427] do_SYSENTER_32+0x73/0x90 [ 670.162006][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.168345][T19427] [ 670.170645][T19427] Uninit was stored to memory at: [ 670.175640][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 670.181367][T19427] __msan_chain_origin+0x54/0xa0 [ 670.186330][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 670.191420][T19427] get_compat_msghdr+0x108/0x2b0 [ 670.196362][T19427] do_recvmmsg+0xdc1/0x22d0 [ 670.200848][T19427] __sys_recvmmsg+0x519/0x6f0 [ 670.205530][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.211582][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.217748][T19427] __do_fast_syscall_32+0x127/0x180 [ 670.222929][T19427] do_fast_syscall_32+0x77/0xd0 [ 670.227767][T19427] do_SYSENTER_32+0x73/0x90 [ 670.232250][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.238563][T19427] [ 670.240869][T19427] Uninit was stored to memory at: [ 670.245879][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 670.251582][T19427] __msan_chain_origin+0x54/0xa0 [ 670.256507][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 670.261610][T19427] get_compat_msghdr+0x108/0x2b0 [ 670.266553][T19427] do_recvmmsg+0xdc1/0x22d0 [ 670.271039][T19427] __sys_recvmmsg+0x519/0x6f0 [ 670.275695][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.281745][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.287923][T19427] __do_fast_syscall_32+0x127/0x180 [ 670.293102][T19427] do_fast_syscall_32+0x77/0xd0 [ 670.297949][T19427] do_SYSENTER_32+0x73/0x90 [ 670.302431][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.308740][T19427] [ 670.311039][T19427] Uninit was stored to memory at: [ 670.316046][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 670.321751][T19427] __msan_chain_origin+0x54/0xa0 [ 670.326695][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 670.331790][T19427] get_compat_msghdr+0x108/0x2b0 [ 670.336711][T19427] do_recvmmsg+0xdc1/0x22d0 [ 670.341198][T19427] __sys_recvmmsg+0x519/0x6f0 [ 670.345905][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.351960][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.358126][T19427] __do_fast_syscall_32+0x127/0x180 [ 670.363303][T19427] do_fast_syscall_32+0x77/0xd0 [ 670.368130][T19427] do_SYSENTER_32+0x73/0x90 [ 670.372606][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.378909][T19427] [ 670.381210][T19427] Uninit was stored to memory at: [ 670.386217][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 670.391914][T19427] __msan_chain_origin+0x54/0xa0 [ 670.396842][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 670.401934][T19427] get_compat_msghdr+0x108/0x2b0 [ 670.406879][T19427] do_recvmmsg+0xdc1/0x22d0 [ 670.411361][T19427] __sys_recvmmsg+0x519/0x6f0 [ 670.416031][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.422079][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.428339][T19427] __do_fast_syscall_32+0x127/0x180 [ 670.433520][T19427] do_fast_syscall_32+0x77/0xd0 [ 670.438358][T19427] do_SYSENTER_32+0x73/0x90 [ 670.442836][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.449158][T19427] [ 670.451459][T19427] Uninit was stored to memory at: [ 670.456457][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 670.462176][T19427] __msan_chain_origin+0x54/0xa0 [ 670.467090][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 670.472205][T19427] get_compat_msghdr+0x108/0x2b0 [ 670.477141][T19427] do_recvmmsg+0xdc1/0x22d0 [ 670.481633][T19427] __sys_recvmmsg+0x519/0x6f0 [ 670.486334][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.492390][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.498523][T19427] __do_fast_syscall_32+0x127/0x180 [ 670.503714][T19427] do_fast_syscall_32+0x77/0xd0 [ 670.508549][T19427] do_SYSENTER_32+0x73/0x90 [ 670.513042][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.519353][T19427] [ 670.521664][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 670.528323][T19427] do_recvmmsg+0xbf/0x22d0 [ 670.532719][T19427] do_recvmmsg+0xbf/0x22d0 [ 670.687267][T19427] not chained 750000 origins [ 670.691848][T19427] CPU: 1 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 670.700591][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 670.710641][T19427] Call Trace: [ 670.713899][T19427] dump_stack+0x24c/0x2e0 [ 670.718217][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 670.723916][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 670.729275][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 670.734801][T19427] ? kmsan_get_metadata+0x116/0x180 [ 670.739980][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 670.745605][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 670.751655][T19427] ? kmsan_get_metadata+0x116/0x180 [ 670.756881][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 670.762696][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 670.768777][T19427] ? kmsan_get_metadata+0x116/0x180 [ 670.774014][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 670.779623][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 670.785707][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 670.790978][T19427] ? _copy_from_user+0x1fd/0x300 [ 670.795899][T19427] __msan_chain_origin+0x54/0xa0 [ 670.800837][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 670.806033][T19427] get_compat_msghdr+0x108/0x2b0 [ 670.810963][T19427] do_recvmmsg+0xdc1/0x22d0 [ 670.815459][T19427] ? kmsan_get_metadata+0x116/0x180 [ 670.820637][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 670.826256][T19427] ? __msan_poison_alloca+0xec/0x110 [ 670.831524][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 670.836272][T19427] __sys_recvmmsg+0x519/0x6f0 [ 670.840933][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.846992][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.853135][T19427] __do_fast_syscall_32+0x127/0x180 [ 670.858323][T19427] do_fast_syscall_32+0x77/0xd0 [ 670.863155][T19427] do_SYSENTER_32+0x73/0x90 [ 670.867650][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 670.873993][T19427] RIP: 0023:0xf7fe1549 [ 670.878077][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 670.897667][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 670.906059][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 670.914033][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 670.921985][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 670.929937][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 670.937911][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 670.946059][T19427] Uninit was stored to memory at: [ 670.951054][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 670.956758][T19427] __msan_chain_origin+0x54/0xa0 [ 670.961679][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 670.966777][T19427] get_compat_msghdr+0x108/0x2b0 [ 670.971717][T19427] do_recvmmsg+0xdc1/0x22d0 [ 670.976211][T19427] __sys_recvmmsg+0x519/0x6f0 [ 670.980864][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 670.986927][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 670.993144][T19427] __do_fast_syscall_32+0x127/0x180 [ 670.998330][T19427] do_fast_syscall_32+0x77/0xd0 [ 671.003178][T19427] do_SYSENTER_32+0x73/0x90 [ 671.007794][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.014100][T19427] [ 671.016399][T19427] Uninit was stored to memory at: [ 671.021462][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 671.027165][T19427] __msan_chain_origin+0x54/0xa0 [ 671.032081][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 671.037180][T19427] get_compat_msghdr+0x108/0x2b0 [ 671.042104][T19427] do_recvmmsg+0xdc1/0x22d0 [ 671.046599][T19427] __sys_recvmmsg+0x519/0x6f0 [ 671.051261][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.057314][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.063454][T19427] __do_fast_syscall_32+0x127/0x180 [ 671.068638][T19427] do_fast_syscall_32+0x77/0xd0 [ 671.073493][T19427] do_SYSENTER_32+0x73/0x90 [ 671.077977][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.084280][T19427] [ 671.086603][T19427] Uninit was stored to memory at: [ 671.091610][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 671.097323][T19427] __msan_chain_origin+0x54/0xa0 [ 671.102233][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 671.107333][T19427] get_compat_msghdr+0x108/0x2b0 [ 671.112247][T19427] do_recvmmsg+0xdc1/0x22d0 [ 671.116731][T19427] __sys_recvmmsg+0x519/0x6f0 [ 671.121388][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.127442][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.133588][T19427] __do_fast_syscall_32+0x127/0x180 [ 671.138776][T19427] do_fast_syscall_32+0x77/0xd0 [ 671.143613][T19427] do_SYSENTER_32+0x73/0x90 [ 671.148105][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.154773][T19427] [ 671.157083][T19427] Uninit was stored to memory at: [ 671.162074][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 671.167782][T19427] __msan_chain_origin+0x54/0xa0 [ 671.172695][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 671.177807][T19427] get_compat_msghdr+0x108/0x2b0 [ 671.182735][T19427] do_recvmmsg+0xdc1/0x22d0 [ 671.187223][T19427] __sys_recvmmsg+0x519/0x6f0 [ 671.191887][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.197944][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.204098][T19427] __do_fast_syscall_32+0x127/0x180 [ 671.209278][T19427] do_fast_syscall_32+0x77/0xd0 [ 671.214105][T19427] do_SYSENTER_32+0x73/0x90 [ 671.218588][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.224899][T19427] [ 671.227196][T19427] Uninit was stored to memory at: [ 671.232188][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 671.237891][T19427] __msan_chain_origin+0x54/0xa0 [ 671.242814][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 671.247915][T19427] get_compat_msghdr+0x108/0x2b0 [ 671.252859][T19427] do_recvmmsg+0xdc1/0x22d0 [ 671.257338][T19427] __sys_recvmmsg+0x519/0x6f0 [ 671.261996][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.268044][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.274174][T19427] __do_fast_syscall_32+0x127/0x180 [ 671.279372][T19427] do_fast_syscall_32+0x77/0xd0 [ 671.284208][T19427] do_SYSENTER_32+0x73/0x90 [ 671.288690][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.294993][T19427] [ 671.297294][T19427] Uninit was stored to memory at: [ 671.302298][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 671.307993][T19427] __msan_chain_origin+0x54/0xa0 [ 671.312903][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 671.317991][T19427] get_compat_msghdr+0x108/0x2b0 [ 671.322931][T19427] do_recvmmsg+0xdc1/0x22d0 [ 671.327412][T19427] __sys_recvmmsg+0x519/0x6f0 [ 671.332068][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.338116][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.344247][T19427] __do_fast_syscall_32+0x127/0x180 [ 671.349423][T19427] do_fast_syscall_32+0x77/0xd0 [ 671.354268][T19427] do_SYSENTER_32+0x73/0x90 [ 671.358745][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.365060][T19427] [ 671.367354][T19427] Uninit was stored to memory at: [ 671.372343][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 671.378041][T19427] __msan_chain_origin+0x54/0xa0 [ 671.382959][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 671.388050][T19427] get_compat_msghdr+0x108/0x2b0 [ 671.392979][T19427] do_recvmmsg+0xdc1/0x22d0 [ 671.397463][T19427] __sys_recvmmsg+0x519/0x6f0 [ 671.402119][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.408171][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.414299][T19427] __do_fast_syscall_32+0x127/0x180 [ 671.419479][T19427] do_fast_syscall_32+0x77/0xd0 [ 671.424306][T19427] do_SYSENTER_32+0x73/0x90 [ 671.428789][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.435103][T19427] [ 671.437415][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 671.444076][T19427] do_recvmmsg+0xbf/0x22d0 [ 671.448472][T19427] do_recvmmsg+0xbf/0x22d0 [ 671.630651][T19427] not chained 760000 origins [ 671.635288][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 671.644062][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 671.654186][T19427] Call Trace: [ 671.657449][T19427] dump_stack+0x24c/0x2e0 [ 671.661768][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 671.667474][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 671.672836][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 671.678368][T19427] ? kmsan_get_metadata+0x116/0x180 [ 671.683551][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 671.689186][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 671.695237][T19427] ? kmsan_get_metadata+0x116/0x180 [ 671.700451][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 671.706255][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 671.712837][T19427] ? kmsan_get_metadata+0x116/0x180 [ 671.718109][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 671.723722][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 671.729774][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 671.735061][T19427] ? _copy_from_user+0x1fd/0x300 [ 671.739991][T19427] __msan_chain_origin+0x54/0xa0 [ 671.744946][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 671.750049][T19427] get_compat_msghdr+0x108/0x2b0 [ 671.755000][T19427] do_recvmmsg+0xdc1/0x22d0 [ 671.759505][T19427] ? kmsan_get_metadata+0x116/0x180 [ 671.764708][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 671.770330][T19427] ? __msan_poison_alloca+0xec/0x110 [ 671.775734][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 671.780493][T19427] __sys_recvmmsg+0x519/0x6f0 [ 671.785281][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.791365][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.797542][T19427] __do_fast_syscall_32+0x127/0x180 [ 671.802728][T19427] do_fast_syscall_32+0x77/0xd0 [ 671.807583][T19427] do_SYSENTER_32+0x73/0x90 [ 671.812068][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.818383][T19427] RIP: 0023:0xf7fe1549 [ 671.822430][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 671.842034][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 671.850456][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 671.858430][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 671.866377][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 671.874327][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 671.882295][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 671.890252][T19427] Uninit was stored to memory at: [ 671.895261][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 671.900963][T19427] __msan_chain_origin+0x54/0xa0 [ 671.905944][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 671.911043][T19427] get_compat_msghdr+0x108/0x2b0 [ 671.916032][T19427] do_recvmmsg+0xdc1/0x22d0 [ 671.920519][T19427] __sys_recvmmsg+0x519/0x6f0 [ 671.925178][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 671.931363][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 671.937544][T19427] __do_fast_syscall_32+0x127/0x180 [ 671.942727][T19427] do_fast_syscall_32+0x77/0xd0 [ 671.947557][T19427] do_SYSENTER_32+0x73/0x90 [ 671.952048][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 671.958496][T19427] [ 671.960807][T19427] Uninit was stored to memory at: [ 671.965804][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 671.971509][T19427] __msan_chain_origin+0x54/0xa0 [ 671.976452][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 671.981543][T19427] get_compat_msghdr+0x108/0x2b0 [ 671.986465][T19427] do_recvmmsg+0xdc1/0x22d0 [ 671.990982][T19427] __sys_recvmmsg+0x519/0x6f0 [ 671.995661][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.001727][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.007885][T19427] __do_fast_syscall_32+0x127/0x180 [ 672.013080][T19427] do_fast_syscall_32+0x77/0xd0 [ 672.017914][T19427] do_SYSENTER_32+0x73/0x90 [ 672.022403][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.028742][T19427] [ 672.031050][T19427] Uninit was stored to memory at: [ 672.036058][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 672.041766][T19427] __msan_chain_origin+0x54/0xa0 [ 672.046684][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 672.051781][T19427] get_compat_msghdr+0x108/0x2b0 [ 672.056729][T19427] do_recvmmsg+0xdc1/0x22d0 [ 672.061216][T19427] __sys_recvmmsg+0x519/0x6f0 [ 672.065879][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.071934][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.078108][T19427] __do_fast_syscall_32+0x127/0x180 [ 672.083289][T19427] do_fast_syscall_32+0x77/0xd0 [ 672.088122][T19427] do_SYSENTER_32+0x73/0x90 [ 672.092611][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.098950][T19427] [ 672.101279][T19427] Uninit was stored to memory at: [ 672.106276][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 672.112118][T19427] __msan_chain_origin+0x54/0xa0 [ 672.117061][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 672.122156][T19427] get_compat_msghdr+0x108/0x2b0 [ 672.127094][T19427] do_recvmmsg+0xdc1/0x22d0 [ 672.131584][T19427] __sys_recvmmsg+0x519/0x6f0 [ 672.136269][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.142356][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.148507][T19427] __do_fast_syscall_32+0x127/0x180 [ 672.153692][T19427] do_fast_syscall_32+0x77/0xd0 [ 672.158523][T19427] do_SYSENTER_32+0x73/0x90 [ 672.163102][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.169414][T19427] [ 672.171732][T19427] Uninit was stored to memory at: [ 672.176747][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 672.182454][T19427] __msan_chain_origin+0x54/0xa0 [ 672.187378][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 672.192478][T19427] get_compat_msghdr+0x108/0x2b0 [ 672.197406][T19427] do_recvmmsg+0xdc1/0x22d0 [ 672.201914][T19427] __sys_recvmmsg+0x519/0x6f0 [ 672.206574][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.212634][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.218770][T19427] __do_fast_syscall_32+0x127/0x180 [ 672.223961][T19427] do_fast_syscall_32+0x77/0xd0 [ 672.228794][T19427] do_SYSENTER_32+0x73/0x90 [ 672.233278][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.239592][T19427] [ 672.241908][T19427] Uninit was stored to memory at: [ 672.246915][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 672.252616][T19427] __msan_chain_origin+0x54/0xa0 [ 672.257547][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 672.262639][T19427] get_compat_msghdr+0x108/0x2b0 [ 672.267569][T19427] do_recvmmsg+0xdc1/0x22d0 [ 672.272060][T19427] __sys_recvmmsg+0x519/0x6f0 [ 672.276742][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.282786][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.288922][T19427] __do_fast_syscall_32+0x127/0x180 [ 672.294114][T19427] do_fast_syscall_32+0x77/0xd0 [ 672.298947][T19427] do_SYSENTER_32+0x73/0x90 [ 672.303443][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.309754][T19427] [ 672.312070][T19427] Uninit was stored to memory at: [ 672.317089][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 672.322797][T19427] __msan_chain_origin+0x54/0xa0 [ 672.327734][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 672.332847][T19427] get_compat_msghdr+0x108/0x2b0 [ 672.337798][T19427] do_recvmmsg+0xdc1/0x22d0 [ 672.342284][T19427] __sys_recvmmsg+0x519/0x6f0 [ 672.346963][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.353011][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.359183][T19427] __do_fast_syscall_32+0x127/0x180 [ 672.364375][T19427] do_fast_syscall_32+0x77/0xd0 [ 672.369213][T19427] do_SYSENTER_32+0x73/0x90 [ 672.373711][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.380038][T19427] [ 672.382348][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 672.388991][T19427] do_recvmmsg+0xbf/0x22d0 [ 672.393383][T19427] do_recvmmsg+0xbf/0x22d0 [ 672.559067][T19427] not chained 770000 origins [ 672.563671][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 672.572451][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 672.582515][T19427] Call Trace: [ 672.585777][T19427] dump_stack+0x24c/0x2e0 [ 672.590092][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 672.595802][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 672.601168][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 672.606727][T19427] ? kmsan_get_metadata+0x116/0x180 [ 672.611906][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 672.617525][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 672.623567][T19427] ? kmsan_get_metadata+0x116/0x180 [ 672.628739][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 672.634534][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 672.640587][T19427] ? kmsan_get_metadata+0x116/0x180 [ 672.645805][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 672.651423][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 672.657489][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 672.662754][T19427] ? _copy_from_user+0x1fd/0x300 [ 672.667680][T19427] __msan_chain_origin+0x54/0xa0 [ 672.672616][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 672.677709][T19427] get_compat_msghdr+0x108/0x2b0 [ 672.682634][T19427] do_recvmmsg+0xdc1/0x22d0 [ 672.687162][T19427] ? kmsan_get_metadata+0x116/0x180 [ 672.692342][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 672.697968][T19427] ? __msan_poison_alloca+0xec/0x110 [ 672.703244][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 672.707991][T19427] __sys_recvmmsg+0x519/0x6f0 [ 672.712660][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.718715][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.724856][T19427] __do_fast_syscall_32+0x127/0x180 [ 672.730047][T19427] do_fast_syscall_32+0x77/0xd0 [ 672.734902][T19427] do_SYSENTER_32+0x73/0x90 [ 672.739411][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.745749][T19427] RIP: 0023:0xf7fe1549 [ 672.749799][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 672.769419][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 672.777851][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 672.785808][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 672.793787][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 672.801747][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 672.809743][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 672.817719][T19427] Uninit was stored to memory at: [ 672.822718][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 672.828439][T19427] __msan_chain_origin+0x54/0xa0 [ 672.833409][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 672.838515][T19427] get_compat_msghdr+0x108/0x2b0 [ 672.843439][T19427] do_recvmmsg+0xdc1/0x22d0 [ 672.847930][T19427] __sys_recvmmsg+0x519/0x6f0 [ 672.852630][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.858679][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.864826][T19427] __do_fast_syscall_32+0x127/0x180 [ 672.870013][T19427] do_fast_syscall_32+0x77/0xd0 [ 672.874876][T19427] do_SYSENTER_32+0x73/0x90 [ 672.879356][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.885678][T19427] [ 672.887975][T19427] Uninit was stored to memory at: [ 672.892963][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 672.898661][T19427] __msan_chain_origin+0x54/0xa0 [ 672.903584][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 672.908703][T19427] get_compat_msghdr+0x108/0x2b0 [ 672.913627][T19427] do_recvmmsg+0xdc1/0x22d0 [ 672.918111][T19427] __sys_recvmmsg+0x519/0x6f0 [ 672.922764][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.928812][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 672.934951][T19427] __do_fast_syscall_32+0x127/0x180 [ 672.940136][T19427] do_fast_syscall_32+0x77/0xd0 [ 672.944987][T19427] do_SYSENTER_32+0x73/0x90 [ 672.949496][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 672.955842][T19427] [ 672.958143][T19427] Uninit was stored to memory at: [ 672.963132][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 672.968839][T19427] __msan_chain_origin+0x54/0xa0 [ 672.973775][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 672.978970][T19427] get_compat_msghdr+0x108/0x2b0 [ 672.983888][T19427] do_recvmmsg+0xdc1/0x22d0 [ 672.988376][T19427] __sys_recvmmsg+0x519/0x6f0 [ 672.993073][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 672.999121][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.005251][T19427] __do_fast_syscall_32+0x127/0x180 [ 673.010457][T19427] do_fast_syscall_32+0x77/0xd0 [ 673.015308][T19427] do_SYSENTER_32+0x73/0x90 [ 673.019796][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.026143][T19427] [ 673.028440][T19427] Uninit was stored to memory at: [ 673.033429][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 673.039127][T19427] __msan_chain_origin+0x54/0xa0 [ 673.044045][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 673.049136][T19427] get_compat_msghdr+0x108/0x2b0 [ 673.054051][T19427] do_recvmmsg+0xdc1/0x22d0 [ 673.058533][T19427] __sys_recvmmsg+0x519/0x6f0 [ 673.063188][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.069237][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.075369][T19427] __do_fast_syscall_32+0x127/0x180 [ 673.080553][T19427] do_fast_syscall_32+0x77/0xd0 [ 673.085418][T19427] do_SYSENTER_32+0x73/0x90 [ 673.089915][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.096258][T19427] [ 673.098574][T19427] Uninit was stored to memory at: [ 673.103568][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 673.109280][T19427] __msan_chain_origin+0x54/0xa0 [ 673.114197][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 673.119293][T19427] get_compat_msghdr+0x108/0x2b0 [ 673.124225][T19427] do_recvmmsg+0xdc1/0x22d0 [ 673.128731][T19427] __sys_recvmmsg+0x519/0x6f0 [ 673.133394][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.139452][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.145617][T19427] __do_fast_syscall_32+0x127/0x180 [ 673.150814][T19427] do_fast_syscall_32+0x77/0xd0 [ 673.155645][T19427] do_SYSENTER_32+0x73/0x90 [ 673.160125][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.166513][T19427] [ 673.168813][T19427] Uninit was stored to memory at: [ 673.173931][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 673.179657][T19427] __msan_chain_origin+0x54/0xa0 [ 673.184597][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 673.189696][T19427] get_compat_msghdr+0x108/0x2b0 [ 673.194633][T19427] do_recvmmsg+0xdc1/0x22d0 [ 673.199132][T19427] __sys_recvmmsg+0x519/0x6f0 [ 673.203800][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.209919][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.216098][T19427] __do_fast_syscall_32+0x127/0x180 [ 673.221285][T19427] do_fast_syscall_32+0x77/0xd0 [ 673.226166][T19427] do_SYSENTER_32+0x73/0x90 [ 673.230656][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.236994][T19427] [ 673.239299][T19427] Uninit was stored to memory at: [ 673.244297][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 673.250002][T19427] __msan_chain_origin+0x54/0xa0 [ 673.254926][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 673.260022][T19427] get_compat_msghdr+0x108/0x2b0 [ 673.264962][T19427] do_recvmmsg+0xdc1/0x22d0 [ 673.269465][T19427] __sys_recvmmsg+0x519/0x6f0 [ 673.274152][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.280235][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.286398][T19427] __do_fast_syscall_32+0x127/0x180 [ 673.291588][T19427] do_fast_syscall_32+0x77/0xd0 [ 673.296427][T19427] do_SYSENTER_32+0x73/0x90 [ 673.300914][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.307252][T19427] [ 673.309556][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 673.316909][T19427] do_recvmmsg+0xbf/0x22d0 [ 673.321313][T19427] do_recvmmsg+0xbf/0x22d0 [ 673.488267][T19427] not chained 780000 origins [ 673.492879][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 673.501644][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 673.511828][T19427] Call Trace: [ 673.515150][T19427] dump_stack+0x24c/0x2e0 [ 673.519496][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 673.525217][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 673.530591][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 673.536141][T19427] ? kmsan_get_metadata+0x116/0x180 [ 673.541320][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 673.546941][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 673.552988][T19427] ? kmsan_get_metadata+0x116/0x180 [ 673.558165][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 673.563953][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 673.570014][T19427] ? kmsan_get_metadata+0x116/0x180 [ 673.575233][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 673.580848][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 673.586929][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 673.592194][T19427] ? _copy_from_user+0x1fd/0x300 [ 673.597118][T19427] __msan_chain_origin+0x54/0xa0 [ 673.602040][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 673.607170][T19427] get_compat_msghdr+0x108/0x2b0 [ 673.612114][T19427] do_recvmmsg+0xdc1/0x22d0 [ 673.616640][T19427] ? kmsan_get_metadata+0x116/0x180 [ 673.621877][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 673.627537][T19427] ? __msan_poison_alloca+0xec/0x110 [ 673.632803][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 673.637548][T19427] __sys_recvmmsg+0x519/0x6f0 [ 673.642213][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.648309][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.654487][T19427] __do_fast_syscall_32+0x127/0x180 [ 673.659688][T19427] do_fast_syscall_32+0x77/0xd0 [ 673.664544][T19427] do_SYSENTER_32+0x73/0x90 [ 673.669117][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.675429][T19427] RIP: 0023:0xf7fe1549 [ 673.679483][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 673.699101][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 673.707506][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 673.715469][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 673.723425][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 673.731417][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 673.739394][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 673.747371][T19427] Uninit was stored to memory at: [ 673.752374][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 673.758079][T19427] __msan_chain_origin+0x54/0xa0 [ 673.763010][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 673.768114][T19427] get_compat_msghdr+0x108/0x2b0 [ 673.773051][T19427] do_recvmmsg+0xdc1/0x22d0 [ 673.777536][T19427] __sys_recvmmsg+0x519/0x6f0 [ 673.782210][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.788293][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.794447][T19427] __do_fast_syscall_32+0x127/0x180 [ 673.799645][T19427] do_fast_syscall_32+0x77/0xd0 [ 673.804511][T19427] do_SYSENTER_32+0x73/0x90 [ 673.809003][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.815313][T19427] [ 673.817612][T19427] Uninit was stored to memory at: [ 673.822606][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 673.828446][T19427] __msan_chain_origin+0x54/0xa0 [ 673.833363][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 673.838471][T19427] get_compat_msghdr+0x108/0x2b0 [ 673.843404][T19427] do_recvmmsg+0xdc1/0x22d0 [ 673.847896][T19427] __sys_recvmmsg+0x519/0x6f0 [ 673.852651][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.858700][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.864835][T19427] __do_fast_syscall_32+0x127/0x180 [ 673.870018][T19427] do_fast_syscall_32+0x77/0xd0 [ 673.874848][T19427] do_SYSENTER_32+0x73/0x90 [ 673.879331][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.885659][T19427] [ 673.887979][T19427] Uninit was stored to memory at: [ 673.892970][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 673.898759][T19427] __msan_chain_origin+0x54/0xa0 [ 673.903673][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 673.908763][T19427] get_compat_msghdr+0x108/0x2b0 [ 673.913703][T19427] do_recvmmsg+0xdc1/0x22d0 [ 673.918184][T19427] __sys_recvmmsg+0x519/0x6f0 [ 673.922846][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.928894][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 673.935028][T19427] __do_fast_syscall_32+0x127/0x180 [ 673.940214][T19427] do_fast_syscall_32+0x77/0xd0 [ 673.945069][T19427] do_SYSENTER_32+0x73/0x90 [ 673.949672][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 673.956004][T19427] [ 673.958305][T19427] Uninit was stored to memory at: [ 673.963298][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 673.968995][T19427] __msan_chain_origin+0x54/0xa0 [ 673.973907][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 673.978998][T19427] get_compat_msghdr+0x108/0x2b0 [ 673.983919][T19427] do_recvmmsg+0xdc1/0x22d0 [ 673.988406][T19427] __sys_recvmmsg+0x519/0x6f0 [ 673.993064][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 673.999111][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 674.005255][T19427] __do_fast_syscall_32+0x127/0x180 [ 674.010511][T19427] do_fast_syscall_32+0x77/0xd0 [ 674.015343][T19427] do_SYSENTER_32+0x73/0x90 [ 674.019829][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 674.026162][T19427] [ 674.028465][T19427] Uninit was stored to memory at: [ 674.033459][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 674.039159][T19427] __msan_chain_origin+0x54/0xa0 [ 674.044076][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 674.049187][T19427] get_compat_msghdr+0x108/0x2b0 [ 674.054254][T19427] do_recvmmsg+0xdc1/0x22d0 [ 674.058738][T19427] __sys_recvmmsg+0x519/0x6f0 [ 674.063438][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 674.069503][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 674.075649][T19427] __do_fast_syscall_32+0x127/0x180 [ 674.080832][T19427] do_fast_syscall_32+0x77/0xd0 [ 674.085692][T19427] do_SYSENTER_32+0x73/0x90 [ 674.090185][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 674.096502][T19427] [ 674.098798][T19427] Uninit was stored to memory at: [ 674.103814][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 674.109533][T19427] __msan_chain_origin+0x54/0xa0 [ 674.114464][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 674.119560][T19427] get_compat_msghdr+0x108/0x2b0 [ 674.124508][T19427] do_recvmmsg+0xdc1/0x22d0 [ 674.128988][T19427] __sys_recvmmsg+0x519/0x6f0 [ 674.133641][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 674.139696][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 674.145853][T19427] __do_fast_syscall_32+0x127/0x180 [ 674.151050][T19427] do_fast_syscall_32+0x77/0xd0 [ 674.155898][T19427] do_SYSENTER_32+0x73/0x90 [ 674.160385][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 674.167461][T19427] [ 674.169765][T19427] Uninit was stored to memory at: [ 674.174788][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 674.180497][T19427] __msan_chain_origin+0x54/0xa0 [ 674.185444][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 674.190540][T19427] get_compat_msghdr+0x108/0x2b0 [ 674.195461][T19427] do_recvmmsg+0xdc1/0x22d0 [ 674.199950][T19427] __sys_recvmmsg+0x519/0x6f0 [ 674.204635][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 674.210694][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 674.216830][T19427] __do_fast_syscall_32+0x127/0x180 [ 674.222015][T19427] do_fast_syscall_32+0x77/0xd0 [ 674.226894][T19427] do_SYSENTER_32+0x73/0x90 [ 674.231391][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 674.237703][T19427] [ 674.240003][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 674.246659][T19427] do_recvmmsg+0xbf/0x22d0 [ 674.251076][T19427] do_recvmmsg+0xbf/0x22d0 [ 674.421750][T19427] not chained 790000 origins [ 674.426366][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 674.435145][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 674.445214][T19427] Call Trace: [ 674.448493][T19427] dump_stack+0x24c/0x2e0 [ 674.452846][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 674.458568][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 674.463920][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 674.469456][T19427] ? kmsan_get_metadata+0x116/0x180 [ 674.474656][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 674.480274][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 674.486350][T19427] ? kmsan_get_metadata+0x116/0x180 [ 674.491535][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 674.497337][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 674.503391][T19427] ? kmsan_get_metadata+0x116/0x180 [ 674.508655][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 674.514265][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 674.520320][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 674.525617][T19427] ? _copy_from_user+0x1fd/0x300 [ 674.530535][T19427] __msan_chain_origin+0x54/0xa0 [ 674.535472][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 674.540573][T19427] get_compat_msghdr+0x108/0x2b0 [ 674.545533][T19427] do_recvmmsg+0xdc1/0x22d0 [ 674.550076][T19427] ? kmsan_get_metadata+0x116/0x180 [ 674.555271][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 674.560891][T19427] ? __msan_poison_alloca+0xec/0x110 [ 674.566180][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 674.570926][T19427] __sys_recvmmsg+0x519/0x6f0 [ 674.575594][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 674.581650][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 674.587813][T19427] __do_fast_syscall_32+0x127/0x180 [ 674.592993][T19427] do_fast_syscall_32+0x77/0xd0 [ 674.597824][T19427] do_SYSENTER_32+0x73/0x90 [ 674.602306][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 674.608622][T19427] RIP: 0023:0xf7fe1549 [ 674.612666][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 674.632275][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 674.640678][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 674.648654][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 674.656608][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 674.664565][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 674.672554][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 674.680537][T19427] Uninit was stored to memory at: [ 674.685546][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 674.691247][T19427] __msan_chain_origin+0x54/0xa0 [ 674.696165][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 674.701265][T19427] get_compat_msghdr+0x108/0x2b0 [ 674.706209][T19427] do_recvmmsg+0xdc1/0x22d0 [ 674.710691][T19427] __sys_recvmmsg+0x519/0x6f0 [ 674.715356][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 674.721409][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 674.727578][T19427] __do_fast_syscall_32+0x127/0x180 [ 674.732769][T19427] do_fast_syscall_32+0x77/0xd0 [ 674.737706][T19427] do_SYSENTER_32+0x73/0x90 [ 674.742195][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 674.748536][T19427] [ 674.750923][T19427] Uninit was stored to memory at: [ 674.755921][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 674.761631][T19427] __msan_chain_origin+0x54/0xa0 [ 674.766573][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 674.771796][T19427] get_compat_msghdr+0x108/0x2b0 [ 674.776761][T19427] do_recvmmsg+0xdc1/0x22d0 [ 674.781256][T19427] __sys_recvmmsg+0x519/0x6f0 [ 674.785941][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 674.791988][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 674.798126][T19427] __do_fast_syscall_32+0x127/0x180 [ 674.803318][T19427] do_fast_syscall_32+0x77/0xd0 [ 674.808184][T19427] do_SYSENTER_32+0x73/0x90 [ 674.812678][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 674.819006][T19427] [ 674.821311][T19427] Uninit was stored to memory at: [ 674.826321][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 674.832022][T19427] __msan_chain_origin+0x54/0xa0 [ 674.836989][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 674.842192][T19427] get_compat_msghdr+0x108/0x2b0 [ 674.847203][T19427] do_recvmmsg+0xdc1/0x22d0 [ 674.851794][T19427] __sys_recvmmsg+0x519/0x6f0 [ 674.856476][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 674.862602][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 674.868739][T19427] __do_fast_syscall_32+0x127/0x180 [ 674.873942][T19427] do_fast_syscall_32+0x77/0xd0 [ 674.878768][T19427] do_SYSENTER_32+0x73/0x90 [ 674.883253][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 674.889586][T19427] [ 674.891896][T19427] Uninit was stored to memory at: [ 674.896889][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 674.902595][T19427] __msan_chain_origin+0x54/0xa0 [ 674.907523][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 674.912639][T19427] get_compat_msghdr+0x108/0x2b0 [ 674.917555][T19427] do_recvmmsg+0xdc1/0x22d0 [ 674.922042][T19427] __sys_recvmmsg+0x519/0x6f0 [ 674.926727][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 674.932782][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 674.938979][T19427] __do_fast_syscall_32+0x127/0x180 [ 674.944167][T19427] do_fast_syscall_32+0x77/0xd0 [ 674.948999][T19427] do_SYSENTER_32+0x73/0x90 [ 674.953490][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 674.959805][T19427] [ 674.962130][T19427] Uninit was stored to memory at: [ 674.967144][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 674.972846][T19427] __msan_chain_origin+0x54/0xa0 [ 674.977899][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 674.982994][T19427] get_compat_msghdr+0x108/0x2b0 [ 674.987909][T19427] do_recvmmsg+0xdc1/0x22d0 [ 674.992399][T19427] __sys_recvmmsg+0x519/0x6f0 [ 674.997088][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 675.003194][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 675.009460][T19427] __do_fast_syscall_32+0x127/0x180 [ 675.014659][T19427] do_fast_syscall_32+0x77/0xd0 [ 675.019493][T19427] do_SYSENTER_32+0x73/0x90 [ 675.024017][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 675.030413][T19427] [ 675.032728][T19427] Uninit was stored to memory at: [ 675.037722][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 675.043441][T19427] __msan_chain_origin+0x54/0xa0 [ 675.048359][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 675.053459][T19427] get_compat_msghdr+0x108/0x2b0 [ 675.058378][T19427] do_recvmmsg+0xdc1/0x22d0 [ 675.062869][T19427] __sys_recvmmsg+0x519/0x6f0 [ 675.067553][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 675.073605][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 675.079744][T19427] __do_fast_syscall_32+0x127/0x180 [ 675.084963][T19427] do_fast_syscall_32+0x77/0xd0 [ 675.089793][T19427] do_SYSENTER_32+0x73/0x90 [ 675.094286][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 675.100596][T19427] [ 675.102916][T19427] Uninit was stored to memory at: [ 675.108030][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 675.113747][T19427] __msan_chain_origin+0x54/0xa0 [ 675.118660][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 675.123751][T19427] get_compat_msghdr+0x108/0x2b0 [ 675.128667][T19427] do_recvmmsg+0xdc1/0x22d0 [ 675.133245][T19427] __sys_recvmmsg+0x519/0x6f0 [ 675.137913][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 675.143967][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 675.150099][T19427] __do_fast_syscall_32+0x127/0x180 [ 675.155304][T19427] do_fast_syscall_32+0x77/0xd0 [ 675.160137][T19427] do_SYSENTER_32+0x73/0x90 [ 675.164644][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 675.171166][T19427] [ 675.173552][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 675.180194][T19427] do_recvmmsg+0xbf/0x22d0 [ 675.184608][T19427] do_recvmmsg+0xbf/0x22d0 [ 675.349234][T19427] not chained 800000 origins [ 675.353843][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 675.362592][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 675.372629][T19427] Call Trace: [ 675.375911][T19427] dump_stack+0x24c/0x2e0 [ 675.380228][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 675.385973][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 675.391330][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 675.396872][T19427] ? kmsan_get_metadata+0x116/0x180 [ 675.402047][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 675.407839][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 675.413884][T19427] ? kmsan_get_metadata+0x116/0x180 [ 675.419061][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 675.424848][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 675.430900][T19427] ? kmsan_get_metadata+0x116/0x180 [ 675.436105][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 675.441823][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 675.447905][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 675.453194][T19427] ? _copy_from_user+0x1fd/0x300 [ 675.458159][T19427] __msan_chain_origin+0x54/0xa0 [ 675.463075][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 675.468170][T19427] get_compat_msghdr+0x108/0x2b0 [ 675.473097][T19427] do_recvmmsg+0xdc1/0x22d0 [ 675.477625][T19427] ? kmsan_get_metadata+0x116/0x180 [ 675.482810][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 675.488438][T19427] ? __msan_poison_alloca+0xec/0x110 [ 675.493701][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 675.498451][T19427] __sys_recvmmsg+0x519/0x6f0 [ 675.503124][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 675.509176][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 675.515315][T19427] __do_fast_syscall_32+0x127/0x180 [ 675.520521][T19427] do_fast_syscall_32+0x77/0xd0 [ 675.525393][T19427] do_SYSENTER_32+0x73/0x90 [ 675.529921][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 675.536269][T19427] RIP: 0023:0xf7fe1549 [ 675.540341][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 675.559976][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 675.568401][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 675.576361][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 675.584438][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 675.592393][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 675.600354][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 675.608342][T19427] Uninit was stored to memory at: [ 675.613340][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 675.619059][T19427] __msan_chain_origin+0x54/0xa0 [ 675.623987][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 675.629081][T19427] get_compat_msghdr+0x108/0x2b0 [ 675.634001][T19427] do_recvmmsg+0xdc1/0x22d0 [ 675.638516][T19427] __sys_recvmmsg+0x519/0x6f0 [ 675.643208][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 675.649270][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 675.655406][T19427] __do_fast_syscall_32+0x127/0x180 [ 675.660598][T19427] do_fast_syscall_32+0x77/0xd0 [ 675.665433][T19427] do_SYSENTER_32+0x73/0x90 [ 675.669927][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 675.676260][T19427] [ 675.678574][T19427] Uninit was stored to memory at: [ 675.683579][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 675.689309][T19427] __msan_chain_origin+0x54/0xa0 [ 675.694243][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 675.699339][T19427] get_compat_msghdr+0x108/0x2b0 [ 675.704280][T19427] do_recvmmsg+0xdc1/0x22d0 [ 675.708782][T19427] __sys_recvmmsg+0x519/0x6f0 [ 675.713443][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 675.719498][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 675.725669][T19427] __do_fast_syscall_32+0x127/0x180 [ 675.730869][T19427] do_fast_syscall_32+0x77/0xd0 [ 675.735724][T19427] do_SYSENTER_32+0x73/0x90 [ 675.740215][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 675.746531][T19427] [ 675.748833][T19427] Uninit was stored to memory at: [ 675.753842][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 675.759562][T19427] __msan_chain_origin+0x54/0xa0 [ 675.764506][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 675.769607][T19427] get_compat_msghdr+0x108/0x2b0 [ 675.774566][T19427] do_recvmmsg+0xdc1/0x22d0 [ 675.779057][T19427] __sys_recvmmsg+0x519/0x6f0 [ 675.783737][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 675.789791][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 675.795949][T19427] __do_fast_syscall_32+0x127/0x180 [ 675.801139][T19427] do_fast_syscall_32+0x77/0xd0 [ 675.805984][T19427] do_SYSENTER_32+0x73/0x90 [ 675.810475][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 675.816829][T19427] [ 675.819136][T19427] Uninit was stored to memory at: [ 675.824136][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 675.829846][T19427] __msan_chain_origin+0x54/0xa0 [ 675.834786][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 675.839887][T19427] get_compat_msghdr+0x108/0x2b0 [ 675.844825][T19427] do_recvmmsg+0xdc1/0x22d0 [ 675.849318][T19427] __sys_recvmmsg+0x519/0x6f0 [ 675.853998][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 675.860048][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 675.866210][T19427] __do_fast_syscall_32+0x127/0x180 [ 675.871402][T19427] do_fast_syscall_32+0x77/0xd0 [ 675.876267][T19427] do_SYSENTER_32+0x73/0x90 [ 675.880765][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 675.887082][T19427] [ 675.889393][T19427] Uninit was stored to memory at: [ 675.894406][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 675.900205][T19427] __msan_chain_origin+0x54/0xa0 [ 675.905124][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 675.910223][T19427] get_compat_msghdr+0x108/0x2b0 [ 675.915160][T19427] do_recvmmsg+0xdc1/0x22d0 [ 675.919650][T19427] __sys_recvmmsg+0x519/0x6f0 [ 675.924334][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 675.930402][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 675.936581][T19427] __do_fast_syscall_32+0x127/0x180 [ 675.941793][T19427] do_fast_syscall_32+0x77/0xd0 [ 675.946629][T19427] do_SYSENTER_32+0x73/0x90 [ 675.951133][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 675.957476][T19427] [ 675.959777][T19427] Uninit was stored to memory at: [ 675.964783][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 675.970502][T19427] __msan_chain_origin+0x54/0xa0 [ 675.975446][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 675.980544][T19427] get_compat_msghdr+0x108/0x2b0 [ 675.985581][T19427] do_recvmmsg+0xdc1/0x22d0 [ 675.990073][T19427] __sys_recvmmsg+0x519/0x6f0 [ 675.994758][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 676.000941][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 676.007118][T19427] __do_fast_syscall_32+0x127/0x180 [ 676.012306][T19427] do_fast_syscall_32+0x77/0xd0 [ 676.017144][T19427] do_SYSENTER_32+0x73/0x90 [ 676.021633][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 676.027950][T19427] [ 676.030257][T19427] Uninit was stored to memory at: [ 676.035263][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 676.040970][T19427] __msan_chain_origin+0x54/0xa0 [ 676.045891][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 676.051007][T19427] get_compat_msghdr+0x108/0x2b0 [ 676.055953][T19427] do_recvmmsg+0xdc1/0x22d0 [ 676.060551][T19427] __sys_recvmmsg+0x519/0x6f0 [ 676.065215][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 676.071284][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 676.077449][T19427] __do_fast_syscall_32+0x127/0x180 [ 676.082654][T19427] do_fast_syscall_32+0x77/0xd0 [ 676.087488][T19427] do_SYSENTER_32+0x73/0x90 [ 676.091982][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 676.098323][T19427] [ 676.100628][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 676.107273][T19427] do_recvmmsg+0xbf/0x22d0 [ 676.111675][T19427] do_recvmmsg+0xbf/0x22d0 [ 676.279130][T19427] not chained 810000 origins [ 676.283752][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 676.292543][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 676.302614][T19427] Call Trace: [ 676.305918][T19427] dump_stack+0x24c/0x2e0 [ 676.310291][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 676.316041][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 676.321531][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 676.327094][T19427] ? kmsan_get_metadata+0x116/0x180 [ 676.332309][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 676.337963][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 676.344039][T19427] ? kmsan_get_metadata+0x116/0x180 [ 676.349242][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 676.355058][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 676.361243][T19427] ? kmsan_get_metadata+0x116/0x180 [ 676.366470][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 676.372111][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 676.378194][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 676.383487][T19427] ? _copy_from_user+0x1fd/0x300 [ 676.388432][T19427] __msan_chain_origin+0x54/0xa0 [ 676.393404][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 676.398544][T19427] get_compat_msghdr+0x108/0x2b0 [ 676.403493][T19427] do_recvmmsg+0xdc1/0x22d0 [ 676.408012][T19427] ? kmsan_get_metadata+0x116/0x180 [ 676.413212][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 676.418850][T19427] ? __msan_poison_alloca+0xec/0x110 [ 676.424157][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 676.429034][T19427] __sys_recvmmsg+0x519/0x6f0 [ 676.433723][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 676.439805][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 676.445977][T19427] __do_fast_syscall_32+0x127/0x180 [ 676.451199][T19427] do_fast_syscall_32+0x77/0xd0 [ 676.456061][T19427] do_SYSENTER_32+0x73/0x90 [ 676.460574][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 676.466928][T19427] RIP: 0023:0xf7fe1549 [ 676.471003][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 676.490636][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 676.499061][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 676.507059][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 676.515039][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 676.523014][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 676.530991][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 676.538975][T19427] Uninit was stored to memory at: [ 676.544001][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 676.549745][T19427] __msan_chain_origin+0x54/0xa0 [ 676.554715][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 676.559815][T19427] get_compat_msghdr+0x108/0x2b0 [ 676.564754][T19427] do_recvmmsg+0xdc1/0x22d0 [ 676.569329][T19427] __sys_recvmmsg+0x519/0x6f0 [ 676.574013][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 676.580075][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 676.586211][T19427] __do_fast_syscall_32+0x127/0x180 [ 676.591395][T19427] do_fast_syscall_32+0x77/0xd0 [ 676.596359][T19427] do_SYSENTER_32+0x73/0x90 [ 676.600854][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 676.607169][T19427] [ 676.609476][T19427] Uninit was stored to memory at: [ 676.614482][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 676.620181][T19427] __msan_chain_origin+0x54/0xa0 [ 676.625182][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 676.630276][T19427] get_compat_msghdr+0x108/0x2b0 [ 676.635253][T19427] do_recvmmsg+0xdc1/0x22d0 [ 676.639740][T19427] __sys_recvmmsg+0x519/0x6f0 [ 676.644424][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 676.650657][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 676.656849][T19427] __do_fast_syscall_32+0x127/0x180 [ 676.662070][T19427] do_fast_syscall_32+0x77/0xd0 [ 676.666904][T19427] do_SYSENTER_32+0x73/0x90 [ 676.671396][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 676.677753][T19427] [ 676.680054][T19427] Uninit was stored to memory at: [ 676.685506][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 676.691220][T19427] __msan_chain_origin+0x54/0xa0 [ 676.696264][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 676.701364][T19427] get_compat_msghdr+0x108/0x2b0 [ 676.706312][T19427] do_recvmmsg+0xdc1/0x22d0 [ 676.710813][T19427] __sys_recvmmsg+0x519/0x6f0 [ 676.715494][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 676.721551][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 676.727732][T19427] __do_fast_syscall_32+0x127/0x180 [ 676.732918][T19427] do_fast_syscall_32+0x77/0xd0 [ 676.737752][T19427] do_SYSENTER_32+0x73/0x90 [ 676.742236][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 676.748558][T19427] [ 676.750864][T19427] Uninit was stored to memory at: [ 676.755883][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 676.761585][T19427] __msan_chain_origin+0x54/0xa0 [ 676.766520][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 676.771613][T19427] get_compat_msghdr+0x108/0x2b0 [ 676.776581][T19427] do_recvmmsg+0xdc1/0x22d0 [ 676.781068][T19427] __sys_recvmmsg+0x519/0x6f0 [ 676.785726][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 676.791776][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 676.797954][T19427] __do_fast_syscall_32+0x127/0x180 [ 676.803221][T19427] do_fast_syscall_32+0x77/0xd0 [ 676.808083][T19427] do_SYSENTER_32+0x73/0x90 [ 676.812584][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 676.818897][T19427] [ 676.821196][T19427] Uninit was stored to memory at: [ 676.826190][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 676.831900][T19427] __msan_chain_origin+0x54/0xa0 [ 676.836852][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 676.841948][T19427] get_compat_msghdr+0x108/0x2b0 [ 676.847001][T19427] do_recvmmsg+0xdc1/0x22d0 [ 676.851493][T19427] __sys_recvmmsg+0x519/0x6f0 [ 676.856177][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 676.862319][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 676.868574][T19427] __do_fast_syscall_32+0x127/0x180 [ 676.873757][T19427] do_fast_syscall_32+0x77/0xd0 [ 676.878591][T19427] do_SYSENTER_32+0x73/0x90 [ 676.883107][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 676.889430][T19427] [ 676.891742][T19427] Uninit was stored to memory at: [ 676.896804][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 676.902511][T19427] __msan_chain_origin+0x54/0xa0 [ 676.907435][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 676.912535][T19427] get_compat_msghdr+0x108/0x2b0 [ 676.917459][T19427] do_recvmmsg+0xdc1/0x22d0 [ 676.921947][T19427] __sys_recvmmsg+0x519/0x6f0 [ 676.926610][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 676.932658][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 676.938972][T19427] __do_fast_syscall_32+0x127/0x180 [ 676.944172][T19427] do_fast_syscall_32+0x77/0xd0 [ 676.949012][T19427] do_SYSENTER_32+0x73/0x90 [ 676.953500][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 676.959813][T19427] [ 676.962115][T19427] Uninit was stored to memory at: [ 676.967156][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 676.972859][T19427] __msan_chain_origin+0x54/0xa0 [ 676.977809][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 676.982904][T19427] get_compat_msghdr+0x108/0x2b0 [ 676.987828][T19427] do_recvmmsg+0xdc1/0x22d0 [ 676.992315][T19427] __sys_recvmmsg+0x519/0x6f0 [ 676.996978][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.003028][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.009264][T19427] __do_fast_syscall_32+0x127/0x180 [ 677.014452][T19427] do_fast_syscall_32+0x77/0xd0 [ 677.019434][T19427] do_SYSENTER_32+0x73/0x90 [ 677.023943][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 677.030254][T19427] [ 677.032567][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 677.039225][T19427] do_recvmmsg+0xbf/0x22d0 [ 677.043623][T19427] do_recvmmsg+0xbf/0x22d0 [ 677.405137][T19427] not chained 820000 origins [ 677.409737][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 677.418522][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 677.428596][T19427] Call Trace: [ 677.431902][T19427] dump_stack+0x24c/0x2e0 [ 677.436223][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 677.441935][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 677.447504][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 677.453068][T19427] ? kmsan_get_metadata+0x116/0x180 [ 677.458278][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 677.463911][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 677.470056][T19427] ? kmsan_get_metadata+0x116/0x180 [ 677.475256][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 677.481066][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 677.487117][T19427] ? kmsan_get_metadata+0x116/0x180 [ 677.492296][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 677.497961][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 677.504009][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 677.509278][T19427] ? _copy_from_user+0x1fd/0x300 [ 677.514200][T19427] __msan_chain_origin+0x54/0xa0 [ 677.519123][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 677.524242][T19427] get_compat_msghdr+0x108/0x2b0 [ 677.529289][T19427] do_recvmmsg+0xdc1/0x22d0 [ 677.533817][T19427] ? kmsan_get_metadata+0x116/0x180 [ 677.539030][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 677.544650][T19427] ? __msan_poison_alloca+0xec/0x110 [ 677.549943][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 677.554712][T19427] __sys_recvmmsg+0x519/0x6f0 [ 677.559424][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.565571][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.571742][T19427] __do_fast_syscall_32+0x127/0x180 [ 677.576960][T19427] do_fast_syscall_32+0x77/0xd0 [ 677.581799][T19427] do_SYSENTER_32+0x73/0x90 [ 677.586291][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 677.592603][T19427] RIP: 0023:0xf7fe1549 [ 677.596654][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 677.616245][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 677.624644][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 677.632609][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 677.640656][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 677.648632][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 677.656584][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 677.664543][T19427] Uninit was stored to memory at: [ 677.669542][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 677.675292][T19427] __msan_chain_origin+0x54/0xa0 [ 677.680230][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 677.685364][T19427] get_compat_msghdr+0x108/0x2b0 [ 677.690290][T19427] do_recvmmsg+0xdc1/0x22d0 [ 677.694796][T19427] __sys_recvmmsg+0x519/0x6f0 [ 677.699459][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.705612][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.711812][T19427] __do_fast_syscall_32+0x127/0x180 [ 677.717038][T19427] do_fast_syscall_32+0x77/0xd0 [ 677.721883][T19427] do_SYSENTER_32+0x73/0x90 [ 677.726485][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 677.732809][T19427] [ 677.735116][T19427] Uninit was stored to memory at: [ 677.740112][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 677.745830][T19427] __msan_chain_origin+0x54/0xa0 [ 677.750752][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 677.755869][T19427] get_compat_msghdr+0x108/0x2b0 [ 677.760801][T19427] do_recvmmsg+0xdc1/0x22d0 [ 677.765316][T19427] __sys_recvmmsg+0x519/0x6f0 [ 677.769979][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.776059][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.782209][T19427] __do_fast_syscall_32+0x127/0x180 [ 677.787399][T19427] do_fast_syscall_32+0x77/0xd0 [ 677.792253][T19427] do_SYSENTER_32+0x73/0x90 [ 677.796775][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 677.803103][T19427] [ 677.805410][T19427] Uninit was stored to memory at: [ 677.810409][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 677.816149][T19427] __msan_chain_origin+0x54/0xa0 [ 677.821072][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 677.826173][T19427] get_compat_msghdr+0x108/0x2b0 [ 677.831105][T19427] do_recvmmsg+0xdc1/0x22d0 [ 677.835621][T19427] __sys_recvmmsg+0x519/0x6f0 [ 677.840281][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.846334][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.852476][T19427] __do_fast_syscall_32+0x127/0x180 [ 677.857668][T19427] do_fast_syscall_32+0x77/0xd0 [ 677.862514][T19427] do_SYSENTER_32+0x73/0x90 [ 677.867153][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 677.873466][T19427] [ 677.875780][T19427] Uninit was stored to memory at: [ 677.880769][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 677.886471][T19427] __msan_chain_origin+0x54/0xa0 [ 677.891406][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 677.896528][T19427] get_compat_msghdr+0x108/0x2b0 [ 677.901450][T19427] do_recvmmsg+0xdc1/0x22d0 [ 677.905936][T19427] __sys_recvmmsg+0x519/0x6f0 [ 677.910617][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.916693][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.922861][T19427] __do_fast_syscall_32+0x127/0x180 [ 677.928049][T19427] do_fast_syscall_32+0x77/0xd0 [ 677.932898][T19427] do_SYSENTER_32+0x73/0x90 [ 677.937430][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 677.943746][T19427] [ 677.946048][T19427] Uninit was stored to memory at: [ 677.951045][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 677.956770][T19427] __msan_chain_origin+0x54/0xa0 [ 677.961698][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 677.966795][T19427] get_compat_msghdr+0x108/0x2b0 [ 677.971720][T19427] do_recvmmsg+0xdc1/0x22d0 [ 677.976266][T19427] __sys_recvmmsg+0x519/0x6f0 [ 677.980924][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 677.986978][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 677.993113][T19427] __do_fast_syscall_32+0x127/0x180 [ 677.998293][T19427] do_fast_syscall_32+0x77/0xd0 [ 678.003124][T19427] do_SYSENTER_32+0x73/0x90 [ 678.007614][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.013937][T19427] [ 678.016238][T19427] Uninit was stored to memory at: [ 678.021232][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 678.026946][T19427] __msan_chain_origin+0x54/0xa0 [ 678.031872][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 678.036993][T19427] get_compat_msghdr+0x108/0x2b0 [ 678.041966][T19427] do_recvmmsg+0xdc1/0x22d0 [ 678.046505][T19427] __sys_recvmmsg+0x519/0x6f0 [ 678.051167][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.057237][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.063428][T19427] __do_fast_syscall_32+0x127/0x180 [ 678.068624][T19427] do_fast_syscall_32+0x77/0xd0 [ 678.073454][T19427] do_SYSENTER_32+0x73/0x90 [ 678.077946][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.084259][T19427] [ 678.086574][T19427] Uninit was stored to memory at: [ 678.091578][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 678.097300][T19427] __msan_chain_origin+0x54/0xa0 [ 678.102219][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 678.107337][T19427] get_compat_msghdr+0x108/0x2b0 [ 678.112253][T19427] do_recvmmsg+0xdc1/0x22d0 [ 678.116739][T19427] __sys_recvmmsg+0x519/0x6f0 [ 678.121418][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.127476][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.133611][T19427] __do_fast_syscall_32+0x127/0x180 [ 678.138793][T19427] do_fast_syscall_32+0x77/0xd0 [ 678.143629][T19427] do_SYSENTER_32+0x73/0x90 [ 678.148114][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.154425][T19427] [ 678.156744][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 678.163417][T19427] do_recvmmsg+0xbf/0x22d0 [ 678.167834][T19427] do_recvmmsg+0xbf/0x22d0 [ 678.337844][T19427] not chained 830000 origins [ 678.342468][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 678.351246][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 678.361289][T19427] Call Trace: [ 678.364576][T19427] dump_stack+0x24c/0x2e0 [ 678.368908][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 678.374636][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 678.379998][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 678.385556][T19427] ? kmsan_get_metadata+0x116/0x180 [ 678.390737][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 678.396364][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 678.402417][T19427] ? kmsan_get_metadata+0x116/0x180 [ 678.407626][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 678.413412][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 678.419468][T19427] ? kmsan_get_metadata+0x116/0x180 [ 678.424668][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 678.430318][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 678.436456][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 678.441727][T19427] ? _copy_from_user+0x1fd/0x300 [ 678.446674][T19427] __msan_chain_origin+0x54/0xa0 [ 678.451595][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 678.456709][T19427] get_compat_msghdr+0x108/0x2b0 [ 678.461632][T19427] do_recvmmsg+0xdc1/0x22d0 [ 678.466148][T19427] ? kmsan_get_metadata+0x116/0x180 [ 678.471341][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 678.476955][T19427] ? __msan_poison_alloca+0xec/0x110 [ 678.482224][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 678.486997][T19427] __sys_recvmmsg+0x519/0x6f0 [ 678.491746][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.497834][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.503984][T19427] __do_fast_syscall_32+0x127/0x180 [ 678.509168][T19427] do_fast_syscall_32+0x77/0xd0 [ 678.514009][T19427] do_SYSENTER_32+0x73/0x90 [ 678.518508][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.524829][T19427] RIP: 0023:0xf7fe1549 [ 678.529018][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 678.548620][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 678.557031][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 678.565079][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 678.573051][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 678.581019][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 678.588973][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 678.596929][T19427] Uninit was stored to memory at: [ 678.601941][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 678.607651][T19427] __msan_chain_origin+0x54/0xa0 [ 678.612682][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 678.617800][T19427] get_compat_msghdr+0x108/0x2b0 [ 678.622734][T19427] do_recvmmsg+0xdc1/0x22d0 [ 678.627238][T19427] __sys_recvmmsg+0x519/0x6f0 [ 678.631899][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.637980][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.644119][T19427] __do_fast_syscall_32+0x127/0x180 [ 678.649307][T19427] do_fast_syscall_32+0x77/0xd0 [ 678.654171][T19427] do_SYSENTER_32+0x73/0x90 [ 678.658657][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.664966][T19427] [ 678.667266][T19427] Uninit was stored to memory at: [ 678.672261][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 678.677970][T19427] __msan_chain_origin+0x54/0xa0 [ 678.682886][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 678.687992][T19427] get_compat_msghdr+0x108/0x2b0 [ 678.692910][T19427] do_recvmmsg+0xdc1/0x22d0 [ 678.697400][T19427] __sys_recvmmsg+0x519/0x6f0 [ 678.702058][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.708197][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.714333][T19427] __do_fast_syscall_32+0x127/0x180 [ 678.719517][T19427] do_fast_syscall_32+0x77/0xd0 [ 678.724382][T19427] do_SYSENTER_32+0x73/0x90 [ 678.728890][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.735202][T19427] [ 678.737502][T19427] Uninit was stored to memory at: [ 678.742500][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 678.748232][T19427] __msan_chain_origin+0x54/0xa0 [ 678.753168][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 678.758269][T19427] get_compat_msghdr+0x108/0x2b0 [ 678.763193][T19427] do_recvmmsg+0xdc1/0x22d0 [ 678.767676][T19427] __sys_recvmmsg+0x519/0x6f0 [ 678.772334][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.778387][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.784532][T19427] __do_fast_syscall_32+0x127/0x180 [ 678.789820][T19427] do_fast_syscall_32+0x77/0xd0 [ 678.794683][T19427] do_SYSENTER_32+0x73/0x90 [ 678.799167][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.805481][T19427] [ 678.807795][T19427] Uninit was stored to memory at: [ 678.812790][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 678.818498][T19427] __msan_chain_origin+0x54/0xa0 [ 678.823419][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 678.828514][T19427] get_compat_msghdr+0x108/0x2b0 [ 678.833439][T19427] do_recvmmsg+0xdc1/0x22d0 [ 678.837930][T19427] __sys_recvmmsg+0x519/0x6f0 [ 678.842592][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.848651][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.854795][T19427] __do_fast_syscall_32+0x127/0x180 [ 678.860028][T19427] do_fast_syscall_32+0x77/0xd0 [ 678.864865][T19427] do_SYSENTER_32+0x73/0x90 [ 678.869359][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.875810][T19427] [ 678.878136][T19427] Uninit was stored to memory at: [ 678.883136][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 678.888841][T19427] __msan_chain_origin+0x54/0xa0 [ 678.893758][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 678.898855][T19427] get_compat_msghdr+0x108/0x2b0 [ 678.903773][T19427] do_recvmmsg+0xdc1/0x22d0 [ 678.908256][T19427] __sys_recvmmsg+0x519/0x6f0 [ 678.912917][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.918989][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.925127][T19427] __do_fast_syscall_32+0x127/0x180 [ 678.930318][T19427] do_fast_syscall_32+0x77/0xd0 [ 678.935176][T19427] do_SYSENTER_32+0x73/0x90 [ 678.939695][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 678.946004][T19427] [ 678.948306][T19427] Uninit was stored to memory at: [ 678.953305][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 678.959037][T19427] __msan_chain_origin+0x54/0xa0 [ 678.963973][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 678.969074][T19427] get_compat_msghdr+0x108/0x2b0 [ 678.973991][T19427] do_recvmmsg+0xdc1/0x22d0 [ 678.978486][T19427] __sys_recvmmsg+0x519/0x6f0 [ 678.983141][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 678.989341][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 678.995607][T19427] __do_fast_syscall_32+0x127/0x180 [ 679.000796][T19427] do_fast_syscall_32+0x77/0xd0 [ 679.005651][T19427] do_SYSENTER_32+0x73/0x90 [ 679.010163][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.016546][T19427] [ 679.018849][T19427] Uninit was stored to memory at: [ 679.023938][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 679.029643][T19427] __msan_chain_origin+0x54/0xa0 [ 679.034581][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 679.039700][T19427] get_compat_msghdr+0x108/0x2b0 [ 679.044690][T19427] do_recvmmsg+0xdc1/0x22d0 [ 679.049179][T19427] __sys_recvmmsg+0x519/0x6f0 [ 679.053837][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.059894][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.066061][T19427] __do_fast_syscall_32+0x127/0x180 [ 679.071254][T19427] do_fast_syscall_32+0x77/0xd0 [ 679.076239][T19427] do_SYSENTER_32+0x73/0x90 [ 679.080747][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.087061][T19427] [ 679.089371][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 679.096033][T19427] do_recvmmsg+0xbf/0x22d0 [ 679.100436][T19427] do_recvmmsg+0xbf/0x22d0 [ 679.269244][T19427] not chained 840000 origins [ 679.273858][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 679.282641][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 679.292689][T19427] Call Trace: [ 679.296034][T19427] dump_stack+0x24c/0x2e0 [ 679.300357][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 679.306077][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 679.311447][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 679.317105][T19427] ? kmsan_get_metadata+0x116/0x180 [ 679.322288][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 679.328077][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 679.334167][T19427] ? kmsan_get_metadata+0x116/0x180 [ 679.339351][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 679.345232][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 679.351293][T19427] ? kmsan_get_metadata+0x116/0x180 [ 679.356500][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 679.362124][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 679.368211][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 679.373507][T19427] ? _copy_from_user+0x1fd/0x300 [ 679.378448][T19427] __msan_chain_origin+0x54/0xa0 [ 679.383381][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 679.388481][T19427] get_compat_msghdr+0x108/0x2b0 [ 679.393399][T19427] do_recvmmsg+0xdc1/0x22d0 [ 679.397888][T19427] ? kmsan_get_metadata+0x116/0x180 [ 679.403065][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 679.408689][T19427] ? __msan_poison_alloca+0xec/0x110 [ 679.413951][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 679.418705][T19427] __sys_recvmmsg+0x519/0x6f0 [ 679.423362][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.429414][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.435583][T19427] __do_fast_syscall_32+0x127/0x180 [ 679.440771][T19427] do_fast_syscall_32+0x77/0xd0 [ 679.445608][T19427] do_SYSENTER_32+0x73/0x90 [ 679.450184][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.456516][T19427] RIP: 0023:0xf7fe1549 [ 679.460579][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 679.480175][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 679.488565][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 679.496515][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 679.504477][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 679.512434][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 679.520426][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 679.528429][T19427] Uninit was stored to memory at: [ 679.533424][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 679.539129][T19427] __msan_chain_origin+0x54/0xa0 [ 679.544043][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 679.549131][T19427] get_compat_msghdr+0x108/0x2b0 [ 679.554045][T19427] do_recvmmsg+0xdc1/0x22d0 [ 679.558531][T19427] __sys_recvmmsg+0x519/0x6f0 [ 679.563211][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.569258][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.575393][T19427] __do_fast_syscall_32+0x127/0x180 [ 679.580581][T19427] do_fast_syscall_32+0x77/0xd0 [ 679.585441][T19427] do_SYSENTER_32+0x73/0x90 [ 679.589948][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.596277][T19427] [ 679.598576][T19427] Uninit was stored to memory at: [ 679.603577][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 679.609313][T19427] __msan_chain_origin+0x54/0xa0 [ 679.614267][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 679.619362][T19427] get_compat_msghdr+0x108/0x2b0 [ 679.624301][T19427] do_recvmmsg+0xdc1/0x22d0 [ 679.628792][T19427] __sys_recvmmsg+0x519/0x6f0 [ 679.633538][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.639591][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.645755][T19427] __do_fast_syscall_32+0x127/0x180 [ 679.650943][T19427] do_fast_syscall_32+0x77/0xd0 [ 679.655799][T19427] do_SYSENTER_32+0x73/0x90 [ 679.660297][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.666605][T19427] [ 679.668933][T19427] Uninit was stored to memory at: [ 679.673945][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 679.679652][T19427] __msan_chain_origin+0x54/0xa0 [ 679.684583][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 679.689681][T19427] get_compat_msghdr+0x108/0x2b0 [ 679.694626][T19427] do_recvmmsg+0xdc1/0x22d0 [ 679.699129][T19427] __sys_recvmmsg+0x519/0x6f0 [ 679.703786][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.709849][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.716011][T19427] __do_fast_syscall_32+0x127/0x180 [ 679.721205][T19427] do_fast_syscall_32+0x77/0xd0 [ 679.726056][T19427] do_SYSENTER_32+0x73/0x90 [ 679.730545][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.736892][T19427] [ 679.739197][T19427] Uninit was stored to memory at: [ 679.744247][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 679.749962][T19427] __msan_chain_origin+0x54/0xa0 [ 679.754916][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 679.760026][T19427] get_compat_msghdr+0x108/0x2b0 [ 679.765029][T19427] do_recvmmsg+0xdc1/0x22d0 [ 679.769633][T19427] __sys_recvmmsg+0x519/0x6f0 [ 679.774319][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.780374][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.786529][T19427] __do_fast_syscall_32+0x127/0x180 [ 679.791729][T19427] do_fast_syscall_32+0x77/0xd0 [ 679.796672][T19427] do_SYSENTER_32+0x73/0x90 [ 679.801165][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.807529][T19427] [ 679.809839][T19427] Uninit was stored to memory at: [ 679.814850][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 679.820555][T19427] __msan_chain_origin+0x54/0xa0 [ 679.825482][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 679.830591][T19427] get_compat_msghdr+0x108/0x2b0 [ 679.835538][T19427] do_recvmmsg+0xdc1/0x22d0 [ 679.840043][T19427] __sys_recvmmsg+0x519/0x6f0 [ 679.844728][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.850832][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.857001][T19427] __do_fast_syscall_32+0x127/0x180 [ 679.862192][T19427] do_fast_syscall_32+0x77/0xd0 [ 679.867039][T19427] do_SYSENTER_32+0x73/0x90 [ 679.871533][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.877872][T19427] [ 679.880174][T19427] Uninit was stored to memory at: [ 679.885167][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 679.890873][T19427] __msan_chain_origin+0x54/0xa0 [ 679.895831][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 679.900923][T19427] get_compat_msghdr+0x108/0x2b0 [ 679.905885][T19427] do_recvmmsg+0xdc1/0x22d0 [ 679.910383][T19427] __sys_recvmmsg+0x519/0x6f0 [ 679.915060][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.921105][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.927242][T19427] __do_fast_syscall_32+0x127/0x180 [ 679.932425][T19427] do_fast_syscall_32+0x77/0xd0 [ 679.937263][T19427] do_SYSENTER_32+0x73/0x90 [ 679.941747][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 679.948054][T19427] [ 679.950365][T19427] Uninit was stored to memory at: [ 679.955384][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 679.961102][T19427] __msan_chain_origin+0x54/0xa0 [ 679.966048][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 679.971138][T19427] get_compat_msghdr+0x108/0x2b0 [ 679.976071][T19427] do_recvmmsg+0xdc1/0x22d0 [ 679.980556][T19427] __sys_recvmmsg+0x519/0x6f0 [ 679.985219][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 679.991269][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 679.997443][T19427] __do_fast_syscall_32+0x127/0x180 [ 680.002630][T19427] do_fast_syscall_32+0x77/0xd0 [ 680.007580][T19427] do_SYSENTER_32+0x73/0x90 [ 680.012090][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.018450][T19427] [ 680.020754][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 680.027406][T19427] do_recvmmsg+0xbf/0x22d0 [ 680.031804][T19427] do_recvmmsg+0xbf/0x22d0 [ 680.235278][T19427] not chained 850000 origins [ 680.239885][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 680.248625][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 680.258659][T19427] Call Trace: [ 680.261938][T19427] dump_stack+0x24c/0x2e0 [ 680.266259][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 680.271983][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 680.277370][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 680.282906][T19427] ? kmsan_get_metadata+0x116/0x180 [ 680.288114][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 680.293745][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 680.299795][T19427] ? kmsan_get_metadata+0x116/0x180 [ 680.304970][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 680.310764][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 680.316826][T19427] ? kmsan_get_metadata+0x116/0x180 [ 680.322021][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 680.327634][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 680.333678][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 680.338954][T19427] ? _copy_from_user+0x1fd/0x300 [ 680.343889][T19427] __msan_chain_origin+0x54/0xa0 [ 680.348807][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 680.353900][T19427] get_compat_msghdr+0x108/0x2b0 [ 680.358816][T19427] do_recvmmsg+0xdc1/0x22d0 [ 680.363303][T19427] ? kmsan_get_metadata+0x116/0x180 [ 680.368488][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 680.374098][T19427] ? __msan_poison_alloca+0xec/0x110 [ 680.379372][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 680.384149][T19427] __sys_recvmmsg+0x519/0x6f0 [ 680.388816][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.394880][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.401057][T19427] __do_fast_syscall_32+0x127/0x180 [ 680.406269][T19427] do_fast_syscall_32+0x77/0xd0 [ 680.411134][T19427] do_SYSENTER_32+0x73/0x90 [ 680.415649][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.421998][T19427] RIP: 0023:0xf7fe1549 [ 680.426059][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 680.445695][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 680.454124][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 680.462105][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 680.470074][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 680.478058][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 680.486008][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 680.493972][T19427] Uninit was stored to memory at: [ 680.498967][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 680.504667][T19427] __msan_chain_origin+0x54/0xa0 [ 680.509586][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 680.514698][T19427] get_compat_msghdr+0x108/0x2b0 [ 680.519703][T19427] do_recvmmsg+0xdc1/0x22d0 [ 680.524187][T19427] __sys_recvmmsg+0x519/0x6f0 [ 680.528839][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.534883][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.541018][T19427] __do_fast_syscall_32+0x127/0x180 [ 680.546198][T19427] do_fast_syscall_32+0x77/0xd0 [ 680.551027][T19427] do_SYSENTER_32+0x73/0x90 [ 680.555533][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.561843][T19427] [ 680.564142][T19427] Uninit was stored to memory at: [ 680.569130][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 680.574837][T19427] __msan_chain_origin+0x54/0xa0 [ 680.579753][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 680.584839][T19427] get_compat_msghdr+0x108/0x2b0 [ 680.589758][T19427] do_recvmmsg+0xdc1/0x22d0 [ 680.594269][T19427] __sys_recvmmsg+0x519/0x6f0 [ 680.598928][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.604971][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.611104][T19427] __do_fast_syscall_32+0x127/0x180 [ 680.616305][T19427] do_fast_syscall_32+0x77/0xd0 [ 680.621138][T19427] do_SYSENTER_32+0x73/0x90 [ 680.625627][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.631939][T19427] [ 680.634252][T19427] Uninit was stored to memory at: [ 680.639246][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 680.644952][T19427] __msan_chain_origin+0x54/0xa0 [ 680.649900][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 680.655021][T19427] get_compat_msghdr+0x108/0x2b0 [ 680.659943][T19427] do_recvmmsg+0xdc1/0x22d0 [ 680.664432][T19427] __sys_recvmmsg+0x519/0x6f0 [ 680.669083][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.675126][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.681263][T19427] __do_fast_syscall_32+0x127/0x180 [ 680.686443][T19427] do_fast_syscall_32+0x77/0xd0 [ 680.691305][T19427] do_SYSENTER_32+0x73/0x90 [ 680.695830][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.702161][T19427] [ 680.704463][T19427] Uninit was stored to memory at: [ 680.709464][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 680.715229][T19427] __msan_chain_origin+0x54/0xa0 [ 680.720152][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 680.725272][T19427] get_compat_msghdr+0x108/0x2b0 [ 680.730231][T19427] do_recvmmsg+0xdc1/0x22d0 [ 680.734747][T19427] __sys_recvmmsg+0x519/0x6f0 [ 680.739409][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.745490][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.751632][T19427] __do_fast_syscall_32+0x127/0x180 [ 680.756843][T19427] do_fast_syscall_32+0x77/0xd0 [ 680.761677][T19427] do_SYSENTER_32+0x73/0x90 [ 680.766294][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.772611][T19427] [ 680.774915][T19427] Uninit was stored to memory at: [ 680.779908][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 680.785615][T19427] __msan_chain_origin+0x54/0xa0 [ 680.790531][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 680.795642][T19427] get_compat_msghdr+0x108/0x2b0 [ 680.800561][T19427] do_recvmmsg+0xdc1/0x22d0 [ 680.805053][T19427] __sys_recvmmsg+0x519/0x6f0 [ 680.809714][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.815790][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.821943][T19427] __do_fast_syscall_32+0x127/0x180 [ 680.827144][T19427] do_fast_syscall_32+0x77/0xd0 [ 680.831973][T19427] do_SYSENTER_32+0x73/0x90 [ 680.836548][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.842862][T19427] [ 680.845167][T19427] Uninit was stored to memory at: [ 680.850174][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 680.855929][T19427] __msan_chain_origin+0x54/0xa0 [ 680.860850][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 680.865967][T19427] get_compat_msghdr+0x108/0x2b0 [ 680.870890][T19427] do_recvmmsg+0xdc1/0x22d0 [ 680.875396][T19427] __sys_recvmmsg+0x519/0x6f0 [ 680.880075][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.886151][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.892293][T19427] __do_fast_syscall_32+0x127/0x180 [ 680.897478][T19427] do_fast_syscall_32+0x77/0xd0 [ 680.902313][T19427] do_SYSENTER_32+0x73/0x90 [ 680.906832][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.913146][T19427] [ 680.915450][T19427] Uninit was stored to memory at: [ 680.920447][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 680.926170][T19427] __msan_chain_origin+0x54/0xa0 [ 680.931205][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 680.936337][T19427] get_compat_msghdr+0x108/0x2b0 [ 680.941262][T19427] do_recvmmsg+0xdc1/0x22d0 [ 680.945773][T19427] __sys_recvmmsg+0x519/0x6f0 [ 680.950451][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 680.956531][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 680.962676][T19427] __do_fast_syscall_32+0x127/0x180 [ 680.967907][T19427] do_fast_syscall_32+0x77/0xd0 [ 680.972743][T19427] do_SYSENTER_32+0x73/0x90 [ 680.977236][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 680.983773][T19427] [ 680.986076][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 680.992719][T19427] do_recvmmsg+0xbf/0x22d0 [ 680.997138][T19427] do_recvmmsg+0xbf/0x22d0 [ 681.163988][T19427] not chained 860000 origins [ 681.168683][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 681.177425][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 681.187469][T19427] Call Trace: [ 681.190774][T19427] dump_stack+0x24c/0x2e0 [ 681.195131][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 681.200849][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 681.206241][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 681.211799][T19427] ? kmsan_get_metadata+0x116/0x180 [ 681.217107][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 681.222735][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 681.228814][T19427] ? kmsan_get_metadata+0x116/0x180 [ 681.234008][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 681.239799][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 681.245874][T19427] ? kmsan_get_metadata+0x116/0x180 [ 681.251056][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 681.256671][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 681.262734][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 681.268005][T19427] ? _copy_from_user+0x1fd/0x300 [ 681.272928][T19427] __msan_chain_origin+0x54/0xa0 [ 681.277849][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 681.282953][T19427] get_compat_msghdr+0x108/0x2b0 [ 681.287907][T19427] do_recvmmsg+0xdc1/0x22d0 [ 681.292429][T19427] ? kmsan_get_metadata+0x116/0x180 [ 681.297807][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 681.303431][T19427] ? __msan_poison_alloca+0xec/0x110 [ 681.308714][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 681.313487][T19427] __sys_recvmmsg+0x519/0x6f0 [ 681.318147][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.324215][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.330356][T19427] __do_fast_syscall_32+0x127/0x180 [ 681.335561][T19427] do_fast_syscall_32+0x77/0xd0 [ 681.340394][T19427] do_SYSENTER_32+0x73/0x90 [ 681.344892][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.351198][T19427] RIP: 0023:0xf7fe1549 [ 681.355260][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 681.374851][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 681.383267][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 681.391237][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 681.399192][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 681.407152][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 681.415098][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 681.423057][T19427] Uninit was stored to memory at: [ 681.428150][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 681.433868][T19427] __msan_chain_origin+0x54/0xa0 [ 681.438785][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 681.443874][T19427] get_compat_msghdr+0x108/0x2b0 [ 681.448799][T19427] do_recvmmsg+0xdc1/0x22d0 [ 681.453277][T19427] __sys_recvmmsg+0x519/0x6f0 [ 681.457931][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.463989][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.470121][T19427] __do_fast_syscall_32+0x127/0x180 [ 681.475325][T19427] do_fast_syscall_32+0x77/0xd0 [ 681.480154][T19427] do_SYSENTER_32+0x73/0x90 [ 681.484659][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.490969][T19427] [ 681.493308][T19427] Uninit was stored to memory at: [ 681.498318][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 681.504021][T19427] __msan_chain_origin+0x54/0xa0 [ 681.508935][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 681.514023][T19427] get_compat_msghdr+0x108/0x2b0 [ 681.518965][T19427] do_recvmmsg+0xdc1/0x22d0 [ 681.523451][T19427] __sys_recvmmsg+0x519/0x6f0 [ 681.528104][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.534142][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.540291][T19427] __do_fast_syscall_32+0x127/0x180 [ 681.545467][T19427] do_fast_syscall_32+0x77/0xd0 [ 681.550292][T19427] do_SYSENTER_32+0x73/0x90 [ 681.554792][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.561099][T19427] [ 681.563412][T19427] Uninit was stored to memory at: [ 681.568402][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 681.574102][T19427] __msan_chain_origin+0x54/0xa0 [ 681.579015][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 681.584100][T19427] get_compat_msghdr+0x108/0x2b0 [ 681.589010][T19427] do_recvmmsg+0xdc1/0x22d0 [ 681.593489][T19427] __sys_recvmmsg+0x519/0x6f0 [ 681.598141][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.604184][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.610322][T19427] __do_fast_syscall_32+0x127/0x180 [ 681.615528][T19427] do_fast_syscall_32+0x77/0xd0 [ 681.620382][T19427] do_SYSENTER_32+0x73/0x90 [ 681.624875][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.631183][T19427] [ 681.633490][T19427] Uninit was stored to memory at: [ 681.638477][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 681.644190][T19427] __msan_chain_origin+0x54/0xa0 [ 681.649100][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 681.654187][T19427] get_compat_msghdr+0x108/0x2b0 [ 681.659129][T19427] do_recvmmsg+0xdc1/0x22d0 [ 681.663607][T19427] __sys_recvmmsg+0x519/0x6f0 [ 681.668260][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.674313][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.680478][T19427] __do_fast_syscall_32+0x127/0x180 [ 681.685691][T19427] do_fast_syscall_32+0x77/0xd0 [ 681.690559][T19427] do_SYSENTER_32+0x73/0x90 [ 681.695066][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.701375][T19427] [ 681.703674][T19427] Uninit was stored to memory at: [ 681.708672][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 681.714369][T19427] __msan_chain_origin+0x54/0xa0 [ 681.719286][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 681.724407][T19427] get_compat_msghdr+0x108/0x2b0 [ 681.729332][T19427] do_recvmmsg+0xdc1/0x22d0 [ 681.733844][T19427] __sys_recvmmsg+0x519/0x6f0 [ 681.738502][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.744546][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.750698][T19427] __do_fast_syscall_32+0x127/0x180 [ 681.755889][T19427] do_fast_syscall_32+0x77/0xd0 [ 681.760728][T19427] do_SYSENTER_32+0x73/0x90 [ 681.765249][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.771585][T19427] [ 681.773883][T19427] Uninit was stored to memory at: [ 681.778883][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 681.784612][T19427] __msan_chain_origin+0x54/0xa0 [ 681.789542][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 681.794656][T19427] get_compat_msghdr+0x108/0x2b0 [ 681.799573][T19427] do_recvmmsg+0xdc1/0x22d0 [ 681.804057][T19427] __sys_recvmmsg+0x519/0x6f0 [ 681.808708][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.814757][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.820902][T19427] __do_fast_syscall_32+0x127/0x180 [ 681.826113][T19427] do_fast_syscall_32+0x77/0xd0 [ 681.830948][T19427] do_SYSENTER_32+0x73/0x90 [ 681.835437][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.841775][T19427] [ 681.844078][T19427] Uninit was stored to memory at: [ 681.849086][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 681.854796][T19427] __msan_chain_origin+0x54/0xa0 [ 681.859709][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 681.864797][T19427] get_compat_msghdr+0x108/0x2b0 [ 681.869716][T19427] do_recvmmsg+0xdc1/0x22d0 [ 681.874231][T19427] __sys_recvmmsg+0x519/0x6f0 [ 681.878890][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 681.884944][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 681.891079][T19427] __do_fast_syscall_32+0x127/0x180 [ 681.896339][T19427] do_fast_syscall_32+0x77/0xd0 [ 681.901279][T19427] do_SYSENTER_32+0x73/0x90 [ 681.905806][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 681.912131][T19427] [ 681.914436][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 681.921086][T19427] do_recvmmsg+0xbf/0x22d0 [ 681.925506][T19427] do_recvmmsg+0xbf/0x22d0 [ 682.092811][T19427] not chained 870000 origins [ 682.097438][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 682.106207][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 682.116255][T19427] Call Trace: [ 682.119536][T19427] dump_stack+0x24c/0x2e0 [ 682.123897][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 682.129605][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 682.134990][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 682.140532][T19427] ? kmsan_get_metadata+0x116/0x180 [ 682.145733][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 682.151349][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 682.157421][T19427] ? kmsan_get_metadata+0x116/0x180 [ 682.162603][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 682.168394][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 682.174561][T19427] ? kmsan_get_metadata+0x116/0x180 [ 682.179766][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 682.185401][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 682.191552][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 682.196854][T19427] ? _copy_from_user+0x1fd/0x300 [ 682.201776][T19427] __msan_chain_origin+0x54/0xa0 [ 682.206696][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 682.211793][T19427] get_compat_msghdr+0x108/0x2b0 [ 682.216723][T19427] do_recvmmsg+0xdc1/0x22d0 [ 682.221247][T19427] ? kmsan_get_metadata+0x116/0x180 [ 682.226625][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 682.232246][T19427] ? __msan_poison_alloca+0xec/0x110 [ 682.237538][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 682.242378][T19427] __sys_recvmmsg+0x519/0x6f0 [ 682.247043][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.253096][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.259235][T19427] __do_fast_syscall_32+0x127/0x180 [ 682.264509][T19427] do_fast_syscall_32+0x77/0xd0 [ 682.269351][T19427] do_SYSENTER_32+0x73/0x90 [ 682.273996][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.280311][T19427] RIP: 0023:0xf7fe1549 [ 682.284380][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 682.303981][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 682.312377][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 682.320354][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 682.328344][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 682.336305][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 682.344263][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 682.352220][T19427] Uninit was stored to memory at: [ 682.357240][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 682.362947][T19427] __msan_chain_origin+0x54/0xa0 [ 682.367871][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 682.372964][T19427] get_compat_msghdr+0x108/0x2b0 [ 682.377887][T19427] do_recvmmsg+0xdc1/0x22d0 [ 682.382373][T19427] __sys_recvmmsg+0x519/0x6f0 [ 682.387036][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.393084][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.399229][T19427] __do_fast_syscall_32+0x127/0x180 [ 682.404405][T19427] do_fast_syscall_32+0x77/0xd0 [ 682.409247][T19427] do_SYSENTER_32+0x73/0x90 [ 682.413744][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.420072][T19427] [ 682.422385][T19427] Uninit was stored to memory at: [ 682.427382][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 682.433092][T19427] __msan_chain_origin+0x54/0xa0 [ 682.438118][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 682.443234][T19427] get_compat_msghdr+0x108/0x2b0 [ 682.448165][T19427] do_recvmmsg+0xdc1/0x22d0 [ 682.452650][T19427] __sys_recvmmsg+0x519/0x6f0 [ 682.457330][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.463378][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.469517][T19427] __do_fast_syscall_32+0x127/0x180 [ 682.474728][T19427] do_fast_syscall_32+0x77/0xd0 [ 682.479562][T19427] do_SYSENTER_32+0x73/0x90 [ 682.484071][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.490388][T19427] [ 682.492703][T19427] Uninit was stored to memory at: [ 682.497696][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 682.503396][T19427] __msan_chain_origin+0x54/0xa0 [ 682.508335][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 682.513468][T19427] get_compat_msghdr+0x108/0x2b0 [ 682.518399][T19427] do_recvmmsg+0xdc1/0x22d0 [ 682.522889][T19427] __sys_recvmmsg+0x519/0x6f0 [ 682.527549][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.533611][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.539754][T19427] __do_fast_syscall_32+0x127/0x180 [ 682.544983][T19427] do_fast_syscall_32+0x77/0xd0 [ 682.549820][T19427] do_SYSENTER_32+0x73/0x90 [ 682.554385][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.560701][T19427] [ 682.563019][T19427] Uninit was stored to memory at: [ 682.568027][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 682.573756][T19427] __msan_chain_origin+0x54/0xa0 [ 682.578743][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 682.583856][T19427] get_compat_msghdr+0x108/0x2b0 [ 682.588777][T19427] do_recvmmsg+0xdc1/0x22d0 [ 682.593368][T19427] __sys_recvmmsg+0x519/0x6f0 [ 682.598148][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.604201][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.610341][T19427] __do_fast_syscall_32+0x127/0x180 [ 682.615548][T19427] do_fast_syscall_32+0x77/0xd0 [ 682.620400][T19427] do_SYSENTER_32+0x73/0x90 [ 682.624909][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.631221][T19427] [ 682.633531][T19427] Uninit was stored to memory at: [ 682.638522][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 682.644220][T19427] __msan_chain_origin+0x54/0xa0 [ 682.649138][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 682.654230][T19427] get_compat_msghdr+0x108/0x2b0 [ 682.659147][T19427] do_recvmmsg+0xdc1/0x22d0 [ 682.663632][T19427] __sys_recvmmsg+0x519/0x6f0 [ 682.668291][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.674371][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.680525][T19427] __do_fast_syscall_32+0x127/0x180 [ 682.685708][T19427] do_fast_syscall_32+0x77/0xd0 [ 682.690541][T19427] do_SYSENTER_32+0x73/0x90 [ 682.695064][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.701384][T19427] [ 682.703700][T19427] Uninit was stored to memory at: [ 682.708707][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 682.714411][T19427] __msan_chain_origin+0x54/0xa0 [ 682.719342][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 682.724462][T19427] get_compat_msghdr+0x108/0x2b0 [ 682.729411][T19427] do_recvmmsg+0xdc1/0x22d0 [ 682.734020][T19427] __sys_recvmmsg+0x519/0x6f0 [ 682.738707][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.744847][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.750993][T19427] __do_fast_syscall_32+0x127/0x180 [ 682.756215][T19427] do_fast_syscall_32+0x77/0xd0 [ 682.761049][T19427] do_SYSENTER_32+0x73/0x90 [ 682.765536][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.771854][T19427] [ 682.774175][T19427] Uninit was stored to memory at: [ 682.779305][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 682.785023][T19427] __msan_chain_origin+0x54/0xa0 [ 682.789952][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 682.795080][T19427] get_compat_msghdr+0x108/0x2b0 [ 682.800089][T19427] do_recvmmsg+0xdc1/0x22d0 [ 682.804710][T19427] __sys_recvmmsg+0x519/0x6f0 [ 682.809374][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 682.815447][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 682.821590][T19427] __do_fast_syscall_32+0x127/0x180 [ 682.826815][T19427] do_fast_syscall_32+0x77/0xd0 [ 682.831653][T19427] do_SYSENTER_32+0x73/0x90 [ 682.836166][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 682.842495][T19427] [ 682.844800][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 682.851466][T19427] do_recvmmsg+0xbf/0x22d0 [ 682.855891][T19427] do_recvmmsg+0xbf/0x22d0 [ 683.023124][T19427] not chained 880000 origins [ 683.027707][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 683.036540][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 683.046575][T19427] Call Trace: [ 683.049842][T19427] dump_stack+0x24c/0x2e0 [ 683.054223][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 683.059922][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 683.065291][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 683.070817][T19427] ? kmsan_get_metadata+0x116/0x180 [ 683.075997][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 683.081609][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 683.087652][T19427] ? kmsan_get_metadata+0x116/0x180 [ 683.092828][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 683.098617][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 683.104666][T19427] ? kmsan_get_metadata+0x116/0x180 [ 683.109912][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 683.115528][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 683.121574][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 683.126892][T19427] ? _copy_from_user+0x1fd/0x300 [ 683.131817][T19427] __msan_chain_origin+0x54/0xa0 [ 683.136743][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 683.141841][T19427] get_compat_msghdr+0x108/0x2b0 [ 683.146763][T19427] do_recvmmsg+0xdc1/0x22d0 [ 683.151250][T19427] ? kmsan_get_metadata+0x116/0x180 [ 683.156440][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 683.162095][T19427] ? __msan_poison_alloca+0xec/0x110 [ 683.167362][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 683.174101][T19427] __sys_recvmmsg+0x519/0x6f0 [ 683.178760][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.184809][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.190945][T19427] __do_fast_syscall_32+0x127/0x180 [ 683.196138][T19427] do_fast_syscall_32+0x77/0xd0 [ 683.200975][T19427] do_SYSENTER_32+0x73/0x90 [ 683.205491][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.211828][T19427] RIP: 0023:0xf7fe1549 [ 683.215892][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 683.235478][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 683.243874][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 683.251823][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 683.259773][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 683.267725][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 683.275673][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 683.283628][T19427] Uninit was stored to memory at: [ 683.288710][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 683.294429][T19427] __msan_chain_origin+0x54/0xa0 [ 683.299351][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 683.304465][T19427] get_compat_msghdr+0x108/0x2b0 [ 683.309386][T19427] do_recvmmsg+0xdc1/0x22d0 [ 683.313892][T19427] __sys_recvmmsg+0x519/0x6f0 [ 683.318550][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.324605][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.330773][T19427] __do_fast_syscall_32+0x127/0x180 [ 683.335955][T19427] do_fast_syscall_32+0x77/0xd0 [ 683.340787][T19427] do_SYSENTER_32+0x73/0x90 [ 683.345272][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.351595][T19427] [ 683.353896][T19427] Uninit was stored to memory at: [ 683.358889][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 683.364609][T19427] __msan_chain_origin+0x54/0xa0 [ 683.369546][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 683.374646][T19427] get_compat_msghdr+0x108/0x2b0 [ 683.379562][T19427] do_recvmmsg+0xdc1/0x22d0 [ 683.384066][T19427] __sys_recvmmsg+0x519/0x6f0 [ 683.388724][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.394771][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.400908][T19427] __do_fast_syscall_32+0x127/0x180 [ 683.406105][T19427] do_fast_syscall_32+0x77/0xd0 [ 683.410932][T19427] do_SYSENTER_32+0x73/0x90 [ 683.415474][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.421792][T19427] [ 683.424091][T19427] Uninit was stored to memory at: [ 683.429082][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 683.434779][T19427] __msan_chain_origin+0x54/0xa0 [ 683.439706][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 683.444795][T19427] get_compat_msghdr+0x108/0x2b0 [ 683.449719][T19427] do_recvmmsg+0xdc1/0x22d0 [ 683.454199][T19427] __sys_recvmmsg+0x519/0x6f0 [ 683.458854][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.464925][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.471077][T19427] __do_fast_syscall_32+0x127/0x180 [ 683.476253][T19427] do_fast_syscall_32+0x77/0xd0 [ 683.481117][T19427] do_SYSENTER_32+0x73/0x90 [ 683.485616][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.491925][T19427] [ 683.494229][T19427] Uninit was stored to memory at: [ 683.499228][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 683.504938][T19427] __msan_chain_origin+0x54/0xa0 [ 683.509862][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 683.514951][T19427] get_compat_msghdr+0x108/0x2b0 [ 683.519882][T19427] do_recvmmsg+0xdc1/0x22d0 [ 683.524367][T19427] __sys_recvmmsg+0x519/0x6f0 [ 683.529025][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.535088][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.541242][T19427] __do_fast_syscall_32+0x127/0x180 [ 683.546451][T19427] do_fast_syscall_32+0x77/0xd0 [ 683.551297][T19427] do_SYSENTER_32+0x73/0x90 [ 683.555780][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.562174][T19427] [ 683.564490][T19427] Uninit was stored to memory at: [ 683.569489][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 683.575214][T19427] __msan_chain_origin+0x54/0xa0 [ 683.580134][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 683.585246][T19427] get_compat_msghdr+0x108/0x2b0 [ 683.590161][T19427] do_recvmmsg+0xdc1/0x22d0 [ 683.594645][T19427] __sys_recvmmsg+0x519/0x6f0 [ 683.599295][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.605339][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.611485][T19427] __do_fast_syscall_32+0x127/0x180 [ 683.616663][T19427] do_fast_syscall_32+0x77/0xd0 [ 683.621514][T19427] do_SYSENTER_32+0x73/0x90 [ 683.625996][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.632311][T19427] [ 683.634654][T19427] Uninit was stored to memory at: [ 683.639658][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 683.645372][T19427] __msan_chain_origin+0x54/0xa0 [ 683.650287][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 683.655381][T19427] get_compat_msghdr+0x108/0x2b0 [ 683.660295][T19427] do_recvmmsg+0xdc1/0x22d0 [ 683.664829][T19427] __sys_recvmmsg+0x519/0x6f0 [ 683.669490][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.675564][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.681746][T19427] __do_fast_syscall_32+0x127/0x180 [ 683.686925][T19427] do_fast_syscall_32+0x77/0xd0 [ 683.691752][T19427] do_SYSENTER_32+0x73/0x90 [ 683.696373][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.702689][T19427] [ 683.704993][T19427] Uninit was stored to memory at: [ 683.709994][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 683.715732][T19427] __msan_chain_origin+0x54/0xa0 [ 683.720650][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 683.725740][T19427] get_compat_msghdr+0x108/0x2b0 [ 683.730652][T19427] do_recvmmsg+0xdc1/0x22d0 [ 683.735132][T19427] __sys_recvmmsg+0x519/0x6f0 [ 683.739792][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 683.745837][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 683.751968][T19427] __do_fast_syscall_32+0x127/0x180 [ 683.757141][T19427] do_fast_syscall_32+0x77/0xd0 [ 683.761981][T19427] do_SYSENTER_32+0x73/0x90 [ 683.766495][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 683.772859][T19427] [ 683.775161][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 683.781814][T19427] do_recvmmsg+0xbf/0x22d0 [ 683.786210][T19427] do_recvmmsg+0xbf/0x22d0 [ 683.955027][T19427] not chained 890000 origins [ 683.959628][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 683.968428][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 683.978552][T19427] Call Trace: [ 683.981815][T19427] dump_stack+0x24c/0x2e0 [ 683.986138][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 683.991863][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 683.997261][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 684.002797][T19427] ? kmsan_get_metadata+0x116/0x180 [ 684.008010][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 684.013629][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 684.019728][T19427] ? kmsan_get_metadata+0x116/0x180 [ 684.024911][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 684.030704][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 684.036850][T19427] ? kmsan_get_metadata+0x116/0x180 [ 684.042042][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 684.047663][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 684.053711][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 684.058978][T19427] ? _copy_from_user+0x1fd/0x300 [ 684.063898][T19427] __msan_chain_origin+0x54/0xa0 [ 684.068820][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 684.073929][T19427] get_compat_msghdr+0x108/0x2b0 [ 684.078876][T19427] do_recvmmsg+0xdc1/0x22d0 [ 684.083385][T19427] ? kmsan_get_metadata+0x116/0x180 [ 684.088566][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 684.094188][T19427] ? __msan_poison_alloca+0xec/0x110 [ 684.099461][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 684.104232][T19427] __sys_recvmmsg+0x519/0x6f0 [ 684.108914][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.114964][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.121104][T19427] __do_fast_syscall_32+0x127/0x180 [ 684.126288][T19427] do_fast_syscall_32+0x77/0xd0 [ 684.131117][T19427] do_SYSENTER_32+0x73/0x90 [ 684.135601][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.141911][T19427] RIP: 0023:0xf7fe1549 [ 684.146064][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 684.165757][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 684.174148][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 684.182104][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 684.190060][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 684.198034][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 684.205987][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 684.213940][T19427] Uninit was stored to memory at: [ 684.218937][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 684.224642][T19427] __msan_chain_origin+0x54/0xa0 [ 684.229564][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 684.234783][T19427] get_compat_msghdr+0x108/0x2b0 [ 684.239708][T19427] do_recvmmsg+0xdc1/0x22d0 [ 684.244245][T19427] __sys_recvmmsg+0x519/0x6f0 [ 684.248904][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.254953][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.261105][T19427] __do_fast_syscall_32+0x127/0x180 [ 684.266439][T19427] do_fast_syscall_32+0x77/0xd0 [ 684.271315][T19427] do_SYSENTER_32+0x73/0x90 [ 684.275802][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.282111][T19427] [ 684.284413][T19427] Uninit was stored to memory at: [ 684.289494][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 684.295252][T19427] __msan_chain_origin+0x54/0xa0 [ 684.300181][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 684.305272][T19427] get_compat_msghdr+0x108/0x2b0 [ 684.310206][T19427] do_recvmmsg+0xdc1/0x22d0 [ 684.314693][T19427] __sys_recvmmsg+0x519/0x6f0 [ 684.319347][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.325425][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.331570][T19427] __do_fast_syscall_32+0x127/0x180 [ 684.336767][T19427] do_fast_syscall_32+0x77/0xd0 [ 684.341682][T19427] do_SYSENTER_32+0x73/0x90 [ 684.346168][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.352477][T19427] [ 684.354782][T19427] Uninit was stored to memory at: [ 684.359776][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 684.365505][T19427] __msan_chain_origin+0x54/0xa0 [ 684.370428][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 684.375539][T19427] get_compat_msghdr+0x108/0x2b0 [ 684.380476][T19427] do_recvmmsg+0xdc1/0x22d0 [ 684.384986][T19427] __sys_recvmmsg+0x519/0x6f0 [ 684.389730][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.395776][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.401908][T19427] __do_fast_syscall_32+0x127/0x180 [ 684.407084][T19427] do_fast_syscall_32+0x77/0xd0 [ 684.411912][T19427] do_SYSENTER_32+0x73/0x90 [ 684.416390][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.422807][T19427] [ 684.425112][T19427] Uninit was stored to memory at: [ 684.430106][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 684.435805][T19427] __msan_chain_origin+0x54/0xa0 [ 684.440718][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 684.445811][T19427] get_compat_msghdr+0x108/0x2b0 [ 684.450723][T19427] do_recvmmsg+0xdc1/0x22d0 [ 684.455229][T19427] __sys_recvmmsg+0x519/0x6f0 [ 684.459883][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.465949][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.472085][T19427] __do_fast_syscall_32+0x127/0x180 [ 684.477266][T19427] do_fast_syscall_32+0x77/0xd0 [ 684.482126][T19427] do_SYSENTER_32+0x73/0x90 [ 684.486640][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.492985][T19427] [ 684.495301][T19427] Uninit was stored to memory at: [ 684.500296][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 684.505996][T19427] __msan_chain_origin+0x54/0xa0 [ 684.510916][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 684.516009][T19427] get_compat_msghdr+0x108/0x2b0 [ 684.520960][T19427] do_recvmmsg+0xdc1/0x22d0 [ 684.525446][T19427] __sys_recvmmsg+0x519/0x6f0 [ 684.530108][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.536158][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.542289][T19427] __do_fast_syscall_32+0x127/0x180 [ 684.547506][T19427] do_fast_syscall_32+0x77/0xd0 [ 684.552351][T19427] do_SYSENTER_32+0x73/0x90 [ 684.556835][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.563154][T19427] [ 684.565466][T19427] Uninit was stored to memory at: [ 684.570455][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 684.576153][T19427] __msan_chain_origin+0x54/0xa0 [ 684.581072][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 684.586191][T19427] get_compat_msghdr+0x108/0x2b0 [ 684.591113][T19427] do_recvmmsg+0xdc1/0x22d0 [ 684.595600][T19427] __sys_recvmmsg+0x519/0x6f0 [ 684.600262][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.606336][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.612474][T19427] __do_fast_syscall_32+0x127/0x180 [ 684.617671][T19427] do_fast_syscall_32+0x77/0xd0 [ 684.622501][T19427] do_SYSENTER_32+0x73/0x90 [ 684.626989][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.633298][T19427] [ 684.635600][T19427] Uninit was stored to memory at: [ 684.640593][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 684.646319][T19427] __msan_chain_origin+0x54/0xa0 [ 684.651409][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 684.656521][T19427] get_compat_msghdr+0x108/0x2b0 [ 684.661445][T19427] do_recvmmsg+0xdc1/0x22d0 [ 684.665946][T19427] __sys_recvmmsg+0x519/0x6f0 [ 684.670619][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 684.676669][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 684.682821][T19427] __do_fast_syscall_32+0x127/0x180 [ 684.688009][T19427] do_fast_syscall_32+0x77/0xd0 [ 684.692869][T19427] do_SYSENTER_32+0x73/0x90 [ 684.697454][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 684.703762][T19427] [ 684.706060][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 684.712701][T19427] do_recvmmsg+0xbf/0x22d0 [ 684.717099][T19427] do_recvmmsg+0xbf/0x22d0 [ 684.883176][T19427] not chained 900000 origins [ 684.887794][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 684.896566][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 684.906631][T19427] Call Trace: [ 684.909893][T19427] dump_stack+0x24c/0x2e0 [ 684.914215][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 684.919920][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 684.925321][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 684.930986][T19427] ? kmsan_get_metadata+0x116/0x180 [ 684.936360][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 684.941979][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 684.948045][T19427] ? kmsan_get_metadata+0x116/0x180 [ 684.953236][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 684.959025][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 684.965072][T19427] ? kmsan_get_metadata+0x116/0x180 [ 684.970358][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 684.975968][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 684.982018][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 684.987300][T19427] ? _copy_from_user+0x1fd/0x300 [ 684.992217][T19427] __msan_chain_origin+0x54/0xa0 [ 684.997223][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 685.002332][T19427] get_compat_msghdr+0x108/0x2b0 [ 685.007312][T19427] do_recvmmsg+0xdc1/0x22d0 [ 685.011881][T19427] ? kmsan_get_metadata+0x116/0x180 [ 685.017072][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 685.022688][T19427] ? __msan_poison_alloca+0xec/0x110 [ 685.027955][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 685.032700][T19427] __sys_recvmmsg+0x519/0x6f0 [ 685.037364][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.043428][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.049716][T19427] __do_fast_syscall_32+0x127/0x180 [ 685.054903][T19427] do_fast_syscall_32+0x77/0xd0 [ 685.059742][T19427] do_SYSENTER_32+0x73/0x90 [ 685.064350][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.070664][T19427] RIP: 0023:0xf7fe1549 [ 685.074726][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 685.094330][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 685.102726][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 685.110684][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 685.118634][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 685.126600][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 685.134552][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 685.142525][T19427] Uninit was stored to memory at: [ 685.147533][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 685.153261][T19427] __msan_chain_origin+0x54/0xa0 [ 685.158182][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 685.163275][T19427] get_compat_msghdr+0x108/0x2b0 [ 685.168212][T19427] do_recvmmsg+0xdc1/0x22d0 [ 685.172694][T19427] __sys_recvmmsg+0x519/0x6f0 [ 685.177356][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.183438][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.189596][T19427] __do_fast_syscall_32+0x127/0x180 [ 685.194794][T19427] do_fast_syscall_32+0x77/0xd0 [ 685.199628][T19427] do_SYSENTER_32+0x73/0x90 [ 685.204138][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.210536][T19427] [ 685.212837][T19427] Uninit was stored to memory at: [ 685.217829][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 685.223535][T19427] __msan_chain_origin+0x54/0xa0 [ 685.228451][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 685.233559][T19427] get_compat_msghdr+0x108/0x2b0 [ 685.238479][T19427] do_recvmmsg+0xdc1/0x22d0 [ 685.242962][T19427] __sys_recvmmsg+0x519/0x6f0 [ 685.247621][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.253669][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.259898][T19427] __do_fast_syscall_32+0x127/0x180 [ 685.265109][T19427] do_fast_syscall_32+0x77/0xd0 [ 685.269949][T19427] do_SYSENTER_32+0x73/0x90 [ 685.274492][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.280836][T19427] [ 685.283159][T19427] Uninit was stored to memory at: [ 685.288156][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 685.293863][T19427] __msan_chain_origin+0x54/0xa0 [ 685.298782][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 685.303875][T19427] get_compat_msghdr+0x108/0x2b0 [ 685.308796][T19427] do_recvmmsg+0xdc1/0x22d0 [ 685.313280][T19427] __sys_recvmmsg+0x519/0x6f0 [ 685.317938][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.323986][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.330126][T19427] __do_fast_syscall_32+0x127/0x180 [ 685.335306][T19427] do_fast_syscall_32+0x77/0xd0 [ 685.340153][T19427] do_SYSENTER_32+0x73/0x90 [ 685.344659][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.350970][T19427] [ 685.353271][T19427] Uninit was stored to memory at: [ 685.358260][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 685.363975][T19427] __msan_chain_origin+0x54/0xa0 [ 685.368890][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 685.373976][T19427] get_compat_msghdr+0x108/0x2b0 [ 685.378888][T19427] do_recvmmsg+0xdc1/0x22d0 [ 685.383368][T19427] __sys_recvmmsg+0x519/0x6f0 [ 685.388026][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.394068][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.400210][T19427] __do_fast_syscall_32+0x127/0x180 [ 685.405418][T19427] do_fast_syscall_32+0x77/0xd0 [ 685.410267][T19427] do_SYSENTER_32+0x73/0x90 [ 685.414874][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.421188][T19427] [ 685.423552][T19427] Uninit was stored to memory at: [ 685.428550][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 685.434249][T19427] __msan_chain_origin+0x54/0xa0 [ 685.439165][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 685.444257][T19427] get_compat_msghdr+0x108/0x2b0 [ 685.449175][T19427] do_recvmmsg+0xdc1/0x22d0 [ 685.453653][T19427] __sys_recvmmsg+0x519/0x6f0 [ 685.458302][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.464344][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.470481][T19427] __do_fast_syscall_32+0x127/0x180 [ 685.475687][T19427] do_fast_syscall_32+0x77/0xd0 [ 685.480524][T19427] do_SYSENTER_32+0x73/0x90 [ 685.485032][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.491341][T19427] [ 685.493637][T19427] Uninit was stored to memory at: [ 685.498625][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 685.504336][T19427] __msan_chain_origin+0x54/0xa0 [ 685.509254][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 685.514345][T19427] get_compat_msghdr+0x108/0x2b0 [ 685.519258][T19427] do_recvmmsg+0xdc1/0x22d0 [ 685.523740][T19427] __sys_recvmmsg+0x519/0x6f0 [ 685.528396][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.534446][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.540586][T19427] __do_fast_syscall_32+0x127/0x180 [ 685.545792][T19427] do_fast_syscall_32+0x77/0xd0 [ 685.550626][T19427] do_SYSENTER_32+0x73/0x90 [ 685.555111][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.561424][T19427] [ 685.563735][T19427] Uninit was stored to memory at: [ 685.568731][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 685.574430][T19427] __msan_chain_origin+0x54/0xa0 [ 685.579350][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 685.584458][T19427] get_compat_msghdr+0x108/0x2b0 [ 685.589385][T19427] do_recvmmsg+0xdc1/0x22d0 [ 685.593890][T19427] __sys_recvmmsg+0x519/0x6f0 [ 685.598543][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.604595][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.610736][T19427] __do_fast_syscall_32+0x127/0x180 [ 685.615948][T19427] do_fast_syscall_32+0x77/0xd0 [ 685.620794][T19427] do_SYSENTER_32+0x73/0x90 [ 685.625310][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 685.631618][T19427] [ 685.633917][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 685.640571][T19427] do_recvmmsg+0xbf/0x22d0 [ 685.644996][T19427] do_recvmmsg+0xbf/0x22d0 [ 685.819600][T19427] not chained 910000 origins [ 685.824215][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 685.832985][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 685.843159][T19427] Call Trace: [ 685.846442][T19427] dump_stack+0x24c/0x2e0 [ 685.850846][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 685.856575][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 685.861957][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 685.867504][T19427] ? kmsan_get_metadata+0x116/0x180 [ 685.872689][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 685.878316][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 685.884368][T19427] ? kmsan_get_metadata+0x116/0x180 [ 685.889549][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 685.895353][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 685.901397][T19427] ? kmsan_get_metadata+0x116/0x180 [ 685.906578][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 685.912191][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 685.918258][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 685.923530][T19427] ? _copy_from_user+0x1fd/0x300 [ 685.928492][T19427] __msan_chain_origin+0x54/0xa0 [ 685.933412][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 685.938512][T19427] get_compat_msghdr+0x108/0x2b0 [ 685.943481][T19427] do_recvmmsg+0xdc1/0x22d0 [ 685.948016][T19427] ? kmsan_get_metadata+0x116/0x180 [ 685.953195][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 685.958809][T19427] ? __msan_poison_alloca+0xec/0x110 [ 685.964186][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 685.968935][T19427] __sys_recvmmsg+0x519/0x6f0 [ 685.973609][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 685.979667][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 685.986004][T19427] __do_fast_syscall_32+0x127/0x180 [ 685.991190][T19427] do_fast_syscall_32+0x77/0xd0 [ 685.996044][T19427] do_SYSENTER_32+0x73/0x90 [ 686.000532][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.006884][T19427] RIP: 0023:0xf7fe1549 [ 686.010931][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 686.030543][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 686.038962][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 686.046908][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 686.054875][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 686.062826][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 686.070781][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 686.078749][T19427] Uninit was stored to memory at: [ 686.083746][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 686.089494][T19427] __msan_chain_origin+0x54/0xa0 [ 686.094436][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 686.099536][T19427] get_compat_msghdr+0x108/0x2b0 [ 686.104474][T19427] do_recvmmsg+0xdc1/0x22d0 [ 686.108950][T19427] __sys_recvmmsg+0x519/0x6f0 [ 686.113600][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.119650][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.125826][T19427] __do_fast_syscall_32+0x127/0x180 [ 686.131012][T19427] do_fast_syscall_32+0x77/0xd0 [ 686.135865][T19427] do_SYSENTER_32+0x73/0x90 [ 686.140355][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.146694][T19427] [ 686.148990][T19427] Uninit was stored to memory at: [ 686.154031][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 686.159738][T19427] __msan_chain_origin+0x54/0xa0 [ 686.164675][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 686.169767][T19427] get_compat_msghdr+0x108/0x2b0 [ 686.174724][T19427] do_recvmmsg+0xdc1/0x22d0 [ 686.179213][T19427] __sys_recvmmsg+0x519/0x6f0 [ 686.183866][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.189920][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.196087][T19427] __do_fast_syscall_32+0x127/0x180 [ 686.201265][T19427] do_fast_syscall_32+0x77/0xd0 [ 686.206108][T19427] do_SYSENTER_32+0x73/0x90 [ 686.210615][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.216961][T19427] [ 686.219259][T19427] Uninit was stored to memory at: [ 686.224259][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 686.229982][T19427] __msan_chain_origin+0x54/0xa0 [ 686.234923][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 686.240014][T19427] get_compat_msghdr+0x108/0x2b0 [ 686.244965][T19427] do_recvmmsg+0xdc1/0x22d0 [ 686.249453][T19427] __sys_recvmmsg+0x519/0x6f0 [ 686.254133][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.260191][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.266324][T19427] __do_fast_syscall_32+0x127/0x180 [ 686.271516][T19427] do_fast_syscall_32+0x77/0xd0 [ 686.276390][T19427] do_SYSENTER_32+0x73/0x90 [ 686.280875][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.287192][T19427] [ 686.289494][T19427] Uninit was stored to memory at: [ 686.294502][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 686.300213][T19427] __msan_chain_origin+0x54/0xa0 [ 686.305127][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 686.310223][T19427] get_compat_msghdr+0x108/0x2b0 [ 686.315163][T19427] do_recvmmsg+0xdc1/0x22d0 [ 686.319646][T19427] __sys_recvmmsg+0x519/0x6f0 [ 686.324316][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.330459][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.336641][T19427] __do_fast_syscall_32+0x127/0x180 [ 686.341827][T19427] do_fast_syscall_32+0x77/0xd0 [ 686.346666][T19427] do_SYSENTER_32+0x73/0x90 [ 686.351150][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.357497][T19427] [ 686.359796][T19427] Uninit was stored to memory at: [ 686.364801][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 686.370503][T19427] __msan_chain_origin+0x54/0xa0 [ 686.375457][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 686.380550][T19427] get_compat_msghdr+0x108/0x2b0 [ 686.385511][T19427] do_recvmmsg+0xdc1/0x22d0 [ 686.390001][T19427] __sys_recvmmsg+0x519/0x6f0 [ 686.394685][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.400767][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.406909][T19427] __do_fast_syscall_32+0x127/0x180 [ 686.412092][T19427] do_fast_syscall_32+0x77/0xd0 [ 686.416925][T19427] do_SYSENTER_32+0x73/0x90 [ 686.421412][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.427916][T19427] [ 686.430219][T19427] Uninit was stored to memory at: [ 686.435228][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 686.440946][T19427] __msan_chain_origin+0x54/0xa0 [ 686.445861][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 686.450955][T19427] get_compat_msghdr+0x108/0x2b0 [ 686.455890][T19427] do_recvmmsg+0xdc1/0x22d0 [ 686.460401][T19427] __sys_recvmmsg+0x519/0x6f0 [ 686.465127][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.471178][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.477335][T19427] __do_fast_syscall_32+0x127/0x180 [ 686.482533][T19427] do_fast_syscall_32+0x77/0xd0 [ 686.487365][T19427] do_SYSENTER_32+0x73/0x90 [ 686.491856][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.498162][T19427] [ 686.500498][T19427] Uninit was stored to memory at: [ 686.505491][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 686.511198][T19427] __msan_chain_origin+0x54/0xa0 [ 686.516137][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 686.521245][T19427] get_compat_msghdr+0x108/0x2b0 [ 686.526178][T19427] do_recvmmsg+0xdc1/0x22d0 [ 686.530660][T19427] __sys_recvmmsg+0x519/0x6f0 [ 686.535341][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.541391][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.547629][T19427] __do_fast_syscall_32+0x127/0x180 [ 686.552807][T19427] do_fast_syscall_32+0x77/0xd0 [ 686.557731][T19427] do_SYSENTER_32+0x73/0x90 [ 686.562229][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.568539][T19427] [ 686.570842][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 686.577500][T19427] do_recvmmsg+0xbf/0x22d0 [ 686.581895][T19427] do_recvmmsg+0xbf/0x22d0 [ 686.746826][T19427] not chained 920000 origins [ 686.751423][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 686.760175][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 686.770290][T19427] Call Trace: [ 686.773552][T19427] dump_stack+0x24c/0x2e0 [ 686.777870][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 686.783621][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 686.788981][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 686.794510][T19427] ? kmsan_get_metadata+0x116/0x180 [ 686.799696][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 686.805338][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 686.811442][T19427] ? kmsan_get_metadata+0x116/0x180 [ 686.816621][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 686.822409][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 686.828462][T19427] ? kmsan_get_metadata+0x116/0x180 [ 686.833641][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 686.839264][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 686.845318][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 686.850600][T19427] ? _copy_from_user+0x1fd/0x300 [ 686.855648][T19427] __msan_chain_origin+0x54/0xa0 [ 686.860580][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 686.865708][T19427] get_compat_msghdr+0x108/0x2b0 [ 686.870781][T19427] do_recvmmsg+0xdc1/0x22d0 [ 686.875274][T19427] ? kmsan_get_metadata+0x116/0x180 [ 686.880476][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 686.886205][T19427] ? __msan_poison_alloca+0xec/0x110 [ 686.891497][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 686.896271][T19427] __sys_recvmmsg+0x519/0x6f0 [ 686.900934][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 686.907016][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 686.913163][T19427] __do_fast_syscall_32+0x127/0x180 [ 686.918376][T19427] do_fast_syscall_32+0x77/0xd0 [ 686.923209][T19427] do_SYSENTER_32+0x73/0x90 [ 686.927713][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 686.934030][T19427] RIP: 0023:0xf7fe1549 [ 686.938080][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 686.957784][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 686.966199][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 686.974153][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 686.982104][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 686.990058][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 686.998024][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 687.005981][T19427] Uninit was stored to memory at: [ 687.010982][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 687.016711][T19427] __msan_chain_origin+0x54/0xa0 [ 687.021628][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 687.026723][T19427] get_compat_msghdr+0x108/0x2b0 [ 687.031654][T19427] do_recvmmsg+0xdc1/0x22d0 [ 687.036165][T19427] __sys_recvmmsg+0x519/0x6f0 [ 687.040829][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.046913][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.053081][T19427] __do_fast_syscall_32+0x127/0x180 [ 687.058291][T19427] do_fast_syscall_32+0x77/0xd0 [ 687.063124][T19427] do_SYSENTER_32+0x73/0x90 [ 687.067609][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.073912][T19427] [ 687.076215][T19427] Uninit was stored to memory at: [ 687.081205][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 687.086902][T19427] __msan_chain_origin+0x54/0xa0 [ 687.091819][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 687.096928][T19427] get_compat_msghdr+0x108/0x2b0 [ 687.101845][T19427] do_recvmmsg+0xdc1/0x22d0 [ 687.106332][T19427] __sys_recvmmsg+0x519/0x6f0 [ 687.111001][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.117071][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.123217][T19427] __do_fast_syscall_32+0x127/0x180 [ 687.128428][T19427] do_fast_syscall_32+0x77/0xd0 [ 687.133269][T19427] do_SYSENTER_32+0x73/0x90 [ 687.138010][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.144324][T19427] [ 687.146628][T19427] Uninit was stored to memory at: [ 687.151628][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 687.157386][T19427] __msan_chain_origin+0x54/0xa0 [ 687.162306][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 687.167400][T19427] get_compat_msghdr+0x108/0x2b0 [ 687.172316][T19427] do_recvmmsg+0xdc1/0x22d0 [ 687.176802][T19427] __sys_recvmmsg+0x519/0x6f0 [ 687.181505][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.187563][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.193692][T19427] __do_fast_syscall_32+0x127/0x180 [ 687.198869][T19427] do_fast_syscall_32+0x77/0xd0 [ 687.203694][T19427] do_SYSENTER_32+0x73/0x90 [ 687.208177][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.214488][T19427] [ 687.216789][T19427] Uninit was stored to memory at: [ 687.221796][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 687.227500][T19427] __msan_chain_origin+0x54/0xa0 [ 687.232418][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 687.237544][T19427] get_compat_msghdr+0x108/0x2b0 [ 687.242465][T19427] do_recvmmsg+0xdc1/0x22d0 [ 687.246974][T19427] __sys_recvmmsg+0x519/0x6f0 [ 687.251636][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.257713][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.263846][T19427] __do_fast_syscall_32+0x127/0x180 [ 687.269023][T19427] do_fast_syscall_32+0x77/0xd0 [ 687.273849][T19427] do_SYSENTER_32+0x73/0x90 [ 687.278348][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.284655][T19427] [ 687.286956][T19427] Uninit was stored to memory at: [ 687.291950][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 687.297671][T19427] __msan_chain_origin+0x54/0xa0 [ 687.302583][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 687.307676][T19427] get_compat_msghdr+0x108/0x2b0 [ 687.312593][T19427] do_recvmmsg+0xdc1/0x22d0 [ 687.317080][T19427] __sys_recvmmsg+0x519/0x6f0 [ 687.321747][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.327795][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.333927][T19427] __do_fast_syscall_32+0x127/0x180 [ 687.339106][T19427] do_fast_syscall_32+0x77/0xd0 [ 687.343957][T19427] do_SYSENTER_32+0x73/0x90 [ 687.348453][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.355286][T19427] [ 687.357603][T19427] Uninit was stored to memory at: [ 687.362598][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 687.368301][T19427] __msan_chain_origin+0x54/0xa0 [ 687.373240][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 687.378336][T19427] get_compat_msghdr+0x108/0x2b0 [ 687.383255][T19427] do_recvmmsg+0xdc1/0x22d0 [ 687.387755][T19427] __sys_recvmmsg+0x519/0x6f0 [ 687.392412][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.398463][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.404694][T19427] __do_fast_syscall_32+0x127/0x180 [ 687.409888][T19427] do_fast_syscall_32+0x77/0xd0 [ 687.414754][T19427] do_SYSENTER_32+0x73/0x90 [ 687.419243][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.425572][T19427] [ 687.427873][T19427] Uninit was stored to memory at: [ 687.432885][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 687.438602][T19427] __msan_chain_origin+0x54/0xa0 [ 687.443523][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 687.448615][T19427] get_compat_msghdr+0x108/0x2b0 [ 687.453539][T19427] do_recvmmsg+0xdc1/0x22d0 [ 687.458052][T19427] __sys_recvmmsg+0x519/0x6f0 [ 687.462719][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.468772][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.474991][T19427] __do_fast_syscall_32+0x127/0x180 [ 687.480170][T19427] do_fast_syscall_32+0x77/0xd0 [ 687.485007][T19427] do_SYSENTER_32+0x73/0x90 [ 687.489494][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.495825][T19427] [ 687.498211][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 687.504854][T19427] do_recvmmsg+0xbf/0x22d0 [ 687.509250][T19427] do_recvmmsg+0xbf/0x22d0 [ 687.676931][T19427] not chained 930000 origins [ 687.681541][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 687.690321][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 687.700399][T19427] Call Trace: [ 687.703683][T19427] dump_stack+0x24c/0x2e0 [ 687.708030][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 687.713738][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 687.719106][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 687.724630][T19427] ? kmsan_get_metadata+0x116/0x180 [ 687.729824][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 687.735466][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 687.741536][T19427] ? kmsan_get_metadata+0x116/0x180 [ 687.746728][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 687.752516][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 687.758578][T19427] ? kmsan_get_metadata+0x116/0x180 [ 687.763768][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 687.769428][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 687.775509][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 687.780786][T19427] ? _copy_from_user+0x1fd/0x300 [ 687.785769][T19427] __msan_chain_origin+0x54/0xa0 [ 687.790813][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 687.795944][T19427] get_compat_msghdr+0x108/0x2b0 [ 687.800889][T19427] do_recvmmsg+0xdc1/0x22d0 [ 687.805392][T19427] ? kmsan_get_metadata+0x116/0x180 [ 687.810586][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 687.816313][T19427] ? __msan_poison_alloca+0xec/0x110 [ 687.821583][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 687.826337][T19427] __sys_recvmmsg+0x519/0x6f0 [ 687.831028][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.837118][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.843265][T19427] __do_fast_syscall_32+0x127/0x180 [ 687.848451][T19427] do_fast_syscall_32+0x77/0xd0 [ 687.853290][T19427] do_SYSENTER_32+0x73/0x90 [ 687.857781][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 687.864092][T19427] RIP: 0023:0xf7fe1549 [ 687.868139][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 687.887726][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 687.896122][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 687.904074][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 687.912023][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 687.920091][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 687.928060][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 687.936033][T19427] Uninit was stored to memory at: [ 687.941031][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 687.946736][T19427] __msan_chain_origin+0x54/0xa0 [ 687.951796][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 687.957030][T19427] get_compat_msghdr+0x108/0x2b0 [ 687.961947][T19427] do_recvmmsg+0xdc1/0x22d0 [ 687.966437][T19427] __sys_recvmmsg+0x519/0x6f0 [ 687.971110][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 687.977182][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 687.983316][T19427] __do_fast_syscall_32+0x127/0x180 [ 687.988533][T19427] do_fast_syscall_32+0x77/0xd0 [ 687.993389][T19427] do_SYSENTER_32+0x73/0x90 [ 687.997903][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.004212][T19427] [ 688.006528][T19427] Uninit was stored to memory at: [ 688.011533][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 688.017300][T19427] __msan_chain_origin+0x54/0xa0 [ 688.022220][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 688.027360][T19427] get_compat_msghdr+0x108/0x2b0 [ 688.032372][T19427] do_recvmmsg+0xdc1/0x22d0 [ 688.036860][T19427] __sys_recvmmsg+0x519/0x6f0 [ 688.041519][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.047624][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.053766][T19427] __do_fast_syscall_32+0x127/0x180 [ 688.058987][T19427] do_fast_syscall_32+0x77/0xd0 [ 688.063833][T19427] do_SYSENTER_32+0x73/0x90 [ 688.068318][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.074629][T19427] [ 688.076931][T19427] Uninit was stored to memory at: [ 688.081931][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 688.087670][T19427] __msan_chain_origin+0x54/0xa0 [ 688.092587][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 688.097713][T19427] get_compat_msghdr+0x108/0x2b0 [ 688.102641][T19427] do_recvmmsg+0xdc1/0x22d0 [ 688.107127][T19427] __sys_recvmmsg+0x519/0x6f0 [ 688.111792][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.117871][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.124009][T19427] __do_fast_syscall_32+0x127/0x180 [ 688.129189][T19427] do_fast_syscall_32+0x77/0xd0 [ 688.134016][T19427] do_SYSENTER_32+0x73/0x90 [ 688.138499][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.144806][T19427] [ 688.147106][T19427] Uninit was stored to memory at: [ 688.152112][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 688.157829][T19427] __msan_chain_origin+0x54/0xa0 [ 688.162748][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 688.167868][T19427] get_compat_msghdr+0x108/0x2b0 [ 688.172806][T19427] do_recvmmsg+0xdc1/0x22d0 [ 688.177332][T19427] __sys_recvmmsg+0x519/0x6f0 [ 688.181987][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.188145][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.194325][T19427] __do_fast_syscall_32+0x127/0x180 [ 688.199519][T19427] do_fast_syscall_32+0x77/0xd0 [ 688.204373][T19427] do_SYSENTER_32+0x73/0x90 [ 688.208857][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.215183][T19427] [ 688.217487][T19427] Uninit was stored to memory at: [ 688.222481][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 688.228207][T19427] __msan_chain_origin+0x54/0xa0 [ 688.233135][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 688.238261][T19427] get_compat_msghdr+0x108/0x2b0 [ 688.243269][T19427] do_recvmmsg+0xdc1/0x22d0 [ 688.247757][T19427] __sys_recvmmsg+0x519/0x6f0 [ 688.252417][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.258470][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.264607][T19427] __do_fast_syscall_32+0x127/0x180 [ 688.269794][T19427] do_fast_syscall_32+0x77/0xd0 [ 688.274653][T19427] do_SYSENTER_32+0x73/0x90 [ 688.279143][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.285455][T19427] [ 688.287758][T19427] Uninit was stored to memory at: [ 688.292754][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 688.298459][T19427] __msan_chain_origin+0x54/0xa0 [ 688.303376][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 688.308474][T19427] get_compat_msghdr+0x108/0x2b0 [ 688.313392][T19427] do_recvmmsg+0xdc1/0x22d0 [ 688.317882][T19427] __sys_recvmmsg+0x519/0x6f0 [ 688.322547][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.328600][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.334751][T19427] __do_fast_syscall_32+0x127/0x180 [ 688.339945][T19427] do_fast_syscall_32+0x77/0xd0 [ 688.344804][T19427] do_SYSENTER_32+0x73/0x90 [ 688.349309][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.355632][T19427] [ 688.357935][T19427] Uninit was stored to memory at: [ 688.362929][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 688.368629][T19427] __msan_chain_origin+0x54/0xa0 [ 688.373545][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 688.378642][T19427] get_compat_msghdr+0x108/0x2b0 [ 688.383565][T19427] do_recvmmsg+0xdc1/0x22d0 [ 688.388054][T19427] __sys_recvmmsg+0x519/0x6f0 [ 688.392731][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.398795][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.404931][T19427] __do_fast_syscall_32+0x127/0x180 [ 688.410118][T19427] do_fast_syscall_32+0x77/0xd0 [ 688.414970][T19427] do_SYSENTER_32+0x73/0x90 [ 688.419460][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.425811][T19427] [ 688.428113][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 688.434771][T19427] do_recvmmsg+0xbf/0x22d0 [ 688.439178][T19427] do_recvmmsg+0xbf/0x22d0 [ 688.609055][T19427] not chained 940000 origins [ 688.613673][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 688.622445][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 688.632501][T19427] Call Trace: [ 688.635783][T19427] dump_stack+0x24c/0x2e0 [ 688.640125][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 688.645859][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 688.651215][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 688.656769][T19427] ? kmsan_get_metadata+0x116/0x180 [ 688.661949][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 688.667576][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 688.673719][T19427] ? kmsan_get_metadata+0x116/0x180 [ 688.678898][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 688.684688][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 688.690741][T19427] ? kmsan_get_metadata+0x116/0x180 [ 688.695945][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 688.701583][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 688.707626][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 688.712890][T19427] ? _copy_from_user+0x1fd/0x300 [ 688.717826][T19427] __msan_chain_origin+0x54/0xa0 [ 688.722750][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 688.727870][T19427] get_compat_msghdr+0x108/0x2b0 [ 688.732789][T19427] do_recvmmsg+0xdc1/0x22d0 [ 688.737292][T19427] ? kmsan_get_metadata+0x116/0x180 [ 688.742466][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 688.748106][T19427] ? __msan_poison_alloca+0xec/0x110 [ 688.753367][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 688.758116][T19427] __sys_recvmmsg+0x519/0x6f0 [ 688.762780][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.768834][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.774972][T19427] __do_fast_syscall_32+0x127/0x180 [ 688.780161][T19427] do_fast_syscall_32+0x77/0xd0 [ 688.784991][T19427] do_SYSENTER_32+0x73/0x90 [ 688.789517][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.795885][T19427] RIP: 0023:0xf7fe1549 [ 688.799936][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 688.819606][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 688.827997][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 688.835945][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 688.843898][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 688.851855][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 688.859826][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 688.867790][T19427] Uninit was stored to memory at: [ 688.872815][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 688.878526][T19427] __msan_chain_origin+0x54/0xa0 [ 688.883442][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 688.888541][T19427] get_compat_msghdr+0x108/0x2b0 [ 688.893461][T19427] do_recvmmsg+0xdc1/0x22d0 [ 688.897951][T19427] __sys_recvmmsg+0x519/0x6f0 [ 688.902610][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.908658][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.914791][T19427] __do_fast_syscall_32+0x127/0x180 [ 688.919994][T19427] do_fast_syscall_32+0x77/0xd0 [ 688.924827][T19427] do_SYSENTER_32+0x73/0x90 [ 688.929334][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 688.935658][T19427] [ 688.937955][T19427] Uninit was stored to memory at: [ 688.942943][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 688.948658][T19427] __msan_chain_origin+0x54/0xa0 [ 688.953574][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 688.958681][T19427] get_compat_msghdr+0x108/0x2b0 [ 688.963642][T19427] do_recvmmsg+0xdc1/0x22d0 [ 688.968180][T19427] __sys_recvmmsg+0x519/0x6f0 [ 688.972865][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 688.978947][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 688.985111][T19427] __do_fast_syscall_32+0x127/0x180 [ 688.990317][T19427] do_fast_syscall_32+0x77/0xd0 [ 688.995293][T19427] do_SYSENTER_32+0x73/0x90 [ 688.999781][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 689.006161][T19427] [ 689.008563][T19427] Uninit was stored to memory at: [ 689.013563][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 689.019269][T19427] __msan_chain_origin+0x54/0xa0 [ 689.024188][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 689.029279][T19427] get_compat_msghdr+0x108/0x2b0 [ 689.034224][T19427] do_recvmmsg+0xdc1/0x22d0 [ 689.038724][T19427] __sys_recvmmsg+0x519/0x6f0 [ 689.043385][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 689.049480][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 689.055671][T19427] __do_fast_syscall_32+0x127/0x180 [ 689.060860][T19427] do_fast_syscall_32+0x77/0xd0 [ 689.065698][T19427] do_SYSENTER_32+0x73/0x90 [ 689.070194][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 689.076527][T19427] [ 689.078833][T19427] Uninit was stored to memory at: [ 689.083823][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 689.089527][T19427] __msan_chain_origin+0x54/0xa0 [ 689.094461][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 689.099557][T19427] get_compat_msghdr+0x108/0x2b0 [ 689.104496][T19427] do_recvmmsg+0xdc1/0x22d0 [ 689.108976][T19427] __sys_recvmmsg+0x519/0x6f0 [ 689.113632][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 689.119685][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 689.125840][T19427] __do_fast_syscall_32+0x127/0x180 [ 689.131023][T19427] do_fast_syscall_32+0x77/0xd0 [ 689.135876][T19427] do_SYSENTER_32+0x73/0x90 [ 689.140366][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 689.146713][T19427] [ 689.149009][T19427] Uninit was stored to memory at: [ 689.154034][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 689.159738][T19427] __msan_chain_origin+0x54/0xa0 [ 689.164677][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 689.169772][T19427] get_compat_msghdr+0x108/0x2b0 [ 689.174715][T19427] do_recvmmsg+0xdc1/0x22d0 [ 689.179203][T19427] __sys_recvmmsg+0x519/0x6f0 [ 689.183859][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 689.189997][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 689.196158][T19427] __do_fast_syscall_32+0x127/0x180 [ 689.201342][T19427] do_fast_syscall_32+0x77/0xd0 [ 689.206199][T19427] do_SYSENTER_32+0x73/0x90 [ 689.210704][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 689.217032][T19427] [ 689.219385][T19427] Uninit was stored to memory at: [ 689.224406][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 689.230109][T19427] __msan_chain_origin+0x54/0xa0 [ 689.235068][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 689.240165][T19427] get_compat_msghdr+0x108/0x2b0 [ 689.245110][T19427] do_recvmmsg+0xdc1/0x22d0 [ 689.249600][T19427] __sys_recvmmsg+0x519/0x6f0 [ 689.254362][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 689.260421][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 689.266580][T19427] __do_fast_syscall_32+0x127/0x180 [ 689.271757][T19427] do_fast_syscall_32+0x77/0xd0 [ 689.276589][T19427] do_SYSENTER_32+0x73/0x90 [ 689.281071][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 689.287379][T19427] [ 689.289679][T19427] Uninit was stored to memory at: [ 689.294683][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 689.300418][T19427] __msan_chain_origin+0x54/0xa0 [ 689.305412][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 689.310510][T19427] get_compat_msghdr+0x108/0x2b0 [ 689.315464][T19427] do_recvmmsg+0xdc1/0x22d0 [ 689.319950][T19427] __sys_recvmmsg+0x519/0x6f0 [ 689.324658][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 689.330707][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 689.336902][T19427] __do_fast_syscall_32+0x127/0x180 [ 689.342080][T19427] do_fast_syscall_32+0x77/0xd0 [ 689.346906][T19427] do_SYSENTER_32+0x73/0x90 [ 689.351385][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 689.357712][T19427] [ 689.360011][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 689.366717][T19427] do_recvmmsg+0xbf/0x22d0 [ 689.371112][T19427] do_recvmmsg+0xbf/0x22d0 [ 689.688172][T19427] not chained 950000 origins [ 689.693024][T19427] CPU: 1 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 689.701764][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 689.711854][T19427] Call Trace: [ 689.715111][T19427] dump_stack+0x24c/0x2e0 [ 689.719462][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 689.725163][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 689.730514][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 689.736039][T19427] ? kmsan_get_metadata+0x116/0x180 [ 689.741222][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 689.746828][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 689.752870][T19427] ? kmsan_get_metadata+0x116/0x180 [ 689.758057][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 689.763839][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 689.769896][T19427] ? kmsan_get_metadata+0x116/0x180 [ 689.775073][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 689.780679][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 689.786722][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 689.791995][T19427] ? _copy_from_user+0x1fd/0x300 [ 689.796909][T19427] __msan_chain_origin+0x54/0xa0 [ 689.801851][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 689.806958][T19427] get_compat_msghdr+0x108/0x2b0 [ 689.811874][T19427] do_recvmmsg+0xdc1/0x22d0 [ 689.816365][T19427] ? kmsan_get_metadata+0x116/0x180 [ 689.821555][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 689.827165][T19427] ? __msan_poison_alloca+0xec/0x110 [ 689.832428][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 689.837181][T19427] __sys_recvmmsg+0x519/0x6f0 [ 689.841837][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 689.847899][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 689.854037][T19427] __do_fast_syscall_32+0x127/0x180 [ 689.859215][T19427] do_fast_syscall_32+0x77/0xd0 [ 689.864044][T19427] do_SYSENTER_32+0x73/0x90 [ 689.868538][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 689.874845][T19427] RIP: 0023:0xf7fe1549 [ 689.878887][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 689.898485][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 689.906878][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 689.914846][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 689.922838][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 689.930806][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 689.938753][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 689.946726][T19427] Uninit was stored to memory at: [ 689.951756][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 689.957474][T19427] __msan_chain_origin+0x54/0xa0 [ 689.962476][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 689.967568][T19427] get_compat_msghdr+0x108/0x2b0 [ 689.972483][T19427] do_recvmmsg+0xdc1/0x22d0 [ 689.976966][T19427] __sys_recvmmsg+0x519/0x6f0 [ 689.981619][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 689.987665][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 689.993794][T19427] __do_fast_syscall_32+0x127/0x180 [ 689.998973][T19427] do_fast_syscall_32+0x77/0xd0 [ 690.003803][T19427] do_SYSENTER_32+0x73/0x90 [ 690.008288][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.014600][T19427] [ 690.016903][T19427] Uninit was stored to memory at: [ 690.021897][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 690.027599][T19427] __msan_chain_origin+0x54/0xa0 [ 690.032508][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 690.037599][T19427] get_compat_msghdr+0x108/0x2b0 [ 690.042513][T19427] do_recvmmsg+0xdc1/0x22d0 [ 690.046994][T19427] __sys_recvmmsg+0x519/0x6f0 [ 690.051649][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.057694][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.063823][T19427] __do_fast_syscall_32+0x127/0x180 [ 690.069019][T19427] do_fast_syscall_32+0x77/0xd0 [ 690.073867][T19427] do_SYSENTER_32+0x73/0x90 [ 690.078372][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.084684][T19427] [ 690.086980][T19427] Uninit was stored to memory at: [ 690.091983][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 690.097681][T19427] __msan_chain_origin+0x54/0xa0 [ 690.102607][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 690.107696][T19427] get_compat_msghdr+0x108/0x2b0 [ 690.112609][T19427] do_recvmmsg+0xdc1/0x22d0 [ 690.117094][T19427] __sys_recvmmsg+0x519/0x6f0 [ 690.121758][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.127807][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.133941][T19427] __do_fast_syscall_32+0x127/0x180 [ 690.139117][T19427] do_fast_syscall_32+0x77/0xd0 [ 690.143948][T19427] do_SYSENTER_32+0x73/0x90 [ 690.148442][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.154760][T19427] [ 690.157057][T19427] Uninit was stored to memory at: [ 690.162069][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 690.167782][T19427] __msan_chain_origin+0x54/0xa0 [ 690.172696][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 690.177800][T19427] get_compat_msghdr+0x108/0x2b0 [ 690.182709][T19427] do_recvmmsg+0xdc1/0x22d0 [ 690.187188][T19427] __sys_recvmmsg+0x519/0x6f0 [ 690.191844][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.197884][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.204017][T19427] __do_fast_syscall_32+0x127/0x180 [ 690.209196][T19427] do_fast_syscall_32+0x77/0xd0 [ 690.214025][T19427] do_SYSENTER_32+0x73/0x90 [ 690.218509][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.224840][T19427] [ 690.227138][T19427] Uninit was stored to memory at: [ 690.232125][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 690.237824][T19427] __msan_chain_origin+0x54/0xa0 [ 690.242738][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 690.247828][T19427] get_compat_msghdr+0x108/0x2b0 [ 690.252744][T19427] do_recvmmsg+0xdc1/0x22d0 [ 690.257224][T19427] __sys_recvmmsg+0x519/0x6f0 [ 690.261875][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.267916][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.274048][T19427] __do_fast_syscall_32+0x127/0x180 [ 690.279229][T19427] do_fast_syscall_32+0x77/0xd0 [ 690.284056][T19427] do_SYSENTER_32+0x73/0x90 [ 690.288533][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.294834][T19427] [ 690.297129][T19427] Uninit was stored to memory at: [ 690.302117][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 690.307810][T19427] __msan_chain_origin+0x54/0xa0 [ 690.312733][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 690.317820][T19427] get_compat_msghdr+0x108/0x2b0 [ 690.322732][T19427] do_recvmmsg+0xdc1/0x22d0 [ 690.327235][T19427] __sys_recvmmsg+0x519/0x6f0 [ 690.331886][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.337940][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.344082][T19427] __do_fast_syscall_32+0x127/0x180 [ 690.349256][T19427] do_fast_syscall_32+0x77/0xd0 [ 690.354080][T19427] do_SYSENTER_32+0x73/0x90 [ 690.358557][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.364864][T19427] [ 690.367159][T19427] Uninit was stored to memory at: [ 690.372164][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 690.377859][T19427] __msan_chain_origin+0x54/0xa0 [ 690.382769][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 690.387856][T19427] get_compat_msghdr+0x108/0x2b0 [ 690.392766][T19427] do_recvmmsg+0xdc1/0x22d0 [ 690.397243][T19427] __sys_recvmmsg+0x519/0x6f0 [ 690.401894][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.407941][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.414070][T19427] __do_fast_syscall_32+0x127/0x180 [ 690.419249][T19427] do_fast_syscall_32+0x77/0xd0 [ 690.424082][T19427] do_SYSENTER_32+0x73/0x90 [ 690.428564][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.434870][T19427] [ 690.437165][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 690.443801][T19427] do_recvmmsg+0xbf/0x22d0 [ 690.448196][T19427] do_recvmmsg+0xbf/0x22d0 [ 690.633049][T19427] not chained 960000 origins [ 690.637682][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 690.646424][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 690.656461][T19427] Call Trace: [ 690.659721][T19427] dump_stack+0x24c/0x2e0 [ 690.664038][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 690.669742][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 690.675124][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 690.680660][T19427] ? kmsan_get_metadata+0x116/0x180 [ 690.685866][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 690.691489][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 690.697570][T19427] ? kmsan_get_metadata+0x116/0x180 [ 690.702749][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 690.708540][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 690.714597][T19427] ? kmsan_get_metadata+0x116/0x180 [ 690.719773][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 690.725387][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 690.731446][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 690.736741][T19427] ? _copy_from_user+0x1fd/0x300 [ 690.741664][T19427] __msan_chain_origin+0x54/0xa0 [ 690.746583][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 690.751684][T19427] get_compat_msghdr+0x108/0x2b0 [ 690.756637][T19427] do_recvmmsg+0xdc1/0x22d0 [ 690.761148][T19427] ? kmsan_get_metadata+0x116/0x180 [ 690.766328][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 690.771939][T19427] ? __msan_poison_alloca+0xec/0x110 [ 690.777202][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 690.781946][T19427] __sys_recvmmsg+0x519/0x6f0 [ 690.786602][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.792650][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.798824][T19427] __do_fast_syscall_32+0x127/0x180 [ 690.804019][T19427] do_fast_syscall_32+0x77/0xd0 [ 690.808849][T19427] do_SYSENTER_32+0x73/0x90 [ 690.813339][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.819651][T19427] RIP: 0023:0xf7fe1549 [ 690.823697][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 690.843303][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 690.851742][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 690.859740][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 690.867693][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 690.875645][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 690.883599][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 690.891564][T19427] Uninit was stored to memory at: [ 690.896570][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 690.902278][T19427] __msan_chain_origin+0x54/0xa0 [ 690.907218][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 690.912311][T19427] get_compat_msghdr+0x108/0x2b0 [ 690.917224][T19427] do_recvmmsg+0xdc1/0x22d0 [ 690.921707][T19427] __sys_recvmmsg+0x519/0x6f0 [ 690.926369][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 690.932415][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 690.938556][T19427] __do_fast_syscall_32+0x127/0x180 [ 690.943742][T19427] do_fast_syscall_32+0x77/0xd0 [ 690.948574][T19427] do_SYSENTER_32+0x73/0x90 [ 690.953056][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 690.959373][T19427] [ 690.961683][T19427] Uninit was stored to memory at: [ 690.966677][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 690.972377][T19427] __msan_chain_origin+0x54/0xa0 [ 690.977296][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 690.982384][T19427] get_compat_msghdr+0x108/0x2b0 [ 690.987302][T19427] do_recvmmsg+0xdc1/0x22d0 [ 690.991802][T19427] __sys_recvmmsg+0x519/0x6f0 [ 690.996465][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.002512][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.008647][T19427] __do_fast_syscall_32+0x127/0x180 [ 691.013831][T19427] do_fast_syscall_32+0x77/0xd0 [ 691.018691][T19427] do_SYSENTER_32+0x73/0x90 [ 691.023196][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.029511][T19427] [ 691.031848][T19427] Uninit was stored to memory at: [ 691.036871][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 691.042594][T19427] __msan_chain_origin+0x54/0xa0 [ 691.047511][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 691.052617][T19427] get_compat_msghdr+0x108/0x2b0 [ 691.057537][T19427] do_recvmmsg+0xdc1/0x22d0 [ 691.062018][T19427] __sys_recvmmsg+0x519/0x6f0 [ 691.066673][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.072729][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.078861][T19427] __do_fast_syscall_32+0x127/0x180 [ 691.084036][T19427] do_fast_syscall_32+0x77/0xd0 [ 691.088865][T19427] do_SYSENTER_32+0x73/0x90 [ 691.093343][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.099654][T19427] [ 691.101954][T19427] Uninit was stored to memory at: [ 691.106944][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 691.112643][T19427] __msan_chain_origin+0x54/0xa0 [ 691.117561][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 691.122659][T19427] get_compat_msghdr+0x108/0x2b0 [ 691.127603][T19427] do_recvmmsg+0xdc1/0x22d0 [ 691.132090][T19427] __sys_recvmmsg+0x519/0x6f0 [ 691.136745][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.142788][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.148925][T19427] __do_fast_syscall_32+0x127/0x180 [ 691.154101][T19427] do_fast_syscall_32+0x77/0xd0 [ 691.158977][T19427] do_SYSENTER_32+0x73/0x90 [ 691.163463][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.169780][T19427] [ 691.172095][T19427] Uninit was stored to memory at: [ 691.177122][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 691.182868][T19427] __msan_chain_origin+0x54/0xa0 [ 691.187808][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 691.192897][T19427] get_compat_msghdr+0x108/0x2b0 [ 691.197815][T19427] do_recvmmsg+0xdc1/0x22d0 [ 691.202311][T19427] __sys_recvmmsg+0x519/0x6f0 [ 691.206971][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.213018][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.219159][T19427] __do_fast_syscall_32+0x127/0x180 [ 691.224428][T19427] do_fast_syscall_32+0x77/0xd0 [ 691.229261][T19427] do_SYSENTER_32+0x73/0x90 [ 691.233752][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.240092][T19427] [ 691.242394][T19427] Uninit was stored to memory at: [ 691.247391][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 691.253097][T19427] __msan_chain_origin+0x54/0xa0 [ 691.258029][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 691.263125][T19427] get_compat_msghdr+0x108/0x2b0 [ 691.268044][T19427] do_recvmmsg+0xdc1/0x22d0 [ 691.272529][T19427] __sys_recvmmsg+0x519/0x6f0 [ 691.277188][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.283249][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.289389][T19427] __do_fast_syscall_32+0x127/0x180 [ 691.294592][T19427] do_fast_syscall_32+0x77/0xd0 [ 691.299430][T19427] do_SYSENTER_32+0x73/0x90 [ 691.303948][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.310261][T19427] [ 691.312570][T19427] Uninit was stored to memory at: [ 691.317562][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 691.323276][T19427] __msan_chain_origin+0x54/0xa0 [ 691.328194][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 691.333286][T19427] get_compat_msghdr+0x108/0x2b0 [ 691.338205][T19427] do_recvmmsg+0xdc1/0x22d0 [ 691.342692][T19427] __sys_recvmmsg+0x519/0x6f0 [ 691.347396][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.353446][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.359582][T19427] __do_fast_syscall_32+0x127/0x180 [ 691.364757][T19427] do_fast_syscall_32+0x77/0xd0 [ 691.369583][T19427] do_SYSENTER_32+0x73/0x90 [ 691.374122][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.380432][T19427] [ 691.382730][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 691.389376][T19427] do_recvmmsg+0xbf/0x22d0 [ 691.393790][T19427] do_recvmmsg+0xbf/0x22d0 [ 691.580428][T19427] not chained 970000 origins [ 691.585053][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 691.593795][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 691.603835][T19427] Call Trace: [ 691.607114][T19427] dump_stack+0x24c/0x2e0 [ 691.611454][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 691.617157][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 691.622532][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 691.628061][T19427] ? kmsan_get_metadata+0x116/0x180 [ 691.633237][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 691.638851][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 691.644895][T19427] ? kmsan_get_metadata+0x116/0x180 [ 691.650170][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 691.655958][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 691.662012][T19427] ? kmsan_get_metadata+0x116/0x180 [ 691.667218][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 691.672831][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 691.678888][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 691.684166][T19427] ? _copy_from_user+0x1fd/0x300 [ 691.689087][T19427] __msan_chain_origin+0x54/0xa0 [ 691.694091][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 691.699193][T19427] get_compat_msghdr+0x108/0x2b0 [ 691.704116][T19427] do_recvmmsg+0xdc1/0x22d0 [ 691.708610][T19427] ? kmsan_get_metadata+0x116/0x180 [ 691.713790][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 691.719407][T19427] ? __msan_poison_alloca+0xec/0x110 [ 691.724697][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 691.729458][T19427] __sys_recvmmsg+0x519/0x6f0 [ 691.734160][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.740232][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.746408][T19427] __do_fast_syscall_32+0x127/0x180 [ 691.751684][T19427] do_fast_syscall_32+0x77/0xd0 [ 691.756521][T19427] do_SYSENTER_32+0x73/0x90 [ 691.761012][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.767352][T19427] RIP: 0023:0xf7fe1549 [ 691.771399][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 691.790987][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 691.799378][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 691.807467][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 691.815427][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 691.823378][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 691.831417][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 691.839380][T19427] Uninit was stored to memory at: [ 691.844398][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 691.850112][T19427] __msan_chain_origin+0x54/0xa0 [ 691.855027][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 691.860119][T19427] get_compat_msghdr+0x108/0x2b0 [ 691.865061][T19427] do_recvmmsg+0xdc1/0x22d0 [ 691.869545][T19427] __sys_recvmmsg+0x519/0x6f0 [ 691.874204][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.880256][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.886415][T19427] __do_fast_syscall_32+0x127/0x180 [ 691.891600][T19427] do_fast_syscall_32+0x77/0xd0 [ 691.896461][T19427] do_SYSENTER_32+0x73/0x90 [ 691.900953][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.907303][T19427] [ 691.909618][T19427] Uninit was stored to memory at: [ 691.914627][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 691.920333][T19427] __msan_chain_origin+0x54/0xa0 [ 691.925291][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 691.930383][T19427] get_compat_msghdr+0x108/0x2b0 [ 691.935322][T19427] do_recvmmsg+0xdc1/0x22d0 [ 691.939806][T19427] __sys_recvmmsg+0x519/0x6f0 [ 691.944481][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 691.950526][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 691.956669][T19427] __do_fast_syscall_32+0x127/0x180 [ 691.961849][T19427] do_fast_syscall_32+0x77/0xd0 [ 691.966717][T19427] do_SYSENTER_32+0x73/0x90 [ 691.971198][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 691.977531][T19427] [ 691.979828][T19427] Uninit was stored to memory at: [ 691.984837][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 691.990791][T19427] __msan_chain_origin+0x54/0xa0 [ 691.995713][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 692.000811][T19427] get_compat_msghdr+0x108/0x2b0 [ 692.005763][T19427] do_recvmmsg+0xdc1/0x22d0 [ 692.010274][T19427] __sys_recvmmsg+0x519/0x6f0 [ 692.014947][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.020998][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.027159][T19427] __do_fast_syscall_32+0x127/0x180 [ 692.032436][T19427] do_fast_syscall_32+0x77/0xd0 [ 692.037274][T19427] do_SYSENTER_32+0x73/0x90 [ 692.041767][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.048111][T19427] [ 692.050413][T19427] Uninit was stored to memory at: [ 692.055415][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 692.061132][T19427] __msan_chain_origin+0x54/0xa0 [ 692.066074][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 692.071173][T19427] get_compat_msghdr+0x108/0x2b0 [ 692.076101][T19427] do_recvmmsg+0xdc1/0x22d0 [ 692.080590][T19427] __sys_recvmmsg+0x519/0x6f0 [ 692.085272][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.091321][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.097461][T19427] __do_fast_syscall_32+0x127/0x180 [ 692.102646][T19427] do_fast_syscall_32+0x77/0xd0 [ 692.107482][T19427] do_SYSENTER_32+0x73/0x90 [ 692.111984][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.118425][T19427] [ 692.120736][T19427] Uninit was stored to memory at: [ 692.125744][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 692.131462][T19427] __msan_chain_origin+0x54/0xa0 [ 692.136379][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 692.141486][T19427] get_compat_msghdr+0x108/0x2b0 [ 692.146458][T19427] do_recvmmsg+0xdc1/0x22d0 [ 692.150944][T19427] __sys_recvmmsg+0x519/0x6f0 [ 692.155600][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.161656][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.167843][T19427] __do_fast_syscall_32+0x127/0x180 [ 692.173047][T19427] do_fast_syscall_32+0x77/0xd0 [ 692.177889][T19427] do_SYSENTER_32+0x73/0x90 [ 692.182372][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.188682][T19427] [ 692.190981][T19427] Uninit was stored to memory at: [ 692.195974][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 692.201684][T19427] __msan_chain_origin+0x54/0xa0 [ 692.206637][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 692.211730][T19427] get_compat_msghdr+0x108/0x2b0 [ 692.216647][T19427] do_recvmmsg+0xdc1/0x22d0 [ 692.221134][T19427] __sys_recvmmsg+0x519/0x6f0 [ 692.225816][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.231866][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.238004][T19427] __do_fast_syscall_32+0x127/0x180 [ 692.243202][T19427] do_fast_syscall_32+0x77/0xd0 [ 692.248036][T19427] do_SYSENTER_32+0x73/0x90 [ 692.252534][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.258844][T19427] [ 692.261148][T19427] Uninit was stored to memory at: [ 692.266157][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 692.271884][T19427] __msan_chain_origin+0x54/0xa0 [ 692.276822][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 692.281915][T19427] get_compat_msghdr+0x108/0x2b0 [ 692.286854][T19427] do_recvmmsg+0xdc1/0x22d0 [ 692.291340][T19427] __sys_recvmmsg+0x519/0x6f0 [ 692.295996][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.302042][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.308198][T19427] __do_fast_syscall_32+0x127/0x180 [ 692.313393][T19427] do_fast_syscall_32+0x77/0xd0 [ 692.318226][T19427] do_SYSENTER_32+0x73/0x90 [ 692.322708][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.329103][T19427] [ 692.331406][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 692.338076][T19427] do_recvmmsg+0xbf/0x22d0 [ 692.342482][T19427] do_recvmmsg+0xbf/0x22d0 [ 692.513970][T19427] not chained 980000 origins [ 692.518575][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 692.527336][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 692.537367][T19427] Call Trace: [ 692.540641][T19427] dump_stack+0x24c/0x2e0 [ 692.544959][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 692.550661][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 692.556044][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 692.561601][T19427] ? kmsan_get_metadata+0x116/0x180 [ 692.566808][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 692.572442][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 692.578519][T19427] ? kmsan_get_metadata+0x116/0x180 [ 692.583700][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 692.589509][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 692.595581][T19427] ? kmsan_get_metadata+0x116/0x180 [ 692.600765][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 692.606376][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 692.612417][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 692.617717][T19427] ? _copy_from_user+0x1fd/0x300 [ 692.622644][T19427] __msan_chain_origin+0x54/0xa0 [ 692.627558][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 692.632648][T19427] get_compat_msghdr+0x108/0x2b0 [ 692.637572][T19427] do_recvmmsg+0xdc1/0x22d0 [ 692.642069][T19427] ? kmsan_get_metadata+0x116/0x180 [ 692.647377][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 692.653035][T19427] ? __msan_poison_alloca+0xec/0x110 [ 692.658737][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 692.663484][T19427] __sys_recvmmsg+0x519/0x6f0 [ 692.668145][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.674279][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.680446][T19427] __do_fast_syscall_32+0x127/0x180 [ 692.685661][T19427] do_fast_syscall_32+0x77/0xd0 [ 692.690534][T19427] do_SYSENTER_32+0x73/0x90 [ 692.695046][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.701459][T19427] RIP: 0023:0xf7fe1549 [ 692.705506][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 692.725091][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 692.733497][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 692.741455][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 692.749410][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 692.757388][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 692.765451][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 692.773417][T19427] Uninit was stored to memory at: [ 692.778431][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 692.784143][T19427] __msan_chain_origin+0x54/0xa0 [ 692.789060][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 692.794158][T19427] get_compat_msghdr+0x108/0x2b0 [ 692.799078][T19427] do_recvmmsg+0xdc1/0x22d0 [ 692.803569][T19427] __sys_recvmmsg+0x519/0x6f0 [ 692.808256][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.814334][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.820602][T19427] __do_fast_syscall_32+0x127/0x180 [ 692.825798][T19427] do_fast_syscall_32+0x77/0xd0 [ 692.830638][T19427] do_SYSENTER_32+0x73/0x90 [ 692.835160][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.841483][T19427] [ 692.843790][T19427] Uninit was stored to memory at: [ 692.848788][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 692.854495][T19427] __msan_chain_origin+0x54/0xa0 [ 692.859436][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 692.864566][T19427] get_compat_msghdr+0x108/0x2b0 [ 692.869488][T19427] do_recvmmsg+0xdc1/0x22d0 [ 692.873991][T19427] __sys_recvmmsg+0x519/0x6f0 [ 692.878652][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.884697][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.890835][T19427] __do_fast_syscall_32+0x127/0x180 [ 692.896076][T19427] do_fast_syscall_32+0x77/0xd0 [ 692.900905][T19427] do_SYSENTER_32+0x73/0x90 [ 692.905415][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.911726][T19427] [ 692.914037][T19427] Uninit was stored to memory at: [ 692.919032][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 692.924737][T19427] __msan_chain_origin+0x54/0xa0 [ 692.929674][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 692.934788][T19427] get_compat_msghdr+0x108/0x2b0 [ 692.939711][T19427] do_recvmmsg+0xdc1/0x22d0 [ 692.944192][T19427] __sys_recvmmsg+0x519/0x6f0 [ 692.948851][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 692.954929][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 692.961069][T19427] __do_fast_syscall_32+0x127/0x180 [ 692.966253][T19427] do_fast_syscall_32+0x77/0xd0 [ 692.971093][T19427] do_SYSENTER_32+0x73/0x90 [ 692.975631][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 692.981961][T19427] [ 692.984320][T19427] Uninit was stored to memory at: [ 692.989344][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 692.995155][T19427] __msan_chain_origin+0x54/0xa0 [ 693.000099][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 693.005190][T19427] get_compat_msghdr+0x108/0x2b0 [ 693.010113][T19427] do_recvmmsg+0xdc1/0x22d0 [ 693.014629][T19427] __sys_recvmmsg+0x519/0x6f0 [ 693.019289][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.025360][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.031500][T19427] __do_fast_syscall_32+0x127/0x180 [ 693.036708][T19427] do_fast_syscall_32+0x77/0xd0 [ 693.041585][T19427] do_SYSENTER_32+0x73/0x90 [ 693.046072][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.052569][T19427] [ 693.054869][T19427] Uninit was stored to memory at: [ 693.059860][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 693.065595][T19427] __msan_chain_origin+0x54/0xa0 [ 693.070513][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 693.075641][T19427] get_compat_msghdr+0x108/0x2b0 [ 693.080555][T19427] do_recvmmsg+0xdc1/0x22d0 [ 693.085041][T19427] __sys_recvmmsg+0x519/0x6f0 [ 693.089716][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.095811][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.101953][T19427] __do_fast_syscall_32+0x127/0x180 [ 693.107156][T19427] do_fast_syscall_32+0x77/0xd0 [ 693.111993][T19427] do_SYSENTER_32+0x73/0x90 [ 693.116612][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.122943][T19427] [ 693.125282][T19427] Uninit was stored to memory at: [ 693.130276][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 693.136022][T19427] __msan_chain_origin+0x54/0xa0 [ 693.140942][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 693.146031][T19427] get_compat_msghdr+0x108/0x2b0 [ 693.150945][T19427] do_recvmmsg+0xdc1/0x22d0 [ 693.155453][T19427] __sys_recvmmsg+0x519/0x6f0 [ 693.160115][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.166164][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.172294][T19427] __do_fast_syscall_32+0x127/0x180 [ 693.177496][T19427] do_fast_syscall_32+0x77/0xd0 [ 693.182323][T19427] do_SYSENTER_32+0x73/0x90 [ 693.186808][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.193251][T19427] [ 693.195554][T19427] Uninit was stored to memory at: [ 693.200566][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 693.206277][T19427] __msan_chain_origin+0x54/0xa0 [ 693.211291][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 693.216402][T19427] get_compat_msghdr+0x108/0x2b0 [ 693.221323][T19427] do_recvmmsg+0xdc1/0x22d0 [ 693.225807][T19427] __sys_recvmmsg+0x519/0x6f0 [ 693.230462][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.236544][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.242687][T19427] __do_fast_syscall_32+0x127/0x180 [ 693.247868][T19427] do_fast_syscall_32+0x77/0xd0 [ 693.252713][T19427] do_SYSENTER_32+0x73/0x90 [ 693.257199][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.263509][T19427] [ 693.265816][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 693.272461][T19427] do_recvmmsg+0xbf/0x22d0 [ 693.276861][T19427] do_recvmmsg+0xbf/0x22d0 [ 693.461544][T19427] not chained 990000 origins [ 693.466131][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 693.474870][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 693.484900][T19427] Call Trace: [ 693.488153][T19427] dump_stack+0x24c/0x2e0 [ 693.492466][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 693.498172][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 693.503533][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 693.509062][T19427] ? kmsan_get_metadata+0x116/0x180 [ 693.514241][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 693.519856][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 693.525915][T19427] ? kmsan_get_metadata+0x116/0x180 [ 693.531097][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 693.537013][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 693.543062][T19427] ? kmsan_get_metadata+0x116/0x180 [ 693.548257][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 693.553868][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 693.559917][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 693.565179][T19427] ? _copy_from_user+0x1fd/0x300 [ 693.570100][T19427] __msan_chain_origin+0x54/0xa0 [ 693.575046][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 693.580164][T19427] get_compat_msghdr+0x108/0x2b0 [ 693.585086][T19427] do_recvmmsg+0xdc1/0x22d0 [ 693.589583][T19427] ? kmsan_get_metadata+0x116/0x180 [ 693.594800][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 693.600429][T19427] ? __msan_poison_alloca+0xec/0x110 [ 693.605746][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 693.610514][T19427] __sys_recvmmsg+0x519/0x6f0 [ 693.615209][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.621284][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.627442][T19427] __do_fast_syscall_32+0x127/0x180 [ 693.632620][T19427] do_fast_syscall_32+0x77/0xd0 [ 693.637483][T19427] do_SYSENTER_32+0x73/0x90 [ 693.641966][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.648273][T19427] RIP: 0023:0xf7fe1549 [ 693.652318][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 693.672190][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 693.680693][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 693.688657][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 693.696608][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 693.704558][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 693.712509][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 693.720477][T19427] Uninit was stored to memory at: [ 693.725473][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 693.731175][T19427] __msan_chain_origin+0x54/0xa0 [ 693.736124][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 693.741220][T19427] get_compat_msghdr+0x108/0x2b0 [ 693.746149][T19427] do_recvmmsg+0xdc1/0x22d0 [ 693.750663][T19427] __sys_recvmmsg+0x519/0x6f0 [ 693.755341][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.761396][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.767564][T19427] __do_fast_syscall_32+0x127/0x180 [ 693.772776][T19427] do_fast_syscall_32+0x77/0xd0 [ 693.777609][T19427] do_SYSENTER_32+0x73/0x90 [ 693.782091][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.788403][T19427] [ 693.790706][T19427] Uninit was stored to memory at: [ 693.795749][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 693.801459][T19427] __msan_chain_origin+0x54/0xa0 [ 693.806403][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 693.811508][T19427] get_compat_msghdr+0x108/0x2b0 [ 693.816451][T19427] do_recvmmsg+0xdc1/0x22d0 [ 693.820937][T19427] __sys_recvmmsg+0x519/0x6f0 [ 693.825600][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.831668][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.837823][T19427] __do_fast_syscall_32+0x127/0x180 [ 693.842999][T19427] do_fast_syscall_32+0x77/0xd0 [ 693.847833][T19427] do_SYSENTER_32+0x73/0x90 [ 693.852322][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.858667][T19427] [ 693.860965][T19427] Uninit was stored to memory at: [ 693.865960][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 693.871658][T19427] __msan_chain_origin+0x54/0xa0 [ 693.876603][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 693.881706][T19427] get_compat_msghdr+0x108/0x2b0 [ 693.886622][T19427] do_recvmmsg+0xdc1/0x22d0 [ 693.891129][T19427] __sys_recvmmsg+0x519/0x6f0 [ 693.896243][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.902293][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.908426][T19427] __do_fast_syscall_32+0x127/0x180 [ 693.913615][T19427] do_fast_syscall_32+0x77/0xd0 [ 693.918451][T19427] do_SYSENTER_32+0x73/0x90 [ 693.922947][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.929266][T19427] [ 693.931567][T19427] Uninit was stored to memory at: [ 693.936569][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 693.942266][T19427] __msan_chain_origin+0x54/0xa0 [ 693.947208][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 693.952295][T19427] get_compat_msghdr+0x108/0x2b0 [ 693.957237][T19427] do_recvmmsg+0xdc1/0x22d0 [ 693.961718][T19427] __sys_recvmmsg+0x519/0x6f0 [ 693.966371][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 693.972435][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 693.978639][T19427] __do_fast_syscall_32+0x127/0x180 [ 693.983865][T19427] do_fast_syscall_32+0x77/0xd0 [ 693.988698][T19427] do_SYSENTER_32+0x73/0x90 [ 693.993189][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 693.999510][T19427] [ 694.001818][T19427] Uninit was stored to memory at: [ 694.006811][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 694.012528][T19427] __msan_chain_origin+0x54/0xa0 [ 694.017451][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 694.022541][T19427] get_compat_msghdr+0x108/0x2b0 [ 694.027504][T19427] do_recvmmsg+0xdc1/0x22d0 [ 694.031988][T19427] __sys_recvmmsg+0x519/0x6f0 [ 694.036665][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.042721][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.048864][T19427] __do_fast_syscall_32+0x127/0x180 [ 694.054142][T19427] do_fast_syscall_32+0x77/0xd0 [ 694.058989][T19427] do_SYSENTER_32+0x73/0x90 [ 694.063494][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.069809][T19427] [ 694.072135][T19427] Uninit was stored to memory at: [ 694.077237][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 694.082949][T19427] __msan_chain_origin+0x54/0xa0 [ 694.087887][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 694.092980][T19427] get_compat_msghdr+0x108/0x2b0 [ 694.097916][T19427] do_recvmmsg+0xdc1/0x22d0 [ 694.102398][T19427] __sys_recvmmsg+0x519/0x6f0 [ 694.107053][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.113192][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.119333][T19427] __do_fast_syscall_32+0x127/0x180 [ 694.124581][T19427] do_fast_syscall_32+0x77/0xd0 [ 694.129416][T19427] do_SYSENTER_32+0x73/0x90 [ 694.133934][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.140385][T19427] [ 694.142701][T19427] Uninit was stored to memory at: [ 694.147690][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 694.153407][T19427] __msan_chain_origin+0x54/0xa0 [ 694.158333][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 694.163429][T19427] get_compat_msghdr+0x108/0x2b0 [ 694.168346][T19427] do_recvmmsg+0xdc1/0x22d0 [ 694.172831][T19427] __sys_recvmmsg+0x519/0x6f0 [ 694.177509][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.183557][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.189701][T19427] __do_fast_syscall_32+0x127/0x180 [ 694.194904][T19427] do_fast_syscall_32+0x77/0xd0 [ 694.199740][T19427] do_SYSENTER_32+0x73/0x90 [ 694.204248][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.210557][T19427] [ 694.212869][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 694.219528][T19427] do_recvmmsg+0xbf/0x22d0 [ 694.223949][T19427] do_recvmmsg+0xbf/0x22d0 [ 694.253054][ T3129] ieee802154 phy0 wpan0: encryption failed: -22 [ 694.259597][ T3129] ieee802154 phy1 wpan1: encryption failed: -22 [ 694.427157][T19427] not chained 1000000 origins [ 694.431842][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 694.440585][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 694.450634][T19427] Call Trace: [ 694.453890][T19427] dump_stack+0x24c/0x2e0 [ 694.458206][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 694.463903][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 694.469268][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 694.474814][T19427] ? kmsan_get_metadata+0x116/0x180 [ 694.479993][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 694.485625][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 694.491667][T19427] ? kmsan_get_metadata+0x116/0x180 [ 694.496838][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 694.502644][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 694.508697][T19427] ? kmsan_get_metadata+0x116/0x180 [ 694.513875][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 694.519515][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 694.525634][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 694.530908][T19427] ? _copy_from_user+0x1fd/0x300 [ 694.535852][T19427] __msan_chain_origin+0x54/0xa0 [ 694.540777][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 694.545906][T19427] get_compat_msghdr+0x108/0x2b0 [ 694.550847][T19427] do_recvmmsg+0xdc1/0x22d0 [ 694.555334][T19427] ? kmsan_get_metadata+0x116/0x180 [ 694.560517][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 694.566152][T19427] ? __msan_poison_alloca+0xec/0x110 [ 694.571415][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 694.576165][T19427] __sys_recvmmsg+0x519/0x6f0 [ 694.580834][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.586961][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.593100][T19427] __do_fast_syscall_32+0x127/0x180 [ 694.598281][T19427] do_fast_syscall_32+0x77/0xd0 [ 694.603111][T19427] do_SYSENTER_32+0x73/0x90 [ 694.607598][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.613911][T19427] RIP: 0023:0xf7fe1549 [ 694.617967][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 694.637563][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 694.646054][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 694.654048][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 694.662078][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 694.670036][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 694.678007][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 694.685961][T19427] Uninit was stored to memory at: [ 694.690958][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 694.696686][T19427] __msan_chain_origin+0x54/0xa0 [ 694.701643][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 694.706770][T19427] get_compat_msghdr+0x108/0x2b0 [ 694.711690][T19427] do_recvmmsg+0xdc1/0x22d0 [ 694.716195][T19427] __sys_recvmmsg+0x519/0x6f0 [ 694.720861][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.726947][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.733117][T19427] __do_fast_syscall_32+0x127/0x180 [ 694.738349][T19427] do_fast_syscall_32+0x77/0xd0 [ 694.743213][T19427] do_SYSENTER_32+0x73/0x90 [ 694.747735][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.754043][T19427] [ 694.756344][T19427] Uninit was stored to memory at: [ 694.761337][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 694.767059][T19427] __msan_chain_origin+0x54/0xa0 [ 694.771984][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 694.777075][T19427] get_compat_msghdr+0x108/0x2b0 [ 694.781994][T19427] do_recvmmsg+0xdc1/0x22d0 [ 694.786515][T19427] __sys_recvmmsg+0x519/0x6f0 [ 694.791168][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.797219][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.803397][T19427] __do_fast_syscall_32+0x127/0x180 [ 694.808631][T19427] do_fast_syscall_32+0x77/0xd0 [ 694.813501][T19427] do_SYSENTER_32+0x73/0x90 [ 694.818023][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.824349][T19427] [ 694.826650][T19427] Uninit was stored to memory at: [ 694.831643][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 694.837381][T19427] __msan_chain_origin+0x54/0xa0 [ 694.842485][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 694.847586][T19427] get_compat_msghdr+0x108/0x2b0 [ 694.852498][T19427] do_recvmmsg+0xdc1/0x22d0 [ 694.856988][T19427] __sys_recvmmsg+0x519/0x6f0 [ 694.861660][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.867754][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.873897][T19427] __do_fast_syscall_32+0x127/0x180 [ 694.879081][T19427] do_fast_syscall_32+0x77/0xd0 [ 694.883911][T19427] do_SYSENTER_32+0x73/0x90 [ 694.888396][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.894705][T19427] [ 694.897004][T19427] Uninit was stored to memory at: [ 694.902000][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 694.907830][T19427] __msan_chain_origin+0x54/0xa0 [ 694.912771][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 694.917872][T19427] get_compat_msghdr+0x108/0x2b0 [ 694.922789][T19427] do_recvmmsg+0xdc1/0x22d0 [ 694.927278][T19427] __sys_recvmmsg+0x519/0x6f0 [ 694.932125][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 694.938178][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 694.944345][T19427] __do_fast_syscall_32+0x127/0x180 [ 694.949576][T19427] do_fast_syscall_32+0x77/0xd0 [ 694.954449][T19427] do_SYSENTER_32+0x73/0x90 [ 694.958929][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 694.965236][T19427] [ 694.967564][T19427] Uninit was stored to memory at: [ 694.972558][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 694.978282][T19427] __msan_chain_origin+0x54/0xa0 [ 694.983238][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 694.988329][T19427] get_compat_msghdr+0x108/0x2b0 [ 694.993456][T19427] do_recvmmsg+0xdc1/0x22d0 [ 694.998006][T19427] __sys_recvmmsg+0x519/0x6f0 [ 695.002678][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.008721][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.014851][T19427] __do_fast_syscall_32+0x127/0x180 [ 695.020034][T19427] do_fast_syscall_32+0x77/0xd0 [ 695.024889][T19427] do_SYSENTER_32+0x73/0x90 [ 695.029376][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.035710][T19427] [ 695.038013][T19427] Uninit was stored to memory at: [ 695.043003][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 695.048728][T19427] __msan_chain_origin+0x54/0xa0 [ 695.053641][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 695.058756][T19427] get_compat_msghdr+0x108/0x2b0 [ 695.063673][T19427] do_recvmmsg+0xdc1/0x22d0 [ 695.068160][T19427] __sys_recvmmsg+0x519/0x6f0 [ 695.072824][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.078873][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.085010][T19427] __do_fast_syscall_32+0x127/0x180 [ 695.090207][T19427] do_fast_syscall_32+0x77/0xd0 [ 695.095037][T19427] do_SYSENTER_32+0x73/0x90 [ 695.099520][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.105847][T19427] [ 695.108144][T19427] Uninit was stored to memory at: [ 695.113128][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 695.118825][T19427] __msan_chain_origin+0x54/0xa0 [ 695.123755][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 695.128848][T19427] get_compat_msghdr+0x108/0x2b0 [ 695.133766][T19427] do_recvmmsg+0xdc1/0x22d0 [ 695.138269][T19427] __sys_recvmmsg+0x519/0x6f0 [ 695.142922][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.148977][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.155104][T19427] __do_fast_syscall_32+0x127/0x180 [ 695.160283][T19427] do_fast_syscall_32+0x77/0xd0 [ 695.165136][T19427] do_SYSENTER_32+0x73/0x90 [ 695.169630][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.175938][T19427] [ 695.178239][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 695.184880][T19427] do_recvmmsg+0xbf/0x22d0 [ 695.189275][T19427] do_recvmmsg+0xbf/0x22d0 [ 695.354658][T19427] not chained 1010000 origins [ 695.359420][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 695.368210][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 695.378270][T19427] Call Trace: [ 695.381533][T19427] dump_stack+0x24c/0x2e0 [ 695.385852][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 695.391582][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 695.396971][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 695.402511][T19427] ? kmsan_get_metadata+0x116/0x180 [ 695.407693][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 695.413311][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 695.419390][T19427] ? kmsan_get_metadata+0x116/0x180 [ 695.424593][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 695.430402][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 695.436476][T19427] ? kmsan_get_metadata+0x116/0x180 [ 695.441916][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 695.447531][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 695.453576][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 695.458842][T19427] ? _copy_from_user+0x1fd/0x300 [ 695.463763][T19427] __msan_chain_origin+0x54/0xa0 [ 695.468696][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 695.473790][T19427] get_compat_msghdr+0x108/0x2b0 [ 695.478711][T19427] do_recvmmsg+0xdc1/0x22d0 [ 695.483198][T19427] ? kmsan_get_metadata+0x116/0x180 [ 695.488508][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 695.494117][T19427] ? __msan_poison_alloca+0xec/0x110 [ 695.499386][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 695.504152][T19427] __sys_recvmmsg+0x519/0x6f0 [ 695.508814][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.514867][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.521018][T19427] __do_fast_syscall_32+0x127/0x180 [ 695.526236][T19427] do_fast_syscall_32+0x77/0xd0 [ 695.531075][T19427] do_SYSENTER_32+0x73/0x90 [ 695.535583][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.541895][T19427] RIP: 0023:0xf7fe1549 [ 695.545954][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 695.565630][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 695.574032][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 695.581986][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 695.589935][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 695.597899][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 695.605891][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 695.613878][T19427] Uninit was stored to memory at: [ 695.618872][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 695.624571][T19427] __msan_chain_origin+0x54/0xa0 [ 695.629490][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 695.634614][T19427] get_compat_msghdr+0x108/0x2b0 [ 695.639571][T19427] do_recvmmsg+0xdc1/0x22d0 [ 695.644060][T19427] __sys_recvmmsg+0x519/0x6f0 [ 695.648720][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.654769][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.660908][T19427] __do_fast_syscall_32+0x127/0x180 [ 695.666124][T19427] do_fast_syscall_32+0x77/0xd0 [ 695.670957][T19427] do_SYSENTER_32+0x73/0x90 [ 695.675469][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.681785][T19427] [ 695.684099][T19427] Uninit was stored to memory at: [ 695.689107][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 695.694836][T19427] __msan_chain_origin+0x54/0xa0 [ 695.699774][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 695.704867][T19427] get_compat_msghdr+0x108/0x2b0 [ 695.709786][T19427] do_recvmmsg+0xdc1/0x22d0 [ 695.714293][T19427] __sys_recvmmsg+0x519/0x6f0 [ 695.718950][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.724996][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.731129][T19427] __do_fast_syscall_32+0x127/0x180 [ 695.736340][T19427] do_fast_syscall_32+0x77/0xd0 [ 695.741182][T19427] do_SYSENTER_32+0x73/0x90 [ 695.745696][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.752012][T19427] [ 695.754329][T19427] Uninit was stored to memory at: [ 695.759326][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 695.765049][T19427] __msan_chain_origin+0x54/0xa0 [ 695.769992][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 695.775132][T19427] get_compat_msghdr+0x108/0x2b0 [ 695.780052][T19427] do_recvmmsg+0xdc1/0x22d0 [ 695.784538][T19427] __sys_recvmmsg+0x519/0x6f0 [ 695.789195][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.795247][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.801397][T19427] __do_fast_syscall_32+0x127/0x180 [ 695.806579][T19427] do_fast_syscall_32+0x77/0xd0 [ 695.811436][T19427] do_SYSENTER_32+0x73/0x90 [ 695.815955][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.822262][T19427] [ 695.824566][T19427] Uninit was stored to memory at: [ 695.829561][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 695.835303][T19427] __msan_chain_origin+0x54/0xa0 [ 695.840223][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 695.845317][T19427] get_compat_msghdr+0x108/0x2b0 [ 695.850237][T19427] do_recvmmsg+0xdc1/0x22d0 [ 695.854753][T19427] __sys_recvmmsg+0x519/0x6f0 [ 695.859456][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.865553][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.871809][T19427] __do_fast_syscall_32+0x127/0x180 [ 695.877016][T19427] do_fast_syscall_32+0x77/0xd0 [ 695.881857][T19427] do_SYSENTER_32+0x73/0x90 [ 695.886340][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.892666][T19427] [ 695.894976][T19427] Uninit was stored to memory at: [ 695.899967][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 695.905667][T19427] __msan_chain_origin+0x54/0xa0 [ 695.910697][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 695.915830][T19427] get_compat_msghdr+0x108/0x2b0 [ 695.920748][T19427] do_recvmmsg+0xdc1/0x22d0 [ 695.925322][T19427] __sys_recvmmsg+0x519/0x6f0 [ 695.929987][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 695.936063][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 695.942200][T19427] __do_fast_syscall_32+0x127/0x180 [ 695.947392][T19427] do_fast_syscall_32+0x77/0xd0 [ 695.952234][T19427] do_SYSENTER_32+0x73/0x90 [ 695.956756][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 695.963078][T19427] [ 695.965384][T19427] Uninit was stored to memory at: [ 695.970380][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 695.976106][T19427] __msan_chain_origin+0x54/0xa0 [ 695.981061][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 695.986159][T19427] get_compat_msghdr+0x108/0x2b0 [ 695.991096][T19427] do_recvmmsg+0xdc1/0x22d0 [ 695.995605][T19427] __sys_recvmmsg+0x519/0x6f0 [ 696.000269][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.006360][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.012499][T19427] __do_fast_syscall_32+0x127/0x180 [ 696.017681][T19427] do_fast_syscall_32+0x77/0xd0 [ 696.022513][T19427] do_SYSENTER_32+0x73/0x90 [ 696.027003][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.033337][T19427] [ 696.035638][T19427] Uninit was stored to memory at: [ 696.040631][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 696.046335][T19427] __msan_chain_origin+0x54/0xa0 [ 696.051255][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 696.056409][T19427] get_compat_msghdr+0x108/0x2b0 [ 696.061331][T19427] do_recvmmsg+0xdc1/0x22d0 [ 696.065816][T19427] __sys_recvmmsg+0x519/0x6f0 [ 696.070479][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.076552][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.082702][T19427] __do_fast_syscall_32+0x127/0x180 [ 696.087895][T19427] do_fast_syscall_32+0x77/0xd0 [ 696.092729][T19427] do_SYSENTER_32+0x73/0x90 [ 696.097215][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.103546][T19427] [ 696.105850][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 696.112493][T19427] do_recvmmsg+0xbf/0x22d0 [ 696.116890][T19427] do_recvmmsg+0xbf/0x22d0 [ 696.288510][T19427] not chained 1020000 origins [ 696.293225][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 696.302021][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 696.312070][T19427] Call Trace: [ 696.315330][T19427] dump_stack+0x24c/0x2e0 [ 696.319660][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 696.325377][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 696.330739][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 696.336296][T19427] ? kmsan_get_metadata+0x116/0x180 [ 696.341479][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 696.347094][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 696.353143][T19427] ? kmsan_get_metadata+0x116/0x180 [ 696.358323][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 696.364111][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 696.370173][T19427] ? kmsan_get_metadata+0x116/0x180 [ 696.375390][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 696.381016][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 696.387064][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 696.392334][T19427] ? _copy_from_user+0x1fd/0x300 [ 696.397278][T19427] __msan_chain_origin+0x54/0xa0 [ 696.402199][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 696.407320][T19427] get_compat_msghdr+0x108/0x2b0 [ 696.412248][T19427] do_recvmmsg+0xdc1/0x22d0 [ 696.416740][T19427] ? kmsan_get_metadata+0x116/0x180 [ 696.421943][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 696.427555][T19427] ? __msan_poison_alloca+0xec/0x110 [ 696.432817][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 696.437564][T19427] __sys_recvmmsg+0x519/0x6f0 [ 696.442231][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.448274][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.454416][T19427] __do_fast_syscall_32+0x127/0x180 [ 696.459616][T19427] do_fast_syscall_32+0x77/0xd0 [ 696.464480][T19427] do_SYSENTER_32+0x73/0x90 [ 696.468995][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.475339][T19427] RIP: 0023:0xf7fe1549 [ 696.479492][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 696.499188][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 696.507581][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 696.515534][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 696.523520][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 696.531477][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 696.539457][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 696.547446][T19427] Uninit was stored to memory at: [ 696.552440][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 696.558148][T19427] __msan_chain_origin+0x54/0xa0 [ 696.563078][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 696.568176][T19427] get_compat_msghdr+0x108/0x2b0 [ 696.573093][T19427] do_recvmmsg+0xdc1/0x22d0 [ 696.577575][T19427] __sys_recvmmsg+0x519/0x6f0 [ 696.582225][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.588372][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.594503][T19427] __do_fast_syscall_32+0x127/0x180 [ 696.599679][T19427] do_fast_syscall_32+0x77/0xd0 [ 696.604507][T19427] do_SYSENTER_32+0x73/0x90 [ 696.608987][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.615288][T19427] [ 696.617584][T19427] Uninit was stored to memory at: [ 696.622573][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 696.628293][T19427] __msan_chain_origin+0x54/0xa0 [ 696.633207][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 696.638307][T19427] get_compat_msghdr+0x108/0x2b0 [ 696.643222][T19427] do_recvmmsg+0xdc1/0x22d0 [ 696.647730][T19427] __sys_recvmmsg+0x519/0x6f0 [ 696.652380][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.658422][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.664553][T19427] __do_fast_syscall_32+0x127/0x180 [ 696.669739][T19427] do_fast_syscall_32+0x77/0xd0 [ 696.674681][T19427] do_SYSENTER_32+0x73/0x90 [ 696.679162][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.685491][T19427] [ 696.687791][T19427] Uninit was stored to memory at: [ 696.692799][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 696.698505][T19427] __msan_chain_origin+0x54/0xa0 [ 696.703418][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 696.708519][T19427] get_compat_msghdr+0x108/0x2b0 [ 696.713458][T19427] do_recvmmsg+0xdc1/0x22d0 [ 696.717968][T19427] __sys_recvmmsg+0x519/0x6f0 [ 696.722628][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.728698][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.734865][T19427] __do_fast_syscall_32+0x127/0x180 [ 696.740195][T19427] do_fast_syscall_32+0x77/0xd0 [ 696.745033][T19427] do_SYSENTER_32+0x73/0x90 [ 696.749526][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.755861][T19427] [ 696.758162][T19427] Uninit was stored to memory at: [ 696.763151][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 696.768853][T19427] __msan_chain_origin+0x54/0xa0 [ 696.773787][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 696.778884][T19427] get_compat_msghdr+0x108/0x2b0 [ 696.783810][T19427] do_recvmmsg+0xdc1/0x22d0 [ 696.788294][T19427] __sys_recvmmsg+0x519/0x6f0 [ 696.792950][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.799000][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.805137][T19427] __do_fast_syscall_32+0x127/0x180 [ 696.810346][T19427] do_fast_syscall_32+0x77/0xd0 [ 696.815205][T19427] do_SYSENTER_32+0x73/0x90 [ 696.819688][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.825997][T19427] [ 696.828297][T19427] Uninit was stored to memory at: [ 696.833287][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 696.838987][T19427] __msan_chain_origin+0x54/0xa0 [ 696.843901][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 696.848996][T19427] get_compat_msghdr+0x108/0x2b0 [ 696.853913][T19427] do_recvmmsg+0xdc1/0x22d0 [ 696.858401][T19427] __sys_recvmmsg+0x519/0x6f0 [ 696.863059][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.869107][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.875328][T19427] __do_fast_syscall_32+0x127/0x180 [ 696.880541][T19427] do_fast_syscall_32+0x77/0xd0 [ 696.885390][T19427] do_SYSENTER_32+0x73/0x90 [ 696.889878][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.896202][T19427] [ 696.898499][T19427] Uninit was stored to memory at: [ 696.903541][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 696.909251][T19427] __msan_chain_origin+0x54/0xa0 [ 696.914173][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 696.919269][T19427] get_compat_msghdr+0x108/0x2b0 [ 696.924210][T19427] do_recvmmsg+0xdc1/0x22d0 [ 696.928696][T19427] __sys_recvmmsg+0x519/0x6f0 [ 696.933380][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 696.939434][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 696.945596][T19427] __do_fast_syscall_32+0x127/0x180 [ 696.950780][T19427] do_fast_syscall_32+0x77/0xd0 [ 696.955633][T19427] do_SYSENTER_32+0x73/0x90 [ 696.960115][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 696.966426][T19427] [ 696.968725][T19427] Uninit was stored to memory at: [ 696.973715][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 696.979425][T19427] __msan_chain_origin+0x54/0xa0 [ 696.984369][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 696.989473][T19427] get_compat_msghdr+0x108/0x2b0 [ 696.994507][T19427] do_recvmmsg+0xdc1/0x22d0 [ 696.998989][T19427] __sys_recvmmsg+0x519/0x6f0 [ 697.003703][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.009767][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.015931][T19427] __do_fast_syscall_32+0x127/0x180 [ 697.021114][T19427] do_fast_syscall_32+0x77/0xd0 [ 697.025954][T19427] do_SYSENTER_32+0x73/0x90 [ 697.030450][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.036784][T19427] [ 697.039088][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 697.045777][T19427] do_recvmmsg+0xbf/0x22d0 [ 697.050181][T19427] do_recvmmsg+0xbf/0x22d0 [ 697.231095][T19427] not chained 1030000 origins [ 697.235772][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 697.244547][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 697.254590][T19427] Call Trace: [ 697.257857][T19427] dump_stack+0x24c/0x2e0 [ 697.262183][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 697.267912][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 697.273279][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 697.278808][T19427] ? kmsan_get_metadata+0x116/0x180 [ 697.283994][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 697.289635][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 697.295703][T19427] ? kmsan_get_metadata+0x116/0x180 [ 697.300887][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 697.306702][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 697.312767][T19427] ? kmsan_get_metadata+0x116/0x180 [ 697.317952][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 697.323585][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 697.329636][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 697.334908][T19427] ? _copy_from_user+0x1fd/0x300 [ 697.339853][T19427] __msan_chain_origin+0x54/0xa0 [ 697.344793][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 697.349929][T19427] get_compat_msghdr+0x108/0x2b0 [ 697.354917][T19427] do_recvmmsg+0xdc1/0x22d0 [ 697.359470][T19427] ? kmsan_get_metadata+0x116/0x180 [ 697.364687][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 697.370327][T19427] ? __msan_poison_alloca+0xec/0x110 [ 697.375662][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 697.380452][T19427] __sys_recvmmsg+0x519/0x6f0 [ 697.385211][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.391334][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.397549][T19427] __do_fast_syscall_32+0x127/0x180 [ 697.402831][T19427] do_fast_syscall_32+0x77/0xd0 [ 697.407772][T19427] do_SYSENTER_32+0x73/0x90 [ 697.412284][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.418623][T19427] RIP: 0023:0xf7fe1549 [ 697.422671][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 697.442261][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 697.450684][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 697.458654][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 697.466608][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 697.474593][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 697.482560][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 697.490521][T19427] Uninit was stored to memory at: [ 697.495529][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 697.501249][T19427] __msan_chain_origin+0x54/0xa0 [ 697.506193][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 697.511292][T19427] get_compat_msghdr+0x108/0x2b0 [ 697.516238][T19427] do_recvmmsg+0xdc1/0x22d0 [ 697.520728][T19427] __sys_recvmmsg+0x519/0x6f0 [ 697.525409][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.531474][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.537609][T19427] __do_fast_syscall_32+0x127/0x180 [ 697.542787][T19427] do_fast_syscall_32+0x77/0xd0 [ 697.547624][T19427] do_SYSENTER_32+0x73/0x90 [ 697.552121][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.558430][T19427] [ 697.560733][T19427] Uninit was stored to memory at: [ 697.565740][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 697.571439][T19427] __msan_chain_origin+0x54/0xa0 [ 697.576358][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 697.581468][T19427] get_compat_msghdr+0x108/0x2b0 [ 697.586423][T19427] do_recvmmsg+0xdc1/0x22d0 [ 697.590915][T19427] __sys_recvmmsg+0x519/0x6f0 [ 697.595589][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.601638][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.607801][T19427] __do_fast_syscall_32+0x127/0x180 [ 697.612995][T19427] do_fast_syscall_32+0x77/0xd0 [ 697.617830][T19427] do_SYSENTER_32+0x73/0x90 [ 697.622315][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.628654][T19427] [ 697.630956][T19427] Uninit was stored to memory at: [ 697.635951][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 697.641661][T19427] __msan_chain_origin+0x54/0xa0 [ 697.646596][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 697.651701][T19427] get_compat_msghdr+0x108/0x2b0 [ 697.656616][T19427] do_recvmmsg+0xdc1/0x22d0 [ 697.661104][T19427] __sys_recvmmsg+0x519/0x6f0 [ 697.665787][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.671837][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.677991][T19427] __do_fast_syscall_32+0x127/0x180 [ 697.683173][T19427] do_fast_syscall_32+0x77/0xd0 [ 697.688003][T19427] do_SYSENTER_32+0x73/0x90 [ 697.692488][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.698835][T19427] [ 697.701140][T19427] Uninit was stored to memory at: [ 697.706145][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 697.711858][T19427] __msan_chain_origin+0x54/0xa0 [ 697.716775][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 697.721866][T19427] get_compat_msghdr+0x108/0x2b0 [ 697.726808][T19427] do_recvmmsg+0xdc1/0x22d0 [ 697.731300][T19427] __sys_recvmmsg+0x519/0x6f0 [ 697.736068][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.742122][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.748284][T19427] __do_fast_syscall_32+0x127/0x180 [ 697.753511][T19427] do_fast_syscall_32+0x77/0xd0 [ 697.758346][T19427] do_SYSENTER_32+0x73/0x90 [ 697.762844][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.769194][T19427] [ 697.771518][T19427] Uninit was stored to memory at: [ 697.776532][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 697.782260][T19427] __msan_chain_origin+0x54/0xa0 [ 697.787182][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 697.792277][T19427] get_compat_msghdr+0x108/0x2b0 [ 697.797208][T19427] do_recvmmsg+0xdc1/0x22d0 [ 697.801695][T19427] __sys_recvmmsg+0x519/0x6f0 [ 697.806364][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.812606][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.818748][T19427] __do_fast_syscall_32+0x127/0x180 [ 697.824019][T19427] do_fast_syscall_32+0x77/0xd0 [ 697.828858][T19427] do_SYSENTER_32+0x73/0x90 [ 697.833351][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.839676][T19427] [ 697.841996][T19427] Uninit was stored to memory at: [ 697.847015][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 697.852748][T19427] __msan_chain_origin+0x54/0xa0 [ 697.857695][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 697.862789][T19427] get_compat_msghdr+0x108/0x2b0 [ 697.867706][T19427] do_recvmmsg+0xdc1/0x22d0 [ 697.872204][T19427] __sys_recvmmsg+0x519/0x6f0 [ 697.876884][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.882933][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.889071][T19427] __do_fast_syscall_32+0x127/0x180 [ 697.894252][T19427] do_fast_syscall_32+0x77/0xd0 [ 697.899091][T19427] do_SYSENTER_32+0x73/0x90 [ 697.903579][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.909896][T19427] [ 697.912212][T19427] Uninit was stored to memory at: [ 697.917218][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 697.922929][T19427] __msan_chain_origin+0x54/0xa0 [ 697.927858][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 697.933084][T19427] get_compat_msghdr+0x108/0x2b0 [ 697.938027][T19427] do_recvmmsg+0xdc1/0x22d0 [ 697.942533][T19427] __sys_recvmmsg+0x519/0x6f0 [ 697.947194][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 697.953262][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 697.959425][T19427] __do_fast_syscall_32+0x127/0x180 [ 697.964676][T19427] do_fast_syscall_32+0x77/0xd0 [ 697.969511][T19427] do_SYSENTER_32+0x73/0x90 [ 697.974023][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 697.980386][T19427] [ 697.982686][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 697.989335][T19427] do_recvmmsg+0xbf/0x22d0 [ 697.993750][T19427] do_recvmmsg+0xbf/0x22d0 [ 698.209224][T19427] not chained 1040000 origins [ 698.213915][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 698.222691][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 698.232726][T19427] Call Trace: [ 698.236017][T19427] dump_stack+0x24c/0x2e0 [ 698.240368][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 698.246123][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 698.251495][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 698.257051][T19427] ? kmsan_get_metadata+0x116/0x180 [ 698.262234][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 698.267873][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 698.273923][T19427] ? kmsan_get_metadata+0x116/0x180 [ 698.279109][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 698.284900][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 698.290977][T19427] ? kmsan_get_metadata+0x116/0x180 [ 698.296157][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 698.301774][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 698.307849][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 698.313139][T19427] ? _copy_from_user+0x1fd/0x300 [ 698.318062][T19427] __msan_chain_origin+0x54/0xa0 [ 698.322982][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 698.328081][T19427] get_compat_msghdr+0x108/0x2b0 [ 698.333002][T19427] do_recvmmsg+0xdc1/0x22d0 [ 698.337495][T19427] ? kmsan_get_metadata+0x116/0x180 [ 698.342674][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 698.348301][T19427] ? __msan_poison_alloca+0xec/0x110 [ 698.353594][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 698.358340][T19427] __sys_recvmmsg+0x519/0x6f0 [ 698.363002][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.369067][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.375205][T19427] __do_fast_syscall_32+0x127/0x180 [ 698.380393][T19427] do_fast_syscall_32+0x77/0xd0 [ 698.385369][T19427] do_SYSENTER_32+0x73/0x90 [ 698.389862][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.396201][T19427] RIP: 0023:0xf7fe1549 [ 698.400271][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 698.419890][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 698.428315][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 698.436270][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 698.444225][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 698.452176][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 698.460129][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 698.468105][T19427] Uninit was stored to memory at: [ 698.473101][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 698.478803][T19427] __msan_chain_origin+0x54/0xa0 [ 698.483720][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 698.488818][T19427] get_compat_msghdr+0x108/0x2b0 [ 698.493732][T19427] do_recvmmsg+0xdc1/0x22d0 [ 698.498218][T19427] __sys_recvmmsg+0x519/0x6f0 [ 698.502875][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.508950][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.515085][T19427] __do_fast_syscall_32+0x127/0x180 [ 698.520273][T19427] do_fast_syscall_32+0x77/0xd0 [ 698.525128][T19427] do_SYSENTER_32+0x73/0x90 [ 698.529612][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.535918][T19427] [ 698.538229][T19427] Uninit was stored to memory at: [ 698.543218][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 698.548916][T19427] __msan_chain_origin+0x54/0xa0 [ 698.553826][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 698.558918][T19427] get_compat_msghdr+0x108/0x2b0 [ 698.563844][T19427] do_recvmmsg+0xdc1/0x22d0 [ 698.568366][T19427] __sys_recvmmsg+0x519/0x6f0 [ 698.573058][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.579144][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.585307][T19427] __do_fast_syscall_32+0x127/0x180 [ 698.590526][T19427] do_fast_syscall_32+0x77/0xd0 [ 698.595356][T19427] do_SYSENTER_32+0x73/0x90 [ 698.599839][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.606187][T19427] [ 698.608502][T19427] Uninit was stored to memory at: [ 698.613501][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 698.619226][T19427] __msan_chain_origin+0x54/0xa0 [ 698.624164][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 698.629266][T19427] get_compat_msghdr+0x108/0x2b0 [ 698.634182][T19427] do_recvmmsg+0xdc1/0x22d0 [ 698.638668][T19427] __sys_recvmmsg+0x519/0x6f0 [ 698.643324][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.649375][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.655531][T19427] __do_fast_syscall_32+0x127/0x180 [ 698.660712][T19427] do_fast_syscall_32+0x77/0xd0 [ 698.665582][T19427] do_SYSENTER_32+0x73/0x90 [ 698.670067][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.676434][T19427] [ 698.678736][T19427] Uninit was stored to memory at: [ 698.683731][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 698.689438][T19427] __msan_chain_origin+0x54/0xa0 [ 698.694374][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 698.699471][T19427] get_compat_msghdr+0x108/0x2b0 [ 698.704411][T19427] do_recvmmsg+0xdc1/0x22d0 [ 698.708910][T19427] __sys_recvmmsg+0x519/0x6f0 [ 698.713588][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.719644][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.725802][T19427] __do_fast_syscall_32+0x127/0x180 [ 698.731020][T19427] do_fast_syscall_32+0x77/0xd0 [ 698.735853][T19427] do_SYSENTER_32+0x73/0x90 [ 698.740341][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.746677][T19427] [ 698.748974][T19427] Uninit was stored to memory at: [ 698.753965][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 698.759669][T19427] __msan_chain_origin+0x54/0xa0 [ 698.764602][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 698.769703][T19427] get_compat_msghdr+0x108/0x2b0 [ 698.774651][T19427] do_recvmmsg+0xdc1/0x22d0 [ 698.779177][T19427] __sys_recvmmsg+0x519/0x6f0 [ 698.783842][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.789908][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.796080][T19427] __do_fast_syscall_32+0x127/0x180 [ 698.801264][T19427] do_fast_syscall_32+0x77/0xd0 [ 698.806128][T19427] do_SYSENTER_32+0x73/0x90 [ 698.810637][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.817033][T19427] [ 698.819338][T19427] Uninit was stored to memory at: [ 698.824341][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 698.830053][T19427] __msan_chain_origin+0x54/0xa0 [ 698.834993][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 698.840106][T19427] get_compat_msghdr+0x108/0x2b0 [ 698.845024][T19427] do_recvmmsg+0xdc1/0x22d0 [ 698.849534][T19427] __sys_recvmmsg+0x519/0x6f0 [ 698.854226][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.860282][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.866442][T19427] __do_fast_syscall_32+0x127/0x180 [ 698.871633][T19427] do_fast_syscall_32+0x77/0xd0 [ 698.876529][T19427] do_SYSENTER_32+0x73/0x90 [ 698.881027][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.887365][T19427] [ 698.889667][T19427] Uninit was stored to memory at: [ 698.894689][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 698.900455][T19427] __msan_chain_origin+0x54/0xa0 [ 698.905376][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 698.910474][T19427] get_compat_msghdr+0x108/0x2b0 [ 698.915416][T19427] do_recvmmsg+0xdc1/0x22d0 [ 698.919911][T19427] __sys_recvmmsg+0x519/0x6f0 [ 698.924574][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 698.930656][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 698.936821][T19427] __do_fast_syscall_32+0x127/0x180 [ 698.942008][T19427] do_fast_syscall_32+0x77/0xd0 [ 698.946866][T19427] do_SYSENTER_32+0x73/0x90 [ 698.951354][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 698.957699][T19427] [ 698.960115][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 698.966846][T19427] do_recvmmsg+0xbf/0x22d0 [ 698.971250][T19427] do_recvmmsg+0xbf/0x22d0 [ 699.142340][T19427] not chained 1050000 origins [ 699.147031][T19427] CPU: 0 PID: 19427 Comm: syz-executor.5 Not tainted 5.12.0-rc6-syzkaller #0 [ 699.155771][T19427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 699.165848][T19427] Call Trace: [ 699.169104][T19427] dump_stack+0x24c/0x2e0 [ 699.173463][T19427] kmsan_internal_chain_origin+0x6f/0x130 [ 699.179166][T19427] ? __skb_datagram_iter+0x3cb/0x1210 [ 699.184523][T19427] ? skb_copy_datagram_iter+0x200/0x200 [ 699.190055][T19427] ? kmsan_get_metadata+0x116/0x180 [ 699.195235][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 699.200846][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 699.206919][T19427] ? kmsan_get_metadata+0x116/0x180 [ 699.212101][T19427] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 699.218078][T19427] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 699.224126][T19427] ? kmsan_get_metadata+0x116/0x180 [ 699.229311][T19427] ? kmsan_set_origin_checked+0xa2/0x100 [ 699.234941][T19427] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 699.240992][T19427] ? kmsan_unpoison_shadow+0x74/0xa0 [ 699.246281][T19427] ? _copy_from_user+0x1fd/0x300 [ 699.251197][T19427] __msan_chain_origin+0x54/0xa0 [ 699.256111][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 699.261209][T19427] get_compat_msghdr+0x108/0x2b0 [ 699.266154][T19427] do_recvmmsg+0xdc1/0x22d0 [ 699.271083][T19427] ? kmsan_get_metadata+0x116/0x180 [ 699.276278][T19427] ? kmsan_internal_set_origin+0x82/0xc0 [ 699.281911][T19427] ? __msan_poison_alloca+0xec/0x110 [ 699.287211][T19427] ? __sys_recvmmsg+0xb5/0x6f0 [ 699.291969][T19427] __sys_recvmmsg+0x519/0x6f0 [ 699.296639][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.302691][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.308826][T19427] __do_fast_syscall_32+0x127/0x180 [ 699.314005][T19427] do_fast_syscall_32+0x77/0xd0 [ 699.318838][T19427] do_SYSENTER_32+0x73/0x90 [ 699.323318][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.329627][T19427] RIP: 0023:0xf7fe1549 [ 699.333674][T19427] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 699.353264][T19427] RSP: 002b:00000000f55db5fc EFLAGS: 00000296 ORIG_RAX: 0000000000000151 [ 699.361657][T19427] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003680 [ 699.369633][T19427] RDX: 00000000ffffff17 RSI: 0000000000000022 RDI: 0000000000000000 [ 699.377577][T19427] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 699.385523][T19427] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 699.393478][T19427] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 699.401435][T19427] Uninit was stored to memory at: [ 699.406445][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 699.412142][T19427] __msan_chain_origin+0x54/0xa0 [ 699.417054][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 699.422152][T19427] get_compat_msghdr+0x108/0x2b0 [ 699.427082][T19427] do_recvmmsg+0xdc1/0x22d0 [ 699.431566][T19427] __sys_recvmmsg+0x519/0x6f0 [ 699.436224][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.442275][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.448460][T19427] __do_fast_syscall_32+0x127/0x180 [ 699.453656][T19427] do_fast_syscall_32+0x77/0xd0 [ 699.458598][T19427] do_SYSENTER_32+0x73/0x90 [ 699.463076][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.469386][T19427] [ 699.471695][T19427] Uninit was stored to memory at: [ 699.476688][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 699.482387][T19427] __msan_chain_origin+0x54/0xa0 [ 699.487302][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 699.492392][T19427] get_compat_msghdr+0x108/0x2b0 [ 699.497343][T19427] do_recvmmsg+0xdc1/0x22d0 [ 699.501830][T19427] __sys_recvmmsg+0x519/0x6f0 [ 699.506520][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.512571][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.518707][T19427] __do_fast_syscall_32+0x127/0x180 [ 699.523975][T19427] do_fast_syscall_32+0x77/0xd0 [ 699.528813][T19427] do_SYSENTER_32+0x73/0x90 [ 699.533296][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.539610][T19427] [ 699.541923][T19427] Uninit was stored to memory at: [ 699.546926][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 699.552626][T19427] __msan_chain_origin+0x54/0xa0 [ 699.557541][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 699.562646][T19427] get_compat_msghdr+0x108/0x2b0 [ 699.567565][T19427] do_recvmmsg+0xdc1/0x22d0 [ 699.572047][T19427] __sys_recvmmsg+0x519/0x6f0 [ 699.576701][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.582742][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.588875][T19427] __do_fast_syscall_32+0x127/0x180 [ 699.594052][T19427] do_fast_syscall_32+0x77/0xd0 [ 699.598886][T19427] do_SYSENTER_32+0x73/0x90 [ 699.603370][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.609705][T19427] [ 699.612002][T19427] Uninit was stored to memory at: [ 699.616988][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 699.622684][T19427] __msan_chain_origin+0x54/0xa0 [ 699.627598][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 699.632684][T19427] get_compat_msghdr+0x108/0x2b0 [ 699.637602][T19427] do_recvmmsg+0xdc1/0x22d0 [ 699.642087][T19427] __sys_recvmmsg+0x519/0x6f0 [ 699.646749][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.652792][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.658922][T19427] __do_fast_syscall_32+0x127/0x180 [ 699.664114][T19427] do_fast_syscall_32+0x77/0xd0 [ 699.668947][T19427] do_SYSENTER_32+0x73/0x90 [ 699.673426][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.679752][T19427] [ 699.682064][T19427] Uninit was stored to memory at: [ 699.687069][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 699.692773][T19427] __msan_chain_origin+0x54/0xa0 [ 699.697690][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 699.702778][T19427] get_compat_msghdr+0x108/0x2b0 [ 699.707696][T19427] do_recvmmsg+0xdc1/0x22d0 [ 699.712180][T19427] __sys_recvmmsg+0x519/0x6f0 [ 699.716867][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.722915][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.729052][T19427] __do_fast_syscall_32+0x127/0x180 [ 699.734251][T19427] do_fast_syscall_32+0x77/0xd0 [ 699.739083][T19427] do_SYSENTER_32+0x73/0x90 [ 699.743586][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.749900][T19427] [ 699.752200][T19427] Uninit was stored to memory at: [ 699.757194][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 699.762896][T19427] __msan_chain_origin+0x54/0xa0 [ 699.767833][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 699.772947][T19427] get_compat_msghdr+0x108/0x2b0 [ 699.777884][T19427] do_recvmmsg+0xdc1/0x22d0 [ 699.782369][T19427] __sys_recvmmsg+0x519/0x6f0 [ 699.787024][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.793097][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.799250][T19427] __do_fast_syscall_32+0x127/0x180 [ 699.804434][T19427] do_fast_syscall_32+0x77/0xd0 [ 699.809268][T19427] do_SYSENTER_32+0x73/0x90 [ 699.813772][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.820095][T19427] [ 699.822410][T19427] Uninit was stored to memory at: [ 699.827536][T19427] kmsan_internal_chain_origin+0xad/0x130 [ 699.833237][T19427] __msan_chain_origin+0x54/0xa0 [ 699.838153][T19427] __get_compat_msghdr+0x6db/0x9d0 [ 699.843242][T19427] get_compat_msghdr+0x108/0x2b0 [ 699.848181][T19427] do_recvmmsg+0xdc1/0x22d0 [ 699.852686][T19427] __sys_recvmmsg+0x519/0x6f0 [ 699.857366][T19427] __se_compat_sys_recvmmsg_time32+0xfb/0x120 [ 699.863416][T19427] __ia32_compat_sys_recvmmsg_time32+0x62/0x80 [ 699.869556][T19427] __do_fast_syscall_32+0x127/0x180 [ 699.874823][T19427] do_fast_syscall_32+0x77/0xd0 [ 699.879658][T19427] do_SYSENTER_32+0x73/0x90 [ 699.884178][T19427] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 699.890500][T19427] [ 699.892814][T19427] Local variable ----msg_sys@do_recvmmsg created at: [ 699.899460][T19427] do_recvmmsg+0xbf/0x22d0 [ 699.904014][T19427] do_recvmmsg+0xbf/0x22d0 08:15:26 executing program 5: request_key(&(0x7f0000000100)='logon\x00', &(0x7f0000000600)={'syz', 0x0}, 0x0, 0xfffffffffffffffd) 08:15:26 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0xea0, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:26 executing program 4: fork() waitid(0x2, 0x0, 0x0, 0x7, 0x0) 08:15:26 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x2}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:26 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x5, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{0x3}]}]}, {0x0, [0x0, 0x0, 0x5f]}}, &(0x7f00000000c0)=""/200, 0x31, 0xc8, 0x1}, 0x20) 08:15:26 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e10000008877007200300700a6ffffff00000000008000da", 0x3e, 0x1c0}]) [ 700.642124][T19522] loop3: detected capacity change from 0 to 1 [ 700.771888][T19522] Dev loop3: unable to read RDB block 1 [ 700.777943][T19522] loop3: unable to read partition table 08:15:27 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x5, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{0x3, 0xc7000000}]}]}, {0x0, [0x0, 0x0, 0x5f]}}, &(0x7f00000000c0)=""/200, 0x31, 0xc8, 0x1}, 0x20) [ 700.820601][T19522] loop3: partition table beyond EOD, truncated [ 700.827012][T19522] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) 08:15:27 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@func_proto={0x0, 0x3, 0x0, 0xd, 0x0, [{}, {}, {}]}]}}, &(0x7f0000000140)=""/148, 0x3e, 0x94, 0x1}, 0x20) 08:15:27 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e10000008877007200300700a6ffffff00000000008000da", 0x3e, 0x1c0}]) 08:15:27 executing program 0: socketpair(0xa, 0x1, 0xffffff01, &(0x7f0000000000)) 08:15:27 executing program 4: syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {{0x9, 0x5, 0x82, 0x5, 0x20}}}}}]}}]}}, 0x0) [ 701.656120][T19542] loop3: detected capacity change from 0 to 1 08:15:27 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x502, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) [ 701.754302][T19542] Dev loop3: unable to read RDB block 1 [ 701.760292][T19542] loop3: unable to read partition table [ 701.851134][T19542] loop3: partition table beyond EOD, truncated [ 701.857496][T19542] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) [ 702.353559][T10082] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 702.721377][T10082] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 702.890994][T10082] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 702.900455][T10082] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 702.908583][T10082] usb 5-1: Product: syz [ 702.913031][T10082] usb 5-1: Manufacturer: syz [ 702.918571][T10082] usb 5-1: SerialNumber: syz [ 703.046066][T10082] cdc_ether: probe of 5-1:1.0 failed with error -22 [ 703.341664][T10082] usb 5-1: USB disconnect, device number 2 [ 704.474708][ T471] device hsr_slave_0 left promiscuous mode [ 704.486857][ T471] device hsr_slave_1 left promiscuous mode [ 704.495730][ T471] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 704.503918][ T471] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 704.513116][ T471] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 704.520812][ T471] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 704.529058][ T471] device bridge_slave_1 left promiscuous mode [ 704.535941][ T471] bridge0: port 2(bridge_slave_1) entered disabled state [ 704.546643][ T471] device bridge_slave_0 left promiscuous mode [ 704.554581][ T471] bridge0: port 1(bridge_slave_0) entered disabled state [ 704.568711][ T471] device veth1_macvtap left promiscuous mode [ 704.575087][ T471] device veth0_macvtap left promiscuous mode [ 704.581545][ T471] device veth1_vlan left promiscuous mode [ 704.587368][ T471] device veth0_vlan left promiscuous mode [ 706.503952][ T471] team0 (unregistering): Port device team_slave_1 removed [ 706.518527][ T471] team0 (unregistering): Port device team_slave_0 removed [ 706.534884][ T471] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 706.552299][ T471] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 706.617202][ T471] bond0 (unregistering): Released all slaves [ 706.706691][T19575] IPVS: ftp: loaded support on port[0] = 21 [ 706.902959][T19575] chnl_net:caif_netlink_parms(): no params data found [ 707.000993][T19575] bridge0: port 1(bridge_slave_0) entered blocking state [ 707.008409][T19575] bridge0: port 1(bridge_slave_0) entered disabled state [ 707.019143][T19575] device bridge_slave_0 entered promiscuous mode [ 707.032180][T19575] bridge0: port 2(bridge_slave_1) entered blocking state [ 707.040856][T19575] bridge0: port 2(bridge_slave_1) entered disabled state [ 707.050469][T19575] device bridge_slave_1 entered promiscuous mode [ 707.112140][T19575] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 707.148940][T19575] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 707.203206][T19575] team0: Port device team_slave_0 added [ 707.225299][T19575] team0: Port device team_slave_1 added [ 707.275592][T19575] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 707.282892][T19575] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 707.309978][T19575] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 707.333961][T19575] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 707.341304][T19575] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 707.367771][T19575] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 707.381534][ T8462] Bluetooth: hci5: command 0x0409 tx timeout [ 707.441368][T19575] device hsr_slave_0 entered promiscuous mode [ 707.451512][T19575] device hsr_slave_1 entered promiscuous mode [ 707.461141][T19575] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 707.468780][T19575] Cannot create hsr debugfs directory [ 707.738620][T19575] bridge0: port 2(bridge_slave_1) entered blocking state [ 707.746192][T19575] bridge0: port 2(bridge_slave_1) entered forwarding state [ 707.754102][T19575] bridge0: port 1(bridge_slave_0) entered blocking state [ 707.761610][T19575] bridge0: port 1(bridge_slave_0) entered forwarding state [ 707.775506][ T8462] bridge0: port 1(bridge_slave_0) entered disabled state [ 707.784050][ T8462] bridge0: port 2(bridge_slave_1) entered disabled state [ 707.873482][T19575] 8021q: adding VLAN 0 to HW filter on device bond0 [ 707.894924][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 707.904394][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 707.920781][T19575] 8021q: adding VLAN 0 to HW filter on device team0 [ 707.937876][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 707.947712][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 707.957124][ T18] bridge0: port 1(bridge_slave_0) entered blocking state [ 707.964612][ T18] bridge0: port 1(bridge_slave_0) entered forwarding state [ 707.983862][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 707.993673][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 708.003017][ T8462] bridge0: port 2(bridge_slave_1) entered blocking state [ 708.010349][ T8462] bridge0: port 2(bridge_slave_1) entered forwarding state [ 708.031426][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 708.042019][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 708.071119][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 708.082065][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 708.091589][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 708.101923][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 708.116266][ T8467] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 708.131894][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 708.142450][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 708.181389][T19575] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 708.194750][T19575] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 708.205556][ T8467] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 708.215548][ T8467] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 708.255841][ T8467] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 708.264125][ T8467] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 708.287736][T19575] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 708.394000][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 708.404235][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 708.455328][T19575] device veth0_vlan entered promiscuous mode [ 708.463085][ T8467] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 708.472905][ T8467] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 708.485786][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 708.495001][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 708.515269][T19575] device veth1_vlan entered promiscuous mode [ 708.560686][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 708.569893][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 708.579122][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 708.589083][ T8462] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 708.605581][T19575] device veth0_macvtap entered promiscuous mode [ 708.618772][T19575] device veth1_macvtap entered promiscuous mode [ 708.647671][T19575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 708.659514][T19575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 708.669942][T19575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 708.680680][T19575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 708.690756][T19575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 708.701401][T19575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 708.711464][T19575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 708.722050][T19575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 708.732080][T19575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 708.742681][T19575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 708.755702][T19575] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 708.767388][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 708.777048][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 708.786539][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 708.796521][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 708.822147][T19575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 708.832962][T19575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 708.844517][T19575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 708.855270][T19575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 708.865352][T19575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 708.876101][T19575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 708.886188][T19575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 708.896894][T19575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 708.906969][T19575] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 708.917678][T19575] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 708.931633][T19575] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 708.941519][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 708.951527][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 709.243020][ T498] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 709.252178][ T498] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 709.278779][ T8467] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 709.322414][ T8] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 709.330544][ T8] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 709.338608][ T8468] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 709.455161][ T8467] Bluetooth: hci5: command 0x041b tx timeout 08:15:35 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f0000000280)={0x17, 0xffff, 0x0, 0x5}, 0x40) 08:15:35 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x3}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:35 executing program 0: recvmmsg(0xffffffffffffffff, &(0x7f000000a280)=[{{0x0, 0x0, &(0x7f00000001c0)=[{0x0}], 0x1}}], 0x1, 0x0, 0x0) keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000000000)=""/1, 0x1) 08:15:35 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e10000008877007200300700a6ffffff00000000008000da55", 0x3f, 0x1c0}]) 08:15:35 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x504, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:35 executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0x1, &(0x7f0000000600)=@raw=[@jmp={0x5, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x10}], &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) [ 709.738328][T19826] loop3: detected capacity change from 0 to 1 [ 709.810139][T19826] Dev loop3: unable to read RDB block 1 [ 709.815971][T19826] loop3: unable to read partition table [ 709.844722][T19826] loop3: partition table beyond EOD, truncated 08:15:36 executing program 0: bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000080)={0x200}, 0x8) [ 709.852686][T19826] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) 08:15:36 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x505, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:36 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x3, 0x0, 0x4}, 0x40) 08:15:36 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x4}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:36 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e10000008877007200300700a6ffffff00000000008000da55", 0x3f, 0x1c0}]) 08:15:36 executing program 5: socketpair(0xa, 0x2, 0x0, &(0x7f0000000040)) 08:15:36 executing program 0: bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000300)={0xffffffffffffffff, 0x14, 0x0, 0x0, 0x0}, 0x20) [ 710.646331][T19851] loop3: detected capacity change from 0 to 1 [ 710.836467][T19851] Dev loop3: unable to read RDB block 1 [ 710.842725][T19851] loop3: unable to read partition table 08:15:37 executing program 4: bpf$BPF_BTF_LOAD(0x8, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x20) [ 710.879799][T19851] loop3: partition table beyond EOD, truncated [ 710.886123][T19851] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) 08:15:37 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x5}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:37 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001280)=[{0x0}, {&(0x7f0000000b40)={0x28, 0x1a, 0xcb001091e2ef245f, 0x0, 0x0, "", [@nested={0x15, 0x0, 0x0, 0x1, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @generic="fc7b6ca04e97f97f46"]}]}, 0x28}], 0x2}, 0x0) 08:15:37 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e10000008877007200300700a6ffffff00000000008000da55", 0x3f, 0x1c0}]) 08:15:37 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@array={0x0, 0x2}]}}, &(0x7f0000000140)=""/148, 0x32, 0x94, 0x1}, 0x20) 08:15:37 executing program 4: bpf$BPF_BTF_LOAD(0x4, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x20) [ 711.623133][T19878] loop3: detected capacity change from 0 to 1 [ 711.630985][T10082] Bluetooth: hci5: command 0x040f tx timeout [ 711.734422][T19878] Dev loop3: unable to read RDB block 1 [ 711.740661][T19878] loop3: unable to read partition table [ 711.765869][T19878] loop3: partition table beyond EOD, truncated [ 711.772613][T19878] loop_reread_partitions: partition scan of loop3 () failed (rc=-5) 08:15:38 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x506, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:38 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct={0x0, 0x0, 0x0, 0xf}]}}, &(0x7f00000000c0)=""/200, 0x26, 0xc8, 0x1}, 0x20) 08:15:38 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x6}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:38 executing program 4: capset(&(0x7f0000000300)={0x19980330}, &(0x7f0000000340)) bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0) 08:15:38 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e10000008877007200300700a6ffffff00000000008000da55aa", 0x40}]) 08:15:38 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x1a, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/200, 0x1a, 0xc8, 0x1}, 0x20) 08:15:38 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001280)=[{&(0x7f0000000b40)={0x28, 0x1a, 0xcb001091e2ef245f, 0x0, 0x0, "", [@nested={0x15, 0x0, 0x0, 0x1, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @generic="fc7b6ca04e97f97f46"]}]}, 0x28}], 0x1}, 0x0) 08:15:38 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="4c00000025002d1c0000fd55bb80a8f49183f60001"], 0x4c}}, 0x0) 08:15:38 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x508, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:38 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e10000008877007200300700a6ffffff00000000008000da55aa", 0x40}]) 08:15:38 executing program 0: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x9, 0x3, &(0x7f0000000600)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5}}, &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:15:38 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x7}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) [ 712.748244][T19914] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'. 08:15:39 executing program 5: waitid(0x3, 0x0, 0x0, 0x7, 0x0) 08:15:39 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0xa, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000180)=""/188, 0x1a, 0xbc, 0x1}, 0x20) 08:15:39 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x509, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:39 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0xd, 0x0, 0x0, [{}]}]}}, &(0x7f00000000c0)=""/200, 0x32, 0xc8, 0x1}, 0x20) 08:15:39 executing program 3: syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f00000000c0)="020185ffffff0a000000ff45ac0000ffffff85000800000000000000024000ffffff82000000e10000008877007200300700a6ffffff00000000008000da55aa", 0x40}]) 08:15:39 executing program 5: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/consoles\x00', 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000ffffffff0000000000000000850000003f00000095"], &(0x7f0000000080)='syzkaller\x00', 0x7, 0x82, &(0x7f00000000c0)=""/130, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000001c0), 0x10}, 0x78) 08:15:39 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x8}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:39 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x5, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{0x3, 0x1000000}]}]}, {0x0, [0x0, 0x0, 0x5f]}}, &(0x7f00000000c0)=""/200, 0x31, 0xc8, 0x1}, 0x20) [ 713.681554][T10082] Bluetooth: hci5: command 0x0419 tx timeout 08:15:40 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB="28000000160011002dbd7000fbdbdf250a"], 0x28}}, 0x0) 08:15:40 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x50a, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:40 executing program 5: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@func={0x1000000}]}}, &(0x7f0000000180)=""/188, 0x26, 0xbc, 0x1}, 0x20) 08:15:40 executing program 4: unshare(0x24040600) r0 = socket(0x18, 0x0, 0x1) getsockopt$inet6_mreq(r0, 0x111, 0x0, 0x0, 0x0) [ 714.443819][T19966] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'. 08:15:40 executing program 3: nanosleep(&(0x7f0000001200)={0x0, 0x3938700}, 0x0) r0 = fork() sched_rr_get_interval(r0, 0x0) 08:15:40 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x9}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:40 executing program 0: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x2, &(0x7f0000000000)=@raw=[@jmp, @ldst={0x3, 0x0, 0x3}], &(0x7f0000000080)='syzkaller\x00', 0x5, 0xc5, &(0x7f00000000c0)=""/197, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:15:41 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x50b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:41 executing program 5: waitid(0x2, 0xffffffffffffffff, 0x0, 0x2, 0x0) 08:15:41 executing program 4: clock_gettime(0x73f3da0eb7016ec9, 0x0) 08:15:41 executing program 3: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x11, 0x3, &(0x7f0000000600)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x3, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:15:41 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x5, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{0x4}]}]}, {0x0, [0x0, 0x0, 0x0]}}, &(0x7f00000000c0)=""/200, 0x35, 0xc8, 0x1}, 0x20) 08:15:41 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0xf}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:41 executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x9, 0x3, &(0x7f0000000600)=@framed={{0x61}}, &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:15:42 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void, @void}}}, 0x33fe0}}, 0x0) 08:15:42 executing program 3: bpf$BPF_BTF_LOAD(0x6, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x20) 08:15:42 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000005e80)={0x0, 0x0, &(0x7f0000005e00)=[{&(0x7f0000005dc0)={0x20, 0x21, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @typed={0x8, 0x0, 0x0, 0x0, @uid}]}, 0x20}], 0x1}, 0x0) 08:15:42 executing program 4: bpf$BPF_BTF_LOAD(0x13, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x20) 08:15:42 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x50c, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:42 executing program 5: syz_usb_connect$printer(0x2, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x7, 0x1, 0x0, 0x0, "", {{}, [{{0x9, 0x5, 0x82, 0x2, 0x8}}]}}}]}}]}}, 0x0) 08:15:42 executing program 3: bpf$BPF_BTF_LOAD(0xf, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x1}, 0x20) 08:15:42 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x60}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:42 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f0000000280)={0x17}, 0x40) 08:15:43 executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x9, 0x3, &(0x7f0000000600)=@framed={{0x18, 0x0, 0x0, 0x0, 0x700}}, &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:15:43 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x50d, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:43 executing program 3: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x64, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000180)=""/188, 0x1a, 0xbc, 0x1}, 0x20) 08:15:43 executing program 0: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x5, [@func]}, {0x0, [0x0, 0x0, 0x0]}}, &(0x7f0000000180)=""/188, 0x5f5e0ff, 0xbc}, 0x20) [ 717.209629][ T4683] usb 6-1: new full-speed USB device number 2 using dummy_hcd 08:15:43 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0xb0}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:43 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB="28000000180011002dbd7000fbdbdf250a"], 0x28}}, 0x0) [ 717.570641][ T4683] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 08:15:43 executing program 3: bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000140)={{0xeb9f, 0x2, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000180)=""/188, 0x1a, 0xbc, 0x1}, 0x20) 08:15:43 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$inet6(r0, &(0x7f0000000200)={&(0x7f0000000000)={0xa, 0x4e21, 0x0, @dev}, 0x1c, 0x0}, 0x20000010) [ 717.740906][ T4683] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 717.750330][ T4683] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 717.758507][ T4683] usb 6-1: Product: syz [ 717.764211][ T4683] usb 6-1: Manufacturer: syz [ 717.768930][ T4683] usb 6-1: SerialNumber: syz 08:15:44 executing program 5: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmallocinfo\x00', 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x0) 08:15:44 executing program 4: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x9, 0x3, &(0x7f0000000600)=@framed={{0x18, 0x0, 0x0, 0x2000}}, &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:15:44 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_RESET_LINK_STATS(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050028bd7000ffdbdf2501000000000000000c4100000014001462726f6164636173742d6c696e6b"], 0x30}}, 0x0) 08:15:44 executing program 3: bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x9, 0x3, &(0x7f0000000600)=@framed, &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0xf8000000, 0x0, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) [ 718.374280][ T5] usb 6-1: USB disconnect, device number 2 08:15:44 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x50e, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:44 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:44 executing program 4: bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{}]}]}}, &(0x7f00000000c0)=""/200, 0x32, 0xc8, 0x1}, 0x20) 08:15:45 executing program 0: clone(0x80048200, 0x0, 0x0, 0x0, 0x0) 08:15:45 executing program 3: r0 = shmget(0xffffffffffffffff, 0x3000, 0x0, &(0x7f0000ffd000/0x3000)=nil) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x4000) shmctl$IPC_RMID(r0, 0x0) 08:15:45 executing program 5: futex(&(0x7f0000000100)=0x2, 0x8, 0x0, 0x0, 0x0, 0x0) 08:15:45 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x50f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:45 executing program 4: socketpair(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, 0x0, 0x0) 08:15:45 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x2}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:45 executing program 0: syz_emit_ethernet(0x6f, &(0x7f0000000000)={@link_local, @local, @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x1, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@generic={0x0, 0x2}]}}, @time_exceeded={0xb, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote, @loopback}}}}}}, 0x0) 08:15:45 executing program 3: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000004b40), 0x0, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000000)) ioctl$PPPIOCGDEBUG(r0, 0x80047441, &(0x7f0000000080)) 08:15:45 executing program 5: setrlimit(0x2, &(0x7f00000000c0)) 08:15:46 executing program 4: socket$inet(0x2, 0x3, 0x7) socket$nl_generic(0x10, 0x3, 0x10) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fd/4\x00') 08:15:46 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000080)={0x0, @in={0x2, 0x0, @broadcast}, @in, @ipx={0x4, 0x0, 0x0, "2e6b36fc98fa"}, 0x7}) 08:15:46 executing program 5: syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @remote, @val={@void}, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x6c, 0x0, @rand_addr, @empty}, "e84dfd36"}}}}, 0x0) 08:15:46 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x3}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:46 executing program 4: getrandom(0xfffffffffffffffe, 0x0, 0x2) 08:15:46 executing program 5: r0 = add_key$keyring(&(0x7f0000000140), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key$keyring(&(0x7f0000000500), &(0x7f0000000540)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, r0) keyctl$link(0x8, r0, r1) 08:15:47 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x510, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:47 executing program 4: syz_emit_ethernet(0x46, &(0x7f0000000000)={@local, @remote, @void, {@ipv4={0x800, @dccp={{0xa, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x21, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr=0x64010100, {[@lsrr={0x83, 0xf, 0xc5, [@remote, @private, @remote]}, @timestamp={0x44, 0x4}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f9c74f", 0x0, "0cf8da"}}}}}}, 0x0) 08:15:47 executing program 0: waitid(0x0, 0x0, 0x0, 0xfda9ae5cf8266859, 0x0) 08:15:47 executing program 3: recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000003340)={0x0, 0x3938700}) 08:15:47 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x4}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:47 executing program 5: socket(0x2, 0x0, 0x8001) 08:15:47 executing program 4: syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @remote, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x2, @remote, @multicast2, @multicast, @loopback}}}}, 0x0) 08:15:47 executing program 3: pipe(&(0x7f0000000000)={0xffffffffffffffff}) socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_ACCT_NEW(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x20}}, 0x0) write$binfmt_misc(0xffffffffffffffff, 0x0, 0x4240a2f6) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendmsg$AUDIT_USER(r0, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x34, 0x3ed, 0x569d0e09accca398, 0x70bd27, 0x25dfdbfb, "d9e75a9d4d556ec2a77bf12245f71219db688b14808d85f00c354f3619e7ece8bc", ["", "", "", "", "", "", ""]}, 0x34}, 0x1, 0x0, 0x0, 0x2004c010}, 0x5) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f00000001c0)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x8000000006}]}, 0x10) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x240540c3, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) 08:15:48 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x511, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:48 executing program 0: syz_emit_ethernet(0x83, &(0x7f0000000540)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "3d571c", 0x4d, 0x6, 0x0, @remote, @mcast2, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}, {"666f3def3dd3eabd4a3a810bc3b872fbdb2574dd380016fb8dbf28b06d5ac8fe8b89db0e6ba36c4208eaf328d85f26c817a9826c03000000e4"}}}}}}}, 0x0) 08:15:48 executing program 5: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/vlan/vlan1\x00') 08:15:48 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x5}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:48 executing program 4: r0 = socket(0x2, 0x3, 0x9) connect$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random="7c4e8b444d90"}, 0x14) 08:15:48 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000001000)='net/rpc\x00') ioctl$PPPIOCATTACH(r0, 0x4004743d, 0x0) 08:15:48 executing program 3: r0 = socket(0x2, 0x3, 0x9) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000000c0)=@req={0x28, &(0x7f0000000080)={'wg1\x00', @ifru_settings={0x0, 0x0, @te1=0x0}}}) 08:15:48 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x7040, 0x0) 08:15:49 executing program 4: syz_emit_ethernet(0x46, &(0x7f00000001c0)={@multicast, @local, @void, {@ipv4={0x800, @icmp={{0x7, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @dev, @private=0xa010101, {[@timestamp_addr={0x44, 0x4, 0x3c}, @timestamp={0x44, 0x4}]}}, @time_exceeded={0xb, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote, @loopback}}}}}}, 0x0) 08:15:49 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) r1 = socket(0x10, 0x803, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x3c}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r4, @ANYBLOB="a465f90000000000140012000c000100627269646765"], 0x34}}, 0x0) sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="400000001400b59500000000000000000a000000", @ANYRES32=r4, @ANYBLOB="1400020000000000000000000000ffff00000000140001"], 0x40}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_MTU={0x8, 0x4, 0x7f}]}, 0x28}}, 0x0) 08:15:49 executing program 3: openat(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x0, 0x0) 08:15:49 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x514, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:49 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x6}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:49 executing program 5: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000002700), 0x0, 0x0) write$ppp(r0, 0x0, 0x0) [ 723.555414][T20223] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 723.573128][T20223] device bridge2 entered promiscuous mode 08:15:49 executing program 4: syz_emit_ethernet(0x2a, &(0x7f0000000140)={@link_local, @local, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x1, @empty, @dev={0xac, 0x14, 0x14, 0x40}, @broadcast, @rand_addr=0x64010100}}}}, 0x0) [ 723.761168][T20223] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. 08:15:50 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x14, 0x1, 0x2, 0x101}, 0x14}}, 0x0) recvmmsg(r0, &(0x7f0000003600)=[{{0x0, 0x0, &(0x7f0000001ec0)=[{0x0}, {&(0x7f0000001e00)=""/52, 0x34}], 0x2}}], 0x1, 0x0, 0x0) [ 723.810115][T20223] device bridge3 entered promiscuous mode 08:15:50 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x515, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:50 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000480)="4411ae8956869ef03d414417a7f5c5b2", 0x10) 08:15:50 executing program 5: modify_ldt$read_default(0x2, &(0x7f0000000180)=""/136, 0x88) 08:15:50 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x7}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:50 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f00000014c0)={&(0x7f0000000140)=@abs, 0x6e, 0x0}, 0x0) 08:15:50 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000000)={@in6={{0xa, 0x0, 0x0, @mcast1}}, 0x0, 0x0, 0x6, 0x0, "1c1b3862d2d15a90d82c08ec603204be8858355c4aca083e157f0c25ce342602a023428771ced9c3836e6f3fa7d37c395598088568bc7cb90e8ab2cdaf427074d8d4994ce33f144d8fd1fdbc8c5ea3ca"}, 0xd8) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x0, 0x0, @mcast1}}, 0x0, 0x0, 0x0, 0x0, "c2ec136b155bfad8554c4091290000ab9cb5012d0cd3d69cb4418938ff2af865ec2bffbefadad06705a29b5233620138ab8ed16390f865e6b474bc152be77cde8ac6be5b47fe8e6d4313de4f44d5937c"}, 0xd8) 08:15:50 executing program 5: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/protocols\x00') 08:15:51 executing program 4: writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff080004000000282459801be8ff09a0d1c631d249d263b2298814afdcc8de", 0x4c}], 0x1) r0 = socket$inet(0x2, 0xa, 0x0) close(r0) r1 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r1, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) sendmmsg$sock(r0, &(0x7f0000000140)=[{{&(0x7f00000001c0)=@ieee802154, 0x80, 0x0}}], 0x1, 0x0) 08:15:51 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_buf(r0, 0x0, 0x10, &(0x7f0000000000), 0x0) 08:15:51 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_buf(r0, 0x0, 0x11, &(0x7f0000000000)="10", 0x1) 08:15:51 executing program 0: timer_create(0x3, 0x0, &(0x7f0000001340)) timer_settime(0x0, 0x0, &(0x7f0000001380)={{}, {0x77359400}}, 0x0) clock_gettime(0x0, &(0x7f0000001400)={0x0, 0x0}) timer_create(0x3, 0x0, &(0x7f0000000200)=0x0) timer_settime(r1, 0x0, &(0x7f0000001440)={{0x77359400}, {0x0, r0+60000000}}, 0x0) 08:15:51 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x519, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:51 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x8}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:51 executing program 4: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000d40)='sessionid\x00') ioctl$PPPIOCSMRU1(r0, 0x40047452, 0x0) 08:15:51 executing program 3: r0 = socket$netlink(0x10, 0x3, 0xa) sendmsg$IPVS_CMD_GET_INFO(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x34, 0x0, 0x0, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}, @IPVS_CMD_ATTR_DEST={0x18, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@empty}]}]}, 0x34}}, 0x0) 08:15:52 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000002c0)={@dev, 0x0}, &(0x7f0000000300)=0x14) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_SIOCADDRT(r3, 0x890b, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000180)={'ip6tnl0\x00', 0x0, 0x2f, 0x1, 0x8, 0x3b85, 0x53, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, @private2={0xfc, 0x2, '\x00', 0x1}, 0x1, 0x700, 0xfffffff8, 0x8}}) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r3, 0x89f6, &(0x7f0000000280)={'ip6tnl0\x00', &(0x7f0000000200)={'sit0\x00', r1, 0x2f, 0x7e, 0x2, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @remote, 0x10, 0x8, 0x201569, 0x100}}) ioctl$sock_SIOCADDRT(r2, 0x890b, 0x0) getsockopt$IP6T_SO_GET_REVISION_MATCH(r2, 0x29, 0x44, &(0x7f0000000040)={'HL\x00'}, &(0x7f0000000080)=0x1e) ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x0, @in={0x2, 0x4e23, @broadcast}, @isdn={0x22, 0x6}, @phonet={0x23, 0x0, 0xfc}, 0x45, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)='veth0\x00'}) 08:15:52 executing program 0: timer_create(0x2, 0x0, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f00000001c0), 0x0) timer_settime(0x0, 0x0, &(0x7f0000001440)={{0x77359400}}, 0x0) 08:15:52 executing program 3: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000004b40), 0x0, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000000)) ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000000040)=0x8) 08:15:52 executing program 4: syz_emit_ethernet(0x26, &(0x7f0000000040)={@local, @remote, @val={@void}, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x6c, 0x0, @rand_addr, @empty}}}}}, 0x0) 08:15:52 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(r0, &(0x7f0000003540)=[{{&(0x7f00000001c0)={0xa, 0x4e22, 0x0, @local, 0x3}, 0x1c, 0x0}}], 0x1, 0x0) 08:15:52 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000000)={@in6={{0xa, 0x0, 0x0, @remote}}, 0x0, 0x0, 0x1e, 0x0, "a2a1400f29412c08d7ce70c50d7e2159f9dce48b6f007c385d54209d3619a852b04d6e91557f85a23d6ce07a8fb191c584b090331548dbd0c01dc6646a4422d3af7f4b120dc1a60b71aa0a2d70f45175"}, 0xd8) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x0, 0x0, @private0}}, 0x0, 0x0, 0x26, 0x0, "c2ec136b155bfad8554c408f2940a3ab9cb5012d0cd3d69cb4418938ff2af865ec2bffbe951cd06705a29b5233620938ab8ed16390f865e6b474bc152be77cde8ac6be5b47fe8e6d4313de4f44d5937c"}, 0xd8) 08:15:53 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x9}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:53 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000002c0)={@dev, 0x0}, &(0x7f0000000300)=0x14) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_SIOCADDRT(r3, 0x890b, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000180)={'ip6tnl0\x00', 0x0, 0x2f, 0x1, 0x8, 0x3b85, 0x53, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, @private2={0xfc, 0x2, '\x00', 0x1}, 0x1, 0x700, 0xfffffff8, 0x8}}) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r3, 0x89f6, &(0x7f0000000280)={'ip6tnl0\x00', &(0x7f0000000200)={'sit0\x00', r1, 0x2f, 0x7e, 0x2, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @remote, 0x10, 0x8, 0x201569, 0x100}}) ioctl$sock_SIOCADDRT(r2, 0x890b, 0x0) getsockopt$IP6T_SO_GET_REVISION_MATCH(r2, 0x29, 0x44, &(0x7f0000000040)={'HL\x00'}, &(0x7f0000000080)=0x1e) ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x0, @in={0x2, 0x4e23, @broadcast}, @isdn={0x22, 0x6}, @phonet={0x23, 0x0, 0xfc}, 0x45, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)='veth0\x00'}) 08:15:53 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x51b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:53 executing program 3: syz_emit_ethernet(0x32, &(0x7f0000000040)={@multicast, @local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @loopback, @broadcast}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f9c74f", 0x0, "0cf8da"}}}}}}, 0x0) 08:15:53 executing program 0: syz_open_dev$rtc(&(0x7f0000000080), 0x3, 0x280000) openat$uinput(0xffffffffffffff9c, &(0x7f00000047c0), 0x0, 0x0) 08:15:53 executing program 4: timer_create(0x3, 0x0, &(0x7f0000001340)) timer_settime(0x0, 0x0, &(0x7f0000001380)={{0x77359400}, {0x77359400}}, 0x0) timer_settime(0x0, 0x0, &(0x7f00000011c0), &(0x7f0000001200)) 08:15:53 executing program 3: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 08:15:53 executing program 0: r0 = socket$inet(0x2, 0x3, 0x7) setsockopt$inet_buf(r0, 0x0, 0x2d, &(0x7f0000000000)="fb2ca42753e83183d3983e86a1a15ae849dc50e3f17ade35d455e3e8a10a25adb5888460b2f55a5314001fee049b155a27dfb444eb33ad98095e6cc8ed57a7405ee409195e70f8a604dbf8c5e7002db92f0c49ea27fa3758a2efdc71d42afaa792f2c2f5b4c00cd7630db1e8a8dd1f419faf93845848349c2b38eba6d52f9dc9da438789bc798782", 0x88) 08:15:53 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0xf}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:53 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000140)={0x0, @in={0x2, 0x0, @remote}, @phonet, @in, 0xfffc}) bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000100)={&(0x7f0000000040)="3e7309ac1c4f3bbc7fa5e1af3fb9692bfd83d2150b1ad8c7e28b98c459c5c8533b5eed2d945cf9c055300711faeb90d4af3e2ba54b8f1c716154da420f5efe9e47e69d63ebfbadb3dbe2ec38445a3c82d5ab0171e8169abe3b1a", &(0x7f00000001c0)=""/187, &(0x7f00000000c0)="8f6bcd8f6a246e9fede963ff70b9b981ddaab9c59fe0d554316ff30cc52ba2b6ce66b380693f66f597a21f403e5bc812cf3767f2f71dfc", &(0x7f0000000280)="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", 0x3e0, 0xffffffffffffffff, 0x4}, 0x38) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$netlink(r1, &(0x7f0000000000)=@kern={0x10, 0x0, 0x0, 0x100}, 0xc) 08:15:54 executing program 3: socketpair(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f0000002500)=[{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, 0x0}], 0x1, 0x4005) 08:15:54 executing program 0: ioctl$EVIOCSABS2F(0xffffffffffffffff, 0x401845ef, 0x0) syz_open_dev$evdev(&(0x7f0000000040), 0x10001, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000001300), 0xfdbc, 0x40140) ioctl$EVIOCGUNIQ(r0, 0x80404508, 0x0) ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, 0x0) syz_open_dev$evdev(&(0x7f0000001700), 0x0, 0x4080) 08:15:54 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000002c0)={@dev, 0x0}, &(0x7f0000000300)=0x14) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_SIOCADDRT(r3, 0x890b, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000180)={'ip6tnl0\x00', 0x0, 0x2f, 0x1, 0x8, 0x3b85, 0x53, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, @private2={0xfc, 0x2, '\x00', 0x1}, 0x1, 0x700, 0xfffffff8, 0x8}}) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r3, 0x89f6, &(0x7f0000000280)={'ip6tnl0\x00', &(0x7f0000000200)={'sit0\x00', r1, 0x2f, 0x7e, 0x2, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @remote, 0x10, 0x8, 0x201569, 0x100}}) ioctl$sock_SIOCADDRT(r2, 0x890b, 0x0) getsockopt$IP6T_SO_GET_REVISION_MATCH(r2, 0x29, 0x44, &(0x7f0000000040)={'HL\x00'}, &(0x7f0000000080)=0x1e) ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x0, @in={0x2, 0x4e23, @broadcast}, @isdn={0x22, 0x6}, @phonet={0x23, 0x0, 0xfc}, 0x45, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)='veth0\x00'}) 08:15:54 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x51c, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:54 executing program 4: r0 = syz_open_dev$evdev(&(0x7f00000003c0), 0x0, 0x0) ioctl$EVIOCGMTSLOTS(r0, 0x80004502, 0x0) 08:15:54 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x60}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:54 executing program 3: r0 = syz_open_dev$evdev(&(0x7f00000011c0), 0x0, 0x0) ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000001300)={0x16, 0x0, 0x0}) 08:15:55 executing program 4: r0 = syz_open_dev$hidraw(&(0x7f0000000040), 0x0, 0x0) read$hidraw(r0, &(0x7f0000001180)=""/38, 0x26) ioctl$HIDIOCGUSAGES(0xffffffffffffffff, 0xd01c4813, 0x0) 08:15:55 executing program 0: r0 = syz_open_dev$evdev(&(0x7f00000011c0), 0x0, 0x0) ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000001300)={0x0, 0x0, 0x0}) 08:15:55 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x521, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:55 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000002c0)={@dev, 0x0}, &(0x7f0000000300)=0x14) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_SIOCADDRT(r3, 0x890b, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000180)={'ip6tnl0\x00', 0x0, 0x2f, 0x1, 0x8, 0x3b85, 0x53, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, @private2={0xfc, 0x2, '\x00', 0x1}, 0x1, 0x700, 0xfffffff8, 0x8}}) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r3, 0x89f6, &(0x7f0000000280)={'ip6tnl0\x00', &(0x7f0000000200)={'sit0\x00', r1, 0x2f, 0x7e, 0x2, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @remote, 0x10, 0x8, 0x201569, 0x100}}) ioctl$sock_SIOCADDRT(r2, 0x890b, 0x0) getsockopt$IP6T_SO_GET_REVISION_MATCH(r2, 0x29, 0x44, &(0x7f0000000040)={'HL\x00'}, &(0x7f0000000080)=0x1e) ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000100)={0x0, @in={0x2, 0x4e23, @broadcast}, @isdn={0x22, 0x6}, @phonet={0x23, 0x0, 0xfc}, 0x45, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)='veth0\x00'}) 08:15:55 executing program 3: syz_open_dev$evdev(&(0x7f0000001580), 0x0, 0x41c00) 08:15:55 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0xb0}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:55 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x40086602, &(0x7f00000000c0)=""/14) 08:15:55 executing program 0: syz_open_dev$evdev(&(0x7f0000000040), 0x10001, 0x0) 08:15:56 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x401c5820, &(0x7f00000000c0)=""/14) 08:15:56 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) ioctl$EVIOCSCLOCKID(r0, 0x400445a0, &(0x7f00000003c0)) 08:15:56 executing program 5: r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) syz_open_dev$hiddev(&(0x7f00000006c0), 0x0, 0x0) ioctl$EVIOCSMASK(r0, 0x40104593, 0x0) 08:15:56 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:56 executing program 4: syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x200000) 08:15:56 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x40002, "c2748650c420c376adb5089255255df3fe272ed478965e7a632fe6907f2e3355"}) 08:15:56 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:57 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000001300), 0xfdbc, 0x0) ioctl$EVIOCGUNIQ(r0, 0x80404508, 0x0) 08:15:57 executing program 5: syz_open_dev$evdev(&(0x7f00000001c0), 0x800000005, 0x0) 08:15:57 executing program 4: r0 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x80741) write$hidraw(r0, &(0x7f0000000600)="b1", 0x1) 08:15:57 executing program 3: r0 = syz_open_dev$hidraw(&(0x7f0000000040), 0x0, 0x1) write$hidraw(r0, &(0x7f0000000080)='Q', 0xfffffffffffffdef) 08:15:57 executing program 0: r0 = syz_open_dev$hidraw(&(0x7f0000000040), 0x0, 0x1) write$hidraw(r0, &(0x7f0000000080)='Q', 0x20000081) 08:15:57 executing program 5: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x5421, &(0x7f00000000c0)=""/14) 08:15:58 executing program 4: syz_open_dev$evdev(&(0x7f0000001300), 0xfdbc, 0x0) 08:15:58 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0x2}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:58 executing program 5: syz_open_dev$evdev(&(0x7f00000001c0), 0x800000005, 0x4142) 08:15:58 executing program 4: syz_open_dev$evdev(&(0x7f00000003c0), 0x0, 0x0) syz_open_dev$evdev(&(0x7f0000000140), 0x0, 0x84000) 08:15:59 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x2, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:15:59 executing program 3: syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x101002) 08:15:59 executing program 0: r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x80284504, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, "3ae9df8fe3256c11a444b813479d774b4f3a41365044d60a729859ebd93751c7"}) 08:15:59 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0x3}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:15:59 executing program 5: r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x80284504, &(0x7f0000000040)={0x3, 0x0, 0x0, 0x0, "3ae9df8fe3256c11a444b813479d774b4f3a41365044d60a729859ebd93751c7"}) 08:15:59 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x40104593, &(0x7f00000000c0)=""/14) 08:15:59 executing program 3: r0 = syz_open_dev$evdev(&(0x7f00000011c0), 0x0, 0x0) ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000001300)={0x0, 0x9, &(0x7f0000001200)="4e16c461f19d4cce1d"}) 08:15:59 executing program 0: syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) syz_open_dev$evdev(&(0x7f0000001700), 0x0, 0x0) 08:15:59 executing program 4: r0 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x80741) write$hidraw(r0, 0x0, 0xeffd) 08:15:59 executing program 5: r0 = syz_open_dev$hidraw(&(0x7f0000000040), 0x0, 0x0) read$hidraw(r0, &(0x7f0000000080)=""/45, 0x1ffffd63) 08:16:00 executing program 3: syz_open_dev$evdev(&(0x7f00000024c0), 0x100, 0x4800) 08:16:00 executing program 4: r0 = syz_open_dev$hidraw(&(0x7f0000000040), 0x0, 0x1) write$hidraw(r0, &(0x7f0000000080)='Q', 0xfffffdef) 08:16:00 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x3, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:00 executing program 0: syz_open_dev$evdev(&(0x7f0000000100), 0x9, 0x4a801) 08:16:00 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0x4}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:00 executing program 5: syz_open_dev$hiddev(&(0x7f0000000040), 0x0, 0x20001) 08:16:01 executing program 0: r0 = syz_open_dev$evdev(&(0x7f00000001c0), 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x40086602, &(0x7f0000000040)={0xf9, 0x0, 0x0, 0x0, "3ae9986bbacb6c11a444b813479d774b4f3a41365044d60a729859ebd93711c7"}) 08:16:01 executing program 5: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x2, &(0x7f00000000c0)=""/14) 08:16:01 executing program 3: r0 = syz_io_uring_setup(0x3ef1, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) 08:16:01 executing program 3: r0 = syz_open_dev$evdev(&(0x7f00000011c0), 0x0, 0x0) ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000001300)={0x0, 0x2, &(0x7f0000001200)="4e16"}) 08:16:01 executing program 0: r0 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x80741) write$hidraw(r0, &(0x7f0000000600)="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", 0x1000) 08:16:01 executing program 5: r0 = syz_open_dev$evdev(&(0x7f00000011c0), 0x0, 0x0) ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000001300)={0x16, 0x1, &(0x7f0000001200)='N'}) 08:16:02 executing program 4: ioctl$EVIOCSABS2F(0xffffffffffffffff, 0x401845ef, 0x0) syz_open_dev$evdev(&(0x7f0000000040), 0x10001, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000001300), 0xfdbc, 0x40140) ioctl$EVIOCGUNIQ(r0, 0x80404508, 0x0) syz_open_dev$evdev(&(0x7f0000001700), 0x0, 0x0) 08:16:02 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0x5}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:02 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x4, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:02 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) ioctl$EVIOCGVERSION(r0, 0x80044501, &(0x7f0000000140)=""/201) 08:16:02 executing program 5: r0 = syz_open_dev$evdev(&(0x7f0000001300), 0x0, 0x0) ioctl$EVIOCGUNIQ(r0, 0x80404508, 0x0) 08:16:02 executing program 4: r0 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x1c1341) write$hidraw(r0, 0x0, 0x0) 08:16:02 executing program 0: r0 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x1c1341) write$hidraw(r0, 0x0, 0xeffd) 08:16:02 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0x6}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:03 executing program 3: syz_open_dev$hiddev(&(0x7f0000003540), 0x0, 0x446840) 08:16:03 executing program 4: syz_open_dev$evdev(&(0x7f00000011c0), 0x0, 0x80840) 08:16:03 executing program 0: syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x250040) 08:16:03 executing program 5: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x200, 0x0) ioctl$EVIOCGREP(r0, 0x80084503, &(0x7f00000000c0)=""/14) 08:16:03 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x5, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:03 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0x7}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:03 executing program 3: syz_usb_connect(0x4, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0xd3, 0x74, 0x2b, 0x0, 0x110a, 0x1658, 0x208b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x6, [{{0x9, 0x4, 0x0, 0x7, 0x0, 0x7a, 0x9f, 0x77}}]}}]}}, &(0x7f00000005c0)={0x0, 0x0, 0x10b, 0x0, 0x1, [{0x0, 0x0}]}) 08:16:03 executing program 4: r0 = syz_open_dev$hidraw(&(0x7f0000000040), 0x0, 0x1) write$hidraw(r0, &(0x7f0000000080)='Q', 0x20000081) syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x0) 08:16:03 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) ioctl$EVIOCSMASK(r0, 0x40104593, 0x0) 08:16:04 executing program 5: r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x40284502, 0x0) 08:16:04 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x5452, &(0x7f00000000c0)=""/14) 08:16:04 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x4020940d, &(0x7f00000000c0)=""/14) 08:16:04 executing program 5: r0 = syz_open_dev$hidraw(&(0x7f0000000040), 0x0, 0x702) write$hidraw(r0, &(0x7f0000000080)="8e", 0xfffffdef) ioctl$HIDIOCGRAWNAME(0xffffffffffffffff, 0x80404804, &(0x7f0000000000)) 08:16:05 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0x8}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:05 executing program 0: r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x5452, &(0x7f0000000040)={0x0, 0x0, 0xfa00, 0x0, "3ae9df8fe3256c11a444b813479d774b4f3a41365044d60a729859ebd93751c7"}) 08:16:05 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x322, 0x0) ioctl$EVIOCSREP(r0, 0x40084503, 0x0) 08:16:05 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x6, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:05 executing program 3: syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x50000) 08:16:05 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) ioctl$EVIOCGMTSLOTS(r0, 0x8040450a, &(0x7f0000000000)=""/100) 08:16:05 executing program 5: syz_open_dev$evdev(&(0x7f0000000080), 0x5, 0x200) 08:16:06 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0x9}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:06 executing program 4: ioctl$HIDIOCGREPORTINFO(0xffffffffffffffff, 0xc00c4809, 0x0) ioctl$HIDIOCGUSAGE(0xffffffffffffffff, 0xc018480b, &(0x7f0000000040)={0x0, 0x1, 0x0, 0x3, 0x9, 0x6}) read$hiddev(0xffffffffffffffff, &(0x7f0000001080)=""/178, 0xb2) ioctl$HIDIOCGFIELDINFO(0xffffffffffffffff, 0xc038480a, &(0x7f0000001140)={0x3, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x4, 0x1, 0xdc, 0x0, 0x2b5c, 0x0, 0x9}) syz_open_dev$hiddev(&(0x7f0000001180), 0x0, 0x280000) ioctl$HIDIOCSUSAGES(0xffffffffffffffff, 0x501c4814, &(0x7f00000011c0)={{0x1, 0x0, 0x2}, 0x0, [0x0, 0xf0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa3e5, 0x0, 0x4, 0x3, 0x0, 0x2, 0x0, 0x0, 0x800, 0x0, 0x0, 0x40, 0x0, 0x0, 0xf76, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7bd, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x800, 0x7ff, 0x0, 0x40c, 0x0, 0xd5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x6, 0x1ff, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x8001, 0x0, 0x0, 0xffff0000, 0x472, 0x0, 0x7ff, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0xffffffff, 0x1f, 0x0, 0x0, 0x0, 0x6, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41aab94c, 0x7, 0x0, 0x0, 0x0, 0x8, 0x200, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb3, 0x10001, 0x4, 0x0, 0xae6, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x35c, 0x1, 0x400, 0x0, 0x400, 0x0, 0x8000, 0x80000000, 0x0, 0x2, 0x0, 0x0, 0x3, 0x0, 0x3, 0x1, 0x0, 0x3a3, 0x0, 0x0, 0x9, 0x9, 0x8ea, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x7, 0x0, 0xfffffff8, 0x0, 0x7da33225, 0xffffffc0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x766, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60b, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x9, 0x0, 0x7, 0x2, 0x0, 0x0, 0x0, 0x0, 0x9, 0x2, 0x0, 0x40, 0x0, 0x0, 0x9, 0x0, 0x4, 0x2b51, 0x9, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x4cb, 0x0, 0x0, 0x0, 0xb1, 0x0, 0x0, 0x2, 0x0, 0x9, 0x3ff, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x8, 0x6, 0x19a6, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x80000000, 0x0, 0x64, 0x6, 0xc122, 0x7, 0x0, 0xa5a7, 0x7f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x2, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x4, 0x0, 0x6, 0x8, 0xc3, 0x0, 0x0, 0x9, 0x0, 0x101, 0x0, 0x0, 0x911b, 0x7, 0x0, 0x0, 0x4, 0x9, 0x0, 0x80, 0x0, 0x0, 0x9fe, 0x0, 0x0, 0x0, 0x9, 0x0, 0x8001, 0xffffffff, 0x0, 0x401, 0x0, 0x5, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x5, 0x0, 0x9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xf44, 0x0, 0x3, 0x0, 0x3ff, 0x1, 0x0, 0x3, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x80000001, 0x6, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x7, 0x6, 0x0, 0x0, 0x7, 0x3, 0x0, 0x0, 0x0, 0x6, 0x80, 0x0, 0x0, 0x6, 0x8, 0x320, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf9, 0x13, 0x5, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffff000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc8a2, 0x401, 0x0, 0x0, 0x0, 0x2f, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x6, 0x0, 0x80, 0x0, 0xfffffc01, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x8001, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x4ffe, 0xff, 0x0, 0x0, 0x0, 0x0, 0x7, 0xe93, 0x0, 0x800, 0x0, 0x0, 0x0, 0x451, 0x7fffffff, 0x0, 0x7, 0x0, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffc0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x7fff, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x4, 0x5, 0x25, 0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x63c, 0xfff, 0x4, 0x9, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0xa86, 0x0, 0x0, 0x0, 0x4, 0x0, 0xbb, 0x0, 0x0, 0x0, 0x0, 0xfcd, 0x0, 0x21b1f6c3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf0, 0x0, 0x6, 0x0, 0x3, 0x0, 0x7fff, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x3ff, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3ff, 0x7f88, 0x4, 0x0, 0x0, 0x0, 0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x7, 0x0, 0x5, 0x0, 0x702, 0x0, 0x0, 0x67f1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0xff, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8, 0x7fff, 0x0, 0xb82, 0x5, 0x0, 0x0, 0x400, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x3714, 0x0, 0x0, 0x10001, 0xffffffff, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x4, 0x1, 0x2, 0x0, 0x0, 0x0, 0x3, 0x5, 0x4, 0xc2, 0x0, 0x0, 0x4, 0x200, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x4, 0x0, 0x0, 0x2, 0x0, 0x9, 0xb579, 0xfffffff7, 0x0, 0x0, 0x5, 0x0, 0x0, 0x914d, 0x0, 0x6, 0x0, 0x1, 0xd4, 0x0, 0x7fff, 0x0, 0x0, 0x1, 0x0, 0xcad, 0x0, 0x0, 0x0, 0x101, 0xffff0c48, 0x7, 0x27a, 0x7, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x9, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x6, 0x5, 0x3, 0x0, 0x6, 0x70, 0x0, 0x1, 0x1ff, 0x6, 0x0, 0x11f, 0x0, 0x0, 0x0, 0x4, 0x80, 0x0, 0x0, 0x1000, 0x40, 0x0, 0x0, 0x0, 0x6, 0x1e81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51e, 0x0, 0x80000000, 0x0, 0x0, 0x8, 0x0, 0xff, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x9, 0x800, 0x0, 0x1f, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x6, 0x0, 0x0, 0x9, 0x0, 0x0, 0x4, 0x0, 0x2, 0xd4d, 0x7f, 0x4, 0x0, 0x4, 0x0, 0x0, 0x8, 0x9, 0x0, 0x8, 0x0, 0x20, 0x0, 0x1, 0x0, 0x5, 0x0, 0x0, 0xfffff7ac, 0x5, 0x2, 0x0, 0x4, 0x7, 0x1, 0x0, 0x7fffffff, 0x0, 0x6, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6f4, 0xcb, 0x0, 0x0, 0x8000, 0x6, 0x0, 0x0, 0x0, 0x0, 0x9, 0x4, 0x1, 0x1, 0x64d721d0, 0x14, 0x0, 0x4, 0x5, 0x386d, 0x40000000, 0x8, 0x3b, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x4, 0xfffffffe, 0x11, 0x0, 0x200, 0x1, 0x0, 0x7c000, 0x7fff, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1000, 0x0, 0x40, 0x7ff, 0x0, 0x9, 0x0, 0x1, 0x2, 0x40, 0x0, 0x0, 0x3, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x6a, 0x0, 0x0, 0x0, 0x0, 0x669, 0x8a9, 0x4, 0x6528, 0x0, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x118, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x7ff, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff]}) r0 = syz_open_dev$hiddev(0x0, 0x0, 0x0) ioctl$HIDIOCSUSAGES(r0, 0x501c4814, &(0x7f0000002240)={{0x0, 0x2}, 0x2f8, [0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x1, 0x0, 0x1ff, 0x0, 0x8, 0x0, 0x401, 0x8, 0xffffffff, 0x5, 0x0, 0x0, 0x24, 0x0, 0x0, 0x40, 0x0, 0x9c, 0x0, 0x0, 0x2, 0x3, 0xff, 0x5c0, 0x6, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdbb, 0x0, 0x1ff, 0x0, 0x5, 0x400, 0x0, 0x0, 0x3, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x6, 0xfff, 0x0, 0x0, 0x0, 0x40, 0x3ff, 0x7, 0x0, 0x80000000, 0x0, 0x1, 0x7ff, 0x0, 0x2, 0x0, 0x0, 0x2, 0x5, 0x24, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x4, 0x4f15, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x1eca, 0x0, 0x0, 0x9, 0xf031, 0x0, 0x0, 0xffff, 0x0, 0x3612, 0x0, 0x0, 0x0, 0x0, 0x116, 0x0, 0x9e, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0x6, 0x941, 0x0, 0x0, 0x7fffffff, 0x4, 0x0, 0x20, 0x0, 0x0, 0x8, 0x208c, 0x5d7271b2, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x2, 0xb3, 0x3, 0xfff00, 0x0, 0x6, 0xffffff80, 0x1, 0x0, 0x0, 0x8, 0x0, 0x0, 0x401, 0x0, 0x8001, 0x0, 0x8, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x9, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x8, 0x0, 0xa8cd, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x400, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x80, 0x0, 0x7, 0x40, 0x0, 0x0, 0xfffffffe, 0x0, 0xffff509c, 0x0, 0x1, 0x0, 0x87c, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0xffff9389, 0x0, 0x0, 0x81, 0x0, 0x0, 0x200, 0x4, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x2, 0x0, 0x4, 0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0xfffff801, 0x7b7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf946, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0xfffffffb, 0x7, 0x0, 0x0, 0x0, 0x9, 0x0, 0x200, 0x2, 0x0, 0x0, 0x6, 0xffffffff, 0x3, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x5, 0xffffffff, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0xd06, 0x0, 0x2, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x10000, 0x0, 0x0, 0x0, 0x7, 0x0, 0x433dca71, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x2, 0xece, 0x0, 0x7, 0x0, 0x0, 0x5e, 0x4, 0x0, 0x1, 0x7, 0x0, 0x3ff, 0x0, 0x8, 0xfffffffc, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0xffffffff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x2, 0x0, 0x9, 0x0, 0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x3, 0x0, 0x1, 0x0, 0x0, 0xe2ce, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0xa6, 0x0, 0x0, 0x0, 0x8001, 0xffffffc0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0xd803, 0x0, 0x7, 0x0, 0x7, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x6, 0x80000000, 0x3f, 0x7f, 0x0, 0x0, 0x0, 0x5, 0x5, 0x80000001, 0xf17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x2b98, 0x9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7, 0x6, 0x0, 0x3, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0xb0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5, 0x10001, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, 0x0, 0x34, 0x0, 0x7, 0xc7f, 0x0, 0xf8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0xcd9e, 0x0, 0x3, 0x0, 0x9, 0x7f, 0x1, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffba3, 0x4, 0x3ff, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xcf, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xc74, 0x0, 0x0, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x7, 0x5, 0x0, 0x4, 0x5, 0x0, 0x0, 0x0, 0x0, 0xa6d, 0x7f, 0x6, 0x0, 0xffffffe1, 0x0, 0x0, 0x80000001, 0xfff, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x2a8, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81f, 0x0, 0x0, 0x0, 0x0, 0x1, 0x800, 0x0, 0x0, 0x0, 0x9, 0x9, 0x0, 0x0, 0x3, 0xfaf5, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x66, 0x0, 0x401, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x6, 0x0, 0x0, 0x340, 0xd431, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbd, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x1, 0x0, 0x10000, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x200, 0x0, 0x0, 0x3f, 0x7e05, 0x5, 0x0, 0x200, 0x5f6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x7ff, 0x7, 0x0, 0x1, 0xfff00000, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x1000, 0x9, 0x0, 0x80000001, 0x3, 0x6, 0x0, 0x0, 0xfffffffa, 0x531, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x80, 0x81, 0x20, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x286, 0x1, 0x800, 0x4, 0xffffff80, 0x8, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, 0x3f, 0x0, 0x0, 0x0, 0x8, 0x0, 0x2, 0x0, 0x2, 0x0, 0x2, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fd9, 0x7, 0x0, 0x6b180, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa89, 0x7, 0x1, 0x0, 0x24, 0x0, 0x1, 0x0, 0x9, 0x0, 0x9, 0x0, 0x3f, 0x4, 0xfffffffa, 0x0, 0x6, 0x0, 0x80000000, 0xe0000000, 0x7, 0x0, 0x0, 0x3f, 0x0, 0x7, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfca, 0x0, 0x100000, 0x40, 0x0, 0x0, 0x0, 0x50, 0x9, 0x0, 0x0, 0x7f, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x1ff, 0x7f, 0x3, 0x0, 0x9fe3, 0x0, 0x80, 0x0, 0x0, 0x4, 0x8, 0x0, 0x5, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x7f00, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x1b, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x5]}) ioctl$HIDIOCGUCODE(0xffffffffffffffff, 0xc018480d, 0x0) ioctl$HIDIOCSREPORT(0xffffffffffffffff, 0x400c4808, &(0x7f00000032c0)={0x0, 0x3}) ioctl$HIDIOCINITREPORT(r0, 0x4805, 0x0) 08:16:06 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x200, 0x0) ioctl$EVIOCSKEYCODE(r0, 0x40084504, &(0x7f0000000000)=[0x1]) 08:16:06 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x80104592, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x101, "ed105400000000003ec13e2000"}) r1 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000540)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x38e38e38e38e1d2, [{{0x9, 0x2, 0x48}}]}}, 0x0) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000100)={0x12, 0x6c1, &(0x7f0000000940)="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"}) ioctl$EVIOCSMASK(0xffffffffffffffff, 0x40104593, &(0x7f00000001c0)={0x14, 0x0, 0x0}) syz_usb_ep_write$ath9k_ep2(r1, 0x83, 0x10, &(0x7f0000000140)=@ready={0x0, 0x0, 0x8, "7a8262bd"}) syz_open_dev$evdev(&(0x7f0000000680), 0x0, 0x1) ioctl$EVIOCSKEYCODE_V2(0xffffffffffffffff, 0x40284504, &(0x7f0000000840)={0x2, 0x0, 0x0, 0x0, "56303ab7c0002e57f1c1f4adb3638776a327ce72e885446113dcd37a9140867c"}) syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000200)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000400)={0xa, &(0x7f0000000280)={0xa, 0x6, 0x0, 0x4}, 0x0, 0x0}) syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000440)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_connect$hid(0x0, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x56a, 0x90, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, {0x9}}}]}}]}}, &(0x7f0000001240)={0xa, &(0x7f0000000180)={0xa}, 0x5, &(0x7f00000002c0)={0x5, 0xf, 0x5}, 0x2, [{0x4, &(0x7f00000003c0)=@lang_id={0x4}}, {0x4, &(0x7f00000004c0)=@lang_id={0x4}}]}) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000500)=ANY=[@ANYBLOB="1201000000000001ef0e077240000102030109022400"], &(0x7f0000001180)={0xa, &(0x7f00000006c0)={0xa}, 0xc, &(0x7f0000000880)={0x5, 0xf, 0xc, 0x1, [@ext_cap={0x7}]}}) syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0x81, &(0x7f00000005c0)=ANY=[@ANYBLOB="b2ea52000000000000000118f79506000079ed69c903b97b82996632fc7a7668745a6fefaf21983c9126cbbd970bfbb175b21de4a4ddee7bb4b809e4f06d65ffe274318677088751ff01433278f1223e8c4429629acdc064ca7ada0d9f5ef50508a02bf070ffb6316205f96eed1ed8b9da55dada0ebd9534352defac8b8993fe0b"]) ioctl$EVIOCSKEYCODE_V2(0xffffffffffffffff, 0x40284504, &(0x7f0000000380)={0x1, 0x0, 0x0, 0x0, "7b8000000079945ceeab479a3ffa6a6f2239a3e458c024a41bf06300"}) syz_usb_ep_write$ath9k_ep2(0xffffffffffffffff, 0x83, 0x42, &(0x7f0000000780)=ANY=[@ANYBLOB="0102003a06bc49041a41e715fc"]) syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f00000007c0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_connect_ath9k(0x3, 0xffffffffffffffec, &(0x7f0000000700)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x18cd7ce654e0f2d, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_connect_ath9k(0x3, 0x78, &(0x7f0000000300)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x38e3a88, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r1, 0x83, 0xffffffffffffff9c, &(0x7f0000000040)=@conn_svc_rsp={0x0, 0x0, 0xa, "0712706e", {0x3, 0x100}}) 08:16:06 executing program 5: r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) syz_open_dev$hiddev(&(0x7f00000006c0), 0x0, 0x0) ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000000780)={0x0, 0x0, 0x0}) 08:16:06 executing program 4: r0 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x80741) write$hidraw(r0, &(0x7f0000000600)="b1da930aa182011f5c867ed712f0e8f58defe51d02481ab3af2df2ed8930dda2b96670b68be321c1e5cc18f1404360694eac75ac9e9232c080cb53d6073cfc42952b53aa91eb4fc8b7c472c5818eafc02e2d71dbe88897211c289757c8cac485a9f601d54d29899ab8d8189117b6138d623040635afbd79ad6762c58a0c35078abe5c9b9ca7650cc959618aa7fa2b7e9aa6843c9ef08026ea0ba8fd2c68ba9b973325da8e40e20e9784357aec8db2dd6d9872e94ee26a4111ed62eca8fc9a8acf1d44b5f65a7789c375c6d8ddcf7fc96916289b9d44e70dee2e390b6444fdd10ffd780d1e1eeada25485df4becbde85df3cfaef35d1e7505857091b35e0521395cde1489d3aeed5e9b3a60cf29b3632621c0d894cee24665105884d53a704fef526216f4cc9bca62052715f743c6e062aff5ddb087033d42fe4090243d869fb0cc69a0ba5b2be364ff0323e7b7384de87028f753fd9ab8afc0c145cb3bf3722c7bb38b5eee0c88377b39e43cb69911f232b35ce5a59c95dee315aaf15dd1cce7479b59ba2bf6ebb0b6370fccc68e4749288fb0e0675fc73c02a3af0bd839800ec89a5bab28bde4b53b75c8a4eda14d5f6028edb4a341204b7089fa98704276dbf2c2a1be58feb064c4b3f942b39865236bfa6b148ab6a6bf6f4f330eed84aa0bc8406bb0c58fac04337000f185ece6f0c440beaaff05e23aa059d9251f7acf295d1c071a7fac5f44ef5523278031b84f00933026ade82fe8db027f71147d2dd4fca430a7dee22e598d4d5866dfc597d6ef9bf46ddf5c67c896f48b4df3744d285e18214f934ee6ab9fc0773be9bafa50370dd08b91e555a8995b5727ce815efec2033398d5feb914353e9957bc23e9ff1b61d18ea708bf37646e266e6c933ccb58a36ae8c8c65d7baafb07ea34be3b1b94bd47f74d5db66b7c0a0d1608c2d0dc747b3941cbb7277f017569319987f9ae3c39764334c0de01ded2cc906fb226f65661fd3bde2cdbd823891a114e83cfd80c3226fcba309887daf10b9a050410110835b3368bda823b5587f9b2b1a46e55730c095ab9c7fd4dbec343c77d2ea6592222e8a2b820ef5b7df808a2004d51a8b18cb0f54124be7e1b1e20b3f128dea9244cf296ce26846744498f5b681013be37865e04f54fc1103d1d049cb6bdd597ae706dd65c8cfebb4e763f780bdbd140f70d0c7f6d08536c1b3174d6410af3562e4b97a43a7e44f1e2f92a80da32a780be9a98027b1c64c96dba14d4c70c123c6231559d29716bc55f7a666a344cf5ebc03554f1eb06085bbb3b204571d46f07843478a22330c2b56fa0f1c54f55ab40056bcf36db8466e7414641a4240bb37562c8986450bcf75a3ac30f822a81a459a9b247a2d7730abeeece7a78e31b6b177365ed51f2a5e04ebee9bdd2284c4d39a0b9161a95531684df0493d1ec31b336efcfb732189e7d39c286683168ca8e068210d78be3d96b5fe4779078e47729436a524a09f4f28882311560d44b574b49a38f617c4c74e5f4b678587de0131bdcfea2362394a253f4813d0f89899dad9ad76c1a6cdc3fc79f15289b5ff2da042f5dff278b2bcd4d43c23f58f408f95af4ea5e72458c696720f4616b3ffe0807a425ef4277e4aa76f117c521f4995fe302d8569f34fa913902baebc75adf82755404e284e740d2b1a71c337609ff6b24a61555c0098879d95b10c6c7bf46ad546d443904a43594999c26da9efdc70e0bced634563f6d0ff45cc961327b16664cfcfc149a106935efb5baf5b9ae361e36ffd5bb5d3aafa9115d59cc00c595f929c1b5dafae2d2bdd218fa48362c59e5e0ef706513ebf2f69f5b0c8f16d7e38ec1e568804bb5b8bfb18fe8fe89defbb4503576904f04398c7963733daf65d85c69547e57c6ec56ceb03b7bb02b09224e688fe808fcefeb92f011b8c5048cb82ff7d0bcbf0ed38ccb9a44971dca9cad4382b6bc0ef568b0ea4b6862e2f24a1ce6a27e40dcf5406b11d1ab6984bdd34f11c63e2a83f338c6a6bab30f1b62d8b16ef69172452dfcc1f84c8878f963d235b1c26d611061f2f0933ecdd8900ab714f3c252f2acf9fa88cc6bbb553b47a2f2ee2e1308dd3b80c1995e06573baf660ad94a6d002bd280b0d9d553d72fcc66c70b510d31510586167191abf0da3a2a83a526bb334d5e816b715f81fd4a914f1b40392f2d8411d66638a5135e3bec5a370d5b43b708ca63a8ea51da1f1b12405888e76b97b0232329c37d9f5d62776cfa66ccc49b64e242aa1adb384d300fd7b22595090d94725b406d538f3f0f82173bd685575e9f3b148e68ccb29820f66c57473679e0934bf2acf72b7fbc2795af13d687ec080617e95b396c7c7dc2b63da2682f450da15841b550058824c1029de66beec5e061a788da1a9b3cf01ea4eb755f08cdfd8cb2093c889761b0145955ac3ae0206c889c8dc03dd6010c318412b06ee7acb164f28664efec5f1dc07b45aaf99353024a54202a378b75cb782f48c5eddc22c4a060cc11eadb903e9e89ace93d5f56f0b6394558c819adde66e43a96a74c3b10f357e6fa44cd7047c50ad7fd70ad7e683129466bffd5cbeefc39b36842dc31770e4838739c471a3b519728a7a584e47f32c08c58187938951711ad8b3066a17ff89f91ebbc7834044df6a4d0dbe74ae40776441912854ed8763bdcfd1bc6f5bd718b2e0b2dc4d942aef8dafa182c9ff92c4904b15e87137d46069064640bfd7d580b5176d49ce0ba2c288f990bbcae9dd48eaf10658b81384fcb24eb4efad6cddd51921bcb2c5301f5ab5d1b6c2fc58d0c603ed5d6cd2e7e7bb006992ff09d2e62f14d770ba639e4fe7ca1f853ec2889a6a55d97359b56e3da94ca567138bed7f6821bc6e4ea9a902e51e1b7bb7f4e68f19d21c45e735489a271bf5dabaac16652a929d99795f23de91ef82d59fa3ee80aeedfb3650022ab8e67fdc62b83b55ca3b1eae0c9052c069d63448db3afdd5c498ff91148f01e4908b85f34f9b3b63585b8d6fee9c36913cf429453b1ec99eedd790a024a3d757f959d12e40a0b14cef5dedc7dbe26e489c4d072e9585f7dfe88d433185c07e4f454ef5063e283c34f1c4f72c72ffee576f5b200f73028a7615f9ab56c510cea11c903dbb42f15c9420f30ce1c64f5cb90bb6606fa70a6597609f2dffbe77ec474f86102a452e61059d8fe0c3600568a55142ac4dd201cf9a3454b4d86e48823fb9a3c1f092799facae2e85bae9cbdbf18e5787b36453619207e7e5d366121dbb83519c741bf897ddb1afbd9aa5bc02368e3f71efa3ecc174903df6967b098a224c2fbce661506aba3db9053cea0c41ee327d312f65a7f8500b1c4db216b3fd0a536e5283169d5747dbc15a0e3edd82fbdd3b4a19c944fa36d6ecb119e1896a2d0f709d93ca0edfc8d45c4744fcfba843a8a6d9b8292897346f83c49db528a14e1c37839b5c689d68c47c148cf607643358c7d96f6e7c602f60fa9a78b406893fc88a33d315dd1a79f01f08571e4861038086ed4b79b7af9d1b95349e1a2b2cd41cb976422c16663cb0137fe0dbfc0c0736cd35c1ad0f1e03ca2dcb06bbe14d3d05ba58f28e91e9a51ae97c12123c44250242ad62ac5d636ce", 0xa01) 08:16:07 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) ioctl$EVIOCGMTSLOTS(r0, 0x8040450a, 0x0) [ 741.049629][ T5] usb 4-1: new high-speed USB device number 3 using dummy_hcd 08:16:07 executing program 0: syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) [ 741.341665][ T5] usb 4-1: too many configurations: 210, using maximum allowed: 8 08:16:07 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x7, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:07 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0xf}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:07 executing program 5: syz_open_dev$hidraw(&(0x7f0000000100), 0xff7ffffffffffc01, 0x0) 08:16:07 executing program 0: syz_open_dev$evdev(&(0x7f0000000040), 0x10001, 0x200000) 08:16:07 executing program 4: r0 = syz_open_dev$hidraw(&(0x7f0000000040), 0x0, 0x1) ioctl$HIDIOCGRAWPHYS(r0, 0x80404805, &(0x7f00000000c0)) write$hidraw(r0, &(0x7f0000000080)='Q', 0x1) ioctl$EVIOCGNAME(0xffffffffffffffff, 0x80404506, 0x0) 08:16:08 executing program 5: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0xc0189436, &(0x7f00000000c0)=""/14) 08:16:08 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000000)=""/154) [ 742.239970][ T5] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 742.249897][ T5] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 742.258176][ T5] usb 4-1: Product: syz [ 742.262697][ T5] usb 4-1: Manufacturer: syz [ 742.267467][ T5] usb 4-1: SerialNumber: syz [ 742.462590][ T5] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 743.350220][ T2952] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 08:16:09 executing program 3: syz_open_dev$hiddev(&(0x7f0000000040), 0x0, 0x20001) syz_open_dev$hiddev(&(0x7f0000000100), 0x0, 0x341000) 08:16:09 executing program 4: syz_usb_connect(0x4, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0xd3, 0x74, 0x2b, 0x0, 0x110a, 0x1658, 0x208b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x7a, 0x9f, 0x77}}]}}]}}, 0x0) 08:16:09 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0x60}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:09 executing program 5: syz_open_dev$evdev(&(0x7f0000000040), 0x10001, 0x0) syz_open_dev$evdev(&(0x7f0000001300), 0xfdbc, 0x40140) 08:16:09 executing program 0: r0 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x1c1341) write$hidraw(r0, &(0x7f0000000040)='W', 0x1) 08:16:09 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x8, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) [ 743.724319][ T8462] usb 4-1: USB disconnect, device number 3 08:16:10 executing program 5: syz_open_dev$evdev(&(0x7f00000024c0), 0x100, 0x0) 08:16:10 executing program 0: syz_open_dev$hidraw(&(0x7f0000000040), 0x0, 0x20040) [ 744.399776][ T2952] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 744.406957][ T2952] ath9k_htc: Failed to initialize the device 08:16:10 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac=@device_a={0x8, 0x2, 0x11, 0x0, 0x0, 0xb0}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) [ 744.445072][ T8462] usb 4-1: ath9k_htc: USB layer deinitialized 08:16:10 executing program 3: r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x0) ioctl$EVIOCGLED(r0, 0x80404519, 0xffffffffffffffff) 08:16:10 executing program 4: ioctl$EVIOCSKEYCODE_V2(0xffffffffffffffff, 0x5460, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, "3ae9df8fe3256c11a444b813479d774b4f3a41365044d60a729859ebd93751c7"}) ioctl$EVIOCGUNIQ(0xffffffffffffffff, 0x80404508, 0x0) syz_usb_connect$cdc_ecm(0x3, 0x4d, &(0x7f0000000280)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x4, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x2, {{0x5}, {0x5}, {0xd}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x0, 0x8}}, {{0x9, 0x5, 0x3, 0x2, 0x40, 0x1f}}}}}]}}]}}, 0x0) syz_open_dev$evdev(&(0x7f0000000180), 0x0, 0x1058c1) ioctl$EVIOCGSW(0xffffffffffffffff, 0x8040451b, 0x0) ioctl$EVIOCSREP(0xffffffffffffffff, 0x40084503, 0x0) 08:16:10 executing program 5: ioctl$EVIOCSABS2F(0xffffffffffffffff, 0x401845ef, 0x0) 08:16:11 executing program 0: syz_usb_connect$printer(0x2, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x43, 0x0, 0xfa, [{{0x9, 0x4, 0x0, 0x6, 0x1, 0x7, 0x1, 0x0, 0x0, "", {{{0x9, 0x5, 0x1, 0x2, 0x0, 0x0, 0x0, 0x3}}, [{{0x9, 0x5, 0x82, 0x2, 0x640}}]}}}]}}]}}, 0x0) ioctl$HIDIOCGRDESCSIZE(0xffffffffffffffff, 0x80044801, 0x0) 08:16:11 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x9, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:11 executing program 3: syz_open_dev$evdev(&(0x7f0000001340), 0x3c30, 0x1) 08:16:11 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:11 executing program 5: syz_open_dev$hidraw(&(0x7f0000000000), 0xfffffffffffffc01, 0x80741) [ 745.589640][ T8595] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 745.699684][ T18] usb 1-1: new full-speed USB device number 4 using dummy_hcd 08:16:11 executing program 3: r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) ioctl$EVIOCSABS20(r0, 0x401845e0, 0x0) [ 745.829677][ T8595] usb 5-1: Using ep0 maxpacket: 8 08:16:12 executing program 5: syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x80741) [ 745.950810][ T8595] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0 [ 746.062659][ T18] usb 1-1: config 1 interface 0 altsetting 6 endpoint 0x1 has invalid wMaxPacketSize 0 [ 746.072678][ T18] usb 1-1: config 1 interface 0 altsetting 6 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 746.086409][ T18] usb 1-1: config 1 interface 0 has no altsetting 0 [ 746.131818][ T8595] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 746.141647][ T8595] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 746.149928][ T8595] usb 5-1: Product: syz [ 746.154197][ T8595] usb 5-1: Manufacturer: syz [ 746.158884][ T8595] usb 5-1: SerialNumber: syz 08:16:12 executing program 5: syz_open_dev$evdev(0x0, 0x0, 0x0) syz_open_dev$evdev(&(0x7f0000001340), 0x3c30, 0x1) [ 746.335291][T20786] raw-gadget gadget: fail, usb_ep_enable returned -22 [ 746.400634][ T18] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 746.410053][ T18] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 746.418179][ T18] usb 1-1: Product: syz [ 746.422669][ T18] usb 1-1: Manufacturer: syz [ 746.427389][ T18] usb 1-1: SerialNumber: syz [ 746.612915][T20788] raw-gadget gadget: fail, usb_ep_enable returned -22 08:16:13 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0xa, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:13 executing program 4: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGREP(r0, 0x80104592, &(0x7f00000000c0)=""/14) 08:16:13 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x2}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:13 executing program 5: r0 = syz_open_dev$hidraw(&(0x7f0000000040), 0x0, 0x108000) read$hidraw(r0, 0x0, 0x0) [ 746.914888][ T8595] cdc_ether: probe of 5-1:1.0 failed with error -22 [ 746.964967][ T8595] usb 5-1: USB disconnect, device number 3 08:16:13 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x5452, &(0x7f0000000040)={0x0, 0x0, 0xfa00, 0x0, "3ae9df8fe3256c11a444b813479d774b4f3a41365044d60a729859ebd93751c7"}) 08:16:13 executing program 3: r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$restrict_keyring(0x1d, r0, 0x0, 0x0) [ 747.140417][ T18] usb 1-1: USB disconnect, device number 4 08:16:13 executing program 4: syz_open_dev$evdev(&(0x7f0000001300), 0x0, 0x40140) 08:16:13 executing program 3: r0 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x80741) read$hidraw(r0, 0x0, 0x0) 08:16:13 executing program 5: r0 = syz_open_dev$hidraw(&(0x7f0000000040), 0xfff, 0x1) write$hidraw(r0, &(0x7f0000000080)='Q', 0x1) 08:16:13 executing program 0: syz_open_dev$evdev(&(0x7f0000000000), 0x8001, 0x44041) 08:16:14 executing program 3: r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffb) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, r0) keyctl$search(0xa, r0, &(0x7f0000000040)='keyring\x00', &(0x7f0000000140)={'syz', 0x0}, r0) 08:16:14 executing program 5: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000080)='./file0\x00', r0, &(0x7f00000000c0)='./file0\x00') open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 08:16:14 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0xb, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:14 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x3}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:14 executing program 4: syz_emit_ethernet(0x52, &(0x7f00000000c0)={@local, @local, @val, {@ipv4}}, 0x0) 08:16:14 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000380), r1) sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bd7000ffdbdf2506"], 0x58}}, 0x0) 08:16:14 executing program 3: sendmsg$NFNL_MSG_ACCT_DEL(0xffffffffffffffff, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) 08:16:15 executing program 5: openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) select(0x40, &(0x7f00000000c0)={0x1}, 0x0, &(0x7f0000000140)={0x9}, &(0x7f0000000180)={0x0, 0x2710}) [ 748.971772][T20875] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.0'. 08:16:15 executing program 0: r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key$keyring(&(0x7f0000000340), &(0x7f00000003c0)={'syz', 0x2}, 0x0, 0x0, r0) add_key$keyring(&(0x7f0000000380), &(0x7f0000000300)={'syz', 0x2}, 0x0, 0x0, r1) 08:16:15 executing program 4: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)) syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') 08:16:15 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$inet6(r0, &(0x7f0000001440)={&(0x7f0000000200)={0xa, 0x4e22, 0x0, @remote, 0x2}, 0x1c, &(0x7f0000001400)=[{&(0x7f0000000240)="9ed23dd3a139de3f4aa705bdf9bd2a1a7fbab45f632b6dc08055f1dedf9236c7cd99abc9b3e75ced5abf28222b08e891281cf1163c9b6319d0f990794340376c38ae1dbce887ffc79d26680672d377819469405887b986b5de521d176c5bf42d4a2b952779539098e407125ad26b0ea8fa8ea2192ceec77bf95dadf93e2441a39ffd53ef2f289257707847ed0f52d86d525d34c8c00112a32339478fa0d8d3b21ea96ef62af01929b2a20674342342", 0xaf}, {&(0x7f0000000300)="51ec06d62e99aeb1ee8ef0bf874b1f13f32bb1d637326a8a81991e40ee9b24f70c0c9b708f1e4f2e4434f912dec30e4d0a020a5290d3bc9b8100d4fcf78863c39c096c0901b53e5938293091a08209b811d7429c4ba2842a3f2282f75643db0c6f99fa2a9c92d12a1d123fc949de623cb60732da59e1a2c1a7d89b5a0a", 0x7d}], 0x2}, 0x20040044) 08:16:15 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x4}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:15 executing program 5: syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r0, 0x0, 0x4000080) r1 = epoll_create(0x0) epoll_pwait(r1, &(0x7f0000000b00)=[{}, {}, {}], 0x3, 0x400, 0x0, 0x0) epoll_pwait(0xffffffffffffffff, &(0x7f0000000b80)=[{}, {}], 0x2, 0x401, &(0x7f0000000bc0)={[0xff]}, 0x8) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000c00), 0xffffffffffffffff) 08:16:16 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) accept4$inet6(r0, 0x0, 0x0, 0x0) 08:16:16 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0xc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:16 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000080)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @remote}, {0x2, 0x0, @empty}, 0x1c}) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000340)={0x0, @loopback, @private}, &(0x7f0000000380)=0xc) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f0000000a80), 0x4) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000240)={0x0, {0x2, 0x4e20, @multicast2}, {0x2, 0x4e21, @broadcast}, {0x2, 0x4e24, @broadcast}, 0xf0ae4de8f4cefa54, 0x0, 0x0, 0x0, 0x101, &(0x7f0000000200)='veth1_to_team\x00', 0x6, 0x6, 0xff}) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000900), 0x0, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f00000008c0), r2) sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r2, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="94001200", @ANYRES16=0x0, @ANYBLOB="20002abd7000ffefdf257000000008000300", @ANYRES32=0x0, @ANYBLOB="0a00060008021100000000000a00060008021100000000000a00060008021100000100000a000600ffffffffffff00000a000600ffffffffffff00000a000600ffffffffffff00000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100000a000600ffffffffffff0000"], 0x94}}, 0xc000) r3 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mtu(r3, 0x0, 0xa, &(0x7f0000000a80), 0x4) bind$inet(r3, &(0x7f0000000300)={0x2, 0x4e24, @multicast2}, 0x10) getsockname(r0, &(0x7f00000003c0)=@alg, &(0x7f0000000440)=0x80) syz_genetlink_get_family_id$devlink(&(0x7f00000002c0), r2) 08:16:16 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000400)="70db4f0608f30434557650b2075d6737842ef2c9025b03fe60c35eb63ab4a64627f31ad371b45c1f03ba301c814dc82dd1830c00000004000000b8ee2d750e8c83df8562d722ead6d800a123885be7011b7a126ce3ec5331a6ff9a256d5e09b6da51e82ddb6a1764140d1dacb694ffd14d89724dc2384d0a82cb039ccff2fb09b3f7fb862d88e4a51d534d0d5f3ec59735", 0x91}], 0x1) 08:16:16 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x5}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:16 executing program 5: setitimer(0x0, &(0x7f0000000000)={{}, {0x0, 0xfff}}, 0x0) 08:16:16 executing program 0: mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1) 08:16:17 executing program 4: r0 = socket$inet(0x2, 0x3, 0x0) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002500)=""/111, 0x6f}, 0x0) 08:16:17 executing program 3: semctl$GETALL(0x0, 0x0, 0x6, &(0x7f0000000040)=""/174) semctl$IPC_STAT(0x0, 0x0, 0x2, &(0x7f0000000000)=""/61) 08:16:17 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000300)=[{&(0x7f0000000080)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000100000001000000000000000b00000080", 0xff71, 0x400}, {&(0x7f0000010400)="2e0000001300000023", 0x9, 0x800}, {&(0x7f0000012b00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x8c80}], 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="002d933b210c9007efccd2757c8441badcc3656e5ca8ab02fb139ce74a55070beac42e2ba349710689d5888fd6392bd757515060b355ac8eb67fe3a84ad298406197623e1f2566b0aec31c357e923eec68a2eda49492081fa15aa542db6097566d15aa69cb31a1d04996f70c663edfbfda0c240c8ebec8deb877a5deeec36d4ed496667dca4474f385888dd73737ec9fdff72e9bbfbd26000a962cb2125d96720719489a0bc067fc3bdb"]) 08:16:17 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getsockname(r0, 0x0, &(0x7f0000000080)) 08:16:17 executing program 3: r0 = socket$unix(0x1, 0x2, 0x0) getsockopt$sock_timeval(r0, 0xffff, 0x0, 0x0, 0x0) [ 751.545073][T20954] loop5: detected capacity change from 0 to 140 [ 751.594354][T20954] EXT4-fs (loop5): Number of reserved GDT blocks insanely large: 47681 [ 751.664626][T20954] loop5: detected capacity change from 0 to 140 [ 751.677943][T20954] EXT4-fs (loop5): Number of reserved GDT blocks insanely large: 47681 08:16:17 executing program 3: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) fcntl$setown(r0, 0x6, 0xffffffffffffffff) 08:16:18 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0xd, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:18 executing program 4: select(0x40, &(0x7f0000000040)={0x10000}, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)) 08:16:18 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x6}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:18 executing program 0: recvmsg(0xffffffffffffffff, &(0x7f0000002580)={0x0, 0x0, 0x0, 0xfffffee0, &(0x7f0000000000)=""/119, 0x6f}, 0x0) 08:16:18 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendto$unix(r0, 0x0, 0x0, 0x8, 0x0, 0x0) 08:16:18 executing program 3: fchownat(0xffffffffffffff9c, &(0x7f00000001c0)='.\x00', 0x0, 0xffffffffffffffff, 0x0) 08:16:18 executing program 4: openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) 08:16:18 executing program 0: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) flock(r0, 0x1) flock(r0, 0x5) 08:16:18 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f0000002580)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002500)=""/111, 0x6f}, 0x0) 08:16:18 executing program 3: mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x81a, 0xffffffffffffffff, 0x0) 08:16:19 executing program 4: r0 = shmat(0x0, &(0x7f0000ff9000/0x4000)=nil, 0xb8c5709241e44ceb) shmdt(r0) r1 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ffa000/0x3000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x1000) 08:16:19 executing program 0: openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0xa00, 0x0) 08:16:19 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0xe, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:19 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x7}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:19 executing program 3: mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x4010, 0xffffffffffffffff, 0x0) 08:16:19 executing program 4: socketpair(0x18, 0x3, 0x6, 0x0) 08:16:19 executing program 0: pwritev(0xffffffffffffffff, &(0x7f0000000140)=[{0x0}, {&(0x7f0000000100)="16", 0x1}, {&(0x7f0000000000)="b0a26b1847e786", 0x7}, {&(0x7f0000000080)="be7d73df68319cf8adcd36fbc30b9e4bc675", 0xffffffffffffffa8}, {&(0x7f00000001c0)="83fe07ad1ff25694bcccca13f74821cb4449cf43df705a6efda929174c11574be66c6e797dab9ac41382465f8cb72ac110fdf95e449818e4a4900aec49699f3b79b58a53d81178896520c8c0999bce5b59d72d9ad2fdb81a3ce0ac1404c7e3e15a77d8ebc9eb919faa0a14f68b543bd747fae1eb62d91b3086e66d0a07934fa9f79825e2b8810205"}], 0x5, 0x0, 0x0) 08:16:20 executing program 3: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xa00, 0x0) linkat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0xffffffffffffffff, 0x0, 0x0) 08:16:20 executing program 5: getrlimit(0xe, 0x0) 08:16:20 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x8}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:20 executing program 4: openat$zero(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) select(0x40, &(0x7f0000000000)={0x8}, 0x0, &(0x7f0000000080), 0x0) 08:16:20 executing program 0: symlinkat(0x0, 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00') madvise(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x0) mprotect(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x0) 08:16:20 executing program 3: select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x9}) 08:16:20 executing program 5: setitimer(0x2, &(0x7f0000000000)={{0x3ff}, {0x0, 0xfff}}, &(0x7f0000000080)) 08:16:21 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0xf, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:21 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000240)="7850b4bdd162b59c51753f457808c7d41d3a970a932543412f6573eff8591ecd12194791c7db8e6970bc0780987e6f7dfd943fc8527c16d5872b25911a2187ee18d32695c2a4de83e4447ac8e35c2e1006bea37bc64ffbd91df0c0ee22684ca9e63e2e7cefbdb28b883c3854bec7181bdcf7ec7412152eebff945f071021292c8bfe8b0477f1c3df026710788cb79530bc0b302954f6708f620acb24ce20d4feba12d5c2", 0xa4}, {&(0x7f0000000300)="2293e980b9fb27e4454a4e09f55ce7fb5decf477b296fc85a7d3701c7468b4d07d84740427a0", 0x26}, {&(0x7f00000004c0)="40d2afc0c26acbc2e1e14d439b502b53bd02e0924a3cdec22cf86129f1c89bba3bbeaf1d8c80bbd8ea2b2f10bdfe131a058211c1eea95d752fd8d9fb5740073d20a545097796092bb683a40374c345c721c901f56fe0c2403ed3929964cdbe8656ac42c8510a5528714df75f996b78a089", 0x71}, {&(0x7f0000000540)="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", 0x649}], 0x4}, 0x0) 08:16:21 executing program 0: r0 = syz_open_pts(0xffffffffffffffff, 0x0) writev(r0, &(0x7f0000001280)=[{&(0x7f0000000000)="3058e990dd04bbb22c45ff3ccbbc74389d1fe1787a444c0f8d2905337d4018090ef7e5e8f87bfd27bb699c32b266b1695ca271ab8e329f30a870f6debc2a73ed56a902b383088fae69b71ab6f56b9126aac293eac77f09befce98a92bd4fca7bb9ff7777bce266ed929d47b2ccc891f603fb09b2be1fbb3b1c9ca0711f6abf0705ea6be52abc1a5d6f3eeb87f17bd20f5dd128dfaf4053543e634dcb0b0ec357720d085d75f7483adac5af0af161cb978075c1207a29321f75117a8bf7d16dd422574d011268b1f99a0d20dbbf070013b3a2151a2e110868efe46e510437634d2459eafa29dcc95c64f34e67208379ebd62dde", 0xf3}, {&(0x7f0000000100)="c018ce27d7b27b169ff36e954efaadfd04877b4101a56e1adb86b16297a19a", 0x1f}, {&(0x7f0000000140)="9dc44df7a10521b558a82240f99673f60dc5b91727c4bd21bc6a65bfc083d76835d4f667d0b4620dd5a240b5652fc3bfe757fbdf60989d695fa94373c6eb7b9e80ce72751a7a87047bf2badfc7a157ec9cdc32283665ae3341bbd0ee09bc5c28d20ce1ac3a9fe9c61875740be851a254d2b7d3f1ed42c9f1897feb21631f828008148ad941b56f996366f4511f42370e261b1f9f86ad3985616ae7cbf09322d249b30c51943eca213e4f17d1875b73f175b1fc169376db8d8482a5873ef765801a581ab77ddac841213cbaf0bd7e32717723cad094c094fa3cc9b5b571a68452749dd70cc209ed37c38ec7", 0xeb}, {&(0x7f0000000240)="78945093", 0x4}], 0x4) 08:16:21 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000240)="7850b4bdd162b59c51753f457808c7d41d3a970a932543412f6573eff8591ecd12194791c7db8e6970bc0780987e6f7dfd943fc8527c16d5872b25911a2187ee18d32695c2a4de83e4447ac8e35c2e1006bea37bc64ffbd91df0c0ee22684ca9e63e2e7cefbdb28b883c3854bec7181bdcf7ec7412152eebff945f071021292c8bfe8b0477f1c3df026710788cb79530bc0b302954f6708f620acb24ce20d4feba12d5c2", 0xa4}, {&(0x7f0000000300)="2293e980b9fb27e4454a4e09f55ce7fb5decf477b296fc85a7d3701c7468b4d07d84740427a0", 0x26}, {&(0x7f00000004c0)="40d2afc0c26acbc2e1e14d439b502b53bd02e0924a3cdec22cf86129f1c89bba3bbeaf1d8c80bbd8ea2b2f10bdfe131a058211c1eea95d752fd8d9fb5740073d20a545097796092bb683a40374c345c721c901f56fe0c2403ed3929964cdbe8656ac42c8510a5528714df75f996b78a089", 0x71}, {&(0x7f0000000540)="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", 0x6c6}], 0x4, &(0x7f00000015c0)=[@cred], 0x20}, 0x0) 08:16:21 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x9}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:21 executing program 5: select(0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0) 08:16:21 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xa00, 0x0) close(r0) [ 755.523450][ T3129] ieee802154 phy0 wpan0: encryption failed: -22 [ 755.530243][ T3129] ieee802154 phy1 wpan1: encryption failed: -22 08:16:21 executing program 0: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) pwritev(r0, &(0x7f00000002c0)=[{0x0}], 0x1, 0x0, 0x0) lseek(r0, 0x0, 0x0) 08:16:21 executing program 3: setrlimit(0x0, &(0x7f0000000140)={0x32}) 08:16:21 executing program 5: open$dir(&(0x7f0000000000)='./file1\x00', 0x0, 0x0) open$dir(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) execve(&(0x7f0000000200)='./file\x00', 0x0, 0x0) 08:16:22 executing program 4: symlinkat(0x0, 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00') madvise(&(0x7f0000004000/0x2000)=nil, 0x2000, 0x4) 08:16:22 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000240)="7850b4bdd162b59c51753f457808c7d41d3a970a932543412f6573eff8591ecd12194791c7db8e6970bc0780987e6f7dfd943fc8527c16d5872b25911a2187ee18d32695c2a4de83e4447ac8e35c2e1006bea37bc64ffbd91df0c0ee22684ca9e63e2e7cefbdb28b883c3854bec7181bdcf7ec7412152eebff945f071021292c8bfe8b0477f1c3df026710788cb79530bc0b302954f6708f620acb24ce20d4feba12d5c2", 0xa4}, {&(0x7f0000000300)="2293e980b9fb27e4454a4e09f55ce7fb5decf477b296fc85a7d3701c7468b4d07d84740427a0", 0x26}, {&(0x7f0000000540)="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", 0x6ba}], 0x3}, 0x0) 08:16:22 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x10, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:22 executing program 3: recvmsg(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x100000047, 0x0, 0xfffffffffffffe88}, 0x0) 08:16:22 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0xf}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:22 executing program 5: r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) fchmod(r1, 0x0) 08:16:22 executing program 0: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$sock_cred(r0, 0xffff, 0x1022, 0x0, 0x0) 08:16:23 executing program 3: socket$unix(0x1, 0x2, 0x0) select(0x40, &(0x7f0000000000), &(0x7f0000000040)={0x8}, &(0x7f0000000080), 0x0) 08:16:23 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) getpeername(r0, 0x0, 0x0) 08:16:23 executing program 5: select(0x40, &(0x7f0000000000)={0x7}, &(0x7f0000000040)={0x2}, 0x0, 0x0) 08:16:23 executing program 3: open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) unlinkat(0xffffffffffffff9c, &(0x7f00000006c0)='./file0\x00', 0x0) 08:16:23 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000400)="70db4f0608f30434557650b2075d6737842ef2c9025b03fe60c35eb63ab4a64627f31ad371b45c1f03ba301c814dc82dd1830c00000004000000b8ee2d750e8c83df8562d722ead6d800a123885be7011b7a126ce3ec5331a6ff9a256d5e09b6da51e82ddb6a1764140d1dacb694ffd14d89724dc2384d0a82cb039ccff2fb09b3f7fb862d88e4a51d534d0d5f3ec59735b8d8b536552bcb3ceae5aefaf3101f80c85560827566752dcc02f014bac32abefd4e0608cae8dafcabe6b252666629b42bca00"/205, 0xcd}, {&(0x7f0000000300)="953327f1aab0834751dfa180a223b1da505a418dc4e64e9dbc6fc968b6186f4e029ec6f17dd12d69b1570c0ed6077e2352d6c1124ff26176c75b47d2c68b1051d6b165f26ae6df08902e5089421232bf390e582f1b81f6dca520c568ea07ccb83a04da7bf0641fd2a43828a68d8e4cd0954ab382ff15f1116d05dee71163076f47690f8c13fa9d8ac9af7c783133e8301fbb00d8510c55e6d1882d945f13fb08ce6ad023", 0xa4}], 0x2) 08:16:23 executing program 4: symlinkat(0x0, 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00') munmap(&(0x7f0000003000/0x4000)=nil, 0x4000) 08:16:23 executing program 5: utimensat(0xffffffffffffffff, 0x0, &(0x7f0000000140), 0x3) 08:16:24 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x11, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:24 executing program 3: r0 = socket$unix(0x1, 0x2, 0x0) getsockopt$sock_timeval(r0, 0xffff, 0x1005, 0x0, 0x0) 08:16:24 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:24 executing program 0: setrlimit(0x0, &(0x7f0000000000)={0x2cd8}) 08:16:24 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) poll(&(0x7f0000000000)=[{r0, 0x4}], 0x1, 0x0) 08:16:24 executing program 5: select(0x40, &(0x7f0000000040), &(0x7f00000000c0)={0x2}, 0x0, 0x0) 08:16:24 executing program 3: symlinkat(0x0, 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00') madvise(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x0) mprotect(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x4) 08:16:24 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xa00, 0x0) close(r0) getdents(r0, 0x0, 0x0) 08:16:24 executing program 4: select(0xc6, 0x0, &(0x7f00000000c0), 0x0, 0x0) 08:16:25 executing program 5: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) pwritev(r0, &(0x7f00000002c0)=[{0x0}, {&(0x7f0000000100)="16", 0x1}], 0x2, 0x0, 0x0) 08:16:25 executing program 3: getgroups(0x7, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff]) setregid(r0, 0x0) 08:16:25 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xa00, 0x0) open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) close(r0) 08:16:25 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x12, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:25 executing program 4: fchownat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x4) 08:16:25 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0x2}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:25 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x1) 08:16:25 executing program 5: shmctl$SHM_UNLOCK(0xffffffffffffffff, 0x4) 08:16:25 executing program 0: semctl$SETALL(0xffffffffffffffff, 0x0, 0x9, &(0x7f0000000140)=[0x0]) 08:16:26 executing program 4: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) read(r0, &(0x7f0000000080)=""/217, 0xd9) 08:16:26 executing program 5: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) read(r0, &(0x7f0000000080)=""/76, 0x4c) 08:16:26 executing program 3: symlinkat(&(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00') symlinkat(&(0x7f00000000c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00') 08:16:26 executing program 0: r0 = socket$unix(0x1, 0x2, 0x0) sendmsg$unix(r0, &(0x7f0000000380)={&(0x7f0000000100)=@file={0x0, './file0\x00'}, 0xa, 0x0, 0x0, &(0x7f0000000340)=[@cred], 0x20}, 0xb) 08:16:26 executing program 4: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) pwritev(r0, &(0x7f00000002c0)=[{&(0x7f0000000080)='w', 0x1}, {&(0x7f0000000100)="16", 0x1}], 0x2, 0x0, 0x0) 08:16:26 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0x3}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:26 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x14, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:27 executing program 5: r0 = socket$unix(0x1, 0x2, 0x0) fcntl$lock(r0, 0x7, 0x0) 08:16:27 executing program 0: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) pwritev(r0, &(0x7f0000000680)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0) 08:16:27 executing program 4: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mprotect(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x4) 08:16:27 executing program 3: openat$zero(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) select(0x40, &(0x7f0000000000)={0x8}, 0x0, &(0x7f0000000080)={0xffffffffffffe02f}, 0x0) 08:16:27 executing program 5: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xa00, 0x0) 08:16:27 executing program 0: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) flock(r0, 0x5) 08:16:27 executing program 3: r0 = socket$unix(0x1, 0x2, 0x0) sendmsg(r0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, &(0x7f0000003380)=[{0x808, 0x0, 0x0, "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"}], 0x808}, 0x0) 08:16:27 executing program 4: r0 = syz_open_pts(0xffffffffffffffff, 0x0) read(r0, &(0x7f0000001380)=""/4073, 0xfe9) 08:16:28 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x16, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:28 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0x4}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:28 executing program 4: symlinkat(&(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00') mknodat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x8000, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0) 08:16:28 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) getpeername(r0, 0x0, &(0x7f0000000100)) 08:16:28 executing program 0: mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x0) 08:16:28 executing program 3: shmat(0xffffffffffffffff, &(0x7f0000fff000/0x1000)=nil, 0x0) shmdt(0x0) 08:16:29 executing program 4: setrlimit(0x6, &(0x7f0000000000)={0x0, 0xffffffffffff1801}) 08:16:29 executing program 5: symlinkat(&(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00') readlinkat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x0, 0x0) chown(&(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffffff) renameat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00') 08:16:29 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)=[@rights], 0x10}, 0x401) 08:16:29 executing program 3: r0 = socket$inet(0x2, 0x3, 0x0) recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) 08:16:29 executing program 4: openat$zero(0xffffffffffffff9c, &(0x7f0000000140), 0x411, 0x0) 08:16:29 executing program 5: renameat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, 0x0) 08:16:30 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x18, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:30 executing program 0: select(0x40, &(0x7f0000000040)={0x10000}, 0x0, &(0x7f0000000100), &(0x7f0000000140)) 08:16:30 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0x5}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:30 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt(r0, 0x0, 0x0, 0x0, 0x0) 08:16:30 executing program 4: open$dir(&(0x7f0000000040)='./file0\x00', 0x200, 0x0) open$dir(&(0x7f0000000000)='./file0\x00', 0x20, 0x0) 08:16:30 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) close(r0) 08:16:30 executing program 0: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) flock(r0, 0x5) openat$zero(0xffffffffffffff9c, &(0x7f0000000140), 0x12, 0x0) 08:16:31 executing program 3: fchown(0xffffffffffffff9c, 0xffffffffffffffff, 0x0) 08:16:31 executing program 4: sendmsg$unix(0xffffffffffffffff, &(0x7f0000001140)={0x0, 0x0, 0x0}, 0x0) 08:16:31 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)) 08:16:31 executing program 5: r0 = syz_open_pts(0xffffffffffffffff, 0x0) writev(r0, &(0x7f0000001280)=[{0x0}, {&(0x7f0000000100)="c0", 0x1}], 0x2) 08:16:31 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0x6}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:32 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x1a, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:32 executing program 3: r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$unix(r1, &(0x7f0000000340)={&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0xa, &(0x7f0000000280)=[{&(0x7f0000000040)='#', 0x1}, {&(0x7f0000000140)=']', 0x1}], 0x2}, 0x0) 08:16:32 executing program 4: r0 = socket$unix(0x1, 0x2, 0x0) bind$unix(r0, &(0x7f0000000000)=@abs, 0x8) 08:16:32 executing program 0: r0 = syz_open_dev$video(&(0x7f0000000000), 0x0, 0x0) ioctl$VIDIOC_QUERYBUF(r0, 0xc0585609, &(0x7f0000000040)={0x0, 0x8, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "7274eed6"}, 0x0, 0x0, @planes=0x0}) 08:16:32 executing program 5: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x0, 0x0}) 08:16:32 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0x7}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:32 executing program 3: bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000440)={0x0}, 0x10) 08:16:32 executing program 4: syz_open_dev$dri(&(0x7f0000001c80), 0x8000800000, 0x40) 08:16:32 executing program 5: pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000380)={0xffffffffffffffff}) r2 = dup3(r0, r1, 0x0) fchmod(r2, 0x50) 08:16:32 executing program 0: rename(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='./file0\x00') 08:16:33 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0x8}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:33 executing program 3: r0 = fsopen(&(0x7f0000000080)='jffs2\x00', 0x0) fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, 0x0, 0x0, 0x0) 08:16:33 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x1c, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:33 executing program 0: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) read$FUSE(r0, &(0x7f0000002d40)={0x2020}, 0x2020) 08:16:33 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_LBT_MODE(r0, &(0x7f0000000100)={&(0x7f0000000000), 0xc, 0x0}, 0x0) 08:16:33 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000001c0)={'tunl0\x00', 0x0}) 08:16:33 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0x9}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:33 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)={0x20, r1, 0x1, 0x0, 0x0, {0x9}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x0) 08:16:34 executing program 4: syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000680)='ns/time\x00') fork() 08:16:34 executing program 5: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_MAKE_EQUIV(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000200)=ANY=[@ANYBLOB="28000001"], 0x28}}, 0x0) 08:16:34 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_SEC_KEY(r0, &(0x7f0000002540)={&(0x7f0000002440)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000002500)={0x0}}, 0x0) 08:16:34 executing program 0: pselect6(0x0, 0x0, &(0x7f0000000440), 0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100), 0x8}) 08:16:34 executing program 5: shmat(0x0, &(0x7f0000ffd000/0x3000)=nil, 0x7000) mlock(&(0x7f0000ffc000/0x4000)=nil, 0x4000) munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000) 08:16:34 executing program 4: r0 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x0, &(0x7f0000000180)=0xfffffffffffffff8, 0x8) 08:16:35 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x1e, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:35 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0xf}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:35 executing program 3: getresuid(&(0x7f0000000280), 0xffffffffffffffff, 0x0) 08:16:35 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x9, 0x0, 0x0, 0x0, 0x20, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x3}, 0x40) 08:16:35 executing program 4: openat$dlm_plock(0xffffffffffffff9c, 0x0, 0x501000, 0x0) 08:16:35 executing program 3: bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x1, 0x1, &(0x7f0000000000)=@raw=[@generic], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) 08:16:35 executing program 5: syz_open_dev$binderN(&(0x7f0000000240), 0x0, 0x0) 08:16:35 executing program 4: socket(0x1d, 0x0, 0x8001) 08:16:36 executing program 0: pselect6(0x40, &(0x7f0000000000), &(0x7f0000000440), 0x0, 0x0, 0x0) 08:16:36 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0x60}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:36 executing program 5: r0 = syz_open_dev$media(&(0x7f0000000040), 0x0, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, 0x0) 08:16:36 executing program 4: socketpair$tipc(0x1e, 0x0, 0x0, 0x0) 08:16:37 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x25, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:37 executing program 3: openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x7eb40, 0x0) 08:16:37 executing program 5: r0 = syz_open_dev$video(&(0x7f0000000280), 0x0, 0x0) ioctl$BTRFS_IOC_RESIZE(r0, 0x50009403, &(0x7f0000000080)={{}, {@void}}) 08:16:37 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_LBT_MODE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) 08:16:37 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0xb0}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:37 executing program 3: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff) delete_module(0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_LBT_MODE(r0, &(0x7f0000002400)={0x0, 0x0, &(0x7f00000023c0)={0x0}}, 0x0) 08:16:37 executing program 0: getresuid(0x0, 0xffffffffffffffff, 0x0) 08:16:37 executing program 5: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_ADD_RULE(r0, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000001000)={&(0x7f0000000b80)={0x420}, 0x420}}, 0x0) 08:16:37 executing program 4: ioctl$IOCTL_VMCI_SET_NOTIFY(0xffffffffffffffff, 0x7cb, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) 08:16:38 executing program 3: pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000000080)={0x8000000000000000}, 0x0, &(0x7f0000000140)={&(0x7f0000000100), 0x8}) 08:16:38 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_LBT_MODE(r1, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_SEC_KEY(r1, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000002480)={0x14, 0x0, 0x4}, 0x14}}, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000002c80)='ns/mnt\x00') 08:16:38 executing program 0: bpf$OBJ_GET_MAP(0x17, &(0x7f0000002d00)={0x0, 0x0, 0x18}, 0x10) 08:16:38 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x2f, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:38 executing program 4: openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) 08:16:38 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0x300}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:38 executing program 3: perf_event_open(&(0x7f0000001280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed3, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002d000502d25a80648c63940d0224fc60400809400a000a00053582c137153e370248038047000000d1bd", 0x33fe0}], 0x1}, 0x0) 08:16:38 executing program 0: r0 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, 0x0) 08:16:38 executing program 5: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000001180)) 08:16:39 executing program 4: r0 = fsopen(&(0x7f0000000000)='ocfs2_dlmfs\x00', 0x0) fsconfig$FSCONFIG_SET_PATH_EMPTY(r0, 0x4, 0x0, 0x0, 0xffffffffffffff9c) [ 773.022455][T21525] netlink: 210828 bytes leftover after parsing attributes in process `syz-executor.3'. [ 773.129672][T21529] netlink: 210828 bytes leftover after parsing attributes in process `syz-executor.3'. 08:16:39 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0x500}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:39 executing program 0: r0 = getpid() prctl$PR_SET_PTRACER(0x59616d61, r0) 08:16:39 executing program 3: pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000000080)={0x8000000000000000}, 0x0, 0x0) 08:16:39 executing program 5: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_MAKE_EQUIV(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000200)=ANY=[@ANYBLOB='('], 0x28}}, 0x0) 08:16:39 executing program 4: r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, &(0x7f0000005840)={{}, 0x0, 0x0, @unused, @devid}) 08:16:40 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x3a, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:40 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x5}, 0x40) 08:16:40 executing program 3: pselect6(0x0, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x1f, 0x401}, &(0x7f0000000080), &(0x7f00000000c0)={0x77359400}, &(0x7f0000000140)={&(0x7f0000000100)={[0x9]}, 0x8}) 08:16:40 executing program 5: r0 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f00000006c0), 0x2, 0x0) write$6lowpan_enable(r0, 0x0, 0x0) 08:16:40 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0x600}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:40 executing program 4: openat$nvram(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000380), 0x0) 08:16:40 executing program 0: socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETLINK(r0, 0x8912, 0x400308) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000002640)={0x0, 0x0, &(0x7f0000002600)={&(0x7f0000001800)={{0x14}, [@NFT_MSG_NEWTABLE={0x14}, @NFT_MSG_DELSET={0x2c, 0xb, 0xa, 0x301, 0x0, 0x0, {0xc}, [@NFTA_SET_HANDLE={0xc}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x68}}, 0x0) 08:16:40 executing program 5: r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={0x0}}, 0x0) 08:16:40 executing program 4: socket$inet(0x2, 0x5, 0x4) 08:16:41 executing program 5: r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, 0x0) 08:16:41 executing program 0: r0 = socket$can_bcm(0x1d, 0x2, 0x2) recvmsg$can_bcm(r0, &(0x7f0000000640)={&(0x7f0000000180)=@rc={0x1f, @fixed}, 0x80, 0x0}, 0x2040) 08:16:41 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0x700}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:42 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x48, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:42 executing program 3: syz_open_dev$swradio(0x0, 0x0, 0x2) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000001900), 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, 0x0) 08:16:42 executing program 4: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) read$FUSE(r0, 0x0, 0x0) 08:16:42 executing program 5: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$FUSE_INTERRUPT(r0, &(0x7f0000000040)={0x10}, 0x10) 08:16:42 executing program 0: bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x8, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1}, 0x40) 08:16:42 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0x900}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:42 executing program 5: r0 = socket$inet(0x2, 0x6, 0x0) getsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, 0x0, 0x0) 08:16:42 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x8}]}) 08:16:42 executing program 4: pselect6(0x40, &(0x7f00000002c0), 0x0, 0x0, &(0x7f0000000380), 0x0) 08:16:42 executing program 0: clock_gettime(0x0, &(0x7f0000000000)) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) syz_open_dev$binderN(&(0x7f0000000240), 0x0, 0x802) 08:16:43 executing program 5: r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000bc0)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000b80)={0x0}}, 0x0) 08:16:43 executing program 3: socket$inet_udp(0x2, 0x2, 0x0) openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000100), 0x20000, 0x0) 08:16:43 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x4c, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:43 executing program 4: openat$nvram(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) pselect6(0x40, &(0x7f00000002c0)={0x8}, 0x0, &(0x7f0000000340)={0x9}, &(0x7f0000000380), &(0x7f0000000440)={&(0x7f00000003c0)={[0x100000001]}, 0x8}) 08:16:43 executing program 0: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff}) accept4(r0, 0x0, 0x0, 0x0) 08:16:43 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac, {0x0, 0xf00}}, 0x0, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:43 executing program 5: syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1e7d, 0x2e22, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x2, {0x9}}}]}}]}}, 0x0) 08:16:43 executing program 3: r0 = socket$can_bcm(0x1d, 0x2, 0x2) recvmsg$can_bcm(r0, &(0x7f0000000640)={&(0x7f0000000180)=@rc={0x1f, @fixed}, 0x80, &(0x7f00000004c0)=[{0x0}, {0x0}], 0x2}, 0x2040) 08:16:44 executing program 3: syz_open_dev$swradio(&(0x7f0000000040), 0x0, 0x2) 08:16:44 executing program 0: r0 = socket$inet(0x2, 0xa, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000080)={'syztnl1\x00', 0x0}) 08:16:44 executing program 4: r0 = fsopen(&(0x7f0000000000)='ocfs2_dlmfs\x00', 0x0) fsconfig$FSCONFIG_SET_PATH_EMPTY(r0, 0x4, &(0x7f0000000040)='\x00', &(0x7f0000000080)='./file0\x00', 0xffffffffffffff9c) [ 778.273024][ T4683] usb 6-1: new high-speed USB device number 3 using dummy_hcd 08:16:44 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x2, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) [ 778.640941][ T4683] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 08:16:45 executing program 3: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_ADD_RULE(r0, &(0x7f0000001040)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001000)={&(0x7f0000000b80)={0x420}, 0x420}}, 0x0) [ 778.823022][ T4683] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2e22, bcdDevice= 0.40 [ 778.832449][ T4683] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 778.840856][ T4683] usb 6-1: Product: syz [ 778.845141][ T4683] usb 6-1: Manufacturer: syz [ 778.849968][ T4683] usb 6-1: SerialNumber: syz 08:16:45 executing program 4: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) fspick(r0, &(0x7f0000000040)='./file0\x00', 0x0) 08:16:45 executing program 0: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_USER_TTY(r0, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x10}, 0x10}}, 0x0) 08:16:45 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x3, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:45 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x60, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:45 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x2, &(0x7f0000000180)=[{}, {0x3}]}) 08:16:45 executing program 5: openat$nvram(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) pselect6(0x40, &(0x7f00000002c0)={0x8}, &(0x7f0000000300)={0x4}, &(0x7f0000000340)={0x9}, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)={[0x100000001]}, 0x8}) 08:16:45 executing program 3: r0 = socket$l2tp(0x2, 0x2, 0x73) setsockopt$IP_VS_SO_SET_EDIT(r0, 0x0, 0x483, &(0x7f0000000000)={0x0, @dev, 0x0, 0x0, 'sed\x00'}, 0x2c) [ 779.606094][ T4683] usbhid 6-1:1.0: couldn't find an input interrupt endpoint [ 779.661589][ T4683] usb 6-1: USB disconnect, device number 3 08:16:46 executing program 0: openat$nvram(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) pselect6(0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000380), 0x0) [ 780.161320][T21724] IPVS: set_ctl: invalid protocol: 0 172.20.20.0:0 08:16:46 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x4, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:46 executing program 4: openat$nvram(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) pselect6(0x40, &(0x7f00000002c0), &(0x7f0000000300)={0x4}, 0x0, 0x0, 0x0) 08:16:46 executing program 5: r0 = socket$can_bcm(0x1d, 0x2, 0x2) sendmsg$can_bcm(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f00000018c0)={0x0}}, 0x0) 08:16:46 executing program 3: bpf$MAP_CREATE(0x0, 0x0, 0x300) 08:16:47 executing program 0: socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETLINK(r0, 0x8912, 0x400308) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000002140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe50}, 0x48) timer_create(0x0, 0x0, &(0x7f0000000200)) timer_settime(0x0, 0x1, &(0x7f0000000bc0)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0) 08:16:47 executing program 4: unshare(0x42020d00) 08:16:47 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x5, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:47 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x68, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:47 executing program 5: syz_open_dev$char_usb(0xc, 0xb4, 0x0) syz_io_uring_setup(0x620, &(0x7f0000000440), &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000004c0), &(0x7f0000000500)) 08:16:47 executing program 3: syz_genetlink_get_family_id$l2tp(&(0x7f0000000680), 0xffffffffffffffff) 08:16:48 executing program 4: r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f0000000ac0)={0x10, 0x1405, 0x616}, 0x10}}, 0x0) 08:16:48 executing program 5: r0 = socket$inet(0x2, 0xa, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, 0x0) 08:16:48 executing program 3: pselect6(0x0, 0x0, &(0x7f0000000440), 0x0, 0x0, 0x0) 08:16:48 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x6, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:49 executing program 4: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_MAKE_EQUIV(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={0x0, 0x28}}, 0x0) 08:16:49 executing program 0: syz_open_dev$binderN(0x0, 0x0, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000001940), 0x0, 0x0) ioctl$IOCTL_VMCI_VERSION(r0, 0x79f, 0x0) 08:16:49 executing program 5: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x222}, 0x48) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x1f, 0xf0ffff, &(0x7f00000000c0)="b9ff04c6630d698cb89e0bf088ca1fffffff14000000632f77fbac14143fee", 0x0, 0x2f, 0x0, 0x0, 0x66, &(0x7f0000000000), &(0x7f0000000100)="41c7da095e7b176740f1f86467199b977eddc5b973616d57bc43912a0253fb467f313a57476e0b32f70ee9ab713b5c3183e1be72d833a1e9c791c7a2353e5587581641d2121f6c46bcff94f9512e6d062a1ed590a4569086ce75ec5c94395dd23effa02d5979"}, 0x28) 08:16:49 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x7, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:49 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x6c, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:50 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000540)={'wpan0\x00'}) 08:16:50 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$can_raw(0x1d, 0x3, 0x1) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0) dup2(r0, r1) 08:16:50 executing program 3: syz_io_uring_setup(0x4cd8, &(0x7f00000005c0)={0x0, 0x0, 0x4}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000640), &(0x7f0000000680)) 08:16:50 executing program 5: openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000001900), 0x400, 0x0) 08:16:50 executing program 4: openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000004380), 0x40, 0x0) 08:16:51 executing program 3: syz_open_dev$swradio(0x0, 0x0, 0x2) socket$inet(0x2, 0x0, 0x0) setsockopt$inet_MCAST_LEAVE_GROUP(0xffffffffffffffff, 0x0, 0x2d, 0x0, 0x0) getsockname$l2tp(0xffffffffffffffff, 0x0, 0x0) 08:16:51 executing program 4: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000540)={'wpan0\x00'}) fork() 08:16:51 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x8, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:51 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_SEC_KEY(r0, 0x0, 0x0) 08:16:51 executing program 5: syz_io_uring_setup(0x2284, &(0x7f00000001c0)={0x0, 0x0, 0x20}, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280)) 08:16:51 executing program 3: clock_gettime(0x0, &(0x7f0000000000)) clock_gettime(0x4, &(0x7f0000000140)) 08:16:52 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x74, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:52 executing program 0: bpf$OBJ_GET_MAP(0x12, &(0x7f0000002d00)={0x0, 0x0, 0x18}, 0x10) 08:16:52 executing program 4: r0 = socket$inet_mptcp(0x2, 0x1, 0x106) ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, 0x0) 08:16:52 executing program 5: openat$nvram(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) pselect6(0x40, &(0x7f00000002c0)={0x8}, 0x0, 0x0, &(0x7f0000000380), &(0x7f0000000440)={&(0x7f00000003c0)={[0x100000001]}, 0x8}) 08:16:52 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x9, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:52 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x35f}]}) 08:16:52 executing program 4: socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000001f00), 0xffffffffffffffff) 08:16:52 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_LBT_MODE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), r0) delete_module(0x0, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) 08:16:52 executing program 5: r0 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x0, &(0x7f0000000180), 0x8) 08:16:53 executing program 3: syz_io_uring_setup(0xd21, &(0x7f0000000000), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000002000/0x2000)=nil, &(0x7f0000000080), 0x0) 08:16:53 executing program 0: syz_io_uring_setup(0x0, &(0x7f0000000000), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0) socketpair(0x0, 0x0, 0x0, &(0x7f0000005f00)) 08:16:53 executing program 4: socket(0x2, 0x0, 0xc85) 08:16:53 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x7a, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:53 executing program 5: r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$AUDIT_MAKE_EQUIV(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000200)=ANY=[], 0x28}}, 0x0) 08:16:53 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0xf, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:53 executing program 3: pselect6(0x0, 0x0, 0x0, &(0x7f0000000340), &(0x7f0000000380), 0x0) 08:16:54 executing program 0: clock_gettime(0x0, &(0x7f0000001880)) 08:16:54 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{}]}) 08:16:54 executing program 5: perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xdc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffff9c, &(0x7f0000000080)='/sys/kernel/profiling', 0x2, 0x0) sendfile(r0, r0, 0x0, 0x3) r1 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) renameat2(r1, 0x0, 0xffffffffffffffff, 0x0, 0x2) 08:16:54 executing program 3: syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000680)='ns/time\x00') 08:16:54 executing program 0: shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000080)=""/176) shmctl$IPC_INFO(0x0, 0x3, &(0x7f0000000280)=""/129) 08:16:54 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$EBT_SO_SET_COUNTERS(r0, 0x0, 0x81, &(0x7f00000003c0)={'filter\x00', 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x6, 0x1], 0x1, 0x0, 0x0, [{}]}, 0x88) openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0) [ 788.596306][T21910] kernel profiling enabled (shift: 0) 08:16:55 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000001c0)={'tunl0\x00', &(0x7f00000000c0)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2f, 0x0, @empty, @private}}}}) 08:16:55 executing program 0: openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x10b03, 0x0) 08:16:55 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x503, 0x9d, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5203}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 08:16:55 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x54, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {@wo_ht={{}, {}, @broadcast, @device_a, @from_mac}, 0x60, @default, 0x0, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x54}}, 0x0) 08:16:55 executing program 4: bpf$OBJ_GET_MAP(0x7, &(0x7f0000002d00)={0x0, 0x0, 0x18}, 0x10) 08:16:55 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000001c0)={'tunl0\x00', &(0x7f00000000c0)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @private}}}}) 08:16:56 executing program 3: clock_gettime(0x0, &(0x7f0000000000)) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) syz_open_dev$binderN(&(0x7f0000000240), 0x0, 0x0) syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) 08:16:56 executing program 4: bpf$OBJ_GET_MAP(0x15, 0x0, 0x0) [ 798.059178][ C0] ===================================================== [ 798.066229][ C0] BUG: KMSAN: uninit-value in profile_hits+0xbd1/0x12f0 [ 798.073197][ C0] CPU: 0 PID: 8223 Comm: syz-fuzzer Not tainted 5.12.0-rc6-syzkaller #0 [ 798.081548][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 798.091605][ C0] Call Trace: [ 798.094879][ C0] [ 798.097711][ C0] dump_stack+0x24c/0x2e0 [ 798.102055][ C0] kmsan_report+0xfb/0x1e0 [ 798.106569][ C0] __msan_warning+0x5c/0xa0 [ 798.111082][ C0] profile_hits+0xbd1/0x12f0 [ 798.115677][ C0] profile_tick+0x215/0x220 [ 798.120186][ C0] ? __pagevec_lru_add+0x59b/0x6a0 [ 798.125423][ C0] tick_sched_timer+0x472/0x5b0 [ 798.130307][ C0] ? tick_setup_sched_timer+0x5a0/0x5a0 [ 798.135861][ C0] __run_hrtimer+0x48b/0xd20 [ 798.140497][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 798.145576][ C0] ? hrtimer_init+0x570/0x570 [ 798.150266][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 798.156219][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 798.161902][ C0] [ 798.164845][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 798.170825][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x62/0x80 [ 798.177268][ C0] Code: 00 00 41 c6 04 24 00 81 e3 00 02 00 00 41 81 e7 00 02 00 00 48 85 db 74 0a f7 d3 44 21 fb 48 85 db 74 16 4d 85 ff 74 01 fb 5b <41> 5c 41 5e 41 5f 5d c3 e8 21 ca b6 f2 eb be 44 89 f7 e8 17 ca b6 [ 798.196884][ C0] RSP: 0000:ffff8881212db510 EFLAGS: 00000206 [ 798.202943][ C0] RAX: ffff8880bb45a050 RBX: 000000000000000f RCX: 00000000bb85a050 [ 798.210912][ C0] RDX: ffff8880bb85a050 RSI: 0000000000000200 RDI: ffff88810005a050 [ 798.218875][ C0] RBP: ffff8881212db528 R08: ffffea000000000f R09: ffff88813fffa000 [ 798.226837][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88810005a050 [ 798.234809][ C0] R13: 0000000000000000 R14: 0000000006a50005 R15: 0000000000000200 [ 798.242877][ C0] __pagevec_lru_add+0x59b/0x6a0 [ 798.247862][ C0] lru_cache_add+0x36d/0x390 [ 798.252448][ C0] add_to_page_cache_lru+0x4b8/0x530 [ 798.257790][ C0] page_cache_ra_unbounded+0x7c3/0xf40 [ 798.263253][ C0] do_page_cache_ra+0x289/0x2a0 [ 798.268103][ C0] do_sync_mmap_readahead+0xa8b/0xc10 [ 798.273477][ C0] filemap_fault+0x5da/0x2520 [ 798.278157][ C0] ext4_filemap_fault+0xbb/0x130 [ 798.283173][ C0] ? ext4_page_mkwrite+0x3470/0x3470 [ 798.288460][ C0] do_read_fault+0x9f6/0x11e0 [ 798.293165][ C0] ? lock_page_maybe_drop_mmap+0x850/0x850 [ 798.298972][ C0] handle_mm_fault+0x3be2/0x4ef0 [ 798.303917][ C0] do_user_addr_fault+0x159a/0x2650 [ 798.309135][ C0] __exc_page_fault+0xe3/0x340 [ 798.313902][ C0] ? asm_exc_page_fault+0x8/0x30 [ 798.318830][ C0] exc_page_fault+0x45/0x50 [ 798.325331][ C0] asm_exc_page_fault+0x1e/0x30 [ 798.330176][ C0] RIP: 0033:0x45756b [ 798.334066][ C0] Code: 89 04 24 e8 17 47 fb ff 48 8b 44 24 28 48 89 04 24 48 8b 44 24 40 48 89 44 24 08 48 8b 44 24 20 48 89 44 24 10 48 8b 54 24 38 <48> 8b 02 ff d0 90 48 8b 44 24 30 48 89 04 24 e8 01 45 fb ff 48 8b [ 798.353942][ C0] RSP: 002b:000000c000419d70 EFLAGS: 00010202 [ 798.360007][ C0] RAX: 0000000000000000 RBX: 000000c000080288 RCX: 0000000000000000 [ 798.367973][ C0] RDX: 00000000008ec870 RSI: 000000ba0d2e4722 RDI: 000000c012b38f80 [ 798.375934][ C0] RBP: 000000c000419db8 R08: 0000000000000000 R09: 0000000000000001 [ 798.383902][ C0] R10: 0000000000000001 R11: 000000c000014060 R12: 0000000000000002 [ 798.391862][ C0] R13: 000000c000001b00 R14: 000000c0119f7d40 R15: 0000000000000000 [ 798.399828][ C0] [ 798.402136][ C0] Local variable ----blocks@ext4_mpage_readpages created at: [ 798.409479][ C0] ext4_mpage_readpages+0x10e/0x4130 [ 798.414773][ C0] ext4_mpage_readpages+0x10e/0x4130 [ 798.420049][ C0] ===================================================== [ 798.426970][ C0] Disabling lock debugging due to kernel taint [ 798.433100][ C0] Kernel panic - not syncing: panic_on_kmsan set ... [ 798.439755][ C0] CPU: 0 PID: 8223 Comm: syz-fuzzer Tainted: G B 5.12.0-rc6-syzkaller #0 [ 798.449457][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 798.459515][ C0] Call Trace: [ 798.462781][ C0] [ 798.465611][ C0] dump_stack+0x24c/0x2e0 [ 798.469936][ C0] panic+0x4c6/0xea7 [ 798.473871][ C0] ? add_taint+0x17c/0x210 [ 798.478275][ C0] kmsan_report+0x1de/0x1e0 [ 798.482774][ C0] __msan_warning+0x5c/0xa0 [ 798.487269][ C0] profile_hits+0xbd1/0x12f0 [ 798.491852][ C0] profile_tick+0x215/0x220 [ 798.496339][ C0] ? __pagevec_lru_add+0x59b/0x6a0 [ 798.501443][ C0] tick_sched_timer+0x472/0x5b0 [ 798.506287][ C0] ? tick_setup_sched_timer+0x5a0/0x5a0 [ 798.511828][ C0] __run_hrtimer+0x48b/0xd20 [ 798.516428][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 798.521453][ C0] ? hrtimer_init+0x570/0x570 [ 798.526123][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 798.532007][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 798.537639][ C0] [ 798.540555][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 798.546571][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x62/0x80 [ 798.552987][ C0] Code: 00 00 41 c6 04 24 00 81 e3 00 02 00 00 41 81 e7 00 02 00 00 48 85 db 74 0a f7 d3 44 21 fb 48 85 db 74 16 4d 85 ff 74 01 fb 5b <41> 5c 41 5e 41 5f 5d c3 e8 21 ca b6 f2 eb be 44 89 f7 e8 17 ca b6 [ 798.572599][ C0] RSP: 0000:ffff8881212db510 EFLAGS: 00000206 [ 798.578670][ C0] RAX: ffff8880bb45a050 RBX: 000000000000000f RCX: 00000000bb85a050 [ 798.586628][ C0] RDX: ffff8880bb85a050 RSI: 0000000000000200 RDI: ffff88810005a050 [ 798.594589][ C0] RBP: ffff8881212db528 R08: ffffea000000000f R09: ffff88813fffa000 [ 798.602549][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88810005a050 [ 798.610512][ C0] R13: 0000000000000000 R14: 0000000006a50005 R15: 0000000000000200 [ 798.618477][ C0] __pagevec_lru_add+0x59b/0x6a0 [ 798.623417][ C0] lru_cache_add+0x36d/0x390 [ 798.628002][ C0] add_to_page_cache_lru+0x4b8/0x530 [ 798.633289][ C0] page_cache_ra_unbounded+0x7c3/0xf40 [ 798.638747][ C0] do_page_cache_ra+0x289/0x2a0 [ 798.643599][ C0] do_sync_mmap_readahead+0xa8b/0xc10 [ 798.648970][ C0] filemap_fault+0x5da/0x2520 [ 798.653649][ C0] ext4_filemap_fault+0xbb/0x130 [ 798.658582][ C0] ? ext4_page_mkwrite+0x3470/0x3470 [ 798.663863][ C0] do_read_fault+0x9f6/0x11e0 [ 798.668533][ C0] ? lock_page_maybe_drop_mmap+0x850/0x850 [ 798.674335][ C0] handle_mm_fault+0x3be2/0x4ef0 [ 798.679273][ C0] do_user_addr_fault+0x159a/0x2650 [ 798.684474][ C0] __exc_page_fault+0xe3/0x340 [ 798.689234][ C0] ? asm_exc_page_fault+0x8/0x30 [ 798.694163][ C0] exc_page_fault+0x45/0x50 [ 798.698654][ C0] asm_exc_page_fault+0x1e/0x30 [ 798.703485][ C0] RIP: 0033:0x45756b [ 798.707359][ C0] Code: 89 04 24 e8 17 47 fb ff 48 8b 44 24 28 48 89 04 24 48 8b 44 24 40 48 89 44 24 08 48 8b 44 24 20 48 89 44 24 10 48 8b 54 24 38 <48> 8b 02 ff d0 90 48 8b 44 24 30 48 89 04 24 e8 01 45 fb ff 48 8b [ 798.726951][ C0] RSP: 002b:000000c000419d70 EFLAGS: 00010202 [ 798.733006][ C0] RAX: 0000000000000000 RBX: 000000c000080288 RCX: 0000000000000000 [ 798.741071][ C0] RDX: 00000000008ec870 RSI: 000000ba0d2e4722 RDI: 000000c012b38f80 [ 798.749061][ C0] RBP: 000000c000419db8 R08: 0000000000000000 R09: 0000000000000001 [ 798.757033][ C0] R10: 0000000000000001 R11: 000000c000014060 R12: 0000000000000002 [ 798.765002][ C0] R13: 000000c000001b00 R14: 000000c0119f7d40 R15: 0000000000000000 [ 798.774442][ C0] Kernel Offset: disabled [ 798.778754][ C0] Rebooting in 86400 seconds..