=====================================================
BUG: KMSAN: kernel-infoleak-after-free in instrument_copy_to_user include/linux/instrumented.h:114 [inline]
BUG: KMSAN: kernel-infoleak-after-free in copy_to_user_iter lib/iov_iter.c:24 [inline]
BUG: KMSAN: kernel-infoleak-after-free in iterate_iovec include/linux/iov_iter.h:52 [inline]
BUG: KMSAN: kernel-infoleak-after-free in iterate_and_advance2 include/linux/iov_iter.h:302 [inline]
BUG: KMSAN: kernel-infoleak-after-free in iterate_and_advance include/linux/iov_iter.h:328 [inline]
BUG: KMSAN: kernel-infoleak-after-free in _copy_to_iter+0x4f6/0x33f0 lib/iov_iter.c:185
 instrument_copy_to_user include/linux/instrumented.h:114 [inline]
 copy_to_user_iter lib/iov_iter.c:24 [inline]
 iterate_iovec include/linux/iov_iter.h:52 [inline]
 iterate_and_advance2 include/linux/iov_iter.h:302 [inline]
 iterate_and_advance include/linux/iov_iter.h:328 [inline]
 _copy_to_iter+0x4f6/0x33f0 lib/iov_iter.c:185
 copy_to_iter include/linux/uio.h:220 [inline]
 simple_copy_to_iter net/core/datagram.c:521 [inline]
 __skb_datagram_iter+0x196/0x12c0 net/core/datagram.c:402
 skb_copy_datagram_iter+0x5b/0x1e0 net/core/datagram.c:535
 skb_copy_datagram_msg include/linux/skbuff.h:4132 [inline]
 packet_recvmsg+0xe2b/0x24e0 net/packet/af_packet.c:3526
 sock_recvmsg_nosec net/socket.c:1017 [inline]
 sock_recvmsg+0x2df/0x390 net/socket.c:1039
 ____sys_recvmsg+0x193/0x610 net/socket.c:2786
 ___sys_recvmsg+0x20b/0x850 net/socket.c:2828
 do_recvmmsg+0x40e/0xdf0 net/socket.c:2923
 __sys_recvmmsg net/socket.c:2997 [inline]
 __do_sys_recvmmsg net/socket.c:3020 [inline]
 __se_sys_recvmmsg net/socket.c:3013 [inline]
 __x64_sys_recvmmsg+0x383/0x500 net/socket.c:3013
 x64_sys_call+0x220d/0x3db0 arch/x86/include/generated/asm/syscalls_64.h:300
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xd9/0x210 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Uninit was created at:
 slab_free_hook mm/slub.c:2307 [inline]
 slab_free mm/slub.c:4643 [inline]
 kmem_cache_free+0x2a1/0xec0 mm/slub.c:4745
 skb_kfree_head net/core/skbuff.c:1046 [inline]
 skb_free_head+0x13c/0x3a0 net/core/skbuff.c:1060
 skb_release_data+0x9f7/0xac0 net/core/skbuff.c:1087
 skb_release_all net/core/skbuff.c:1152 [inline]
 __kfree_skb+0x6b/0x260 net/core/skbuff.c:1166
 consume_skb+0x83/0x230 net/core/skbuff.c:1398
 skb_free_datagram+0x1e/0x30 net/core/datagram.c:324
 netlink_recvmsg+0xad1/0xfe0 net/netlink/af_netlink.c:1961
 sock_recvmsg_nosec net/socket.c:1017 [inline]
 sock_recvmsg+0x2df/0x390 net/socket.c:1039
 __sys_recvfrom+0x282/0x550 net/socket.c:2230
 __do_sys_recvfrom net/socket.c:2245 [inline]
 __se_sys_recvfrom net/socket.c:2241 [inline]
 __x64_sys_recvfrom+0x130/0x200 net/socket.c:2241
 x64_sys_call+0x1f98/0x3db0 arch/x86/include/generated/asm/syscalls_64.h:46
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xd9/0x210 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f

Bytes 4-5 of 120 are uninitialized
Memory access of size 120 starts at ffff888116f048e4
Data copied to user address 00002000000002ca

CPU: 0 UID: 0 PID: 11085 Comm: syz.3.1996 Tainted: G        W           6.16.0-rc5-syzkaller-00053-g8c2e52ebbe88 #0 PREEMPT(none) 
Tainted: [W]=WARN
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
=====================================================