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"}}}}}, 0xfca) 00:46:48 executing program 1: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = clone3(0x0, 0x0) timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @tid=r2}, &(0x7f0000000080)) timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x14}, &(0x7f0000000200)=0x0) timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) fanotify_init(0x0, 0x0) socket$inet(0x2, 0x3, 0x0) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r4 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_int(r4, 0x0, 0xcf, &(0x7f0000000000), 0x4) 00:46:50 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:46:50 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_int(r0, 0x0, 0xcf, &(0x7f0000000000), 0x4) socket$inet6(0xa, 0x3, 0x0) 00:46:50 executing program 0: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000100)={'syzkaller1\x00', 0x2}) r4 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFADDR(r4, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', {0x7, 0x0, @empty}}) r5 = socket$packet(0x11, 0x2, 0x300) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$tun(0xffffffffffffffff, &(0x7f0000000140)={@void, @void, @eth={@broadcast, @random="30ffaff05d95", @val={@void}, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x4, 0x0, @empty, @multicast1}, "7b450093c435b6fcff000a917592e43713b32c0d"}}}}}, 0x3a) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x10004, 0x0) 00:46:50 executing program 3: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000100)={'syzkaller1\x00', 0x2}) r4 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFADDR(r4, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', {0x7, 0x0, @empty}}) socket$packet(0x11, 0x2, 0x300) write$tun(0xffffffffffffffff, &(0x7f0000000140)={@void, @void, @eth={@broadcast, @random="30ffaff05d95", @val={@void}, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x4, 0x0, @empty, @multicast1}, "7b450093c435b6fcff000a917592e43713b32c0d"}}}}}, 0x3a) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x0, 0x0) 00:46:50 executing program 5: perf_event_open(&(0x7f00000001c0)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) bind$pptp(r0, &(0x7f0000000040)={0x18, 0x2, {0x0, @local}}, 0x1e) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind(0xffffffffffffffff, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) 00:46:50 executing program 2: sendmmsg$inet(0xffffffffffffffff, &(0x7f00000006c0)=[{{0x0, 0xfffffffffffffec4, 0x0}}], 0x1, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x2}, 0x0, 0xfffffffdffffffff, 0xffffffffffffffff, 0x0) ppoll(0x0, 0x0, &(0x7f0000000180)={0x0, 0x3938700}, 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000200)) socketpair$unix(0x1, 0x0, 0x0, 0x0) r4 = dup(0xffffffffffffffff) bind$inet6(0xffffffffffffffff, 0x0, 0x0) dup3(r1, r2, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, 0x0, &(0x7f0000000240)) dup2(r0, r3) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r5) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x8c00) 00:46:50 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x5}, 0x1c) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22, 0x0, @ipv4={[], [], @multicast2}}, 0x1c) 00:46:50 executing program 1: socket$inet6_sctp(0xa, 0x0, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, &(0x7f0000000040)) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x0) pipe(0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="440000000406010900000000000000000a00000a05000100070000000900020073797a30"], 0x44}}, 0x0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, &(0x7f0000000040), 0x10) [ 569.463104][T15540] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'. 00:46:50 executing program 2: sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x2}, 0x0, 0x0, 0x2}, 0x0, 0xfffffffdffffffff, 0xffffffffffffffff, 0x0) ppoll(0x0, 0x0, &(0x7f0000000180)={0x0, 0x3938700}, 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000200)) dup(0xffffffffffffffff) bind$inet6(0xffffffffffffffff, 0x0, 0x0) dup3(r1, r2, 0x0) dup2(r0, r3) socketpair$unix(0x1, 0x1, 0x0, 0x0) getpeername$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x40}}, 0x0) sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) [ 569.549431][T15544] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'. 00:46:50 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_int(r0, 0x6, 0xc, 0x0, &(0x7f0000000040)) bind$inet6(0xffffffffffffffff, 0x0, 0x0) 00:46:50 executing program 1: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) close(r1) splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x4598, 0x0) ioctl$MON_IOCX_MFETCH(r2, 0xc0109207, &(0x7f0000000240)={&(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0xa, 0x4}) r3 = socket$inet6(0xa, 0x2, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$netlink(r4, &(0x7f0000005680)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000000c0)={0x18, 0x26, 0x1, 0x0, 0x0, "", [@nested={0x4}, @typed={0x4, 0xd}]}, 0x18}], 0x1}, 0x0) r5 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000100)='NLBL_CALIPSO\x00') sendmsg$NLBL_CALIPSO_C_LISTALL(r4, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0xa24d00c0}, 0xc, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="000369bd7000020000000800011c00000000080001000100000008a5500202000000080001000200000006b3dfb80300000000000000000000000000000000000000000000000000000000000000d515ee8ea8dc5937c7db509bea0fe74a408ad524455c8b9323a7904b13a9ae5909895a1a1602168d0d70669432f242f13c49b01aea949eaaf5fe56a63de2e3f3c75109d6a1300af56e474861445dc55ac5287a65d1233c308f1892d8f9e45ef4334dc99cb7072c908a9a6397c8a2daf62264cb2478b757e47d8d7b9fda8a88329a2adee17dad967616f4c9e860ae97feff27ba60154c62b670170000000000"], 0x54}, 0x1, 0x0, 0x0, 0x4048800}, 0x8000) ioctl$sock_proto_private(r3, 0x89cb, &(0x7f0000000140)="73848bf8ebe805025e6623bb259b1e6361f93ba83a2870e781fc4bf6e28dee74e6511f95f601a81a4b5f1d053db23d9099af1068f35210b5c174a6f5980358f85e293d6d7aac") sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet6_IPV6_DSTOPTS(0xffffffffffffffff, 0x29, 0x3b, &(0x7f0000000340)={0x2c, 0x1b, [], [@hao={0xc9, 0x10, @mcast1}, @ra={0x5, 0x2, 0xf881}, @padn={0x1, 0x1, [0x0]}, @pad1, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @enc_lim={0x4, 0x1, 0x2}, @generic={0x80, 0x99, "010026429214cced01ebcc790ff3df849666369f3f91028522047558b0cad58b1013b17e1e5f3047603921d167fbcc955629aa9638ec66d975178b72644c3435aeb06f744c0f7defaf613a679355b4e0b9fc69b41fe3b518521b9d6391be8b4fde6bd396f08fbe7604f33ca16eee83d7313c99727e3ed1dc9fe730281a19588a174f9b37bac068fc74b7f9773e333203f784b24112a4a2cba6"}, @hao={0xc9, 0x10, @private2={0xfc, 0x2, [], 0x1}}, @enc_lim={0x4, 0x1, 0x2}, @padn={0x1, 0x1, [0x0]}]}, 0xe8) sendmmsg(r3, &(0x7f000000ac80), 0x66, 0x8) r6 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$SNAPSHOT_GET_IMAGE_SIZE(r2, 0x8008330e, &(0x7f0000000000)) getsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f0000000440)={{{@in6=@ipv4={[], [], @initdev}, @in=@remote}}, {{@in6=@private0}, 0x0, @in=@broadcast}}, &(0x7f0000000040)=0xe8) 00:46:51 executing program 2: sendmmsg$inet(0xffffffffffffffff, &(0x7f00000006c0), 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0xfffffffdffffffff, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x9, 0x0) ppoll(0x0, 0x0, &(0x7f0000000180)={0x0, 0x3938700}, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200)) socketpair$unix(0x1, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) bind$inet6(0xffffffffffffffff, 0x0, 0x0) dup3(r0, r1, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x48, &(0x7f00000003c0)=[@in6={0xa, 0x4e22, 0x0, @empty, 0x7fff}, @in6={0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}, @in={0x2, 0x4e22, @remote}]}, &(0x7f0000000240)=0x10) dup2(0xffffffffffffffff, r2) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) getpeername$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040)) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, 0x0, 0x0) 00:46:51 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:46:51 executing program 1: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000001c80)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int={0x0, 0x0, 0x0, 0x1, 0x5, 0x0, 0x0, 0x0, 0x5}]}}, &(0x7f0000000340)=""/142, 0x2a, 0x8e, 0x8}, 0x20) 00:46:51 executing program 2: sendmmsg$inet(0xffffffffffffffff, &(0x7f00000006c0), 0x0, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000200)) bind$inet6(0xffffffffffffffff, 0x0, 0x0) dup3(r1, r2, 0x0) dup2(r0, r3) socketpair$unix(0x1, 0x0, 0x0, 0x0) getpeername$packet(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, 0x0, 0x0) 00:46:51 executing program 1: r0 = socket(0x1, 0x803, 0x0) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = getpid() r4 = pidfd_open(r3, 0x0) dup2(r2, r4) getsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) ppoll(0x0, 0x0, 0x0, 0x0, 0xd0ffffff) 00:46:51 executing program 0: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000100)={'syzkaller1\x00', 0x2}) r4 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFADDR(r4, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', {0x7, 0x0, @empty}}) r5 = socket$packet(0x11, 0x2, 0x300) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$tun(0xffffffffffffffff, &(0x7f0000000140)={@void, @void, @eth={@broadcast, @random="30ffaff05d95", @val={@void}, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x4, 0x0, @empty, @multicast1}, "7b450093c435b6fcff000a917592e43713b32c0d"}}}}}, 0x3a) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x10004, 0x0) 00:46:51 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone3(0x0, 0x0) r2 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_int(r2, 0x0, 0xd1, &(0x7f0000000000), 0x4) 00:46:51 executing program 3: r0 = socket$pptp(0x18, 0x1, 0x2) bind$pptp(r0, &(0x7f0000000040)={0x18, 0x2, {0x3, @local}}, 0x1e) bind(0xffffffffffffffff, &(0x7f0000000080)=@generic={0x0, "000001000000000008fc9d71fc00000000000000f8ffff002e0b3836005404b0d6301a4ce875f2e3ff5f163ee340b76795008000f8000000000104003c5811039e15775027ecce66fd792bbf0e5bf5ff9b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ff42c65400"}, 0x80) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) socket(0x0, 0x0, 0x0) bind(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) 00:46:52 executing program 5: sendmmsg$inet(0xffffffffffffffff, &(0x7f00000006c0)=[{{0x0, 0xfffffffffffffec4, 0x0}}], 0x1, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x2}, 0x0, 0x0, 0x2}, 0x0, 0xfffffffdffffffff, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, &(0x7f0000000000), 0x9, 0x2) ppoll(0x0, 0x0, &(0x7f0000000180)={0x0, 0x3938700}, 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000200)) socketpair$unix(0x1, 0x1, 0x0, 0x0) r4 = dup(0xffffffffffffffff) bind$inet6(0xffffffffffffffff, 0x0, 0x0) dup3(r1, r2, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x9c, &(0x7f00000003c0)=[@in6={0xa, 0x4e22, 0x6, @empty, 0x7fff}, @in6={0xa, 0x0, 0x6f, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xa4d}, @in6={0xa, 0x4e24, 0x9, @mcast2, 0x6}, @in6={0xa, 0x4e23, 0x0, @ipv4={[], [], @multicast1}}, @in={0x2, 0x4e22, @remote}, @in6={0xa, 0x4e21, 0x3, @mcast1, 0x9}]}, &(0x7f0000000240)=0x10) dup2(r0, r3) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) getpeername$packet(r6, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@\x00\x00\x00$\x00\v\r\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=r7, @ANYBLOB="000000eaffffffff000002000800018000000000000000000800010000000000f50004"], 0x40}}, 0x0) sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x8c00) 00:46:52 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="440000000406010900000000000000000a00000a0500010007"], 0x44}}, 0x0) [ 571.225915][T15622] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.3'. 00:46:52 executing program 3: 00:46:52 executing program 3: 00:46:52 executing program 2: 00:46:53 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:46:53 executing program 1: 00:46:53 executing program 3: 00:46:53 executing program 2: 00:46:53 executing program 0: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000100)={'syzkaller1\x00', 0x2}) r4 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFADDR(r4, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', {0x7, 0x0, @empty}}) r5 = socket$packet(0x11, 0x2, 0x300) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$tun(0xffffffffffffffff, &(0x7f0000000140)={@void, @void, @eth={@broadcast, @random="30ffaff05d95", @val={@void}, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x4, 0x0, @empty, @multicast1}, "7b450093c435b6fcff000a917592e43713b32c0d"}}}}}, 0x3a) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x0, 0x0) 00:46:53 executing program 2: 00:46:53 executing program 1: 00:46:53 executing program 5: 00:46:53 executing program 3: 00:46:53 executing program 1: 00:46:53 executing program 2: 00:46:53 executing program 3: 00:46:53 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:46:53 executing program 1: 00:46:53 executing program 2: 00:46:53 executing program 3: 00:46:54 executing program 0: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000100)={'syzkaller1\x00', 0x2}) r4 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFADDR(r4, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', {0x7, 0x0, @empty}}) r5 = socket$packet(0x11, 0x2, 0x300) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$tun(0xffffffffffffffff, &(0x7f0000000140)={@void, @void, @eth={@broadcast, @random="30ffaff05d95", @val={@void}, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x4, 0x0, @empty, @multicast1}, "7b450093c435b6fcff000a917592e43713b32c0d"}}}}}, 0x3a) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x0, 0x0) 00:46:54 executing program 2: 00:46:54 executing program 1: 00:46:54 executing program 3: 00:46:54 executing program 5: 00:46:54 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:46:54 executing program 1: 00:46:54 executing program 3: 00:46:54 executing program 2: 00:46:54 executing program 3: 00:46:54 executing program 1: 00:46:54 executing program 2: 00:46:55 executing program 0: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000100)={'syzkaller1\x00', 0x2}) r4 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_inet_SIOCSIFADDR(r4, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', {0x7, 0x0, @empty}}) r5 = socket$packet(0x11, 0x2, 0x300) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$tun(0xffffffffffffffff, &(0x7f0000000140)={@void, @void, @eth={@broadcast, @random="30ffaff05d95", @val={@void}, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x4, 0x0, @empty, @multicast1}, "7b450093c435b6fcff000a917592e43713b32c0d"}}}}}, 0x3a) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x0, 0x0) 00:46:55 executing program 1: 00:46:55 executing program 3: 00:46:55 executing program 2: 00:46:55 executing program 5: 00:46:55 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:46:55 executing program 2: 00:46:55 executing program 1: 00:46:55 executing program 3: 00:46:55 executing program 1: 00:46:56 executing program 2: 00:46:56 executing program 3: 00:46:57 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:46:57 executing program 1: 00:46:57 executing program 3: 00:46:57 executing program 5: 00:46:57 executing program 2: 00:46:57 executing program 0: 00:46:57 executing program 1: 00:46:57 executing program 2: 00:46:57 executing program 3: 00:46:57 executing program 0: 00:46:57 executing program 1: 00:46:57 executing program 2: 00:46:58 executing program 0: 00:46:58 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:46:58 executing program 3: 00:46:58 executing program 1: 00:46:58 executing program 2: 00:46:58 executing program 5: 00:46:58 executing program 1: 00:46:59 executing program 3: 00:46:59 executing program 2: 00:46:59 executing program 0: 00:46:59 executing program 0: 00:46:59 executing program 1: 00:46:59 executing program 3: 00:46:59 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:46:59 executing program 2: 00:46:59 executing program 0: 00:46:59 executing program 1: 00:46:59 executing program 3: 00:46:59 executing program 5: 00:46:59 executing program 3: 00:46:59 executing program 2: 00:46:59 executing program 0: 00:46:59 executing program 1: 00:47:00 executing program 1: 00:47:00 executing program 3: 00:47:00 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, 0x0) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:47:00 executing program 2: 00:47:00 executing program 0: 00:47:00 executing program 1: 00:47:00 executing program 3: 00:47:00 executing program 5: 00:47:00 executing program 1: 00:47:00 executing program 2: 00:47:00 executing program 3: 00:47:00 executing program 0: 00:47:00 executing program 2: 00:47:00 executing program 0: 00:47:01 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, 0x0) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:47:01 executing program 3: 00:47:01 executing program 1: 00:47:01 executing program 2: 00:47:01 executing program 0: 00:47:01 executing program 5: 00:47:01 executing program 1: 00:47:01 executing program 0: 00:47:01 executing program 3: 00:47:01 executing program 2: 00:47:01 executing program 1: 00:47:01 executing program 2: 00:47:02 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, 0x0) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:47:02 executing program 3: 00:47:02 executing program 0: 00:47:02 executing program 1: 00:47:02 executing program 2: 00:47:02 executing program 5: 00:47:02 executing program 1: 00:47:02 executing program 3: 00:47:02 executing program 0: 00:47:02 executing program 2: 00:47:02 executing program 3: 00:47:02 executing program 1: 00:47:02 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:47:02 executing program 0: 00:47:02 executing program 2: 00:47:02 executing program 3: 00:47:02 executing program 1: 00:47:02 executing program 5: 00:47:03 executing program 2: 00:47:03 executing program 0: 00:47:03 executing program 1: 00:47:03 executing program 3: 00:47:03 executing program 2: 00:47:03 executing program 1: 00:47:03 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:47:03 executing program 0: 00:47:03 executing program 3: 00:47:03 executing program 2: 00:47:03 executing program 1: 00:47:03 executing program 5: 00:47:03 executing program 2: 00:47:03 executing program 1: r0 = socket$inet(0x10, 0x2, 0x0) sendmsg(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="24000000520007031dfffd946fa2830081200a0009000300001d85680c1ba3a20400ff7e", 0x24}], 0x1}, 0x0) recvmmsg(r0, &(0x7f0000000080)=[{{0x0, 0x60000010, 0x0, 0x0, 0x0, 0x3f000000, 0xcc4}}], 0x210, 0x0, 0x0) 00:47:04 executing program 0: 00:47:04 executing program 3: 00:47:04 executing program 2: 00:47:04 executing program 3: 00:47:04 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:47:04 executing program 0: 00:47:04 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="02110000070000000000000000020000010005"], 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:47:04 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8c}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x0, 0x0, 0x0, 0x5}, 0x0) ioctl$FIDEDUPERANGE(0xffffffffffffffff, 0xc0189436, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000001000)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) vmsplice(r2, &(0x7f0000000000), 0x0, 0x0) sched_setattr(0x0, &(0x7f00000002c0)={0x38, 0x1, 0x0, 0x0, 0x3}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) sendmmsg(r4, &(0x7f0000001e00), 0x3fffffffffffe36, 0x0) 00:47:04 executing program 5: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x5}, 0x0) pipe(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) close(r2) 00:47:04 executing program 0: socketpair$unix(0x1, 0x40000000000001, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = fcntl$dupfd(r0, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0x93, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000200)='./file0\x00', 0x0) write$cgroup_type(r3, &(0x7f0000000180)='threaded\x00', 0x2d1ee37) [ 583.585448][T15900] not chained 20000 origins [ 583.590444][T15900] CPU: 0 PID: 15900 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 583.599129][T15900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 583.609203][T15900] Call Trace: [ 583.612607][T15900] dump_stack+0x1df/0x240 [ 583.617084][T15900] kmsan_internal_chain_origin+0x6f/0x130 [ 583.622856][T15900] ? kmsan_get_metadata+0x11d/0x180 [ 583.628083][T15900] ? __msan_get_context_state+0x9/0x20 [ 583.633565][T15900] ? apparmor_socket_getpeersec_dgram+0x12/0x30 [ 583.639838][T15900] ? security_socket_getpeersec_dgram+0x1bb/0x200 [ 583.646281][T15900] ? kmsan_get_metadata+0x4f/0x180 [ 583.651414][T15900] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 583.657385][T15900] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 583.663482][T15900] ? unix_stream_sendmsg+0x1a40/0x1ab0 [ 583.668976][T15900] ? kmsan_get_metadata+0x4f/0x180 [ 583.674118][T15900] ? kmsan_set_origin_checked+0x95/0xf0 [ 583.679722][T15900] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 583.685824][T15900] ? _copy_from_user+0x15b/0x260 [ 583.690797][T15900] ? kmsan_get_metadata+0x4f/0x180 [ 583.695936][T15900] __msan_chain_origin+0x50/0x90 [ 583.700901][T15900] __copy_msghdr_from_user+0x555/0xaf0 [ 583.706398][T15900] ? __msan_get_context_state+0x9/0x20 [ 583.711890][T15900] __sys_sendmmsg+0x558/0xd80 [ 583.716602][T15900] ? kmsan_get_metadata+0x4f/0x180 [ 583.721866][T15900] ? kmsan_get_metadata+0x4f/0x180 [ 583.727009][T15900] ? kmsan_internal_set_origin+0x75/0xb0 [ 583.732664][T15900] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 583.738597][T15900] ? kmsan_check_memory+0xd/0x10 [ 583.743560][T15900] ? _copy_to_user+0x12e/0x1d0 [ 583.748357][T15900] ? kmsan_get_metadata+0x11d/0x180 [ 583.753582][T15900] ? kmsan_get_metadata+0x11d/0x180 [ 583.759034][T15900] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 583.764867][T15900] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 583.771221][T15900] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 583.777150][T15900] __se_sys_sendmmsg+0xbd/0xe0 [ 583.781950][T15900] __x64_sys_sendmmsg+0x56/0x70 [ 583.786831][T15900] do_syscall_64+0xb0/0x150 [ 583.791369][T15900] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 583.797282][T15900] RIP: 0033:0x45c1d9 [ 583.801182][T15900] Code: Bad RIP value. [ 583.805277][T15900] RSP: 002b:00007f23f2483c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 583.813710][T15900] RAX: ffffffffffffffda RBX: 0000000000025a40 RCX: 000000000045c1d9 [ 583.821789][T15900] RDX: 03fffffffffffe36 RSI: 0000000020001e00 RDI: 0000000000000006 [ 583.829780][T15900] RBP: 000000000078c088 R08: 0000000000000000 R09: 0000000000000000 [ 583.837773][T15900] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 583.845766][T15900] R13: 0000000000c9fb6f R14: 00007f23f24849c0 R15: 000000000078c04c [ 583.853770][T15900] Uninit was stored to memory at: [ 583.858822][T15900] kmsan_internal_chain_origin+0xad/0x130 [ 583.864562][T15900] __msan_chain_origin+0x50/0x90 [ 583.869522][T15900] __copy_msghdr_from_user+0x555/0xaf0 [ 583.875044][T15900] __sys_sendmmsg+0x558/0xd80 [ 583.879741][T15900] __se_sys_sendmmsg+0xbd/0xe0 [ 583.884528][T15900] __x64_sys_sendmmsg+0x56/0x70 [ 583.889400][T15900] do_syscall_64+0xb0/0x150 [ 583.893923][T15900] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 583.901124][T15900] [ 583.903464][T15900] Uninit was stored to memory at: [ 583.908691][T15900] kmsan_internal_chain_origin+0xad/0x130 [ 583.914436][T15900] __msan_chain_origin+0x50/0x90 [ 583.919394][T15900] __copy_msghdr_from_user+0x555/0xaf0 [ 583.924873][T15900] __sys_sendmmsg+0x558/0xd80 [ 583.929573][T15900] __se_sys_sendmmsg+0xbd/0xe0 [ 583.934365][T15900] __x64_sys_sendmmsg+0x56/0x70 [ 583.939251][T15900] do_syscall_64+0xb0/0x150 [ 583.943775][T15900] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 583.949673][T15900] [ 583.952006][T15900] Uninit was stored to memory at: [ 583.957049][T15900] kmsan_internal_chain_origin+0xad/0x130 [ 583.962792][T15900] __msan_chain_origin+0x50/0x90 [ 583.967751][T15900] __copy_msghdr_from_user+0x555/0xaf0 [ 583.973229][T15900] __sys_sendmmsg+0x558/0xd80 [ 583.977922][T15900] __se_sys_sendmmsg+0xbd/0xe0 [ 583.982701][T15900] __x64_sys_sendmmsg+0x56/0x70 [ 583.987569][T15900] do_syscall_64+0xb0/0x150 [ 583.992095][T15900] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 583.997985][T15900] [ 584.000420][T15900] Uninit was stored to memory at: [ 584.005467][T15900] kmsan_internal_chain_origin+0xad/0x130 [ 584.011203][T15900] __msan_chain_origin+0x50/0x90 [ 584.016166][T15900] __copy_msghdr_from_user+0x555/0xaf0 [ 584.021765][T15900] __sys_sendmmsg+0x558/0xd80 [ 584.026459][T15900] __se_sys_sendmmsg+0xbd/0xe0 [ 584.031237][T15900] __x64_sys_sendmmsg+0x56/0x70 [ 584.036107][T15900] do_syscall_64+0xb0/0x150 [ 584.040627][T15900] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 584.046527][T15900] [ 584.048870][T15900] Uninit was stored to memory at: [ 584.053918][T15900] kmsan_internal_chain_origin+0xad/0x130 [ 584.059741][T15900] __msan_chain_origin+0x50/0x90 [ 584.064702][T15900] __copy_msghdr_from_user+0x555/0xaf0 [ 584.070183][T15900] __sys_sendmmsg+0x558/0xd80 [ 584.074877][T15900] __se_sys_sendmmsg+0xbd/0xe0 [ 584.079662][T15900] __x64_sys_sendmmsg+0x56/0x70 [ 584.084660][T15900] do_syscall_64+0xb0/0x150 [ 584.089180][T15900] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 584.095075][T15900] [ 584.097435][T15900] Uninit was stored to memory at: [ 584.102476][T15900] kmsan_internal_chain_origin+0xad/0x130 [ 584.108201][T15900] __msan_chain_origin+0x50/0x90 [ 584.113164][T15900] __copy_msghdr_from_user+0x555/0xaf0 [ 584.118643][T15900] __sys_sendmmsg+0x558/0xd80 [ 584.123341][T15900] __se_sys_sendmmsg+0xbd/0xe0 [ 584.128130][T15900] __x64_sys_sendmmsg+0x56/0x70 [ 584.132999][T15900] do_syscall_64+0xb0/0x150 [ 584.137642][T15900] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 584.143536][T15900] [ 584.145869][T15900] Uninit was stored to memory at: [ 584.150998][T15900] kmsan_internal_chain_origin+0xad/0x130 [ 584.156735][T15900] __msan_chain_origin+0x50/0x90 [ 584.161687][T15900] __copy_msghdr_from_user+0x555/0xaf0 [ 584.167164][T15900] __sys_sendmmsg+0x558/0xd80 [ 584.171948][T15900] __se_sys_sendmmsg+0xbd/0xe0 [ 584.176733][T15900] __x64_sys_sendmmsg+0x56/0x70 [ 584.183517][T15900] do_syscall_64+0xb0/0x150 [ 584.188121][T15900] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 584.194018][T15900] [ 584.196364][T15900] Local variable ----msg_sys@__sys_sendmmsg created at: [ 584.203317][T15900] __sys_sendmmsg+0xb7/0xd80 [ 584.207930][T15900] __sys_sendmmsg+0xb7/0xd80 00:47:05 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="020700002200000000000000000000000200132f4a00000026bd700000000000010016004e21000002000b00910f000003070000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x6, 0x0, 0x0, 0x2}, 0x10}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:47:05 executing program 3: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x6000, 0x1) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f0000000080)=@filename='./file0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f0000000000)='ext3\x00', 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) 00:47:05 executing program 0: syz_emit_ethernet(0x7e, &(0x7f0000000280)={@link_local={0x3}, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "bf6e11", 0x8, 0x3a, 0x0, @remote, @mcast2, {[], @echo_request}}}}}, 0x0) 00:47:06 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="0210000902"], 0x10}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:47:07 executing program 0: perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0x93, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000200)='./file0\x00', 0x0) write$cgroup_type(r0, &(0x7f0000000180)='threaded\x00', 0x2d1ee37) 00:47:08 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0xfffffffffffffd10, 0x0, 0x0, 0x0, 0xfffffffffffffde4}}], 0x40000fd, 0x0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_all\x00', 0x275a, 0x0) dup2(r2, r0) [ 588.159892][T16328] not chained 30000 origins [ 588.164449][T16328] CPU: 0 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 588.173119][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 588.183184][T16328] Call Trace: [ 588.186486][T16328] dump_stack+0x1df/0x240 [ 588.190838][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 588.196569][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 588.201688][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 588.207589][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 588.212886][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 588.218094][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 588.223907][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 588.229980][T16328] ? kfree+0x61/0x30f0 [ 588.234059][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 588.239178][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 588.244747][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 588.250831][T16328] ? _copy_from_user+0x15b/0x260 [ 588.255780][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 588.260903][T16328] __msan_chain_origin+0x50/0x90 [ 588.265852][T16328] do_recvmmsg+0x105a/0x1ee0 [ 588.270483][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 588.275777][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 588.280815][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 588.285841][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 588.291739][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 588.296693][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 588.301559][T16328] do_syscall_64+0xb0/0x150 [ 588.306074][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 588.311967][T16328] RIP: 0033:0x45c1d9 [ 588.315851][T16328] Code: Bad RIP value. [ 588.319911][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 588.328327][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 588.336302][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 588.344277][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 588.352253][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 588.360231][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 588.368216][T16328] Uninit was stored to memory at: [ 588.373251][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 588.378980][T16328] __msan_chain_origin+0x50/0x90 [ 588.383926][T16328] do_recvmmsg+0x105a/0x1ee0 [ 588.388527][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 588.393481][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 588.398343][T16328] do_syscall_64+0xb0/0x150 [ 588.402854][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 588.408768][T16328] [ 588.411096][T16328] Uninit was stored to memory at: [ 588.416127][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 588.421848][T16328] __msan_chain_origin+0x50/0x90 [ 588.426795][T16328] do_recvmmsg+0x105a/0x1ee0 [ 588.431393][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 588.436334][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 588.441185][T16328] do_syscall_64+0xb0/0x150 [ 588.445693][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 588.451571][T16328] [ 588.453883][T16328] Uninit was stored to memory at: [ 588.458897][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 588.464614][T16328] __msan_chain_origin+0x50/0x90 [ 588.469563][T16328] do_recvmmsg+0x105a/0x1ee0 [ 588.474137][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 588.479058][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 588.483893][T16328] do_syscall_64+0xb0/0x150 [ 588.488385][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 588.494253][T16328] [ 588.496564][T16328] Uninit was stored to memory at: [ 588.501583][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 588.507287][T16328] __msan_chain_origin+0x50/0x90 [ 588.512247][T16328] do_recvmmsg+0x105a/0x1ee0 [ 588.516826][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 588.521749][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 588.526585][T16328] do_syscall_64+0xb0/0x150 [ 588.531075][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 588.536944][T16328] [ 588.539254][T16328] Uninit was stored to memory at: [ 588.544262][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 588.549962][T16328] __msan_chain_origin+0x50/0x90 [ 588.554882][T16328] do_recvmmsg+0x105a/0x1ee0 [ 588.559462][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 588.564383][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 588.569221][T16328] do_syscall_64+0xb0/0x150 [ 588.573706][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 588.579601][T16328] [ 588.581911][T16328] Uninit was stored to memory at: [ 588.586920][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 588.592640][T16328] __msan_chain_origin+0x50/0x90 [ 588.597591][T16328] do_recvmmsg+0x105a/0x1ee0 [ 588.602168][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 588.607090][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 588.611925][T16328] do_syscall_64+0xb0/0x150 [ 588.616416][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 588.622297][T16328] [ 588.624606][T16328] Uninit was stored to memory at: [ 588.629614][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 588.635317][T16328] __msan_chain_origin+0x50/0x90 [ 588.640241][T16328] do_recvmmsg+0x105a/0x1ee0 [ 588.644811][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 588.649733][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 588.654564][T16328] do_syscall_64+0xb0/0x150 [ 588.659072][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 588.664939][T16328] [ 588.667247][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 588.676177][T16328] do_recvmmsg+0xc5/0x1ee0 [ 588.680588][T16328] do_recvmmsg+0xc5/0x1ee0 [ 588.961470][T16330] not chained 40000 origins [ 588.966027][T16330] CPU: 0 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 588.974696][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 588.984756][T16330] Call Trace: [ 588.988053][T16330] dump_stack+0x1df/0x240 [ 588.992388][T16330] ? psi_group_change+0x1007/0x13c0 [ 588.997597][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 589.003325][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 589.008462][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 589.014399][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 589.019699][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 589.024911][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 589.030728][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 589.036804][T16330] ? kfree+0x61/0x30f0 [ 589.040889][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 589.046012][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 589.051569][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 589.057649][T16330] ? _copy_from_user+0x15b/0x260 [ 589.062593][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 589.067709][T16330] __msan_chain_origin+0x50/0x90 [ 589.072666][T16330] do_recvmmsg+0x105a/0x1ee0 [ 589.077300][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 589.082595][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 589.087630][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 589.092665][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 589.098568][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 589.103537][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 589.108399][T16330] do_syscall_64+0xb0/0x150 [ 589.112915][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 589.118808][T16330] RIP: 0033:0x45c1d9 [ 589.122699][T16330] Code: Bad RIP value. [ 589.126764][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 589.135231][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 589.143294][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 589.151277][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 589.159256][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 589.167241][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 589.175226][T16330] Uninit was stored to memory at: [ 589.180620][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 589.186376][T16330] __msan_chain_origin+0x50/0x90 [ 589.191326][T16330] do_recvmmsg+0x105a/0x1ee0 [ 589.195923][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 589.200878][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 589.205737][T16330] do_syscall_64+0xb0/0x150 [ 589.210257][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 589.216142][T16330] [ 589.218466][T16330] Uninit was stored to memory at: [ 589.223502][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 589.229228][T16330] __msan_chain_origin+0x50/0x90 [ 589.234173][T16330] do_recvmmsg+0x105a/0x1ee0 [ 589.238767][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 589.243717][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 589.248574][T16330] do_syscall_64+0xb0/0x150 [ 589.253085][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 589.258966][T16330] [ 589.261293][T16330] Uninit was stored to memory at: [ 589.266329][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 589.272055][T16330] __msan_chain_origin+0x50/0x90 [ 589.277001][T16330] do_recvmmsg+0x105a/0x1ee0 [ 589.281600][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 589.286550][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 589.291413][T16330] do_syscall_64+0xb0/0x150 [ 589.295926][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 589.301808][T16330] [ 589.304131][T16330] Uninit was stored to memory at: [ 589.309180][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 589.314900][T16330] __msan_chain_origin+0x50/0x90 [ 589.319842][T16330] do_recvmmsg+0x105a/0x1ee0 [ 589.324443][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 589.329388][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 589.334243][T16330] do_syscall_64+0xb0/0x150 [ 589.338755][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 589.344640][T16330] [ 589.346961][T16330] Uninit was stored to memory at: [ 589.351990][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 589.357712][T16330] __msan_chain_origin+0x50/0x90 [ 589.362668][T16330] do_recvmmsg+0x105a/0x1ee0 [ 589.367267][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 589.372210][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 589.377062][T16330] do_syscall_64+0xb0/0x150 [ 589.381570][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 589.387884][T16330] [ 589.390203][T16330] Uninit was stored to memory at: [ 589.395232][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 589.400957][T16330] __msan_chain_origin+0x50/0x90 [ 589.405899][T16330] do_recvmmsg+0x105a/0x1ee0 [ 589.410491][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 589.415433][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 589.420285][T16330] do_syscall_64+0xb0/0x150 [ 589.424792][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 589.430672][T16330] [ 589.432995][T16330] Uninit was stored to memory at: [ 589.438029][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 589.443756][T16330] __msan_chain_origin+0x50/0x90 [ 589.448697][T16330] do_recvmmsg+0x105a/0x1ee0 [ 589.453289][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 589.458234][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 589.463089][T16330] do_syscall_64+0xb0/0x150 [ 589.467601][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 589.473480][T16330] [ 589.475802][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 589.482485][T16330] do_recvmmsg+0xc5/0x1ee0 [ 589.486909][T16330] do_recvmmsg+0xc5/0x1ee0 [ 589.830228][T16328] not chained 50000 origins [ 589.834785][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 589.843446][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 589.853494][T16328] Call Trace: [ 589.856779][T16328] dump_stack+0x1df/0x240 [ 589.861108][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 589.866813][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 589.871912][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 589.877815][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 589.883088][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 589.888284][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 589.894079][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 589.900150][T16328] ? kfree+0x61/0x30f0 [ 589.904224][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 589.909341][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 589.914884][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 589.920987][T16328] ? _copy_from_user+0x15b/0x260 [ 589.925913][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 589.931009][T16328] __msan_chain_origin+0x50/0x90 [ 589.935951][T16328] do_recvmmsg+0x105a/0x1ee0 [ 589.940554][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 589.945844][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 589.950856][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 589.955884][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 589.961766][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 589.966714][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 589.971553][T16328] do_syscall_64+0xb0/0x150 [ 589.976059][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 589.981931][T16328] RIP: 0033:0x45c1d9 [ 589.985802][T16328] Code: Bad RIP value. [ 589.989852][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 589.998246][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 590.006216][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 590.014172][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 590.022127][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 590.030083][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 590.038136][T16328] Uninit was stored to memory at: [ 590.043149][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 590.048852][T16328] __msan_chain_origin+0x50/0x90 [ 590.053774][T16328] do_recvmmsg+0x105a/0x1ee0 [ 590.058352][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 590.063272][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 590.068110][T16328] do_syscall_64+0xb0/0x150 [ 590.072603][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 590.078472][T16328] [ 590.080781][T16328] Uninit was stored to memory at: [ 590.085789][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 590.091490][T16328] __msan_chain_origin+0x50/0x90 [ 590.096412][T16328] do_recvmmsg+0x105a/0x1ee0 [ 590.100986][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 590.105907][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 590.110742][T16328] do_syscall_64+0xb0/0x150 [ 590.115231][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 590.121099][T16328] [ 590.123406][T16328] Uninit was stored to memory at: [ 590.128437][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 590.134139][T16328] __msan_chain_origin+0x50/0x90 [ 590.139073][T16328] do_recvmmsg+0x105a/0x1ee0 [ 590.143658][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 590.148577][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 590.153409][T16328] do_syscall_64+0xb0/0x150 [ 590.157897][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 590.163871][T16328] [ 590.166178][T16328] Uninit was stored to memory at: [ 590.171186][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 590.176888][T16328] __msan_chain_origin+0x50/0x90 [ 590.181811][T16328] do_recvmmsg+0x105a/0x1ee0 [ 590.186386][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 590.191309][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 590.196146][T16328] do_syscall_64+0xb0/0x150 [ 590.200652][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 590.206519][T16328] [ 590.208826][T16328] Uninit was stored to memory at: [ 590.213833][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 590.219535][T16328] __msan_chain_origin+0x50/0x90 [ 590.224456][T16328] do_recvmmsg+0x105a/0x1ee0 [ 590.229028][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 590.233947][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 590.238786][T16328] do_syscall_64+0xb0/0x150 [ 590.243274][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 590.249227][T16328] [ 590.251532][T16328] Uninit was stored to memory at: [ 590.256540][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 590.262241][T16328] __msan_chain_origin+0x50/0x90 [ 590.267163][T16328] do_recvmmsg+0x105a/0x1ee0 [ 590.271737][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 590.276656][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 590.281490][T16328] do_syscall_64+0xb0/0x150 [ 590.285988][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 590.291863][T16328] [ 590.294168][T16328] Uninit was stored to memory at: [ 590.299181][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 590.304902][T16328] __msan_chain_origin+0x50/0x90 [ 590.309820][T16328] do_recvmmsg+0x105a/0x1ee0 [ 590.314393][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 590.319312][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 590.324150][T16328] do_syscall_64+0xb0/0x150 [ 590.328636][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 590.334509][T16328] [ 590.336820][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 590.343480][T16328] do_recvmmsg+0xc5/0x1ee0 [ 590.347878][T16328] do_recvmmsg+0xc5/0x1ee0 [ 590.593883][T16328] not chained 60000 origins [ 590.598433][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 590.607098][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 590.617144][T16328] Call Trace: [ 590.620438][T16328] dump_stack+0x1df/0x240 [ 590.624771][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 590.630497][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 590.635607][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 590.641501][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 590.646786][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 590.651984][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 590.657791][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 590.663859][T16328] ? kfree+0x61/0x30f0 [ 590.667929][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 590.673039][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 590.678580][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 590.684647][T16328] ? _copy_from_user+0x15b/0x260 [ 590.689585][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 590.694692][T16328] __msan_chain_origin+0x50/0x90 [ 590.699724][T16328] do_recvmmsg+0x105a/0x1ee0 [ 590.704342][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 590.709627][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 590.714651][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 590.719675][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 590.725568][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 590.730514][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 590.735369][T16328] do_syscall_64+0xb0/0x150 [ 590.739876][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 590.745869][T16328] RIP: 0033:0x45c1d9 [ 590.749751][T16328] Code: Bad RIP value. [ 590.753814][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 590.762331][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 590.770306][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 590.778274][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 590.786242][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 590.794209][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 590.802185][T16328] Uninit was stored to memory at: [ 590.807211][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 590.812927][T16328] __msan_chain_origin+0x50/0x90 [ 590.817866][T16328] do_recvmmsg+0x105a/0x1ee0 [ 590.822453][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 590.827391][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 590.832240][T16328] do_syscall_64+0xb0/0x150 [ 590.836861][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 590.842750][T16328] [ 590.845073][T16328] Uninit was stored to memory at: [ 590.850099][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 590.855908][T16328] __msan_chain_origin+0x50/0x90 [ 590.860840][T16328] do_recvmmsg+0x105a/0x1ee0 [ 590.865431][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 590.870364][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 590.875212][T16328] do_syscall_64+0xb0/0x150 [ 590.879714][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 590.885590][T16328] [ 590.887909][T16328] Uninit was stored to memory at: [ 590.892932][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 590.898659][T16328] __msan_chain_origin+0x50/0x90 [ 590.903597][T16328] do_recvmmsg+0x105a/0x1ee0 [ 590.908187][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 590.913124][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 590.917973][T16328] do_syscall_64+0xb0/0x150 [ 590.922472][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 590.928351][T16328] [ 590.930670][T16328] Uninit was stored to memory at: [ 590.935694][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 590.941411][T16328] __msan_chain_origin+0x50/0x90 [ 590.946349][T16328] do_recvmmsg+0x105a/0x1ee0 [ 590.950955][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 590.955893][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 590.960745][T16328] do_syscall_64+0xb0/0x150 [ 590.965243][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 590.971121][T16328] [ 590.973442][T16328] Uninit was stored to memory at: [ 590.978465][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 590.984180][T16328] __msan_chain_origin+0x50/0x90 [ 590.989117][T16328] do_recvmmsg+0x105a/0x1ee0 [ 590.993704][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 590.998636][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 591.003521][T16328] do_syscall_64+0xb0/0x150 [ 591.008023][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 591.013898][T16328] [ 591.016219][T16328] Uninit was stored to memory at: [ 591.021240][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 591.026975][T16328] __msan_chain_origin+0x50/0x90 [ 591.031904][T16328] do_recvmmsg+0x105a/0x1ee0 [ 591.036479][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 591.041418][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 591.046253][T16328] do_syscall_64+0xb0/0x150 [ 591.050741][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 591.056607][T16328] [ 591.058913][T16328] Uninit was stored to memory at: [ 591.063923][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 591.069622][T16328] __msan_chain_origin+0x50/0x90 [ 591.074543][T16328] do_recvmmsg+0x105a/0x1ee0 [ 591.079118][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 591.084039][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 591.088878][T16328] do_syscall_64+0xb0/0x150 [ 591.093615][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 591.099482][T16328] [ 591.101805][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 591.108461][T16328] do_recvmmsg+0xc5/0x1ee0 [ 591.112860][T16328] do_recvmmsg+0xc5/0x1ee0 [ 591.221118][T16328] not chained 70000 origins [ 591.225658][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 591.234320][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 591.244369][T16328] Call Trace: [ 591.247665][T16328] dump_stack+0x1df/0x240 [ 591.251999][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 591.257718][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 591.262833][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 591.268727][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 591.274102][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 591.279306][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 591.289028][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 591.296140][T16328] ? kfree+0x61/0x30f0 [ 591.300212][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 591.305410][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 591.311222][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 591.317298][T16328] ? _copy_from_user+0x15b/0x260 [ 591.322247][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 591.327746][T16328] __msan_chain_origin+0x50/0x90 [ 591.333311][T16328] do_recvmmsg+0x105a/0x1ee0 [ 591.337948][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 591.343239][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 591.348267][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 591.353300][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 591.359208][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 591.364268][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 591.369124][T16328] do_syscall_64+0xb0/0x150 [ 591.373630][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 591.379516][T16328] RIP: 0033:0x45c1d9 [ 591.383485][T16328] Code: Bad RIP value. [ 591.387544][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 591.395953][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 591.403921][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 591.411895][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 591.419868][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 591.427842][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 591.435826][T16328] Uninit was stored to memory at: [ 591.440881][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 591.446603][T16328] __msan_chain_origin+0x50/0x90 [ 591.451538][T16328] do_recvmmsg+0x105a/0x1ee0 [ 591.456128][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 591.461072][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 591.465929][T16328] do_syscall_64+0xb0/0x150 [ 591.470436][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 591.476316][T16328] [ 591.478634][T16328] Uninit was stored to memory at: [ 591.483659][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 591.489375][T16328] __msan_chain_origin+0x50/0x90 [ 591.494310][T16328] do_recvmmsg+0x105a/0x1ee0 [ 591.498902][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 591.503835][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 591.508688][T16328] do_syscall_64+0xb0/0x150 [ 591.513193][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 591.519125][T16328] [ 591.521444][T16328] Uninit was stored to memory at: [ 591.526469][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 591.532709][T16328] __msan_chain_origin+0x50/0x90 [ 591.537648][T16328] do_recvmmsg+0x105a/0x1ee0 [ 591.542238][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 591.547182][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 591.552034][T16328] do_syscall_64+0xb0/0x150 [ 591.556626][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 591.562504][T16328] [ 591.564832][T16328] Uninit was stored to memory at: [ 591.569954][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 591.575677][T16328] __msan_chain_origin+0x50/0x90 [ 591.580622][T16328] do_recvmmsg+0x105a/0x1ee0 [ 591.585389][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 591.590345][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 591.595369][T16328] do_syscall_64+0xb0/0x150 [ 591.599892][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 591.605774][T16328] [ 591.608093][T16328] Uninit was stored to memory at: [ 591.613117][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 591.618837][T16328] __msan_chain_origin+0x50/0x90 [ 591.623772][T16328] do_recvmmsg+0x105a/0x1ee0 [ 591.628361][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 591.633307][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 591.638161][T16328] do_syscall_64+0xb0/0x150 [ 591.642663][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 591.648635][T16328] [ 591.650955][T16328] Uninit was stored to memory at: [ 591.655998][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 591.661719][T16328] __msan_chain_origin+0x50/0x90 [ 591.666656][T16328] do_recvmmsg+0x105a/0x1ee0 [ 591.671274][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 591.676212][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 591.681064][T16328] do_syscall_64+0xb0/0x150 [ 591.685568][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 591.691449][T16328] [ 591.693818][T16328] Uninit was stored to memory at: [ 591.699801][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 591.705519][T16328] __msan_chain_origin+0x50/0x90 [ 591.710458][T16328] do_recvmmsg+0x105a/0x1ee0 [ 591.715305][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 591.720248][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 591.725114][T16328] do_syscall_64+0xb0/0x150 [ 591.729629][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 591.735511][T16328] [ 591.737838][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 591.744515][T16328] do_recvmmsg+0xc5/0x1ee0 [ 591.748960][T16328] do_recvmmsg+0xc5/0x1ee0 [ 591.900147][T16328] not chained 80000 origins [ 591.904704][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 591.913371][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 591.923424][T16328] Call Trace: [ 591.926722][T16328] dump_stack+0x1df/0x240 [ 591.931067][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 591.936795][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 591.941907][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 591.947811][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 591.953102][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 591.958302][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 591.964110][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 591.970231][T16328] ? kfree+0x61/0x30f0 [ 591.974316][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 591.979429][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 591.984974][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 591.991309][T16328] ? _copy_from_user+0x15b/0x260 [ 591.996250][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 592.001364][T16328] __msan_chain_origin+0x50/0x90 [ 592.006310][T16328] do_recvmmsg+0x105a/0x1ee0 [ 592.010936][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 592.016224][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 592.021248][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 592.026272][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 592.032167][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 592.037115][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 592.041972][T16328] do_syscall_64+0xb0/0x150 [ 592.046483][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 592.052377][T16328] RIP: 0033:0x45c1d9 [ 592.056259][T16328] Code: Bad RIP value. [ 592.060321][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 592.068733][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 592.076706][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 592.084676][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 592.092647][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 592.100966][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 592.109726][T16328] Uninit was stored to memory at: [ 592.114796][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 592.120515][T16328] __msan_chain_origin+0x50/0x90 [ 592.125456][T16328] do_recvmmsg+0x105a/0x1ee0 [ 592.130079][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 592.135037][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 592.145708][T16328] do_syscall_64+0xb0/0x150 [ 592.150222][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 592.156102][T16328] [ 592.158422][T16328] Uninit was stored to memory at: [ 592.163450][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 592.169268][T16328] __msan_chain_origin+0x50/0x90 [ 592.174205][T16328] do_recvmmsg+0x105a/0x1ee0 [ 592.178803][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 592.183744][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 592.188607][T16328] do_syscall_64+0xb0/0x150 [ 592.193112][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 592.198990][T16328] [ 592.201308][T16328] Uninit was stored to memory at: [ 592.206336][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 592.212053][T16328] __msan_chain_origin+0x50/0x90 [ 592.216994][T16328] do_recvmmsg+0x105a/0x1ee0 [ 592.221582][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 592.226515][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 592.231449][T16328] do_syscall_64+0xb0/0x150 [ 592.235951][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 592.241827][T16328] [ 592.244144][T16328] Uninit was stored to memory at: [ 592.249175][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 592.256110][T16328] __msan_chain_origin+0x50/0x90 [ 592.261049][T16328] do_recvmmsg+0x105a/0x1ee0 [ 592.265636][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 592.270572][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 592.275422][T16328] do_syscall_64+0xb0/0x150 [ 592.279926][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 592.285809][T16328] [ 592.288216][T16328] Uninit was stored to memory at: [ 592.293242][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 592.298960][T16328] __msan_chain_origin+0x50/0x90 [ 592.303910][T16328] do_recvmmsg+0x105a/0x1ee0 [ 592.308502][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 592.313437][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 592.318285][T16328] do_syscall_64+0xb0/0x150 [ 592.322975][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 592.328853][T16328] [ 592.331172][T16328] Uninit was stored to memory at: [ 592.336193][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 592.341910][T16328] __msan_chain_origin+0x50/0x90 [ 592.346844][T16328] do_recvmmsg+0x105a/0x1ee0 [ 592.351467][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 592.356400][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 592.364112][T16328] do_syscall_64+0xb0/0x150 [ 592.373140][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 592.379020][T16328] [ 592.381338][T16328] Uninit was stored to memory at: [ 592.386367][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 592.392085][T16328] __msan_chain_origin+0x50/0x90 [ 592.397021][T16328] do_recvmmsg+0x105a/0x1ee0 [ 592.401612][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 592.406549][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 592.411401][T16328] do_syscall_64+0xb0/0x150 [ 592.415908][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 592.421791][T16328] [ 592.424114][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 592.430789][T16328] do_recvmmsg+0xc5/0x1ee0 [ 592.435204][T16328] do_recvmmsg+0xc5/0x1ee0 [ 592.584067][T16328] not chained 90000 origins [ 592.588615][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 592.597289][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 592.608318][T16328] Call Trace: [ 592.611621][T16328] dump_stack+0x1df/0x240 [ 592.615967][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 592.621693][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 592.626814][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 592.632714][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 592.638028][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 592.643237][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 592.649058][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 592.655136][T16328] ? kfree+0x61/0x30f0 [ 592.659214][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 592.664337][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 592.669895][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 592.675976][T16328] ? _copy_from_user+0x15b/0x260 [ 592.680919][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 592.686057][T16328] __msan_chain_origin+0x50/0x90 [ 592.691103][T16328] do_recvmmsg+0x105a/0x1ee0 [ 592.695733][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 592.701029][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 592.706070][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 592.711103][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 592.717006][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 592.721961][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 592.726820][T16328] do_syscall_64+0xb0/0x150 [ 592.731341][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 592.737235][T16328] RIP: 0033:0x45c1d9 [ 592.741124][T16328] Code: Bad RIP value. [ 592.745186][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 592.753602][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 592.761586][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 592.769575][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 592.777647][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 592.785627][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 592.793610][T16328] Uninit was stored to memory at: [ 592.798645][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 592.805237][T16328] __msan_chain_origin+0x50/0x90 [ 592.810357][T16328] do_recvmmsg+0x105a/0x1ee0 [ 592.814954][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 592.819899][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 592.824756][T16328] do_syscall_64+0xb0/0x150 [ 592.829466][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 592.835348][T16328] [ 592.837675][T16328] Uninit was stored to memory at: [ 592.842709][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 592.848439][T16328] __msan_chain_origin+0x50/0x90 [ 592.853472][T16328] do_recvmmsg+0x105a/0x1ee0 [ 592.858074][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 592.863047][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 592.868006][T16328] do_syscall_64+0xb0/0x150 [ 592.872520][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 592.878838][T16328] [ 592.881176][T16328] Uninit was stored to memory at: [ 592.886234][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 592.891957][T16328] __msan_chain_origin+0x50/0x90 [ 592.896903][T16328] do_recvmmsg+0x105a/0x1ee0 [ 592.901496][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 592.906436][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 592.911288][T16328] do_syscall_64+0xb0/0x150 [ 592.915794][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 592.921678][T16328] [ 592.923997][T16328] Uninit was stored to memory at: [ 592.929029][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 592.935451][T16328] __msan_chain_origin+0x50/0x90 [ 592.940397][T16328] do_recvmmsg+0x105a/0x1ee0 [ 592.945003][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 592.949950][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 592.954813][T16328] do_syscall_64+0xb0/0x150 [ 592.959319][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 592.965201][T16328] [ 592.967960][T16328] Uninit was stored to memory at: [ 592.972988][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 592.978707][T16328] __msan_chain_origin+0x50/0x90 [ 592.983662][T16328] do_recvmmsg+0x105a/0x1ee0 [ 592.988259][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 592.993202][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 592.998057][T16328] do_syscall_64+0xb0/0x150 [ 593.002560][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 593.008445][T16328] [ 593.010767][T16328] Uninit was stored to memory at: [ 593.015798][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 593.021524][T16328] __msan_chain_origin+0x50/0x90 [ 593.026462][T16328] do_recvmmsg+0x105a/0x1ee0 [ 593.031056][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 593.036028][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 593.040891][T16328] do_syscall_64+0xb0/0x150 [ 593.045399][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 593.051281][T16328] [ 593.053601][T16328] Uninit was stored to memory at: [ 593.058628][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 593.064354][T16328] __msan_chain_origin+0x50/0x90 [ 593.069310][T16328] do_recvmmsg+0x105a/0x1ee0 [ 593.073908][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 593.078846][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 593.083703][T16328] do_syscall_64+0xb0/0x150 [ 593.088214][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 593.094100][T16328] [ 593.096423][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 593.103107][T16328] do_recvmmsg+0xc5/0x1ee0 [ 593.113002][T16328] do_recvmmsg+0xc5/0x1ee0 [ 593.272265][T16330] not chained 100000 origins [ 593.276898][T16330] CPU: 1 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 593.285567][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 593.295624][T16330] Call Trace: [ 593.298923][T16330] dump_stack+0x1df/0x240 [ 593.303265][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 593.308993][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 593.314117][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 593.320024][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 593.325322][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 593.330530][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 593.336347][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 593.343374][T16330] ? kfree+0x61/0x30f0 [ 593.347456][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 593.352574][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 593.358126][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 593.364376][T16330] ? _copy_from_user+0x15b/0x260 [ 593.369322][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 593.374435][T16330] __msan_chain_origin+0x50/0x90 [ 593.379382][T16330] do_recvmmsg+0x105a/0x1ee0 [ 593.384015][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 593.389310][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 593.394339][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 593.399367][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 593.405274][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 593.410229][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 593.415083][T16330] do_syscall_64+0xb0/0x150 [ 593.419596][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 593.425492][T16330] RIP: 0033:0x45c1d9 [ 593.429378][T16330] Code: Bad RIP value. [ 593.433444][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 593.441860][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 593.449832][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 593.458019][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 593.466001][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 593.474064][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 593.482048][T16330] Uninit was stored to memory at: [ 593.487084][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 593.492806][T16330] __msan_chain_origin+0x50/0x90 [ 593.497750][T16330] do_recvmmsg+0x105a/0x1ee0 [ 593.502337][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 593.507278][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 593.512134][T16330] do_syscall_64+0xb0/0x150 [ 593.516637][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 593.522515][T16330] [ 593.524838][T16330] Uninit was stored to memory at: [ 593.529868][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 593.536888][T16330] __msan_chain_origin+0x50/0x90 [ 593.541835][T16330] do_recvmmsg+0x105a/0x1ee0 [ 593.546428][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 593.551366][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 593.556219][T16330] do_syscall_64+0xb0/0x150 [ 593.560722][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 593.566599][T16330] [ 593.568918][T16330] Uninit was stored to memory at: [ 593.573978][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 593.579699][T16330] __msan_chain_origin+0x50/0x90 [ 593.584639][T16330] do_recvmmsg+0x105a/0x1ee0 [ 593.589237][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 593.594173][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 593.599030][T16330] do_syscall_64+0xb0/0x150 [ 593.603540][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 593.609421][T16330] [ 593.611745][T16330] Uninit was stored to memory at: [ 593.616773][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 593.622496][T16330] __msan_chain_origin+0x50/0x90 [ 593.627439][T16330] do_recvmmsg+0x105a/0x1ee0 [ 593.632037][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 593.636994][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 593.641851][T16330] do_syscall_64+0xb0/0x150 [ 593.646358][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 593.652240][T16330] [ 593.654564][T16330] Uninit was stored to memory at: [ 593.659603][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 593.665323][T16330] __msan_chain_origin+0x50/0x90 [ 593.670261][T16330] do_recvmmsg+0x105a/0x1ee0 [ 593.674852][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 593.679793][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 593.684646][T16330] do_syscall_64+0xb0/0x150 [ 593.689150][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 593.695031][T16330] [ 593.697352][T16330] Uninit was stored to memory at: [ 593.702379][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 593.708107][T16330] __msan_chain_origin+0x50/0x90 [ 593.713055][T16330] do_recvmmsg+0x105a/0x1ee0 [ 593.717656][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 593.722602][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 593.727462][T16330] do_syscall_64+0xb0/0x150 [ 593.731972][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 593.737851][T16330] [ 593.740172][T16330] Uninit was stored to memory at: [ 593.745211][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 593.750935][T16330] __msan_chain_origin+0x50/0x90 [ 593.755880][T16330] do_recvmmsg+0x105a/0x1ee0 [ 593.760469][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 593.765492][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 593.770350][T16330] do_syscall_64+0xb0/0x150 [ 593.774858][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 593.780738][T16330] [ 593.783061][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 593.789736][T16330] do_recvmmsg+0xc5/0x1ee0 [ 593.794155][T16330] do_recvmmsg+0xc5/0x1ee0 00:47:15 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:47:15 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000180)={0x2, 0x4e21, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000040)=[@ip_retopts={{0x28, 0x0, 0x7, {[@noop, @timestamp_addr={0x44, 0x14, 0xe, 0x3, 0x0, [{@dev}, {@loopback}]}]}}}], 0x28}}], 0x1, 0x0) 00:47:15 executing program 2: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x4000, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:47:15 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000000)={0x80002012}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x80, 0x0) epoll_wait(r2, &(0x7f0000000040)=[{}], 0x1, 0xffffae84) connect$unix(r0, &(0x7f0000000140)=@abs, 0x6e) 00:47:15 executing program 5: getpid() sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2}, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000280)=0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000240)={0xa, 0xe, 0x0, @dev, 0x7}, 0x1c) timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) clock_nanosleep(0x0, 0x0, &(0x7f00000000c0), 0x0) [ 593.995097][T16328] not chained 110000 origins [ 593.999729][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 594.008396][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 594.018457][T16328] Call Trace: [ 594.021741][T16328] dump_stack+0x1df/0x240 [ 594.026071][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 594.031782][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 594.036883][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 594.042801][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 594.048072][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 594.053258][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 594.059056][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 594.065109][T16328] ? kfree+0x61/0x30f0 [ 594.069165][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 594.074261][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 594.079966][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 594.086032][T16328] ? _copy_from_user+0x15b/0x260 [ 594.090955][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 594.096055][T16328] __msan_chain_origin+0x50/0x90 [ 594.100988][T16328] do_recvmmsg+0x105a/0x1ee0 [ 594.105592][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 594.110864][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 594.115882][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 594.120891][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 594.126770][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 594.131699][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 594.136536][T16328] do_syscall_64+0xb0/0x150 [ 594.141028][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 594.146901][T16328] RIP: 0033:0x45c1d9 [ 594.150773][T16328] Code: Bad RIP value. [ 594.154836][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 594.163230][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 594.171184][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 594.179148][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 594.187102][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 594.195082][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 594.203047][T16328] Uninit was stored to memory at: [ 594.208058][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 594.213760][T16328] __msan_chain_origin+0x50/0x90 [ 594.218700][T16328] do_recvmmsg+0x105a/0x1ee0 [ 594.223273][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 594.228195][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 594.233043][T16328] do_syscall_64+0xb0/0x150 [ 594.237575][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 594.243455][T16328] [ 594.245762][T16328] Uninit was stored to memory at: [ 594.250771][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 594.256471][T16328] __msan_chain_origin+0x50/0x90 [ 594.261390][T16328] do_recvmmsg+0x105a/0x1ee0 [ 594.266155][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 594.271090][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 594.275926][T16328] do_syscall_64+0xb0/0x150 [ 594.280436][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 594.286302][T16328] [ 594.288608][T16328] Uninit was stored to memory at: [ 594.293616][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 594.299317][T16328] __msan_chain_origin+0x50/0x90 [ 594.304236][T16328] do_recvmmsg+0x105a/0x1ee0 [ 594.308913][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 594.313847][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 594.318680][T16328] do_syscall_64+0xb0/0x150 [ 594.323167][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 594.329051][T16328] [ 594.331361][T16328] Uninit was stored to memory at: [ 594.336369][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 594.342071][T16328] __msan_chain_origin+0x50/0x90 [ 594.347813][T16328] do_recvmmsg+0x105a/0x1ee0 [ 594.352390][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 594.357437][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 594.362275][T16328] do_syscall_64+0xb0/0x150 [ 594.366938][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 594.372809][T16328] [ 594.375119][T16328] Uninit was stored to memory at: [ 594.380130][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 594.385835][T16328] __msan_chain_origin+0x50/0x90 [ 594.390757][T16328] do_recvmmsg+0x105a/0x1ee0 [ 594.395332][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 594.400256][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 594.405094][T16328] do_syscall_64+0xb0/0x150 [ 594.409601][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 594.415471][T16328] [ 594.417789][T16328] Uninit was stored to memory at: [ 594.422800][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 594.428503][T16328] __msan_chain_origin+0x50/0x90 [ 594.433444][T16328] do_recvmmsg+0x105a/0x1ee0 [ 594.438019][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 594.443040][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 594.447877][T16328] do_syscall_64+0xb0/0x150 [ 594.452368][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 594.458235][T16328] [ 594.460543][T16328] Uninit was stored to memory at: [ 594.465554][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 594.471256][T16328] __msan_chain_origin+0x50/0x90 [ 594.476187][T16328] do_recvmmsg+0x105a/0x1ee0 [ 594.480761][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 594.485771][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 594.490610][T16328] do_syscall_64+0xb0/0x150 [ 594.495099][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 594.500983][T16328] [ 594.503304][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 594.510578][T16328] do_recvmmsg+0xc5/0x1ee0 [ 594.515936][T16328] do_recvmmsg+0xc5/0x1ee0 00:47:15 executing program 3: recvmmsg(0xffffffffffffffff, &(0x7f00000015c0)=[{{0x0, 0x0, 0x0}, 0x6c0}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/ptype\x00') preadv(r0, &(0x7f0000000480), 0x10000000000002a1, 0x10400003) 00:47:15 executing program 0: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="020700002200000000000000000000000200132f4a00000026bd700000000000010016004e21000002000b00910f000003070000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x6, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x10}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) [ 595.055556][T16330] not chained 120000 origins [ 595.060198][T16330] CPU: 1 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 595.068908][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 595.078968][T16330] Call Trace: [ 595.082271][T16330] dump_stack+0x1df/0x240 [ 595.086700][T16330] ? psi_group_change+0x1007/0x13c0 [ 595.091911][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 595.097643][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 595.102747][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 595.108629][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 595.113903][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 595.119090][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 595.124903][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 595.131923][T16330] ? kfree+0x61/0x30f0 [ 595.135985][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 595.141101][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 595.146634][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 595.152701][T16330] ? _copy_from_user+0x15b/0x260 [ 595.157626][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 595.162726][T16330] __msan_chain_origin+0x50/0x90 [ 595.167656][T16330] do_recvmmsg+0x105a/0x1ee0 [ 595.172258][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 595.177708][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 595.183067][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 595.188097][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 595.193981][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 595.198914][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 595.203751][T16330] do_syscall_64+0xb0/0x150 [ 595.208244][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 595.214123][T16330] RIP: 0033:0x45c1d9 [ 595.218015][T16330] Code: Bad RIP value. [ 595.222081][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 595.230476][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 595.238432][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 595.246822][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 595.254780][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 595.262736][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 595.270721][T16330] Uninit was stored to memory at: [ 595.275734][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 595.281526][T16330] __msan_chain_origin+0x50/0x90 [ 595.286452][T16330] do_recvmmsg+0x105a/0x1ee0 [ 595.291029][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 595.295952][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 595.300788][T16330] do_syscall_64+0xb0/0x150 [ 595.305279][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 595.311148][T16330] [ 595.313457][T16330] Uninit was stored to memory at: [ 595.318469][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 595.324169][T16330] __msan_chain_origin+0x50/0x90 [ 595.329093][T16330] do_recvmmsg+0x105a/0x1ee0 [ 595.333667][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 595.338590][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 595.343439][T16330] do_syscall_64+0xb0/0x150 [ 595.347931][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 595.353903][T16330] [ 595.356667][T16330] Uninit was stored to memory at: [ 595.361678][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 595.367381][T16330] __msan_chain_origin+0x50/0x90 [ 595.372306][T16330] do_recvmmsg+0x105a/0x1ee0 [ 595.377403][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 595.382336][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 595.387177][T16330] do_syscall_64+0xb0/0x150 [ 595.391669][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 595.397539][T16330] [ 595.400455][T16330] Uninit was stored to memory at: [ 595.405467][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 595.411171][T16330] __msan_chain_origin+0x50/0x90 [ 595.416097][T16330] do_recvmmsg+0x105a/0x1ee0 [ 595.420673][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 595.425597][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 595.430432][T16330] do_syscall_64+0xb0/0x150 [ 595.435008][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 595.444696][T16330] [ 595.447010][T16330] Uninit was stored to memory at: [ 595.452022][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 595.457724][T16330] __msan_chain_origin+0x50/0x90 [ 595.462649][T16330] do_recvmmsg+0x105a/0x1ee0 [ 595.467226][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 595.472148][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 595.477005][T16330] do_syscall_64+0xb0/0x150 [ 595.481493][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 595.487364][T16330] [ 595.489673][T16330] Uninit was stored to memory at: [ 595.494682][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 595.500385][T16330] __msan_chain_origin+0x50/0x90 [ 595.505307][T16330] do_recvmmsg+0x105a/0x1ee0 [ 595.509901][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 595.514825][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 595.519662][T16330] do_syscall_64+0xb0/0x150 [ 595.524149][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 595.530106][T16330] [ 595.532413][T16330] Uninit was stored to memory at: [ 595.537424][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 595.543646][T16330] __msan_chain_origin+0x50/0x90 [ 595.548567][T16330] do_recvmmsg+0x105a/0x1ee0 [ 595.553145][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 595.558069][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 595.562906][T16330] do_syscall_64+0xb0/0x150 [ 595.567395][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 595.573274][T16330] [ 595.575594][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 595.582265][T16330] do_recvmmsg+0xc5/0x1ee0 [ 595.586674][T16330] do_recvmmsg+0xc5/0x1ee0 00:47:17 executing program 2: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0x101}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x8}, 0x0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000280)=0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r2, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev, 0x7}, 0x1c) timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) clock_nanosleep(0x0, 0x0, &(0x7f00000000c0)={0x0, r3+10000000}, 0x0) getpeername(0xffffffffffffffff, 0x0, &(0x7f0000000200)) [ 596.716705][T16330] not chained 130000 origins [ 596.721478][T16330] CPU: 1 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 596.730155][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 596.741087][T16330] Call Trace: [ 596.744386][T16330] dump_stack+0x1df/0x240 [ 596.748740][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 596.754465][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 596.759581][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 596.765484][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 596.770778][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 596.775989][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 596.781804][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 596.787880][T16330] ? kfree+0x61/0x30f0 [ 596.792052][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 596.797177][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 596.802719][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 596.809047][T16330] ? _copy_from_user+0x15b/0x260 [ 596.813984][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 596.819083][T16330] __msan_chain_origin+0x50/0x90 [ 596.824023][T16330] do_recvmmsg+0x105a/0x1ee0 [ 596.828629][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 596.833920][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 596.838951][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 596.843974][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 596.849858][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 596.854801][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 596.859645][T16330] do_syscall_64+0xb0/0x150 [ 596.864141][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 596.870019][T16330] RIP: 0033:0x45c1d9 [ 596.873892][T16330] Code: Bad RIP value. [ 596.877939][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 596.886595][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 596.894553][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 596.902628][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 596.910942][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 596.918903][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 596.926869][T16330] Uninit was stored to memory at: [ 596.932844][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 596.938548][T16330] __msan_chain_origin+0x50/0x90 [ 596.943473][T16330] do_recvmmsg+0x105a/0x1ee0 [ 596.948053][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 596.952978][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 596.957820][T16330] do_syscall_64+0xb0/0x150 [ 596.962402][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 596.968271][T16330] [ 596.970580][T16330] Uninit was stored to memory at: [ 596.975593][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 596.981297][T16330] __msan_chain_origin+0x50/0x90 [ 596.986239][T16330] do_recvmmsg+0x105a/0x1ee0 [ 596.990817][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 596.995745][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 597.000582][T16330] do_syscall_64+0xb0/0x150 [ 597.005073][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 597.010945][T16330] [ 597.013257][T16330] Uninit was stored to memory at: [ 597.018286][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 597.023991][T16330] __msan_chain_origin+0x50/0x90 [ 597.028919][T16330] do_recvmmsg+0x105a/0x1ee0 [ 597.033493][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 597.038431][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 597.043271][T16330] do_syscall_64+0xb0/0x150 [ 597.047762][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 597.053634][T16330] [ 597.055947][T16330] Uninit was stored to memory at: [ 597.060957][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 597.066924][T16330] __msan_chain_origin+0x50/0x90 [ 597.071865][T16330] do_recvmmsg+0x105a/0x1ee0 [ 597.076444][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 597.081368][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 597.086320][T16330] do_syscall_64+0xb0/0x150 [ 597.090821][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 597.096715][T16330] [ 597.099030][T16330] Uninit was stored to memory at: [ 597.104045][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 597.109749][T16330] __msan_chain_origin+0x50/0x90 [ 597.114688][T16330] do_recvmmsg+0x105a/0x1ee0 [ 597.119264][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 597.124187][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 597.129027][T16330] do_syscall_64+0xb0/0x150 [ 597.133518][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 597.139416][T16330] [ 597.141725][T16330] Uninit was stored to memory at: [ 597.146735][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 597.152437][T16330] __msan_chain_origin+0x50/0x90 [ 597.157363][T16330] do_recvmmsg+0x105a/0x1ee0 [ 597.161938][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 597.166867][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 597.171700][T16330] do_syscall_64+0xb0/0x150 [ 597.176190][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 597.182060][T16330] [ 597.184370][T16330] Uninit was stored to memory at: [ 597.189379][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 597.195082][T16330] __msan_chain_origin+0x50/0x90 [ 597.200007][T16330] do_recvmmsg+0x105a/0x1ee0 [ 597.204602][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 597.209525][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 597.214360][T16330] do_syscall_64+0xb0/0x150 [ 597.218851][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 597.224719][T16330] [ 597.227039][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 597.233699][T16330] do_recvmmsg+0xc5/0x1ee0 [ 597.238098][T16330] do_recvmmsg+0xc5/0x1ee0 [ 597.410943][T16330] not chained 140000 origins [ 597.415581][T16330] CPU: 1 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 597.424688][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 597.434749][T16330] Call Trace: [ 597.438054][T16330] dump_stack+0x1df/0x240 [ 597.442432][T16330] ? psi_group_change+0x1007/0x13c0 [ 597.447643][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 597.453365][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 597.458484][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 597.464382][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 597.469678][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 597.474885][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 597.480701][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 597.487312][T16330] ? kfree+0x61/0x30f0 [ 597.491391][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 597.496508][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 597.502064][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 597.508153][T16330] ? _copy_from_user+0x15b/0x260 [ 597.513274][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 597.518400][T16330] __msan_chain_origin+0x50/0x90 [ 597.523350][T16330] do_recvmmsg+0x105a/0x1ee0 [ 597.527976][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 597.533269][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 597.538310][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 597.543336][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 597.549248][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 597.554211][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 597.559077][T16330] do_syscall_64+0xb0/0x150 [ 597.563594][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 597.569491][T16330] RIP: 0033:0x45c1d9 [ 597.573384][T16330] Code: Bad RIP value. [ 597.577447][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 597.586141][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 597.594726][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 597.602874][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 597.610845][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 597.618818][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 597.626798][T16330] Uninit was stored to memory at: [ 597.631827][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 597.637545][T16330] __msan_chain_origin+0x50/0x90 [ 597.642481][T16330] do_recvmmsg+0x105a/0x1ee0 [ 597.647085][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 597.652020][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 597.656900][T16330] do_syscall_64+0xb0/0x150 [ 597.661408][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 597.667288][T16330] [ 597.669607][T16330] Uninit was stored to memory at: [ 597.674628][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 597.680344][T16330] __msan_chain_origin+0x50/0x90 [ 597.685281][T16330] do_recvmmsg+0x105a/0x1ee0 [ 597.689871][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 597.694809][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 597.699661][T16330] do_syscall_64+0xb0/0x150 [ 597.704165][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 597.710045][T16330] [ 597.712364][T16330] Uninit was stored to memory at: [ 597.717404][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 597.723124][T16330] __msan_chain_origin+0x50/0x90 [ 597.728064][T16330] do_recvmmsg+0x105a/0x1ee0 [ 597.732660][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 597.737603][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 597.742458][T16330] do_syscall_64+0xb0/0x150 [ 597.746973][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 597.752858][T16330] [ 597.755183][T16330] Uninit was stored to memory at: [ 597.760217][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 597.765936][T16330] __msan_chain_origin+0x50/0x90 [ 597.770882][T16330] do_recvmmsg+0x105a/0x1ee0 [ 597.775475][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 597.780409][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 597.785258][T16330] do_syscall_64+0xb0/0x150 [ 597.789765][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 597.795645][T16330] [ 597.797961][T16330] Uninit was stored to memory at: [ 597.802983][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 597.808702][T16330] __msan_chain_origin+0x50/0x90 [ 597.813635][T16330] do_recvmmsg+0x105a/0x1ee0 [ 597.818226][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 597.823160][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 597.828011][T16330] do_syscall_64+0xb0/0x150 [ 597.832515][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 597.838393][T16330] [ 597.840711][T16330] Uninit was stored to memory at: [ 597.845734][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 597.851449][T16330] __msan_chain_origin+0x50/0x90 [ 597.856388][T16330] do_recvmmsg+0x105a/0x1ee0 [ 597.860979][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 597.865917][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 597.870770][T16330] do_syscall_64+0xb0/0x150 [ 597.875274][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 597.881151][T16330] [ 597.883470][T16330] Uninit was stored to memory at: [ 597.888497][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 597.894215][T16330] __msan_chain_origin+0x50/0x90 [ 597.899155][T16330] do_recvmmsg+0x105a/0x1ee0 [ 597.903743][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 597.908680][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 597.913529][T16330] do_syscall_64+0xb0/0x150 [ 597.918032][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 597.923911][T16330] [ 597.926232][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 597.932905][T16330] do_recvmmsg+0xc5/0x1ee0 [ 597.937325][T16330] do_recvmmsg+0xc5/0x1ee0 [ 598.079170][T16328] not chained 150000 origins [ 598.083796][T16328] CPU: 0 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 598.092451][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 598.102520][T16328] Call Trace: [ 598.105808][T16328] dump_stack+0x1df/0x240 [ 598.110126][T16328] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 598.116181][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 598.121887][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 598.126987][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 598.132872][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 598.138149][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 598.143336][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 598.149134][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 598.155188][T16328] ? kfree+0x61/0x30f0 [ 598.159245][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 598.164342][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 598.169878][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 598.175934][T16328] ? _copy_from_user+0x15b/0x260 [ 598.180860][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 598.185957][T16328] __msan_chain_origin+0x50/0x90 [ 598.190887][T16328] do_recvmmsg+0x105a/0x1ee0 [ 598.195490][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 598.200764][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 598.205775][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 598.210787][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 598.216669][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 598.222038][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 598.226882][T16328] do_syscall_64+0xb0/0x150 [ 598.231377][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 598.237269][T16328] RIP: 0033:0x45c1d9 [ 598.241143][T16328] Code: Bad RIP value. [ 598.245193][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 598.254907][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 598.262870][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 598.270826][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 598.278876][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 598.286833][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 598.294799][T16328] Uninit was stored to memory at: [ 598.299811][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 598.305601][T16328] __msan_chain_origin+0x50/0x90 [ 598.310523][T16328] do_recvmmsg+0x105a/0x1ee0 [ 598.315096][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 598.320019][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 598.324856][T16328] do_syscall_64+0xb0/0x150 [ 598.329345][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 598.335227][T16328] [ 598.337537][T16328] Uninit was stored to memory at: [ 598.342548][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 598.348249][T16328] __msan_chain_origin+0x50/0x90 [ 598.353169][T16328] do_recvmmsg+0x105a/0x1ee0 [ 598.357743][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 598.362676][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 598.367513][T16328] do_syscall_64+0xb0/0x150 [ 598.372002][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 598.377871][T16328] [ 598.380180][T16328] Uninit was stored to memory at: [ 598.385190][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 598.390897][T16328] __msan_chain_origin+0x50/0x90 [ 598.395818][T16328] do_recvmmsg+0x105a/0x1ee0 [ 598.400392][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 598.405316][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 598.410152][T16328] do_syscall_64+0xb0/0x150 [ 598.414641][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 598.420506][T16328] [ 598.422816][T16328] Uninit was stored to memory at: [ 598.427822][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 598.433616][T16328] __msan_chain_origin+0x50/0x90 [ 598.438550][T16328] do_recvmmsg+0x105a/0x1ee0 [ 598.443313][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 598.448233][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 598.453070][T16328] do_syscall_64+0xb0/0x150 [ 598.457575][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 598.463442][T16328] [ 598.465765][T16328] Uninit was stored to memory at: [ 598.470775][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 598.476476][T16328] __msan_chain_origin+0x50/0x90 [ 598.481397][T16328] do_recvmmsg+0x105a/0x1ee0 [ 598.485972][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 598.490892][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 598.495727][T16328] do_syscall_64+0xb0/0x150 [ 598.500560][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 598.506439][T16328] [ 598.508745][T16328] Uninit was stored to memory at: [ 598.513753][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 598.519454][T16328] __msan_chain_origin+0x50/0x90 [ 598.524379][T16328] do_recvmmsg+0x105a/0x1ee0 [ 598.528956][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 598.533878][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 598.538713][T16328] do_syscall_64+0xb0/0x150 [ 598.543201][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 598.549069][T16328] [ 598.551378][T16328] Uninit was stored to memory at: [ 598.556387][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 598.562086][T16328] __msan_chain_origin+0x50/0x90 [ 598.567007][T16328] do_recvmmsg+0x105a/0x1ee0 [ 598.574818][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 598.579761][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 598.584694][T16328] do_syscall_64+0xb0/0x150 [ 598.589196][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 598.595067][T16328] [ 598.597396][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 598.604055][T16328] do_recvmmsg+0xc5/0x1ee0 [ 598.608460][T16328] do_recvmmsg+0xc5/0x1ee0 [ 598.837942][T16330] not chained 160000 origins [ 598.842580][T16330] CPU: 1 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 598.851245][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 598.861301][T16330] Call Trace: [ 598.864602][T16330] dump_stack+0x1df/0x240 [ 598.868932][T16330] ? psi_group_change+0x1007/0x13c0 [ 598.874149][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 598.879881][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 598.885172][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 598.890722][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 598.895927][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 598.901741][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 598.907903][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 598.913100][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 598.918297][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 598.923408][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 598.928971][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 598.935055][T16330] ? _copy_from_user+0x15b/0x260 [ 598.940006][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 598.945127][T16330] __msan_chain_origin+0x50/0x90 [ 598.950073][T16330] do_recvmmsg+0x105a/0x1ee0 [ 598.954709][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 598.960013][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 598.965041][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 598.970070][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 598.975980][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 598.980939][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 598.985810][T16330] do_syscall_64+0xb0/0x150 [ 598.990339][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 598.996237][T16330] RIP: 0033:0x45c1d9 [ 599.000123][T16330] Code: Bad RIP value. [ 599.004184][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 599.012599][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 599.020588][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 599.028565][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 599.036545][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 599.044522][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 599.052505][T16330] Uninit was stored to memory at: [ 599.057542][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 599.063263][T16330] __msan_chain_origin+0x50/0x90 [ 599.068205][T16330] do_recvmmsg+0x105a/0x1ee0 [ 599.072796][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 599.077738][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 599.082594][T16330] do_syscall_64+0xb0/0x150 [ 599.087099][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 599.092982][T16330] [ 599.095301][T16330] Uninit was stored to memory at: [ 599.100327][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 599.106061][T16330] __msan_chain_origin+0x50/0x90 [ 599.111002][T16330] do_recvmmsg+0x105a/0x1ee0 [ 599.115600][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 599.120553][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 599.125403][T16330] do_syscall_64+0xb0/0x150 [ 599.129911][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 599.135790][T16330] [ 599.138109][T16330] Uninit was stored to memory at: [ 599.143132][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 599.148875][T16330] __msan_chain_origin+0x50/0x90 [ 599.153831][T16330] do_recvmmsg+0x105a/0x1ee0 [ 599.158445][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 599.163385][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 599.168238][T16330] do_syscall_64+0xb0/0x150 [ 599.172746][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 599.178628][T16330] [ 599.180945][T16330] Uninit was stored to memory at: [ 599.185988][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 599.191711][T16330] __msan_chain_origin+0x50/0x90 [ 599.196650][T16330] do_recvmmsg+0x105a/0x1ee0 [ 599.201243][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 599.206182][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 599.211037][T16330] do_syscall_64+0xb0/0x150 [ 599.215546][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 599.221425][T16330] [ 599.223746][T16330] Uninit was stored to memory at: [ 599.228775][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 599.234496][T16330] __msan_chain_origin+0x50/0x90 [ 599.239433][T16330] do_recvmmsg+0x105a/0x1ee0 [ 599.244030][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 599.249057][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 599.253909][T16330] do_syscall_64+0xb0/0x150 [ 599.258417][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 599.264296][T16330] [ 599.266617][T16330] Uninit was stored to memory at: [ 599.271642][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 599.277364][T16330] __msan_chain_origin+0x50/0x90 [ 599.282310][T16330] do_recvmmsg+0x105a/0x1ee0 [ 599.286912][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 599.291850][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 599.296701][T16330] do_syscall_64+0xb0/0x150 [ 599.301207][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 599.307089][T16330] [ 599.309410][T16330] Uninit was stored to memory at: [ 599.314441][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 599.320169][T16330] __msan_chain_origin+0x50/0x90 [ 599.325115][T16330] do_recvmmsg+0x105a/0x1ee0 [ 599.329707][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 599.334648][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 599.339504][T16330] do_syscall_64+0xb0/0x150 [ 599.344188][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 599.350067][T16330] [ 599.352392][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 599.359073][T16330] do_recvmmsg+0xc5/0x1ee0 [ 599.363490][T16330] do_recvmmsg+0xc5/0x1ee0 [ 599.551928][T16328] not chained 170000 origins [ 599.556571][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 599.565238][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 599.575327][T16328] Call Trace: [ 599.578632][T16328] dump_stack+0x1df/0x240 [ 599.582965][T16328] ? psi_group_change+0x1007/0x13c0 [ 599.588319][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 599.594050][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 599.599178][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 599.605079][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 599.610376][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 599.615584][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 599.621454][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 599.627529][T16328] ? kfree+0x61/0x30f0 [ 599.631604][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 599.636721][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 599.642275][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 599.648351][T16328] ? _copy_from_user+0x15b/0x260 [ 599.653281][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 599.658378][T16328] __msan_chain_origin+0x50/0x90 [ 599.663306][T16328] do_recvmmsg+0x105a/0x1ee0 [ 599.668517][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 599.673791][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 599.678802][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 599.683814][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 599.689701][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 599.694638][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 599.699480][T16328] do_syscall_64+0xb0/0x150 [ 599.703971][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 599.709850][T16328] RIP: 0033:0x45c1d9 [ 599.713723][T16328] Code: Bad RIP value. [ 599.717770][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 599.726424][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 599.734396][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 599.742353][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 599.750320][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 599.758287][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 599.766255][T16328] Uninit was stored to memory at: [ 599.771285][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 599.776988][T16328] __msan_chain_origin+0x50/0x90 [ 599.781911][T16328] do_recvmmsg+0x105a/0x1ee0 [ 599.786486][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 599.791407][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 599.796242][T16328] do_syscall_64+0xb0/0x150 [ 599.800743][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 599.806610][T16328] [ 599.808917][T16328] Uninit was stored to memory at: [ 599.813925][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 599.819628][T16328] __msan_chain_origin+0x50/0x90 [ 599.824554][T16328] do_recvmmsg+0x105a/0x1ee0 [ 599.829128][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 599.834052][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 599.838889][T16328] do_syscall_64+0xb0/0x150 [ 599.843394][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 599.849266][T16328] [ 599.851574][T16328] Uninit was stored to memory at: [ 599.856671][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 599.862372][T16328] __msan_chain_origin+0x50/0x90 [ 599.867294][T16328] do_recvmmsg+0x105a/0x1ee0 [ 599.871868][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 599.876787][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 599.881622][T16328] do_syscall_64+0xb0/0x150 [ 599.886109][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 599.891976][T16328] [ 599.894283][T16328] Uninit was stored to memory at: [ 599.899292][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 599.904996][T16328] __msan_chain_origin+0x50/0x90 [ 599.909920][T16328] do_recvmmsg+0x105a/0x1ee0 [ 599.914497][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 599.919594][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 599.924430][T16328] do_syscall_64+0xb0/0x150 [ 599.928922][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 599.934789][T16328] [ 599.937098][T16328] Uninit was stored to memory at: [ 599.942110][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 599.947815][T16328] __msan_chain_origin+0x50/0x90 [ 599.952741][T16328] do_recvmmsg+0x105a/0x1ee0 [ 599.957315][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 599.962235][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 599.967072][T16328] do_syscall_64+0xb0/0x150 [ 599.971561][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 599.977427][T16328] [ 599.979736][T16328] Uninit was stored to memory at: [ 599.984758][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 599.990461][T16328] __msan_chain_origin+0x50/0x90 [ 599.995385][T16328] do_recvmmsg+0x105a/0x1ee0 [ 599.999957][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 600.004888][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 600.009725][T16328] do_syscall_64+0xb0/0x150 [ 600.014228][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 600.020098][T16328] [ 600.022407][T16328] Uninit was stored to memory at: [ 600.027418][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 600.033123][T16328] __msan_chain_origin+0x50/0x90 [ 600.038045][T16328] do_recvmmsg+0x105a/0x1ee0 [ 600.042643][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 600.047564][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 600.052401][T16328] do_syscall_64+0xb0/0x150 [ 600.058675][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 600.064543][T16328] [ 600.066856][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 600.073514][T16328] do_recvmmsg+0xc5/0x1ee0 [ 600.077914][T16328] do_recvmmsg+0xc5/0x1ee0 [ 600.296029][T16330] not chained 180000 origins [ 600.300663][T16330] CPU: 1 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 600.309420][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 600.319477][T16330] Call Trace: [ 600.322773][T16330] dump_stack+0x1df/0x240 [ 600.327113][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 600.332847][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 600.337965][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 600.343870][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 600.349162][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 600.354368][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 600.360181][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 600.366259][T16330] ? kfree+0x61/0x30f0 [ 600.370334][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 600.375449][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 600.381027][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 600.387189][T16330] ? _copy_from_user+0x15b/0x260 [ 600.392131][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 600.397246][T16330] __msan_chain_origin+0x50/0x90 [ 600.402194][T16330] do_recvmmsg+0x105a/0x1ee0 [ 600.406823][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 600.412467][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 600.417495][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 600.422523][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 600.428422][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 600.433373][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 600.438232][T16330] do_syscall_64+0xb0/0x150 [ 600.442745][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 600.448644][T16330] RIP: 0033:0x45c1d9 [ 600.452541][T16330] Code: Bad RIP value. [ 600.456603][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 600.465015][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 600.472988][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 600.480959][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 600.488964][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 600.496941][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 600.504921][T16330] Uninit was stored to memory at: [ 600.509954][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 600.515679][T16330] __msan_chain_origin+0x50/0x90 [ 600.520632][T16330] do_recvmmsg+0x105a/0x1ee0 [ 600.525253][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 600.530191][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 600.535043][T16330] do_syscall_64+0xb0/0x150 [ 600.539550][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 600.545433][T16330] [ 600.547758][T16330] Uninit was stored to memory at: [ 600.552788][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 600.558507][T16330] __msan_chain_origin+0x50/0x90 [ 600.563448][T16330] do_recvmmsg+0x105a/0x1ee0 [ 600.568037][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 600.572977][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 600.577837][T16330] do_syscall_64+0xb0/0x150 [ 600.582350][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 600.588241][T16330] [ 600.590564][T16330] Uninit was stored to memory at: [ 600.595592][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 600.601318][T16330] __msan_chain_origin+0x50/0x90 [ 600.606262][T16330] do_recvmmsg+0x105a/0x1ee0 [ 600.610852][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 600.615791][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 600.620644][T16330] do_syscall_64+0xb0/0x150 [ 600.625151][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 600.631032][T16330] [ 600.633353][T16330] Uninit was stored to memory at: [ 600.638390][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 600.644112][T16330] __msan_chain_origin+0x50/0x90 [ 600.649054][T16330] do_recvmmsg+0x105a/0x1ee0 [ 600.653641][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 600.658584][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 600.663440][T16330] do_syscall_64+0xb0/0x150 [ 600.667950][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 600.673915][T16330] [ 600.676237][T16330] Uninit was stored to memory at: [ 600.681259][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 600.686983][T16330] __msan_chain_origin+0x50/0x90 [ 600.691928][T16330] do_recvmmsg+0x105a/0x1ee0 [ 600.696526][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 600.701473][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 600.706326][T16330] do_syscall_64+0xb0/0x150 [ 600.710840][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 600.716721][T16330] [ 600.719042][T16330] Uninit was stored to memory at: [ 600.724170][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 600.730585][T16330] __msan_chain_origin+0x50/0x90 [ 600.735528][T16330] do_recvmmsg+0x105a/0x1ee0 [ 600.740127][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 600.745073][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 600.749938][T16330] do_syscall_64+0xb0/0x150 [ 600.754456][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 600.760352][T16330] [ 600.762676][T16330] Uninit was stored to memory at: [ 600.767715][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 600.773446][T16330] __msan_chain_origin+0x50/0x90 [ 600.778398][T16330] do_recvmmsg+0x105a/0x1ee0 [ 600.782997][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 600.787941][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 600.792802][T16330] do_syscall_64+0xb0/0x150 [ 600.797319][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 600.803200][T16330] [ 600.805526][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 600.812216][T16330] do_recvmmsg+0xc5/0x1ee0 [ 600.816630][T16330] do_recvmmsg+0xc5/0x1ee0 [ 600.943289][T16330] not chained 190000 origins [ 600.947955][T16330] CPU: 1 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 600.956708][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 600.966762][T16330] Call Trace: [ 600.970057][T16330] dump_stack+0x1df/0x240 [ 600.974399][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 600.980126][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 600.985240][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 600.992445][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 600.997732][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 601.002930][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 601.008737][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 601.014805][T16330] ? kfree+0x61/0x30f0 [ 601.018879][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 601.023990][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 601.029537][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 601.036047][T16330] ? _copy_from_user+0x15b/0x260 [ 601.040994][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 601.046136][T16330] __msan_chain_origin+0x50/0x90 [ 601.051166][T16330] do_recvmmsg+0x105a/0x1ee0 [ 601.055794][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 601.061085][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 601.066108][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 601.071132][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 601.077027][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 601.082062][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 601.086916][T16330] do_syscall_64+0xb0/0x150 [ 601.091426][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.097316][T16330] RIP: 0033:0x45c1d9 [ 601.101200][T16330] Code: Bad RIP value. [ 601.105261][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 601.113669][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 601.121816][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 601.129790][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 601.137766][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 601.145739][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 601.153805][T16330] Uninit was stored to memory at: [ 601.158834][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 601.164555][T16330] __msan_chain_origin+0x50/0x90 [ 601.169500][T16330] do_recvmmsg+0x105a/0x1ee0 [ 601.174089][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 601.179024][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 601.183871][T16330] do_syscall_64+0xb0/0x150 [ 601.185299][T16328] not chained 200000 origins [ 601.188375][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.193993][T16328] CPU: 0 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 601.200215][T16330] [ 601.208862][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 601.211167][T16330] Uninit was stored to memory at: [ 601.221289][T16328] Call Trace: [ 601.226297][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 601.229560][T16328] dump_stack+0x1df/0x240 [ 601.235253][T16330] __msan_chain_origin+0x50/0x90 [ 601.240537][T16328] ? psi_group_change+0x1007/0x13c0 [ 601.245452][T16330] do_recvmmsg+0x105a/0x1ee0 [ 601.250641][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 601.255206][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 601.260902][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 601.265832][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 601.271439][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 601.276267][T16330] do_syscall_64+0xb0/0x150 [ 601.282134][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 601.286616][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.291876][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 601.297733][T16330] [ 601.302920][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 601.305218][T16330] Uninit was stored to memory at: [ 601.311008][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 601.316005][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 601.322136][T16328] ? kfree+0x61/0x30f0 [ 601.327825][T16330] __msan_chain_origin+0x50/0x90 [ 601.331870][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 601.336783][T16330] do_recvmmsg+0x105a/0x1ee0 [ 601.341871][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 601.346434][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 601.351955][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 601.356943][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 601.363420][T16328] ? _copy_from_user+0x15b/0x260 [ 601.368261][T16330] do_syscall_64+0xb0/0x150 [ 601.373172][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 601.378177][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.383261][T16328] __msan_chain_origin+0x50/0x90 [ 601.389120][T16330] [ 601.394044][T16328] do_recvmmsg+0x105a/0x1ee0 [ 601.396342][T16330] Uninit was stored to memory at: [ 601.400947][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 601.405922][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 601.411185][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 601.416875][T16330] __msan_chain_origin+0x50/0x90 [ 601.421878][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 601.426789][T16330] do_recvmmsg+0x105a/0x1ee0 [ 601.431790][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 601.436613][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 601.442480][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 601.447412][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 601.452329][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 601.457152][T16330] do_syscall_64+0xb0/0x150 [ 601.461980][T16328] do_syscall_64+0xb0/0x150 [ 601.466460][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.470938][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.476793][T16330] [ 601.482667][T16328] RIP: 0033:0x45c1d9 [ 601.484968][T16330] Uninit was stored to memory at: [ 601.488836][T16328] Code: Bad RIP value. [ 601.493863][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 601.497904][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 601.503603][T16330] __msan_chain_origin+0x50/0x90 [ 601.511985][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 601.516920][T16330] do_recvmmsg+0x105a/0x1ee0 [ 601.524866][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 601.529439][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 601.537386][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 601.542309][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 601.550258][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 601.555260][T16330] do_syscall_64+0xb0/0x150 [ 601.563218][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 601.567718][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.578962][T16328] Uninit was stored to memory at: [ 601.584847][T16330] [ 601.589864][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 601.592161][T16330] Uninit was stored to memory at: [ 601.597871][T16328] __msan_chain_origin+0x50/0x90 [ 601.602873][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 601.607814][T16328] do_recvmmsg+0x105a/0x1ee0 [ 601.613525][T16330] __msan_chain_origin+0x50/0x90 [ 601.618089][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 601.623030][T16330] do_recvmmsg+0x105a/0x1ee0 [ 601.627944][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 601.632507][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 601.637338][T16328] do_syscall_64+0xb0/0x150 [ 601.642247][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 601.646727][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.651552][T16330] do_syscall_64+0xb0/0x150 [ 601.657412][T16328] [ 601.661901][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.664195][T16328] Uninit was stored to memory at: [ 601.670063][T16330] [ 601.675085][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 601.677380][T16330] Uninit was stored to memory at: [ 601.683082][T16328] __msan_chain_origin+0x50/0x90 [ 601.688869][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 601.693782][T16328] do_recvmmsg+0x105a/0x1ee0 [ 601.700082][T16330] __msan_chain_origin+0x50/0x90 [ 601.704674][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 601.709590][T16330] do_recvmmsg+0x105a/0x1ee0 [ 601.714503][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 601.719070][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 601.724278][T16328] do_syscall_64+0xb0/0x150 [ 601.729190][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 601.733755][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.738579][T16330] do_syscall_64+0xb0/0x150 [ 601.744439][T16328] [ 601.748949][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.751248][T16328] Uninit was stored to memory at: [ 601.757115][T16330] [ 601.762130][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 601.764428][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 601.770126][T16328] __msan_chain_origin+0x50/0x90 [ 601.776775][T16330] do_recvmmsg+0xc5/0x1ee0 [ 601.781687][T16328] do_recvmmsg+0x105a/0x1ee0 [ 601.786094][T16330] do_recvmmsg+0xc5/0x1ee0 [ 601.790660][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 601.799965][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 601.804829][T16328] do_syscall_64+0xb0/0x150 [ 601.809338][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.816032][T16328] [ 601.818364][T16328] Uninit was stored to memory at: [ 601.823397][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 601.829227][T16328] __msan_chain_origin+0x50/0x90 [ 601.834184][T16328] do_recvmmsg+0x105a/0x1ee0 [ 601.838763][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 601.843686][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 601.848525][T16328] do_syscall_64+0xb0/0x150 [ 601.853015][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.858885][T16328] [ 601.861212][T16328] Uninit was stored to memory at: [ 601.866225][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 601.871926][T16328] __msan_chain_origin+0x50/0x90 [ 601.876850][T16328] do_recvmmsg+0x105a/0x1ee0 [ 601.881425][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 601.886349][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 601.891189][T16328] do_syscall_64+0xb0/0x150 [ 601.895777][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.902079][T16328] [ 601.904388][T16328] Uninit was stored to memory at: [ 601.909398][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 601.915098][T16328] __msan_chain_origin+0x50/0x90 [ 601.920020][T16328] do_recvmmsg+0x105a/0x1ee0 [ 601.924599][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 601.929533][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 601.934375][T16328] do_syscall_64+0xb0/0x150 [ 601.938955][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.944823][T16328] [ 601.947134][T16328] Uninit was stored to memory at: [ 601.952146][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 601.958043][T16328] __msan_chain_origin+0x50/0x90 [ 601.962982][T16328] do_recvmmsg+0x105a/0x1ee0 [ 601.967825][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 601.972780][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 601.977618][T16328] do_syscall_64+0xb0/0x150 [ 601.982108][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 601.987978][T16328] [ 601.990287][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 601.996951][T16328] do_recvmmsg+0xc5/0x1ee0 [ 602.001381][T16328] do_recvmmsg+0xc5/0x1ee0 [ 602.223993][T16328] not chained 210000 origins [ 602.228624][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 602.237293][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 602.247352][T16328] Call Trace: [ 602.250658][T16328] dump_stack+0x1df/0x240 [ 602.255004][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 602.260985][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 602.266152][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 602.272052][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 602.277343][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 602.282545][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 602.288360][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 602.294433][T16328] ? kfree+0x61/0x30f0 [ 602.298514][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 602.303629][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 602.309181][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 602.315257][T16328] ? _copy_from_user+0x15b/0x260 [ 602.320206][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 602.325323][T16328] __msan_chain_origin+0x50/0x90 [ 602.330272][T16328] do_recvmmsg+0x105a/0x1ee0 [ 602.334907][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 602.340200][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 602.345665][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 602.350736][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 602.356638][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 602.361621][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 602.366567][T16328] do_syscall_64+0xb0/0x150 [ 602.371082][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 602.376975][T16328] RIP: 0033:0x45c1d9 [ 602.380867][T16328] Code: Bad RIP value. [ 602.384932][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 602.393869][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 602.402279][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 602.410258][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 602.419193][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 602.427175][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 602.435159][T16328] Uninit was stored to memory at: [ 602.440199][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 602.445922][T16328] __msan_chain_origin+0x50/0x90 [ 602.450874][T16328] do_recvmmsg+0x105a/0x1ee0 [ 602.455473][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 602.460415][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 602.465271][T16328] do_syscall_64+0xb0/0x150 [ 602.469795][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 602.475679][T16328] [ 602.477999][T16328] Uninit was stored to memory at: [ 602.483029][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 602.488754][T16328] __msan_chain_origin+0x50/0x90 [ 602.495883][T16328] do_recvmmsg+0x105a/0x1ee0 [ 602.500477][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 602.505416][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 602.510270][T16328] do_syscall_64+0xb0/0x150 [ 602.514780][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 602.520658][T16328] [ 602.522985][T16328] Uninit was stored to memory at: [ 602.528967][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 602.534684][T16328] __msan_chain_origin+0x50/0x90 [ 602.539635][T16328] do_recvmmsg+0x105a/0x1ee0 [ 602.544230][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 602.549176][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 602.554040][T16328] do_syscall_64+0xb0/0x150 [ 602.558548][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 602.564428][T16328] [ 602.566752][T16328] Uninit was stored to memory at: [ 602.571779][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 602.577508][T16328] __msan_chain_origin+0x50/0x90 [ 602.582464][T16328] do_recvmmsg+0x105a/0x1ee0 [ 602.587065][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 602.592027][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 602.596888][T16328] do_syscall_64+0xb0/0x150 [ 602.601407][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 602.607293][T16328] [ 602.609615][T16328] Uninit was stored to memory at: [ 602.614824][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 602.620550][T16328] __msan_chain_origin+0x50/0x90 [ 602.625498][T16328] do_recvmmsg+0x105a/0x1ee0 [ 602.630100][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 602.635045][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 602.639903][T16328] do_syscall_64+0xb0/0x150 [ 602.644421][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 602.650306][T16328] [ 602.652630][T16328] Uninit was stored to memory at: [ 602.657663][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 602.663387][T16328] __msan_chain_origin+0x50/0x90 [ 602.668333][T16328] do_recvmmsg+0x105a/0x1ee0 [ 602.672936][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 602.677910][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 602.683121][T16328] do_syscall_64+0xb0/0x150 [ 602.687635][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 602.693519][T16328] [ 602.695847][T16328] Uninit was stored to memory at: [ 602.700878][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 602.706605][T16328] __msan_chain_origin+0x50/0x90 [ 602.711545][T16328] do_recvmmsg+0x105a/0x1ee0 [ 602.716142][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 602.721086][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 602.726053][T16328] do_syscall_64+0xb0/0x150 [ 602.730565][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 602.736454][T16328] [ 602.738777][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 602.745456][T16328] do_recvmmsg+0xc5/0x1ee0 [ 602.755259][T16328] do_recvmmsg+0xc5/0x1ee0 [ 602.915548][T16328] not chained 220000 origins [ 602.920223][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 602.928893][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 602.939050][T16328] Call Trace: [ 602.942350][T16328] dump_stack+0x1df/0x240 [ 602.946685][T16328] ? psi_group_change+0x1007/0x13c0 [ 602.951895][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 602.957621][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 602.962734][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 602.968632][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 602.973923][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 602.979775][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 602.985677][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 602.993574][T16328] ? kfree+0x61/0x30f0 [ 602.997651][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 603.003729][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 603.009284][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 603.015364][T16328] ? _copy_from_user+0x15b/0x260 [ 603.020311][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 603.025426][T16328] __msan_chain_origin+0x50/0x90 [ 603.030371][T16328] do_recvmmsg+0x105a/0x1ee0 [ 603.034997][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 603.040288][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 603.045323][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 603.050347][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 603.056239][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 603.061174][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 603.066017][T16328] do_syscall_64+0xb0/0x150 [ 603.070525][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.076403][T16328] RIP: 0033:0x45c1d9 [ 603.080275][T16328] Code: Bad RIP value. [ 603.084329][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 603.092740][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 603.100697][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 603.108653][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 603.116609][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 603.124567][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 603.132727][T16328] Uninit was stored to memory at: [ 603.137741][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 603.143444][T16328] __msan_chain_origin+0x50/0x90 [ 603.148383][T16328] do_recvmmsg+0x105a/0x1ee0 [ 603.152957][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 603.157881][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 603.162891][T16328] do_syscall_64+0xb0/0x150 [ 603.167556][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.173601][T16328] [ 603.175910][T16328] Uninit was stored to memory at: [ 603.180920][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 603.186626][T16328] __msan_chain_origin+0x50/0x90 [ 603.191546][T16328] do_recvmmsg+0x105a/0x1ee0 [ 603.196129][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 603.201054][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 603.205892][T16328] do_syscall_64+0xb0/0x150 [ 603.210382][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.216371][T16328] [ 603.218681][T16328] Uninit was stored to memory at: [ 603.223712][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 603.229415][T16328] __msan_chain_origin+0x50/0x90 [ 603.234339][T16328] do_recvmmsg+0x105a/0x1ee0 [ 603.238930][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 603.243869][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 603.248707][T16328] do_syscall_64+0xb0/0x150 [ 603.253198][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.259070][T16328] [ 603.261381][T16328] Uninit was stored to memory at: [ 603.266391][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 603.272095][T16328] __msan_chain_origin+0x50/0x90 [ 603.277022][T16328] do_recvmmsg+0x105a/0x1ee0 [ 603.281615][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 603.286539][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 603.291376][T16328] do_syscall_64+0xb0/0x150 [ 603.295867][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.301734][T16328] [ 603.304044][T16328] Uninit was stored to memory at: [ 603.309082][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 603.314801][T16328] __msan_chain_origin+0x50/0x90 [ 603.319728][T16328] do_recvmmsg+0x105a/0x1ee0 [ 603.324309][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 603.329233][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 603.334419][T16328] do_syscall_64+0xb0/0x150 [ 603.338909][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.344782][T16328] [ 603.347094][T16328] Uninit was stored to memory at: [ 603.352105][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 603.357809][T16328] __msan_chain_origin+0x50/0x90 [ 603.362741][T16328] do_recvmmsg+0x105a/0x1ee0 [ 603.367328][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 603.372250][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 603.377174][T16328] do_syscall_64+0xb0/0x150 [ 603.381680][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.387548][T16328] [ 603.389858][T16328] Uninit was stored to memory at: [ 603.394867][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 603.400658][T16328] __msan_chain_origin+0x50/0x90 [ 603.405582][T16328] do_recvmmsg+0x105a/0x1ee0 [ 603.410167][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 603.415093][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 603.419953][T16328] do_syscall_64+0xb0/0x150 [ 603.424441][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.430327][T16328] [ 603.432637][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 603.439317][T16328] do_recvmmsg+0xc5/0x1ee0 [ 603.443719][T16328] do_recvmmsg+0xc5/0x1ee0 [ 603.472741][T16330] not chained 230000 origins [ 603.477378][T16330] CPU: 0 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 603.486049][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 603.496451][T16330] Call Trace: [ 603.499748][T16330] dump_stack+0x1df/0x240 [ 603.504094][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 603.509836][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 603.517299][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 603.523194][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 603.528488][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 603.533693][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 603.539504][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 603.545579][T16330] ? kfree+0x61/0x30f0 [ 603.549686][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 603.554809][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 603.560362][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 603.566472][T16330] ? _copy_from_user+0x15b/0x260 [ 603.571756][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 603.576872][T16330] __msan_chain_origin+0x50/0x90 [ 603.581830][T16330] do_recvmmsg+0x105a/0x1ee0 [ 603.586987][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 603.592306][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 603.597345][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 603.602384][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 603.608289][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 603.613240][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 603.618101][T16330] do_syscall_64+0xb0/0x150 [ 603.622611][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.628499][T16330] RIP: 0033:0x45c1d9 [ 603.632382][T16330] Code: Bad RIP value. [ 603.636442][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 603.644937][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 603.652910][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 603.660881][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 603.668856][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 603.676829][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 603.684820][T16330] Uninit was stored to memory at: [ 603.689865][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 603.695589][T16330] __msan_chain_origin+0x50/0x90 [ 603.700528][T16330] do_recvmmsg+0x105a/0x1ee0 [ 603.705115][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 603.710055][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 603.714908][T16330] do_syscall_64+0xb0/0x150 [ 603.719414][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.726080][T16330] [ 603.728414][T16330] Uninit was stored to memory at: [ 603.733467][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 603.739189][T16330] __msan_chain_origin+0x50/0x90 [ 603.744127][T16330] do_recvmmsg+0x105a/0x1ee0 [ 603.748719][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 603.753656][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 603.758518][T16330] do_syscall_64+0xb0/0x150 [ 603.763023][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.768992][T16330] [ 603.771315][T16330] Uninit was stored to memory at: [ 603.776343][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 603.782069][T16330] __msan_chain_origin+0x50/0x90 [ 603.787011][T16330] do_recvmmsg+0x105a/0x1ee0 [ 603.791617][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 603.796553][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 603.801490][T16330] do_syscall_64+0xb0/0x150 [ 603.806000][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.811879][T16330] [ 603.814199][T16330] Uninit was stored to memory at: [ 603.819226][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 603.824942][T16330] __msan_chain_origin+0x50/0x90 [ 603.829879][T16330] do_recvmmsg+0x105a/0x1ee0 [ 603.834473][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 603.839848][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 603.844698][T16330] do_syscall_64+0xb0/0x150 [ 603.849202][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.855081][T16330] [ 603.857402][T16330] Uninit was stored to memory at: [ 603.862431][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 603.868150][T16330] __msan_chain_origin+0x50/0x90 [ 603.873091][T16330] do_recvmmsg+0x105a/0x1ee0 [ 603.877681][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 603.882617][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 603.887470][T16330] do_syscall_64+0xb0/0x150 [ 603.891973][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.897851][T16330] [ 603.900169][T16330] Uninit was stored to memory at: [ 603.905198][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 603.910913][T16330] __msan_chain_origin+0x50/0x90 [ 603.915851][T16330] do_recvmmsg+0x105a/0x1ee0 [ 603.920438][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 603.925489][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 603.930338][T16330] do_syscall_64+0xb0/0x150 [ 603.934859][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.940740][T16330] [ 603.943061][T16330] Uninit was stored to memory at: [ 603.948089][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 603.953842][T16330] __msan_chain_origin+0x50/0x90 [ 603.959391][T16330] do_recvmmsg+0x105a/0x1ee0 [ 603.963981][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 603.968920][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 603.973769][T16330] do_syscall_64+0xb0/0x150 [ 603.978273][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 603.984152][T16330] [ 603.986472][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 603.993145][T16330] do_recvmmsg+0xc5/0x1ee0 [ 603.997563][T16330] do_recvmmsg+0xc5/0x1ee0 [ 604.163044][T16328] not chained 240000 origins [ 604.167680][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 604.176534][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 604.188572][T16328] Call Trace: [ 604.191858][T16328] dump_stack+0x1df/0x240 [ 604.196176][T16328] ? sysvec_call_function_single+0x11e/0x130 [ 604.202645][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 604.208353][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 604.214147][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 604.220029][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 604.225311][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 604.230611][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 604.236404][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 604.242471][T16328] ? kfree+0x61/0x30f0 [ 604.246540][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 604.251636][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 604.257169][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 604.263228][T16328] ? _copy_from_user+0x15b/0x260 [ 604.268153][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 604.273253][T16328] __msan_chain_origin+0x50/0x90 [ 604.278184][T16328] do_recvmmsg+0x105a/0x1ee0 [ 604.282787][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 604.288064][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 604.293074][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 604.298093][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 604.304019][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 604.309051][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 604.313894][T16328] do_syscall_64+0xb0/0x150 [ 604.318390][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 604.324266][T16328] RIP: 0033:0x45c1d9 [ 604.328141][T16328] Code: Bad RIP value. [ 604.332191][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 604.340589][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 604.348544][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 604.356500][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 604.364458][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 604.372415][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 604.380398][T16328] Uninit was stored to memory at: [ 604.385414][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 604.391127][T16328] __msan_chain_origin+0x50/0x90 [ 604.396050][T16328] do_recvmmsg+0x105a/0x1ee0 [ 604.400625][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 604.405547][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 604.410382][T16328] do_syscall_64+0xb0/0x150 [ 604.414877][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 604.420747][T16328] [ 604.423065][T16328] Uninit was stored to memory at: [ 604.428077][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 604.433780][T16328] __msan_chain_origin+0x50/0x90 [ 604.438702][T16328] do_recvmmsg+0x105a/0x1ee0 [ 604.444341][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 604.449289][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 604.454314][T16328] do_syscall_64+0xb0/0x150 [ 604.461670][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 604.467636][T16328] [ 604.469944][T16328] Uninit was stored to memory at: [ 604.474963][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 604.481214][T16328] __msan_chain_origin+0x50/0x90 [ 604.486134][T16328] do_recvmmsg+0x105a/0x1ee0 [ 604.490710][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 604.495633][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 604.500470][T16328] do_syscall_64+0xb0/0x150 [ 604.504958][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 604.510828][T16328] [ 604.513140][T16328] Uninit was stored to memory at: [ 604.518150][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 604.524463][T16328] __msan_chain_origin+0x50/0x90 [ 604.529388][T16328] do_recvmmsg+0x105a/0x1ee0 [ 604.533962][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 604.538886][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 604.543723][T16328] do_syscall_64+0xb0/0x150 [ 604.548230][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 604.554101][T16328] [ 604.556412][T16328] Uninit was stored to memory at: [ 604.561423][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 604.567124][T16328] __msan_chain_origin+0x50/0x90 [ 604.572049][T16328] do_recvmmsg+0x105a/0x1ee0 [ 604.576625][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 604.581547][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 604.586385][T16328] do_syscall_64+0xb0/0x150 [ 604.590901][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 604.596781][T16328] [ 604.599094][T16328] Uninit was stored to memory at: [ 604.604110][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 604.609841][T16328] __msan_chain_origin+0x50/0x90 [ 604.614766][T16328] do_recvmmsg+0x105a/0x1ee0 [ 604.619348][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 604.624273][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 604.629113][T16328] do_syscall_64+0xb0/0x150 [ 604.633603][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 604.639476][T16328] [ 604.641795][T16328] Uninit was stored to memory at: [ 604.646895][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 604.652601][T16328] __msan_chain_origin+0x50/0x90 [ 604.657526][T16328] do_recvmmsg+0x105a/0x1ee0 [ 604.662115][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 604.667050][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 604.671905][T16328] do_syscall_64+0xb0/0x150 [ 604.676397][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 604.682477][T16328] [ 604.684799][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 604.691567][T16328] do_recvmmsg+0xc5/0x1ee0 [ 604.695976][T16328] do_recvmmsg+0xc5/0x1ee0 00:47:25 executing program 5: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x5, 0x5, 0x0, @in={0x8, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:47:26 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x14}}, 0x0) [ 605.581997][T16328] not chained 250000 origins [ 605.586636][T16328] CPU: 0 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 605.595400][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 605.605623][T16328] Call Trace: [ 605.608913][T16328] dump_stack+0x1df/0x240 [ 605.613583][T16328] ? psi_group_change+0x1007/0x13c0 [ 605.618893][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 605.624603][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 605.629705][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 605.636111][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 605.641403][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 605.646594][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 605.652390][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 605.658491][T16328] ? kfree+0x61/0x30f0 [ 605.662552][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 605.667652][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 605.673187][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 605.679246][T16328] ? _copy_from_user+0x15b/0x260 [ 605.684171][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 605.689272][T16328] __msan_chain_origin+0x50/0x90 [ 605.694204][T16328] do_recvmmsg+0x105a/0x1ee0 [ 605.698810][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 605.704086][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 605.709097][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 605.714112][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 605.720019][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 605.724981][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 605.729844][T16328] do_syscall_64+0xb0/0x150 [ 605.735134][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 605.741012][T16328] RIP: 0033:0x45c1d9 [ 605.744887][T16328] Code: Bad RIP value. [ 605.748939][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 605.757354][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 605.765326][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 605.773296][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 605.782475][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 605.790435][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 605.798400][T16328] Uninit was stored to memory at: [ 605.803517][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 605.809573][T16328] __msan_chain_origin+0x50/0x90 [ 605.814500][T16328] do_recvmmsg+0x105a/0x1ee0 [ 605.819080][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 605.824096][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 605.828956][T16328] do_syscall_64+0xb0/0x150 [ 605.833462][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 605.839341][T16328] [ 605.841663][T16328] Uninit was stored to memory at: [ 605.846679][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 605.852384][T16328] __msan_chain_origin+0x50/0x90 [ 605.857350][T16328] do_recvmmsg+0x105a/0x1ee0 [ 605.861931][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 605.866856][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 605.871694][T16328] do_syscall_64+0xb0/0x150 [ 605.876184][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 605.882054][T16328] [ 605.884365][T16328] Uninit was stored to memory at: [ 605.889743][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 605.895459][T16328] __msan_chain_origin+0x50/0x90 [ 605.900395][T16328] do_recvmmsg+0x105a/0x1ee0 [ 605.905019][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 605.910066][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 605.914905][T16328] do_syscall_64+0xb0/0x150 [ 605.919397][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 605.925356][T16328] [ 605.927666][T16328] Uninit was stored to memory at: [ 605.932678][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 605.938382][T16328] __msan_chain_origin+0x50/0x90 [ 605.943326][T16328] do_recvmmsg+0x105a/0x1ee0 [ 605.947902][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 605.952826][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 605.957663][T16328] do_syscall_64+0xb0/0x150 [ 605.962152][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 605.968124][T16328] [ 605.970431][T16328] Uninit was stored to memory at: [ 605.975443][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 605.981145][T16328] __msan_chain_origin+0x50/0x90 [ 605.986066][T16328] do_recvmmsg+0x105a/0x1ee0 [ 605.990641][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 605.995571][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 606.000407][T16328] do_syscall_64+0xb0/0x150 [ 606.004900][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 606.012074][T16328] [ 606.014384][T16328] Uninit was stored to memory at: [ 606.019400][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 606.025121][T16328] __msan_chain_origin+0x50/0x90 [ 606.030043][T16328] do_recvmmsg+0x105a/0x1ee0 [ 606.034642][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 606.039565][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 606.044409][T16328] do_syscall_64+0xb0/0x150 [ 606.048898][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 606.055374][T16328] [ 606.057683][T16328] Uninit was stored to memory at: [ 606.062694][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 606.068398][T16328] __msan_chain_origin+0x50/0x90 [ 606.073337][T16328] do_recvmmsg+0x105a/0x1ee0 [ 606.077915][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 606.082857][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 606.087697][T16328] do_syscall_64+0xb0/0x150 [ 606.092205][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 606.098249][T16328] [ 606.100562][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 606.107233][T16328] do_recvmmsg+0xc5/0x1ee0 [ 606.111723][T16328] do_recvmmsg+0xc5/0x1ee0 00:47:27 executing program 2: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={0x2, 0xd, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x8, 0x5, 0x0, @in6={0xa, 0x0, 0x0, @mcast2}, @in6={0xa, 0x0, 0x0, @empty}}]}, 0x50}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) [ 606.744631][T16328] not chained 260000 origins [ 606.749285][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 606.757955][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 606.768016][T16328] Call Trace: [ 606.771312][T16328] dump_stack+0x1df/0x240 [ 606.775721][T16328] ? psi_group_change+0x1007/0x13c0 [ 606.780917][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 606.786627][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 606.791723][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 606.798331][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 606.803603][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 606.808787][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 606.814597][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 606.820650][T16328] ? kfree+0x61/0x30f0 [ 606.824707][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 606.829809][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 606.835341][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 606.841413][T16328] ? _copy_from_user+0x15b/0x260 [ 606.846337][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 606.851432][T16328] __msan_chain_origin+0x50/0x90 [ 606.856360][T16328] do_recvmmsg+0x105a/0x1ee0 [ 606.860961][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 606.866233][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 606.871245][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 606.876270][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 606.882151][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 606.887085][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 606.891924][T16328] do_syscall_64+0xb0/0x150 [ 606.896417][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 606.902294][T16328] RIP: 0033:0x45c1d9 [ 606.906167][T16328] Code: Bad RIP value. [ 606.910215][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 606.918614][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 606.926571][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 606.934529][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 606.942833][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 606.950788][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 606.958768][T16328] Uninit was stored to memory at: [ 606.963892][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 606.969593][T16328] __msan_chain_origin+0x50/0x90 [ 606.974515][T16328] do_recvmmsg+0x105a/0x1ee0 [ 606.979099][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 606.984022][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 606.988856][T16328] do_syscall_64+0xb0/0x150 [ 606.993348][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 606.999303][T16328] [ 607.001613][T16328] Uninit was stored to memory at: [ 607.006622][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 607.012325][T16328] __msan_chain_origin+0x50/0x90 [ 607.017247][T16328] do_recvmmsg+0x105a/0x1ee0 [ 607.021819][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 607.026740][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 607.031575][T16328] do_syscall_64+0xb0/0x150 [ 607.036077][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 607.041943][T16328] [ 607.044249][T16328] Uninit was stored to memory at: [ 607.049256][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 607.054979][T16328] __msan_chain_origin+0x50/0x90 [ 607.059901][T16328] do_recvmmsg+0x105a/0x1ee0 [ 607.064476][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 607.069399][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 607.074233][T16328] do_syscall_64+0xb0/0x150 [ 607.078742][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 607.084608][T16328] [ 607.086914][T16328] Uninit was stored to memory at: [ 607.091922][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 607.097623][T16328] __msan_chain_origin+0x50/0x90 [ 607.102545][T16328] do_recvmmsg+0x105a/0x1ee0 [ 607.107119][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 607.112043][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 607.116878][T16328] do_syscall_64+0xb0/0x150 [ 607.121368][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 607.127235][T16328] [ 607.129542][T16328] Uninit was stored to memory at: [ 607.134552][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 607.140260][T16328] __msan_chain_origin+0x50/0x90 [ 607.145182][T16328] do_recvmmsg+0x105a/0x1ee0 [ 607.149778][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 607.154704][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 607.159537][T16328] do_syscall_64+0xb0/0x150 [ 607.164026][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 607.169892][T16328] [ 607.172203][T16328] Uninit was stored to memory at: [ 607.177213][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 607.182912][T16328] __msan_chain_origin+0x50/0x90 [ 607.187834][T16328] do_recvmmsg+0x105a/0x1ee0 [ 607.192419][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 607.197342][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 607.202177][T16328] do_syscall_64+0xb0/0x150 [ 607.206668][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 607.212535][T16328] [ 607.214842][T16328] Uninit was stored to memory at: [ 607.219943][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 607.225649][T16328] __msan_chain_origin+0x50/0x90 [ 607.230573][T16328] do_recvmmsg+0x105a/0x1ee0 [ 607.235147][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 607.240067][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 607.244899][T16328] do_syscall_64+0xb0/0x150 [ 607.249389][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 607.255257][T16328] [ 607.257567][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 607.264222][T16328] do_recvmmsg+0xc5/0x1ee0 [ 607.268623][T16328] do_recvmmsg+0xc5/0x1ee0 [ 608.024450][T16330] not chained 270000 origins [ 608.029093][T16330] CPU: 0 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 608.037763][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 608.047820][T16330] Call Trace: [ 608.051117][T16330] dump_stack+0x1df/0x240 [ 608.055466][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 608.061224][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 608.066338][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 608.072237][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 608.077529][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 608.082732][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 608.088543][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 608.094613][T16330] ? kfree+0x61/0x30f0 [ 608.098688][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 608.103833][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 608.109421][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 608.115495][T16330] ? _copy_from_user+0x15b/0x260 [ 608.120442][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 608.125563][T16330] __msan_chain_origin+0x50/0x90 [ 608.130510][T16330] do_recvmmsg+0x105a/0x1ee0 [ 608.135136][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 608.140428][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 608.145492][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 608.150526][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 608.156432][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 608.161382][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 608.166245][T16330] do_syscall_64+0xb0/0x150 [ 608.170756][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 608.176650][T16330] RIP: 0033:0x45c1d9 [ 608.180536][T16330] Code: Bad RIP value. [ 608.184598][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 608.193012][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 608.200984][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 608.208963][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 608.216933][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 608.224913][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 608.232891][T16330] Uninit was stored to memory at: [ 608.237926][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 608.243644][T16330] __msan_chain_origin+0x50/0x90 [ 608.248584][T16330] do_recvmmsg+0x105a/0x1ee0 [ 608.253175][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 608.258114][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 608.262966][T16330] do_syscall_64+0xb0/0x150 [ 608.267473][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 608.273353][T16330] [ 608.275677][T16330] Uninit was stored to memory at: [ 608.281748][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 608.287470][T16330] __msan_chain_origin+0x50/0x90 [ 608.292412][T16330] do_recvmmsg+0x105a/0x1ee0 [ 608.297002][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 608.301940][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 608.306885][T16330] do_syscall_64+0xb0/0x150 [ 608.311397][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 608.317279][T16330] [ 608.319627][T16330] Uninit was stored to memory at: [ 608.324654][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 608.330376][T16330] __msan_chain_origin+0x50/0x90 [ 608.335326][T16330] do_recvmmsg+0x105a/0x1ee0 [ 608.339917][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 608.344859][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 608.349715][T16330] do_syscall_64+0xb0/0x150 [ 608.354222][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 608.360113][T16330] [ 608.362437][T16330] Uninit was stored to memory at: [ 608.367480][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 608.373199][T16330] __msan_chain_origin+0x50/0x90 [ 608.378141][T16330] do_recvmmsg+0x105a/0x1ee0 [ 608.382743][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 608.387686][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 608.392544][T16330] do_syscall_64+0xb0/0x150 [ 608.397059][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 608.402939][T16330] [ 608.405264][T16330] Uninit was stored to memory at: [ 608.410306][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 608.416030][T16330] __msan_chain_origin+0x50/0x90 [ 608.420966][T16330] do_recvmmsg+0x105a/0x1ee0 [ 608.425556][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 608.430493][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 608.435347][T16330] do_syscall_64+0xb0/0x150 [ 608.439857][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 608.445737][T16330] [ 608.448055][T16330] Uninit was stored to memory at: [ 608.453087][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 608.458809][T16330] __msan_chain_origin+0x50/0x90 [ 608.463748][T16330] do_recvmmsg+0x105a/0x1ee0 [ 608.468340][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 608.473272][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 608.478134][T16330] do_syscall_64+0xb0/0x150 [ 608.482638][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 608.488520][T16330] [ 608.490876][T16330] Uninit was stored to memory at: [ 608.495909][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 608.501632][T16330] __msan_chain_origin+0x50/0x90 [ 608.506567][T16330] do_recvmmsg+0x105a/0x1ee0 [ 608.511162][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 608.516101][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 608.520956][T16330] do_syscall_64+0xb0/0x150 [ 608.524679][T16328] not chained 280000 origins [ 608.525465][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 608.530046][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 608.535904][T16330] [ 608.544568][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 608.546891][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 608.557020][T16328] Call Trace: [ 608.563682][T16330] do_recvmmsg+0xc5/0x1ee0 [ 608.566947][T16328] dump_stack+0x1df/0x240 [ 608.571336][T16330] do_recvmmsg+0xc5/0x1ee0 [ 608.575643][T16328] ? psi_group_change+0x1007/0x13c0 [ 608.585223][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 608.590945][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 608.596078][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 608.602010][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 608.607318][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 608.612538][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 608.618362][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 608.624421][T16328] ? kfree+0x61/0x30f0 [ 608.628482][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 608.633583][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 608.639122][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 608.645181][T16328] ? _copy_from_user+0x15b/0x260 [ 608.650109][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 608.655211][T16328] __msan_chain_origin+0x50/0x90 [ 608.660186][T16328] do_recvmmsg+0x105a/0x1ee0 [ 608.664794][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 608.670075][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 608.675090][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 608.680103][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 608.685997][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 608.690950][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 608.695810][T16328] do_syscall_64+0xb0/0x150 [ 608.700321][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 608.706235][T16328] RIP: 0033:0x45c1d9 [ 608.710111][T16328] Code: Bad RIP value. [ 608.714159][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 608.722555][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 608.730512][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 608.738470][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 608.747387][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 608.755347][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 608.763326][T16328] Uninit was stored to memory at: [ 608.768380][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 608.774087][T16328] __msan_chain_origin+0x50/0x90 [ 608.779017][T16328] do_recvmmsg+0x105a/0x1ee0 [ 608.783599][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 608.788523][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 608.794316][T16328] do_syscall_64+0xb0/0x150 [ 608.798811][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 608.804678][T16328] [ 608.807019][T16328] Uninit was stored to memory at: [ 608.812044][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 608.817750][T16328] __msan_chain_origin+0x50/0x90 [ 608.822673][T16328] do_recvmmsg+0x105a/0x1ee0 [ 608.827247][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 608.832170][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 608.837008][T16328] do_syscall_64+0xb0/0x150 [ 608.841495][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 608.847367][T16328] [ 608.849676][T16328] Uninit was stored to memory at: [ 608.854686][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 608.860387][T16328] __msan_chain_origin+0x50/0x90 [ 608.865313][T16328] do_recvmmsg+0x105a/0x1ee0 [ 608.869887][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 608.874901][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 608.879738][T16328] do_syscall_64+0xb0/0x150 [ 608.884227][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 608.890095][T16328] [ 608.892403][T16328] Uninit was stored to memory at: [ 608.897413][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 608.903116][T16328] __msan_chain_origin+0x50/0x90 [ 608.908039][T16328] do_recvmmsg+0x105a/0x1ee0 [ 608.912615][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 608.917535][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 608.922370][T16328] do_syscall_64+0xb0/0x150 [ 608.926861][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 608.932729][T16328] [ 608.935039][T16328] Uninit was stored to memory at: [ 608.940051][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 608.945758][T16328] __msan_chain_origin+0x50/0x90 [ 608.950688][T16328] do_recvmmsg+0x105a/0x1ee0 [ 608.955270][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 608.960204][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 608.965041][T16328] do_syscall_64+0xb0/0x150 [ 608.969533][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 608.975402][T16328] [ 608.977821][T16328] Uninit was stored to memory at: [ 608.982834][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 608.988541][T16328] __msan_chain_origin+0x50/0x90 [ 608.993465][T16328] do_recvmmsg+0x105a/0x1ee0 [ 608.998042][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 609.003227][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 609.008072][T16328] do_syscall_64+0xb0/0x150 [ 609.012563][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 609.019216][T16328] [ 609.021528][T16328] Uninit was stored to memory at: [ 609.026555][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 609.032353][T16328] __msan_chain_origin+0x50/0x90 [ 609.037275][T16328] do_recvmmsg+0x105a/0x1ee0 [ 609.042574][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 609.047584][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 609.052421][T16328] do_syscall_64+0xb0/0x150 [ 609.056910][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 609.062780][T16328] [ 609.065094][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 609.071755][T16328] do_recvmmsg+0xc5/0x1ee0 [ 609.076155][T16328] do_recvmmsg+0xc5/0x1ee0 [ 609.310730][T16328] not chained 290000 origins [ 609.315368][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 609.324036][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 609.334088][T16328] Call Trace: [ 609.337384][T16328] dump_stack+0x1df/0x240 [ 609.341718][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 609.347437][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 609.352557][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 609.358541][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 609.363833][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 609.369031][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 609.374840][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 609.381173][T16328] ? kfree+0x61/0x30f0 [ 609.387080][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 609.392239][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 609.397815][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 609.403886][T16328] ? _copy_from_user+0x15b/0x260 [ 609.408823][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 609.413936][T16328] __msan_chain_origin+0x50/0x90 [ 609.418880][T16328] do_recvmmsg+0x105a/0x1ee0 [ 609.423685][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 609.428986][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 609.434007][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 609.439031][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 609.445032][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 609.450412][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 609.455266][T16328] do_syscall_64+0xb0/0x150 [ 609.459777][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 609.465749][T16328] RIP: 0033:0x45c1d9 [ 609.469632][T16328] Code: Bad RIP value. [ 609.473693][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 609.482100][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 609.490068][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 609.498037][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 609.506005][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 609.513994][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 609.521973][T16328] Uninit was stored to memory at: [ 609.527010][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 609.532998][T16328] __msan_chain_origin+0x50/0x90 [ 609.537933][T16328] do_recvmmsg+0x105a/0x1ee0 [ 609.543137][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 609.548344][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 609.553193][T16328] do_syscall_64+0xb0/0x150 [ 609.557895][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 609.563781][T16328] [ 609.566099][T16328] Uninit was stored to memory at: [ 609.571160][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 609.576877][T16328] __msan_chain_origin+0x50/0x90 [ 609.581814][T16328] do_recvmmsg+0x105a/0x1ee0 [ 609.586414][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 609.591359][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 609.596216][T16328] do_syscall_64+0xb0/0x150 [ 609.600723][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 609.606606][T16328] [ 609.608926][T16328] Uninit was stored to memory at: [ 609.613949][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 609.619670][T16328] __msan_chain_origin+0x50/0x90 [ 609.624605][T16328] do_recvmmsg+0x105a/0x1ee0 [ 609.629196][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 609.634140][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 609.638992][T16328] do_syscall_64+0xb0/0x150 [ 609.643492][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 609.649372][T16328] [ 609.651955][T16328] Uninit was stored to memory at: [ 609.656983][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 609.662700][T16328] __msan_chain_origin+0x50/0x90 [ 609.667638][T16328] do_recvmmsg+0x105a/0x1ee0 [ 609.672228][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 609.677163][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 609.682013][T16328] do_syscall_64+0xb0/0x150 [ 609.686518][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 609.692832][T16328] [ 609.695153][T16328] Uninit was stored to memory at: [ 609.700178][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 609.705892][T16328] __msan_chain_origin+0x50/0x90 [ 609.710827][T16328] do_recvmmsg+0x105a/0x1ee0 [ 609.715418][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 609.720438][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 609.725473][T16328] do_syscall_64+0xb0/0x150 [ 609.729983][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 609.735872][T16328] [ 609.738199][T16328] Uninit was stored to memory at: [ 609.743234][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 609.748965][T16328] __msan_chain_origin+0x50/0x90 [ 609.754266][T16328] do_recvmmsg+0x105a/0x1ee0 [ 609.759041][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 609.764026][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 609.769564][T16328] do_syscall_64+0xb0/0x150 [ 609.774072][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 609.779952][T16328] [ 609.782272][T16328] Uninit was stored to memory at: [ 609.787304][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 609.793014][T16328] __msan_chain_origin+0x50/0x90 [ 609.797940][T16328] do_recvmmsg+0x105a/0x1ee0 [ 609.802515][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 609.807441][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 609.812276][T16328] do_syscall_64+0xb0/0x150 [ 609.816766][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 609.822635][T16328] [ 609.824944][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 609.834123][T16328] do_recvmmsg+0xc5/0x1ee0 [ 609.838532][T16328] do_recvmmsg+0xc5/0x1ee0 [ 609.967604][T16330] not chained 300000 origins [ 609.972244][T16330] CPU: 0 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 609.980916][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 609.991010][T16330] Call Trace: [ 609.994315][T16330] dump_stack+0x1df/0x240 [ 609.998666][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 610.004384][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 610.009494][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 610.015382][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 610.020660][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 610.025847][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 610.031642][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 610.037871][T16330] ? kfree+0x61/0x30f0 [ 610.041932][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 610.047032][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 610.052565][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 610.058625][T16330] ? _copy_from_user+0x15b/0x260 [ 610.063549][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 610.068650][T16330] __msan_chain_origin+0x50/0x90 [ 610.073580][T16330] do_recvmmsg+0x105a/0x1ee0 [ 610.078189][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 610.083462][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 610.088476][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 610.093487][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 610.100421][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 610.105367][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 610.110221][T16330] do_syscall_64+0xb0/0x150 [ 610.115150][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 610.121027][T16330] RIP: 0033:0x45c1d9 [ 610.124899][T16330] Code: Bad RIP value. [ 610.128947][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 610.137362][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 610.145669][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 610.153627][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 610.161584][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 610.169543][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 610.177512][T16330] Uninit was stored to memory at: [ 610.182527][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 610.188234][T16330] __msan_chain_origin+0x50/0x90 [ 610.193158][T16330] do_recvmmsg+0x105a/0x1ee0 [ 610.197823][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 610.202749][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 610.207586][T16330] do_syscall_64+0xb0/0x150 [ 610.212081][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 610.217951][T16330] [ 610.220264][T16330] Uninit was stored to memory at: [ 610.225274][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 610.230980][T16330] __msan_chain_origin+0x50/0x90 [ 610.235950][T16330] do_recvmmsg+0x105a/0x1ee0 [ 610.240525][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 610.245449][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 610.250409][T16330] do_syscall_64+0xb0/0x150 [ 610.254900][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 610.260768][T16330] [ 610.263173][T16330] Uninit was stored to memory at: [ 610.268274][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 610.273979][T16330] __msan_chain_origin+0x50/0x90 [ 610.278904][T16330] do_recvmmsg+0x105a/0x1ee0 [ 610.283482][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 610.288407][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 610.293244][T16330] do_syscall_64+0xb0/0x150 [ 610.297734][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 610.303602][T16330] [ 610.305932][T16330] Uninit was stored to memory at: [ 610.311042][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 610.316775][T16330] __msan_chain_origin+0x50/0x90 [ 610.321698][T16330] do_recvmmsg+0x105a/0x1ee0 [ 610.326289][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 610.331216][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 610.336055][T16330] do_syscall_64+0xb0/0x150 [ 610.340911][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 610.346785][T16330] [ 610.349268][T16330] Uninit was stored to memory at: [ 610.354278][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 610.360045][T16330] __msan_chain_origin+0x50/0x90 [ 610.365229][T16330] do_recvmmsg+0x105a/0x1ee0 [ 610.369807][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 610.374730][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 610.379758][T16330] do_syscall_64+0xb0/0x150 [ 610.384249][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 610.390121][T16330] [ 610.392431][T16330] Uninit was stored to memory at: [ 610.397463][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 610.403253][T16330] __msan_chain_origin+0x50/0x90 [ 610.408178][T16330] do_recvmmsg+0x105a/0x1ee0 [ 610.412752][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 610.417674][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 610.422512][T16330] do_syscall_64+0xb0/0x150 [ 610.427003][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 610.432872][T16330] [ 610.435180][T16330] Uninit was stored to memory at: [ 610.440192][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 610.445894][T16330] __msan_chain_origin+0x50/0x90 [ 610.450818][T16330] do_recvmmsg+0x105a/0x1ee0 [ 610.455397][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 610.460318][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 610.465176][T16330] do_syscall_64+0xb0/0x150 [ 610.469676][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 610.475543][T16330] [ 610.477854][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 610.484513][T16330] do_recvmmsg+0xc5/0x1ee0 [ 610.488916][T16330] do_recvmmsg+0xc5/0x1ee0 [ 610.847785][T16330] not chained 310000 origins [ 610.852424][T16330] CPU: 1 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 610.861088][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 610.871142][T16330] Call Trace: [ 610.874439][T16330] dump_stack+0x1df/0x240 [ 610.878787][T16330] ? psi_group_change+0x1007/0x13c0 [ 610.884426][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 610.890156][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 610.895272][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 610.901169][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 610.906460][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 610.911660][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 610.917733][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 610.923802][T16330] ? kfree+0x61/0x30f0 [ 610.927880][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 610.932990][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 610.938539][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 610.944612][T16330] ? _copy_from_user+0x15b/0x260 [ 610.949553][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 610.954664][T16330] __msan_chain_origin+0x50/0x90 [ 610.959612][T16330] do_recvmmsg+0x105a/0x1ee0 [ 610.964238][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 610.969533][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 610.974643][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 610.979682][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 610.985590][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 610.990540][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 610.995396][T16330] do_syscall_64+0xb0/0x150 [ 610.999913][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 611.005800][T16330] RIP: 0033:0x45c1d9 [ 611.009682][T16330] Code: Bad RIP value. [ 611.013745][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 611.022155][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 611.030128][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 611.038100][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 611.046071][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 611.054041][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 611.062022][T16330] Uninit was stored to memory at: [ 611.067054][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 611.072773][T16330] __msan_chain_origin+0x50/0x90 [ 611.077714][T16330] do_recvmmsg+0x105a/0x1ee0 [ 611.082303][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 611.087245][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 611.092095][T16330] do_syscall_64+0xb0/0x150 [ 611.096609][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 611.102489][T16330] [ 611.104806][T16330] Uninit was stored to memory at: [ 611.109832][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 611.115550][T16330] __msan_chain_origin+0x50/0x90 [ 611.120489][T16330] do_recvmmsg+0x105a/0x1ee0 [ 611.125081][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 611.130022][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 611.134878][T16330] do_syscall_64+0xb0/0x150 [ 611.139402][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 611.145284][T16330] [ 611.147606][T16330] Uninit was stored to memory at: [ 611.152629][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 611.158783][T16330] __msan_chain_origin+0x50/0x90 [ 611.163722][T16330] do_recvmmsg+0x105a/0x1ee0 [ 611.168311][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 611.173260][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 611.178113][T16330] do_syscall_64+0xb0/0x150 [ 611.182616][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 611.188597][T16330] [ 611.190916][T16330] Uninit was stored to memory at: [ 611.195939][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 611.201657][T16330] __msan_chain_origin+0x50/0x90 [ 611.206596][T16330] do_recvmmsg+0x105a/0x1ee0 [ 611.211185][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 611.216119][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 611.220969][T16330] do_syscall_64+0xb0/0x150 [ 611.225478][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 611.231356][T16330] [ 611.233675][T16330] Uninit was stored to memory at: [ 611.238788][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 611.244591][T16330] __msan_chain_origin+0x50/0x90 [ 611.249529][T16330] do_recvmmsg+0x105a/0x1ee0 [ 611.254119][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 611.259057][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 611.263910][T16330] do_syscall_64+0xb0/0x150 [ 611.268418][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 611.274300][T16330] [ 611.276622][T16330] Uninit was stored to memory at: [ 611.281645][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 611.288407][T16330] __msan_chain_origin+0x50/0x90 [ 611.293344][T16330] do_recvmmsg+0x105a/0x1ee0 [ 611.297933][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 611.302868][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 611.307720][T16330] do_syscall_64+0xb0/0x150 [ 611.312246][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 611.318124][T16330] [ 611.320444][T16330] Uninit was stored to memory at: [ 611.325480][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 611.331208][T16330] __msan_chain_origin+0x50/0x90 [ 611.336146][T16330] do_recvmmsg+0x105a/0x1ee0 [ 611.340736][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 611.345766][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 611.350617][T16330] do_syscall_64+0xb0/0x150 [ 611.355120][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 611.361000][T16330] [ 611.363324][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 611.371068][T16330] do_recvmmsg+0xc5/0x1ee0 [ 611.375573][T16330] do_recvmmsg+0xc5/0x1ee0 [ 611.537390][T16328] not chained 320000 origins [ 611.542025][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 611.550786][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 611.560839][T16328] Call Trace: [ 611.564142][T16328] dump_stack+0x1df/0x240 [ 611.568484][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 611.574203][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 611.579410][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 611.585425][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 611.590719][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 611.595931][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 611.601755][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 611.607833][T16328] ? kfree+0x61/0x30f0 [ 611.611918][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 611.617035][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 611.622600][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 611.628678][T16328] ? _copy_from_user+0x15b/0x260 [ 611.633621][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 611.638742][T16328] __msan_chain_origin+0x50/0x90 [ 611.643687][T16328] do_recvmmsg+0x105a/0x1ee0 [ 611.648316][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 611.653618][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 611.661125][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 611.666154][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 611.672060][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 611.677038][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 611.681903][T16328] do_syscall_64+0xb0/0x150 [ 611.686420][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 611.692574][T16328] RIP: 0033:0x45c1d9 [ 611.696461][T16328] Code: Bad RIP value. [ 611.700525][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 611.708937][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 611.716914][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 611.724894][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 611.732875][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 611.740862][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 611.748847][T16328] Uninit was stored to memory at: [ 611.753889][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 611.759617][T16328] __msan_chain_origin+0x50/0x90 [ 611.764566][T16328] do_recvmmsg+0x105a/0x1ee0 [ 611.769288][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 611.774240][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 611.779098][T16328] do_syscall_64+0xb0/0x150 [ 611.783609][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 611.789488][T16328] [ 611.791809][T16328] Uninit was stored to memory at: [ 611.796845][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 611.802563][T16328] __msan_chain_origin+0x50/0x90 [ 611.808030][T16328] do_recvmmsg+0x105a/0x1ee0 [ 611.812622][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 611.817581][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 611.822780][T16328] do_syscall_64+0xb0/0x150 [ 611.827313][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 611.833202][T16328] [ 611.835530][T16328] Uninit was stored to memory at: [ 611.840558][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 611.846276][T16328] __msan_chain_origin+0x50/0x90 [ 611.851225][T16328] do_recvmmsg+0x105a/0x1ee0 [ 611.855824][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 611.860761][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 611.865617][T16328] do_syscall_64+0xb0/0x150 [ 611.870120][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 611.875999][T16328] [ 611.878320][T16328] Uninit was stored to memory at: [ 611.883346][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 611.889070][T16328] __msan_chain_origin+0x50/0x90 [ 611.894011][T16328] do_recvmmsg+0x105a/0x1ee0 [ 611.898605][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 611.903542][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 611.908398][T16328] do_syscall_64+0xb0/0x150 [ 611.912904][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 611.918784][T16328] [ 611.921106][T16328] Uninit was stored to memory at: [ 611.926130][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 611.931952][T16328] __msan_chain_origin+0x50/0x90 [ 611.936892][T16328] do_recvmmsg+0x105a/0x1ee0 [ 611.941484][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 611.946429][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 611.951284][T16328] do_syscall_64+0xb0/0x150 [ 611.955889][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 611.961783][T16328] [ 611.964107][T16328] Uninit was stored to memory at: [ 611.969142][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 611.974866][T16328] __msan_chain_origin+0x50/0x90 [ 611.980417][T16328] do_recvmmsg+0x105a/0x1ee0 [ 611.985012][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 611.989961][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 611.994816][T16328] do_syscall_64+0xb0/0x150 [ 611.999322][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 612.005202][T16328] [ 612.007521][T16328] Uninit was stored to memory at: [ 612.012564][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 612.018282][T16328] __msan_chain_origin+0x50/0x90 [ 612.023226][T16328] do_recvmmsg+0x105a/0x1ee0 [ 612.027817][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 612.032768][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 612.037619][T16328] do_syscall_64+0xb0/0x150 [ 612.042124][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 612.048008][T16328] [ 612.050332][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 612.057014][T16328] do_recvmmsg+0xc5/0x1ee0 [ 612.061458][T16328] do_recvmmsg+0xc5/0x1ee0 [ 612.237528][T16330] not chained 330000 origins [ 612.242338][T16330] CPU: 1 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 612.251023][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 612.261078][T16330] Call Trace: [ 612.264468][T16330] dump_stack+0x1df/0x240 [ 612.268900][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 612.274625][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 612.279743][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 612.285646][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 612.290939][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 612.296150][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 612.301968][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 612.308052][T16330] ? kfree+0x61/0x30f0 [ 612.312134][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 612.317339][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 612.322899][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 612.329185][T16330] ? _copy_from_user+0x15b/0x260 [ 612.334126][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 612.339245][T16330] __msan_chain_origin+0x50/0x90 [ 612.344279][T16330] do_recvmmsg+0x105a/0x1ee0 [ 612.348910][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 612.354216][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 612.359249][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 612.364273][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 612.370176][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 612.375126][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 612.380504][T16330] do_syscall_64+0xb0/0x150 [ 612.385025][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 612.390919][T16330] RIP: 0033:0x45c1d9 [ 612.395236][T16330] Code: Bad RIP value. [ 612.399297][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 612.407706][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 612.415678][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 612.423672][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 612.431648][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 612.439623][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 612.447608][T16330] Uninit was stored to memory at: [ 612.452909][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 612.458642][T16330] __msan_chain_origin+0x50/0x90 [ 612.469063][T16330] do_recvmmsg+0x105a/0x1ee0 [ 612.473667][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 612.478699][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 612.484249][T16330] do_syscall_64+0xb0/0x150 [ 612.488763][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 612.494645][T16330] [ 612.496968][T16330] Uninit was stored to memory at: [ 612.502008][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 612.507734][T16330] __msan_chain_origin+0x50/0x90 [ 612.513025][T16330] do_recvmmsg+0x105a/0x1ee0 [ 612.517622][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 612.522566][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 612.527424][T16330] do_syscall_64+0xb0/0x150 [ 612.531927][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 612.537806][T16330] [ 612.540126][T16330] Uninit was stored to memory at: [ 612.545153][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 612.550881][T16330] __msan_chain_origin+0x50/0x90 [ 612.555822][T16330] do_recvmmsg+0x105a/0x1ee0 [ 612.560411][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 612.565347][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 612.570197][T16330] do_syscall_64+0xb0/0x150 [ 612.574710][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 612.580593][T16330] [ 612.582915][T16330] Uninit was stored to memory at: [ 612.587946][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 612.593764][T16330] __msan_chain_origin+0x50/0x90 [ 612.598873][T16330] do_recvmmsg+0x105a/0x1ee0 [ 612.603468][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 612.608534][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 612.613388][T16330] do_syscall_64+0xb0/0x150 [ 612.617898][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 612.623778][T16330] [ 612.626242][T16330] Uninit was stored to memory at: [ 612.631312][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 612.637388][T16330] __msan_chain_origin+0x50/0x90 [ 612.642339][T16330] do_recvmmsg+0x105a/0x1ee0 [ 612.646935][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 612.651885][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 612.656743][T16330] do_syscall_64+0xb0/0x150 [ 612.661426][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 612.667308][T16330] [ 612.669632][T16330] Uninit was stored to memory at: [ 612.676658][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 612.682386][T16330] __msan_chain_origin+0x50/0x90 [ 612.687337][T16330] do_recvmmsg+0x105a/0x1ee0 [ 612.691933][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 612.696898][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 612.701895][T16330] do_syscall_64+0xb0/0x150 [ 612.706415][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 612.712303][T16330] [ 612.714626][T16330] Uninit was stored to memory at: [ 612.719660][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 612.726010][T16330] __msan_chain_origin+0x50/0x90 [ 612.730955][T16330] do_recvmmsg+0x105a/0x1ee0 [ 612.735556][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 612.740509][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 612.745367][T16330] do_syscall_64+0xb0/0x150 [ 612.750230][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 612.756116][T16330] [ 612.758449][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 612.765133][T16330] do_recvmmsg+0xc5/0x1ee0 [ 612.769557][T16330] do_recvmmsg+0xc5/0x1ee0 [ 612.933460][T16328] not chained 340000 origins [ 612.938099][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 612.946767][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 612.957259][T16328] Call Trace: [ 612.960570][T16328] dump_stack+0x1df/0x240 [ 612.964909][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 612.970635][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 612.975776][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 612.981676][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 612.987065][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 612.992268][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 612.998078][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 613.004143][T16328] ? kfree+0x61/0x30f0 [ 613.008921][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 613.014296][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 613.019851][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 613.025924][T16328] ? _copy_from_user+0x15b/0x260 [ 613.030864][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 613.035980][T16328] __msan_chain_origin+0x50/0x90 [ 613.040921][T16328] do_recvmmsg+0x105a/0x1ee0 [ 613.045545][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 613.051227][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 613.056251][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 613.061277][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 613.067182][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 613.072389][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 613.077244][T16328] do_syscall_64+0xb0/0x150 [ 613.081753][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 613.087640][T16328] RIP: 0033:0x45c1d9 [ 613.091521][T16328] Code: Bad RIP value. [ 613.095581][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 613.103998][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 613.111989][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 613.119958][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 613.127952][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 613.135923][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 613.143898][T16328] Uninit was stored to memory at: [ 613.149364][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 613.155084][T16328] __msan_chain_origin+0x50/0x90 [ 613.160022][T16328] do_recvmmsg+0x105a/0x1ee0 [ 613.164612][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 613.169550][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 613.174399][T16328] do_syscall_64+0xb0/0x150 [ 613.178907][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 613.184871][T16328] [ 613.187194][T16328] Uninit was stored to memory at: [ 613.192218][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 613.198109][T16328] __msan_chain_origin+0x50/0x90 [ 613.203043][T16328] do_recvmmsg+0x105a/0x1ee0 [ 613.207634][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 613.212572][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 613.217424][T16328] do_syscall_64+0xb0/0x150 [ 613.221929][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 613.227807][T16328] [ 613.230131][T16328] Uninit was stored to memory at: [ 613.235361][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 613.241081][T16328] __msan_chain_origin+0x50/0x90 [ 613.246018][T16328] do_recvmmsg+0x105a/0x1ee0 [ 613.250606][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 613.255551][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 613.260400][T16328] do_syscall_64+0xb0/0x150 [ 613.264902][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 613.270784][T16328] [ 613.273117][T16328] Uninit was stored to memory at: [ 613.278146][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 613.283872][T16328] __msan_chain_origin+0x50/0x90 [ 613.288808][T16328] do_recvmmsg+0x105a/0x1ee0 [ 613.293401][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 613.298336][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 613.303186][T16328] do_syscall_64+0xb0/0x150 [ 613.307690][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 613.313574][T16328] [ 613.315902][T16328] Uninit was stored to memory at: [ 613.320924][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 613.326639][T16328] __msan_chain_origin+0x50/0x90 [ 613.331576][T16328] do_recvmmsg+0x105a/0x1ee0 [ 613.336164][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 613.341621][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 613.346480][T16328] do_syscall_64+0xb0/0x150 [ 613.351008][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 613.360362][T16328] [ 613.362683][T16328] Uninit was stored to memory at: [ 613.368148][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 613.373865][T16328] __msan_chain_origin+0x50/0x90 [ 613.378928][T16328] do_recvmmsg+0x105a/0x1ee0 [ 613.383533][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 613.388481][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 613.394204][T16328] do_syscall_64+0xb0/0x150 [ 613.398717][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 613.405552][T16328] [ 613.407874][T16328] Uninit was stored to memory at: [ 613.412892][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 613.418601][T16328] __msan_chain_origin+0x50/0x90 [ 613.423870][T16328] do_recvmmsg+0x105a/0x1ee0 [ 613.428444][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 613.433365][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 613.438199][T16328] do_syscall_64+0xb0/0x150 [ 613.442686][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 613.448553][T16328] [ 613.450863][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 613.457518][T16328] do_recvmmsg+0xc5/0x1ee0 [ 613.461919][T16328] do_recvmmsg+0xc5/0x1ee0 [ 613.693383][T16330] not chained 350000 origins [ 613.698033][T16330] CPU: 0 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 613.706701][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 613.716752][T16330] Call Trace: [ 613.720035][T16330] dump_stack+0x1df/0x240 [ 613.725047][T16330] ? psi_group_change+0x1007/0x13c0 [ 613.730251][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 613.735973][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 613.741096][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 613.746978][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 613.752274][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 613.757465][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 613.763270][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 613.769336][T16330] ? kfree+0x61/0x30f0 [ 613.773393][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 613.778493][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 613.784024][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 613.790081][T16330] ? _copy_from_user+0x15b/0x260 [ 613.795008][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 613.800122][T16330] __msan_chain_origin+0x50/0x90 [ 613.805050][T16330] do_recvmmsg+0x105a/0x1ee0 [ 613.810265][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 613.815569][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 613.820580][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 613.825603][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 613.831485][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 613.836419][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 613.841258][T16330] do_syscall_64+0xb0/0x150 [ 613.845750][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 613.851625][T16330] RIP: 0033:0x45c1d9 [ 613.855497][T16330] Code: Bad RIP value. [ 613.859558][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 613.867954][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 613.875913][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 613.884014][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 613.891970][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 613.899928][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 613.907892][T16330] Uninit was stored to memory at: [ 613.912914][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 613.918618][T16330] __msan_chain_origin+0x50/0x90 [ 613.923541][T16330] do_recvmmsg+0x105a/0x1ee0 [ 613.928118][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 613.933042][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 613.937880][T16330] do_syscall_64+0xb0/0x150 [ 613.942374][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 613.948242][T16330] [ 613.950550][T16330] Uninit was stored to memory at: [ 613.955559][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 613.961260][T16330] __msan_chain_origin+0x50/0x90 [ 613.966182][T16330] do_recvmmsg+0x105a/0x1ee0 [ 613.970756][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 613.975938][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 613.980772][T16330] do_syscall_64+0xb0/0x150 [ 613.985260][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 613.991130][T16330] [ 613.993441][T16330] Uninit was stored to memory at: [ 613.998451][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 614.004169][T16330] __msan_chain_origin+0x50/0x90 [ 614.009091][T16330] do_recvmmsg+0x105a/0x1ee0 [ 614.013663][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 614.018586][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 614.023436][T16330] do_syscall_64+0xb0/0x150 [ 614.027924][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 614.033788][T16330] [ 614.036100][T16330] Uninit was stored to memory at: [ 614.041125][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 614.046828][T16330] __msan_chain_origin+0x50/0x90 [ 614.051763][T16330] do_recvmmsg+0x105a/0x1ee0 [ 614.056337][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 614.061258][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 614.066094][T16330] do_syscall_64+0xb0/0x150 [ 614.070586][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 614.076451][T16330] [ 614.078779][T16330] Uninit was stored to memory at: [ 614.083787][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 614.089489][T16330] __msan_chain_origin+0x50/0x90 [ 614.094425][T16330] do_recvmmsg+0x105a/0x1ee0 [ 614.099001][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 614.103937][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 614.108771][T16330] do_syscall_64+0xb0/0x150 [ 614.113260][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 614.119129][T16330] [ 614.121447][T16330] Uninit was stored to memory at: [ 614.126548][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 614.132251][T16330] __msan_chain_origin+0x50/0x90 [ 614.137172][T16330] do_recvmmsg+0x105a/0x1ee0 [ 614.141748][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 614.146672][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 614.151507][T16330] do_syscall_64+0xb0/0x150 [ 614.156104][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 614.161971][T16330] [ 614.164277][T16330] Uninit was stored to memory at: [ 614.169285][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 614.175001][T16330] __msan_chain_origin+0x50/0x90 [ 614.179924][T16330] do_recvmmsg+0x105a/0x1ee0 [ 614.184586][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 614.189508][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 614.194344][T16330] do_syscall_64+0xb0/0x150 [ 614.198851][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 614.204733][T16330] [ 614.207049][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 614.213704][T16330] do_recvmmsg+0xc5/0x1ee0 [ 614.218104][T16330] do_recvmmsg+0xc5/0x1ee0 [ 614.378346][T16328] not chained 360000 origins [ 614.382989][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 614.391659][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 614.401714][T16328] Call Trace: [ 614.405015][T16328] dump_stack+0x1df/0x240 [ 614.409355][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 614.415087][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 614.420210][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 614.426110][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 614.431407][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 614.436615][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 614.442432][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 614.448505][T16328] ? kfree+0x61/0x30f0 [ 614.452578][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 614.457695][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 614.463250][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 614.469331][T16328] ? _copy_from_user+0x15b/0x260 [ 614.474276][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 614.479394][T16328] __msan_chain_origin+0x50/0x90 [ 614.484348][T16328] do_recvmmsg+0x105a/0x1ee0 [ 614.488993][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 614.494311][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 614.499347][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 614.504380][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 614.510284][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 614.515237][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 614.520098][T16328] do_syscall_64+0xb0/0x150 [ 614.524610][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 614.530500][T16328] RIP: 0033:0x45c1d9 [ 614.536380][T16328] Code: Bad RIP value. [ 614.540442][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 614.548854][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 614.556831][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 614.564806][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 614.572779][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 614.581375][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 614.589508][T16328] Uninit was stored to memory at: [ 614.594813][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 614.600544][T16328] __msan_chain_origin+0x50/0x90 [ 614.605483][T16328] do_recvmmsg+0x105a/0x1ee0 [ 614.610074][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 614.615038][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 614.619893][T16328] do_syscall_64+0xb0/0x150 [ 614.624399][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 614.630304][T16328] [ 614.632624][T16328] Uninit was stored to memory at: [ 614.637743][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 614.643465][T16328] __msan_chain_origin+0x50/0x90 [ 614.648404][T16328] do_recvmmsg+0x105a/0x1ee0 [ 614.652995][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 614.657931][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 614.662780][T16328] do_syscall_64+0xb0/0x150 [ 614.667291][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 614.673173][T16328] [ 614.675500][T16328] Uninit was stored to memory at: [ 614.680526][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 614.686249][T16328] __msan_chain_origin+0x50/0x90 [ 614.691193][T16328] do_recvmmsg+0x105a/0x1ee0 [ 614.695882][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 614.701087][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 614.705940][T16328] do_syscall_64+0xb0/0x150 [ 614.710449][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 614.716331][T16328] [ 614.718652][T16328] Uninit was stored to memory at: [ 614.723682][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 614.729400][T16328] __msan_chain_origin+0x50/0x90 [ 614.734342][T16328] do_recvmmsg+0x105a/0x1ee0 [ 614.738955][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 614.743901][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 614.748756][T16328] do_syscall_64+0xb0/0x150 [ 614.753272][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 614.759157][T16328] [ 614.761481][T16328] Uninit was stored to memory at: [ 614.766519][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 614.772239][T16328] __msan_chain_origin+0x50/0x90 [ 614.777181][T16328] do_recvmmsg+0x105a/0x1ee0 [ 614.781771][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 614.786715][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 614.791576][T16328] do_syscall_64+0xb0/0x150 [ 614.796093][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 614.801974][T16328] [ 614.804296][T16328] Uninit was stored to memory at: [ 614.809328][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 614.815053][T16328] __msan_chain_origin+0x50/0x90 [ 614.819999][T16328] do_recvmmsg+0x105a/0x1ee0 [ 614.824592][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 614.829532][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 614.834386][T16328] do_syscall_64+0xb0/0x150 [ 614.838891][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 614.844770][T16328] [ 614.847089][T16328] Uninit was stored to memory at: [ 614.852120][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 614.857849][T16328] __msan_chain_origin+0x50/0x90 [ 614.862792][T16328] do_recvmmsg+0x105a/0x1ee0 [ 614.867385][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 614.872324][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 614.877176][T16328] do_syscall_64+0xb0/0x150 [ 614.881770][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 614.887649][T16328] [ 614.889972][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 614.896648][T16328] do_recvmmsg+0xc5/0x1ee0 [ 614.901072][T16328] do_recvmmsg+0xc5/0x1ee0 [ 615.057980][T16330] not chained 370000 origins [ 615.062618][T16330] CPU: 1 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 615.071285][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 615.081330][T16330] Call Trace: [ 615.084620][T16330] dump_stack+0x1df/0x240 [ 615.088947][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 615.094654][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 615.099752][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 615.105631][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 615.110905][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 615.116088][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 615.121878][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 615.127928][T16330] ? kfree+0x61/0x30f0 [ 615.131987][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 615.137105][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 615.142635][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 615.148692][T16330] ? _copy_from_user+0x15b/0x260 [ 615.153618][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 615.158716][T16330] __msan_chain_origin+0x50/0x90 [ 615.163648][T16330] do_recvmmsg+0x105a/0x1ee0 [ 615.168251][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 615.173524][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 615.178532][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 615.183542][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 615.189425][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 615.194395][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 615.199233][T16330] do_syscall_64+0xb0/0x150 [ 615.203725][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 615.209598][T16330] RIP: 0033:0x45c1d9 [ 615.213485][T16330] Code: Bad RIP value. [ 615.217532][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 615.225928][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 615.233885][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 615.242186][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 615.250142][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 615.258100][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 615.266065][T16330] Uninit was stored to memory at: [ 615.271079][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 615.276793][T16330] __msan_chain_origin+0x50/0x90 [ 615.281714][T16330] do_recvmmsg+0x105a/0x1ee0 [ 615.286378][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 615.291299][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 615.296146][T16330] do_syscall_64+0xb0/0x150 [ 615.300649][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 615.306515][T16330] [ 615.308822][T16330] Uninit was stored to memory at: [ 615.313829][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 615.319534][T16330] __msan_chain_origin+0x50/0x90 [ 615.324541][T16330] do_recvmmsg+0x105a/0x1ee0 [ 615.329116][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 615.334052][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 615.338888][T16330] do_syscall_64+0xb0/0x150 [ 615.343377][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 615.349245][T16330] [ 615.351554][T16330] Uninit was stored to memory at: [ 615.356575][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 615.362279][T16330] __msan_chain_origin+0x50/0x90 [ 615.367213][T16330] do_recvmmsg+0x105a/0x1ee0 [ 615.371789][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 615.376708][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 615.381554][T16330] do_syscall_64+0xb0/0x150 [ 615.386043][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 615.391911][T16330] [ 615.394218][T16330] Uninit was stored to memory at: [ 615.399247][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 615.404949][T16330] __msan_chain_origin+0x50/0x90 [ 615.409870][T16330] do_recvmmsg+0x105a/0x1ee0 [ 615.414445][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 615.419366][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 615.424200][T16330] do_syscall_64+0xb0/0x150 [ 615.428698][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 615.434564][T16330] [ 615.436876][T16330] Uninit was stored to memory at: [ 615.441883][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 615.447584][T16330] __msan_chain_origin+0x50/0x90 [ 615.452504][T16330] do_recvmmsg+0x105a/0x1ee0 [ 615.457081][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 615.462002][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 615.466835][T16330] do_syscall_64+0xb0/0x150 [ 615.471327][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 615.477191][T16330] [ 615.479500][T16330] Uninit was stored to memory at: [ 615.484508][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 615.490211][T16330] __msan_chain_origin+0x50/0x90 [ 615.495131][T16330] do_recvmmsg+0x105a/0x1ee0 [ 615.499723][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 615.504654][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 615.509501][T16330] do_syscall_64+0xb0/0x150 [ 615.514001][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 615.519874][T16330] [ 615.522182][T16330] Uninit was stored to memory at: [ 615.527196][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 615.532900][T16330] __msan_chain_origin+0x50/0x90 [ 615.537821][T16330] do_recvmmsg+0x105a/0x1ee0 [ 615.542420][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 615.547358][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 615.552205][T16330] do_syscall_64+0xb0/0x150 [ 615.556694][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 615.562562][T16330] [ 615.564876][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 615.571548][T16330] do_recvmmsg+0xc5/0x1ee0 [ 615.575967][T16330] do_recvmmsg+0xc5/0x1ee0 [ 615.719707][T16328] not chained 380000 origins [ 615.724347][T16328] CPU: 0 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 615.733014][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 615.743592][T16328] Call Trace: [ 615.746898][T16328] dump_stack+0x1df/0x240 [ 615.751240][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 615.756971][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 615.762138][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 615.768037][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 615.773323][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 615.778520][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 615.784325][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 615.790393][T16328] ? kfree+0x61/0x30f0 [ 615.794461][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 615.799574][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 615.805122][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 615.811456][T16328] ? _copy_from_user+0x15b/0x260 [ 615.816393][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 615.821501][T16328] __msan_chain_origin+0x50/0x90 [ 615.826441][T16328] do_recvmmsg+0x105a/0x1ee0 [ 615.831061][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 615.836350][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 615.841384][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 615.846408][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 615.852331][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 615.857278][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 615.862128][T16328] do_syscall_64+0xb0/0x150 [ 615.866637][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 615.872522][T16328] RIP: 0033:0x45c1d9 [ 615.876407][T16328] Code: Bad RIP value. [ 615.880467][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 615.889147][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 615.897116][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 615.905082][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 615.913053][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 615.921035][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 615.933373][T16328] Uninit was stored to memory at: [ 615.938402][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 615.944124][T16328] __msan_chain_origin+0x50/0x90 [ 615.949060][T16328] do_recvmmsg+0x105a/0x1ee0 [ 615.953655][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 615.958593][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 615.963443][T16328] do_syscall_64+0xb0/0x150 [ 615.968033][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 615.974519][T16328] [ 615.975268][T16330] not chained 390000 origins [ 615.976863][T16328] Uninit was stored to memory at: [ 615.981446][T16330] CPU: 1 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 615.986450][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 615.995103][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 616.000803][T16328] __msan_chain_origin+0x50/0x90 [ 616.010931][T16330] Call Trace: [ 616.015866][T16328] do_recvmmsg+0x105a/0x1ee0 [ 616.019135][T16330] dump_stack+0x1df/0x240 [ 616.023696][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 616.028002][T16330] ? psi_group_change+0x1007/0x13c0 [ 616.033348][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 616.038559][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 616.043387][T16328] do_syscall_64+0xb0/0x150 [ 616.049080][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 616.053560][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 616.058646][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 616.064504][T16328] [ 616.070379][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 616.072676][T16328] Uninit was stored to memory at: [ 616.077943][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 616.082940][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 616.088205][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 616.094165][T16328] __msan_chain_origin+0x50/0x90 [ 616.099962][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 616.105141][T16328] do_recvmmsg+0x105a/0x1ee0 [ 616.111182][T16330] ? kfree+0x61/0x30f0 [ 616.115749][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 616.119796][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 616.126097][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 616.131646][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 616.136472][T16328] do_syscall_64+0xb0/0x150 [ 616.142024][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 616.146590][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 616.152632][T16330] ? _copy_from_user+0x15b/0x260 [ 616.158497][T16328] [ 616.163430][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 616.165730][T16328] Uninit was stored to memory at: [ 616.171022][T16330] __msan_chain_origin+0x50/0x90 [ 616.176032][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 616.180963][T16330] do_recvmmsg+0x105a/0x1ee0 [ 616.186763][T16328] __msan_chain_origin+0x50/0x90 [ 616.191354][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 616.196251][T16328] do_recvmmsg+0x105a/0x1ee0 [ 616.201687][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 616.206253][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 616.211396][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 616.216307][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 616.221311][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 616.226137][T16328] do_syscall_64+0xb0/0x150 [ 616.232104][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 616.236682][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 616.241597][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 616.247454][T16328] [ 616.252316][T16330] do_syscall_64+0xb0/0x150 [ 616.254613][T16328] Uninit was stored to memory at: [ 616.259101][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 616.264100][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 616.269962][T16330] RIP: 0033:0x45c1d9 [ 616.275662][T16328] __msan_chain_origin+0x50/0x90 [ 616.279525][T16330] Code: Bad RIP value. [ 616.285226][T16328] do_recvmmsg+0x105a/0x1ee0 [ 616.289618][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 616.294274][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 616.302654][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 616.307588][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 616.315533][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 616.320364][T16328] do_syscall_64+0xb0/0x150 [ 616.328485][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 616.333061][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 616.341043][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 616.346907][T16328] [ 616.354864][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 616.357175][T16328] Uninit was stored to memory at: [ 616.365131][T16330] Uninit was stored to memory at: [ 616.370144][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 616.375144][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 616.380836][T16328] __msan_chain_origin+0x50/0x90 [ 616.386617][T16330] __msan_chain_origin+0x50/0x90 [ 616.391533][T16328] do_recvmmsg+0x105a/0x1ee0 [ 616.396443][T16330] do_recvmmsg+0x105a/0x1ee0 [ 616.401008][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 616.405573][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 616.410486][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 616.415399][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 616.420226][T16328] do_syscall_64+0xb0/0x150 [ 616.425049][T16330] do_syscall_64+0xb0/0x150 [ 616.429615][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 616.434095][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 616.439952][T16328] [ 616.445990][T16330] [ 616.448295][T16328] Uninit was stored to memory at: [ 616.450602][T16330] Uninit was stored to memory at: [ 616.455964][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 616.460960][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 616.466655][T16328] __msan_chain_origin+0x50/0x90 [ 616.472366][T16330] __msan_chain_origin+0x50/0x90 [ 616.477278][T16328] do_recvmmsg+0x105a/0x1ee0 [ 616.482187][T16330] do_recvmmsg+0x105a/0x1ee0 [ 616.486751][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 616.493548][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 616.498462][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 616.503376][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 616.508201][T16328] do_syscall_64+0xb0/0x150 [ 616.513026][T16330] do_syscall_64+0xb0/0x150 [ 616.517505][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 616.521987][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 616.527844][T16328] [ 616.533714][T16330] [ 616.536027][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 616.538348][T16330] Uninit was stored to memory at: [ 616.545030][T16328] do_recvmmsg+0xc5/0x1ee0 [ 616.550037][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 616.554511][T16328] do_recvmmsg+0xc5/0x1ee0 [ 616.560193][T16330] __msan_chain_origin+0x50/0x90 [ 616.569516][T16330] do_recvmmsg+0x105a/0x1ee0 [ 616.574111][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 616.579051][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 616.584055][T16330] do_syscall_64+0xb0/0x150 [ 616.588558][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 616.594517][T16330] [ 616.596831][T16330] Uninit was stored to memory at: [ 616.601853][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 616.607561][T16330] __msan_chain_origin+0x50/0x90 [ 616.612485][T16330] do_recvmmsg+0x105a/0x1ee0 [ 616.617068][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 616.621991][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 616.626828][T16330] do_syscall_64+0xb0/0x150 [ 616.631339][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 616.637208][T16330] [ 616.639517][T16330] Uninit was stored to memory at: [ 616.644530][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 616.650257][T16330] __msan_chain_origin+0x50/0x90 [ 616.655282][T16330] do_recvmmsg+0x105a/0x1ee0 [ 616.659859][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 616.664781][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 616.669616][T16330] do_syscall_64+0xb0/0x150 [ 616.674105][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 616.684935][T16330] [ 616.687247][T16330] Uninit was stored to memory at: [ 616.692262][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 616.697971][T16330] __msan_chain_origin+0x50/0x90 [ 616.702890][T16330] do_recvmmsg+0x105a/0x1ee0 [ 616.707465][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 616.712390][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 616.717227][T16330] do_syscall_64+0xb0/0x150 [ 616.721730][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 616.727596][T16330] [ 616.729914][T16330] Uninit was stored to memory at: [ 616.734923][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 616.740624][T16330] __msan_chain_origin+0x50/0x90 [ 616.745544][T16330] do_recvmmsg+0x105a/0x1ee0 [ 616.750120][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 616.755052][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 616.759901][T16330] do_syscall_64+0xb0/0x150 [ 616.764489][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 616.770356][T16330] [ 616.772666][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 616.779324][T16330] do_recvmmsg+0xc5/0x1ee0 [ 616.783723][T16330] do_recvmmsg+0xc5/0x1ee0 [ 617.019433][T16328] not chained 400000 origins [ 617.024070][T16328] CPU: 0 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 617.032734][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 617.042788][T16328] Call Trace: [ 617.046084][T16328] dump_stack+0x1df/0x240 [ 617.050415][T16328] ? psi_group_change+0x1007/0x13c0 [ 617.055618][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 617.061335][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 617.066456][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 617.072355][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 617.077645][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 617.082842][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 617.088661][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 617.094728][T16328] ? kfree+0x61/0x30f0 [ 617.098798][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 617.103907][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 617.109455][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 617.115525][T16328] ? _copy_from_user+0x15b/0x260 [ 617.120464][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 617.125575][T16328] __msan_chain_origin+0x50/0x90 [ 617.130515][T16328] do_recvmmsg+0x105a/0x1ee0 [ 617.135139][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 617.140425][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 617.145446][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 617.150472][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 617.156370][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 617.161319][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 617.166180][T16328] do_syscall_64+0xb0/0x150 [ 617.170686][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.176580][T16328] RIP: 0033:0x45c1d9 [ 617.180464][T16328] Code: Bad RIP value. [ 617.184524][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 617.192930][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 617.200901][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 617.208956][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 617.216926][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 617.224894][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 617.232869][T16328] Uninit was stored to memory at: [ 617.237909][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 617.243633][T16328] __msan_chain_origin+0x50/0x90 [ 617.248569][T16328] do_recvmmsg+0x105a/0x1ee0 [ 617.253240][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 617.258173][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 617.263031][T16328] do_syscall_64+0xb0/0x150 [ 617.267533][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.273409][T16328] [ 617.275731][T16328] Uninit was stored to memory at: [ 617.280752][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 617.286471][T16328] __msan_chain_origin+0x50/0x90 [ 617.291406][T16328] do_recvmmsg+0x105a/0x1ee0 [ 617.295995][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 617.300930][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 617.305785][T16328] do_syscall_64+0xb0/0x150 [ 617.310287][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.316162][T16328] [ 617.318480][T16328] Uninit was stored to memory at: [ 617.323503][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 617.329226][T16328] __msan_chain_origin+0x50/0x90 [ 617.334162][T16328] do_recvmmsg+0x105a/0x1ee0 [ 617.338746][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 617.343676][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 617.348532][T16328] do_syscall_64+0xb0/0x150 [ 617.353034][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.358912][T16328] [ 617.361231][T16328] Uninit was stored to memory at: [ 617.366254][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 617.371970][T16328] __msan_chain_origin+0x50/0x90 [ 617.376905][T16328] do_recvmmsg+0x105a/0x1ee0 [ 617.381490][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 617.386424][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 617.391273][T16328] do_syscall_64+0xb0/0x150 [ 617.395774][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.401652][T16328] [ 617.403968][T16328] Uninit was stored to memory at: [ 617.408990][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 617.414707][T16328] __msan_chain_origin+0x50/0x90 [ 617.419645][T16328] do_recvmmsg+0x105a/0x1ee0 [ 617.424232][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 617.429167][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 617.434017][T16328] do_syscall_64+0xb0/0x150 [ 617.438519][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.444396][T16328] [ 617.446712][T16328] Uninit was stored to memory at: [ 617.451734][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 617.457451][T16328] __msan_chain_origin+0x50/0x90 [ 617.462386][T16328] do_recvmmsg+0x105a/0x1ee0 [ 617.466973][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 617.471907][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 617.476759][T16328] do_syscall_64+0xb0/0x150 [ 617.481263][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.487139][T16328] [ 617.489456][T16328] Uninit was stored to memory at: [ 617.494485][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 617.500203][T16328] __msan_chain_origin+0x50/0x90 [ 617.505138][T16328] do_recvmmsg+0x105a/0x1ee0 [ 617.509725][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 617.514658][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 617.519506][T16328] do_syscall_64+0xb0/0x150 [ 617.524008][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.529883][T16328] [ 617.533001][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 617.539672][T16328] do_recvmmsg+0xc5/0x1ee0 [ 617.544087][T16328] do_recvmmsg+0xc5/0x1ee0 [ 617.729426][T16328] not chained 410000 origins [ 617.734055][T16328] CPU: 0 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 617.742718][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 617.752778][T16328] Call Trace: [ 617.756086][T16328] dump_stack+0x1df/0x240 [ 617.760427][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 617.766153][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 617.771265][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 617.777158][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 617.782444][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 617.787645][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 617.793456][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 617.799527][T16328] ? kfree+0x61/0x30f0 [ 617.803597][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 617.808712][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 617.814348][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 617.820418][T16328] ? _copy_from_user+0x15b/0x260 [ 617.825363][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 617.830474][T16328] __msan_chain_origin+0x50/0x90 [ 617.835416][T16328] do_recvmmsg+0x105a/0x1ee0 [ 617.840037][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 617.845329][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 617.850355][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 617.856595][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 617.862489][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 617.867449][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 617.872306][T16328] do_syscall_64+0xb0/0x150 [ 617.876811][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.882697][T16328] RIP: 0033:0x45c1d9 [ 617.886579][T16328] Code: Bad RIP value. [ 617.890637][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 617.899043][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 617.907357][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 617.915331][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 617.923297][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 617.931263][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 617.939237][T16328] Uninit was stored to memory at: [ 617.944271][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 617.949999][T16328] __msan_chain_origin+0x50/0x90 [ 617.954937][T16328] do_recvmmsg+0x105a/0x1ee0 [ 617.959525][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 617.964461][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 617.969314][T16328] do_syscall_64+0xb0/0x150 [ 617.973818][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 617.979695][T16328] [ 617.982015][T16328] Uninit was stored to memory at: [ 617.985237][T16330] not chained 420000 origins [ 617.987044][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 617.991626][T16330] CPU: 1 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 617.997321][T16328] __msan_chain_origin+0x50/0x90 [ 618.005985][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 618.010914][T16328] do_recvmmsg+0x105a/0x1ee0 [ 618.020943][T16330] Call Trace: [ 618.025512][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 618.028778][T16330] dump_stack+0x1df/0x240 [ 618.033693][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 618.038029][T16330] ? psi_group_change+0x1007/0x13c0 [ 618.042854][T16328] do_syscall_64+0xb0/0x150 [ 618.048028][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 618.052506][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 618.058196][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 618.064052][T16328] [ 618.069148][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 618.071465][T16328] Uninit was stored to memory at: [ 618.077339][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 618.082348][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 618.087619][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 618.093309][T16328] __msan_chain_origin+0x50/0x90 [ 618.098493][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 618.103838][T16328] do_recvmmsg+0x105a/0x1ee0 [ 618.109618][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 618.114182][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 618.120222][T16330] ? kfree+0x61/0x30f0 [ 618.125131][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 618.129173][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 618.133996][T16328] do_syscall_64+0xb0/0x150 [ 618.139081][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 618.143571][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 618.149273][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 618.155129][T16328] [ 618.161209][T16330] ? _copy_from_user+0x15b/0x260 [ 618.163507][T16328] Uninit was stored to memory at: [ 618.168443][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 618.173440][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 618.178531][T16330] __msan_chain_origin+0x50/0x90 [ 618.184247][T16328] __msan_chain_origin+0x50/0x90 [ 618.189162][T16330] do_recvmmsg+0x105a/0x1ee0 [ 618.194095][T16328] do_recvmmsg+0x105a/0x1ee0 [ 618.198685][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 618.203226][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 618.208574][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 618.213484][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 618.218484][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 618.223481][T16328] do_syscall_64+0xb0/0x150 [ 618.228498][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 618.232979][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 618.238987][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 618.244840][T16328] [ 618.249782][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 618.252075][T16328] Uninit was stored to memory at: [ 618.256909][T16330] do_syscall_64+0xb0/0x150 [ 618.261924][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 618.266404][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 618.272107][T16328] __msan_chain_origin+0x50/0x90 [ 618.278064][T16330] RIP: 0033:0x45c1d9 [ 618.282992][T16328] do_recvmmsg+0x105a/0x1ee0 [ 618.286853][T16330] Code: Bad RIP value. [ 618.291451][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 618.295492][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 618.300412][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 618.308792][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 618.313625][T16328] do_syscall_64+0xb0/0x150 [ 618.321568][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 618.326059][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 618.334013][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 618.339896][T16328] [ 618.347868][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 618.350186][T16328] Uninit was stored to memory at: [ 618.358142][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 618.363148][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 618.371113][T16330] Uninit was stored to memory at: [ 618.376811][T16328] __msan_chain_origin+0x50/0x90 [ 618.381811][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 618.386812][T16328] do_recvmmsg+0x105a/0x1ee0 [ 618.392505][T16330] __msan_chain_origin+0x50/0x90 [ 618.397092][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 618.402003][T16330] do_recvmmsg+0x105a/0x1ee0 [ 618.406933][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 618.411499][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 618.416323][T16328] do_syscall_64+0xb0/0x150 [ 618.421234][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 618.425717][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 618.430630][T16330] do_syscall_64+0xb0/0x150 [ 618.436754][T16328] [ 618.441335][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 618.443630][T16328] Uninit was stored to memory at: [ 618.449495][T16330] [ 618.454504][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 618.456803][T16330] Uninit was stored to memory at: [ 618.462506][T16328] __msan_chain_origin+0x50/0x90 [ 618.467507][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 618.472421][T16328] do_recvmmsg+0x105a/0x1ee0 [ 618.478114][T16330] __msan_chain_origin+0x50/0x90 [ 618.482681][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 618.487590][T16330] do_recvmmsg+0x105a/0x1ee0 [ 618.492503][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 618.497070][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 618.501896][T16328] do_syscall_64+0xb0/0x150 [ 618.506897][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 618.511396][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 618.516307][T16330] do_syscall_64+0xb0/0x150 [ 618.522165][T16328] [ 618.526741][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 618.529043][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 618.535079][T16330] [ 618.541909][T16328] do_recvmmsg+0xc5/0x1ee0 [ 618.544225][T16330] Uninit was stored to memory at: [ 618.548639][T16328] do_recvmmsg+0xc5/0x1ee0 [ 618.553640][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 618.563732][T16330] __msan_chain_origin+0x50/0x90 [ 618.568680][T16330] do_recvmmsg+0x105a/0x1ee0 [ 618.573274][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 618.578215][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 618.583080][T16330] do_syscall_64+0xb0/0x150 [ 618.587597][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 618.593480][T16330] [ 618.595804][T16330] Uninit was stored to memory at: [ 618.600833][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 618.606554][T16330] __msan_chain_origin+0x50/0x90 [ 618.611653][T16330] do_recvmmsg+0x105a/0x1ee0 [ 618.616231][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 618.621156][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 618.625995][T16330] do_syscall_64+0xb0/0x150 [ 618.630487][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 618.636355][T16330] [ 618.638667][T16330] Uninit was stored to memory at: [ 618.643676][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 618.649381][T16330] __msan_chain_origin+0x50/0x90 [ 618.654303][T16330] do_recvmmsg+0x105a/0x1ee0 [ 618.658882][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 618.663804][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 618.668816][T16330] do_syscall_64+0xb0/0x150 [ 618.673306][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 618.679175][T16330] [ 618.681484][T16330] Uninit was stored to memory at: [ 618.686496][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 618.692475][T16330] __msan_chain_origin+0x50/0x90 [ 618.697409][T16330] do_recvmmsg+0x105a/0x1ee0 [ 618.701992][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 618.706914][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 618.711752][T16330] do_syscall_64+0xb0/0x150 [ 618.716503][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 618.722457][T16330] [ 618.724765][T16330] Uninit was stored to memory at: [ 618.729774][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 618.736002][T16330] __msan_chain_origin+0x50/0x90 [ 618.741042][T16330] do_recvmmsg+0x105a/0x1ee0 [ 618.745633][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 618.750573][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 618.755419][T16330] do_syscall_64+0xb0/0x150 [ 618.759910][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 618.765802][T16330] [ 618.768126][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 618.774812][T16330] do_recvmmsg+0xc5/0x1ee0 [ 618.779233][T16330] do_recvmmsg+0xc5/0x1ee0 [ 618.988894][T16330] not chained 430000 origins [ 618.993520][T16330] CPU: 1 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 619.002173][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 619.012213][T16330] Call Trace: [ 619.015499][T16330] dump_stack+0x1df/0x240 [ 619.019933][T16330] ? psi_group_change+0x1007/0x13c0 [ 619.025124][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 619.030831][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 619.035931][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 619.041816][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 619.047092][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 619.052365][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 619.058594][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 619.064647][T16330] ? kfree+0x61/0x30f0 [ 619.068802][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 619.073900][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 619.079438][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 619.085680][T16330] ? _copy_from_user+0x15b/0x260 [ 619.090607][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 619.095973][T16330] __msan_chain_origin+0x50/0x90 [ 619.100902][T16330] do_recvmmsg+0x105a/0x1ee0 [ 619.105943][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 619.111222][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 619.116379][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 619.121411][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 619.127295][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 619.133360][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 619.138201][T16330] do_syscall_64+0xb0/0x150 [ 619.142696][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 619.148571][T16330] RIP: 0033:0x45c1d9 [ 619.152445][T16330] Code: Bad RIP value. [ 619.156497][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 619.164908][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 619.173561][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 619.181520][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 619.189479][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 619.197524][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 619.205578][T16330] Uninit was stored to memory at: [ 619.210593][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 619.216301][T16330] __msan_chain_origin+0x50/0x90 [ 619.221241][T16330] do_recvmmsg+0x105a/0x1ee0 [ 619.225835][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 619.230757][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 619.235596][T16330] do_syscall_64+0xb0/0x150 [ 619.240098][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 619.245988][T16330] [ 619.248298][T16330] Uninit was stored to memory at: [ 619.253314][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 619.259026][T16330] __msan_chain_origin+0x50/0x90 [ 619.263950][T16330] do_recvmmsg+0x105a/0x1ee0 [ 619.268528][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 619.273451][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 619.278288][T16330] do_syscall_64+0xb0/0x150 [ 619.282781][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 619.288654][T16330] [ 619.291052][T16330] Uninit was stored to memory at: [ 619.296323][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 619.302026][T16330] __msan_chain_origin+0x50/0x90 [ 619.307067][T16330] do_recvmmsg+0x105a/0x1ee0 [ 619.311641][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 619.316650][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 619.321486][T16330] do_syscall_64+0xb0/0x150 [ 619.326758][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 619.332626][T16330] [ 619.334936][T16330] Uninit was stored to memory at: [ 619.339948][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 619.345652][T16330] __msan_chain_origin+0x50/0x90 [ 619.350575][T16330] do_recvmmsg+0x105a/0x1ee0 [ 619.355151][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 619.360162][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 619.364998][T16330] do_syscall_64+0xb0/0x150 [ 619.369493][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 619.375456][T16330] [ 619.377768][T16330] Uninit was stored to memory at: [ 619.382803][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 619.388532][T16330] __msan_chain_origin+0x50/0x90 [ 619.393471][T16330] do_recvmmsg+0x105a/0x1ee0 [ 619.398054][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 619.402983][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 619.409297][T16330] do_syscall_64+0xb0/0x150 [ 619.413809][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 619.419679][T16330] [ 619.421988][T16330] Uninit was stored to memory at: [ 619.427012][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 619.432725][T16330] __msan_chain_origin+0x50/0x90 [ 619.437649][T16330] do_recvmmsg+0x105a/0x1ee0 [ 619.442413][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 619.447772][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 619.452613][T16330] do_syscall_64+0xb0/0x150 [ 619.457192][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 619.463060][T16330] [ 619.465369][T16330] Uninit was stored to memory at: [ 619.470382][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 619.476089][T16330] __msan_chain_origin+0x50/0x90 [ 619.481011][T16330] do_recvmmsg+0x105a/0x1ee0 [ 619.485584][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 619.490505][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 619.495340][T16330] do_syscall_64+0xb0/0x150 [ 619.499829][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 619.505712][T16330] [ 619.508025][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 619.514681][T16330] do_recvmmsg+0xc5/0x1ee0 [ 619.519080][T16330] do_recvmmsg+0xc5/0x1ee0 [ 619.679556][T16330] not chained 440000 origins [ 619.684190][T16330] CPU: 1 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 619.692942][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 619.703000][T16330] Call Trace: [ 619.706298][T16330] dump_stack+0x1df/0x240 [ 619.710639][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 619.716368][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 619.721486][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 619.727387][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 619.732681][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 619.737887][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 619.743703][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 619.749778][T16330] ? kfree+0x61/0x30f0 [ 619.753860][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 619.758979][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 619.764535][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 619.770620][T16330] ? _copy_from_user+0x15b/0x260 [ 619.775567][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 619.780691][T16330] __msan_chain_origin+0x50/0x90 [ 619.785637][T16330] do_recvmmsg+0x105a/0x1ee0 [ 619.790270][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 619.796089][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 619.801113][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 619.806144][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 619.812054][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 619.817009][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 619.821870][T16330] do_syscall_64+0xb0/0x150 [ 619.826388][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 619.832298][T16330] RIP: 0033:0x45c1d9 [ 619.836185][T16330] Code: Bad RIP value. [ 619.840252][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 619.848666][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 619.856637][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 619.864610][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 619.872587][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 619.880564][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 619.888549][T16330] Uninit was stored to memory at: [ 619.893587][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 619.899318][T16330] __msan_chain_origin+0x50/0x90 [ 619.904257][T16330] do_recvmmsg+0x105a/0x1ee0 [ 619.908849][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 619.913787][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 619.918650][T16330] do_syscall_64+0xb0/0x150 [ 619.923156][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 619.929036][T16330] [ 619.931354][T16330] Uninit was stored to memory at: [ 619.936381][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 619.942103][T16330] __msan_chain_origin+0x50/0x90 [ 619.947140][T16330] do_recvmmsg+0x105a/0x1ee0 [ 619.951732][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 619.956671][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 619.961906][T16330] do_syscall_64+0xb0/0x150 [ 619.966413][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 619.972292][T16330] [ 619.974613][T16330] Uninit was stored to memory at: [ 619.979638][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 619.985355][T16330] __msan_chain_origin+0x50/0x90 [ 619.990301][T16330] do_recvmmsg+0x105a/0x1ee0 [ 619.994892][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 619.999833][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 620.004689][T16330] do_syscall_64+0xb0/0x150 [ 620.009196][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 620.015078][T16330] [ 620.017406][T16330] Uninit was stored to memory at: [ 620.022440][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 620.028162][T16330] __msan_chain_origin+0x50/0x90 [ 620.033627][T16330] do_recvmmsg+0x105a/0x1ee0 [ 620.038223][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 620.043168][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 620.048026][T16330] do_syscall_64+0xb0/0x150 [ 620.052536][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 620.058503][T16330] [ 620.060831][T16330] Uninit was stored to memory at: [ 620.065860][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 620.071584][T16330] __msan_chain_origin+0x50/0x90 [ 620.076524][T16330] do_recvmmsg+0x105a/0x1ee0 [ 620.081115][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 620.086058][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 620.090920][T16330] do_syscall_64+0xb0/0x150 [ 620.095429][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 620.101311][T16330] [ 620.103627][T16330] Uninit was stored to memory at: [ 620.108660][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 620.114378][T16330] __msan_chain_origin+0x50/0x90 [ 620.119315][T16330] do_recvmmsg+0x105a/0x1ee0 [ 620.123905][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 620.128844][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 620.133691][T16330] do_syscall_64+0xb0/0x150 [ 620.138193][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 620.144069][T16330] [ 620.146388][T16330] Uninit was stored to memory at: [ 620.151414][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 620.157149][T16330] __msan_chain_origin+0x50/0x90 [ 620.162084][T16330] do_recvmmsg+0x105a/0x1ee0 [ 620.166672][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 620.171606][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 620.176477][T16330] do_syscall_64+0xb0/0x150 [ 620.180966][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 620.186836][T16330] [ 620.189155][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 620.195900][T16330] do_recvmmsg+0xc5/0x1ee0 [ 620.200319][T16330] do_recvmmsg+0xc5/0x1ee0 [ 620.293673][T16328] not chained 450000 origins [ 620.298306][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 620.306970][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 620.317018][T16328] Call Trace: [ 620.320311][T16328] dump_stack+0x1df/0x240 [ 620.324643][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 620.330360][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 620.335468][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 620.341351][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 620.346643][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 620.351831][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 620.357797][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 620.363864][T16328] ? kfree+0x61/0x30f0 [ 620.368100][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 620.373210][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 620.378742][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 620.384797][T16328] ? _copy_from_user+0x15b/0x260 [ 620.389729][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 620.394833][T16328] __msan_chain_origin+0x50/0x90 [ 620.399760][T16328] do_recvmmsg+0x105a/0x1ee0 [ 620.404363][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 620.409638][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 620.414648][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 620.419658][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 620.425559][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 620.430497][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 620.435336][T16328] do_syscall_64+0xb0/0x150 [ 620.439832][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 620.445708][T16328] RIP: 0033:0x45c1d9 [ 620.449579][T16328] Code: Bad RIP value. [ 620.453626][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 620.462018][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 620.470165][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 620.478120][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 620.486076][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 620.494033][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 620.501999][T16328] Uninit was stored to memory at: [ 620.507027][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 620.512737][T16328] __msan_chain_origin+0x50/0x90 [ 620.517660][T16328] do_recvmmsg+0x105a/0x1ee0 [ 620.526695][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 620.531620][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 620.536455][T16328] do_syscall_64+0xb0/0x150 [ 620.540946][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 620.546900][T16328] [ 620.549209][T16328] Uninit was stored to memory at: [ 620.554217][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 620.560094][T16328] __msan_chain_origin+0x50/0x90 [ 620.565018][T16328] do_recvmmsg+0x105a/0x1ee0 [ 620.569591][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 620.574512][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 620.579351][T16328] do_syscall_64+0xb0/0x150 [ 620.583859][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 620.589740][T16328] [ 620.592148][T16328] Uninit was stored to memory at: [ 620.597174][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 620.602886][T16328] __msan_chain_origin+0x50/0x90 [ 620.607815][T16328] do_recvmmsg+0x105a/0x1ee0 [ 620.612391][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 620.617318][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 620.623895][T16328] do_syscall_64+0xb0/0x150 [ 620.629258][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 620.635388][T16328] [ 620.637703][T16328] Uninit was stored to memory at: [ 620.642818][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 620.648540][T16328] __msan_chain_origin+0x50/0x90 [ 620.653463][T16328] do_recvmmsg+0x105a/0x1ee0 [ 620.658041][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 620.662982][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 620.667844][T16328] do_syscall_64+0xb0/0x150 [ 620.672334][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 620.678203][T16328] [ 620.680513][T16328] Uninit was stored to memory at: [ 620.685539][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 620.691251][T16328] __msan_chain_origin+0x50/0x90 [ 620.696173][T16328] do_recvmmsg+0x105a/0x1ee0 [ 620.700754][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 620.705676][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 620.710512][T16328] do_syscall_64+0xb0/0x150 [ 620.715005][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 620.720876][T16328] [ 620.723209][T16328] Uninit was stored to memory at: [ 620.728234][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 620.733958][T16328] __msan_chain_origin+0x50/0x90 [ 620.738888][T16328] do_recvmmsg+0x105a/0x1ee0 [ 620.743462][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 620.748386][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 620.753247][T16328] do_syscall_64+0xb0/0x150 [ 620.757776][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 620.763754][T16328] [ 620.766069][T16328] Uninit was stored to memory at: [ 620.771085][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 620.776792][T16328] __msan_chain_origin+0x50/0x90 [ 620.781715][T16328] do_recvmmsg+0x105a/0x1ee0 [ 620.786303][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 620.791837][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 620.796689][T16328] do_syscall_64+0xb0/0x150 [ 620.801178][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 620.809911][T16328] [ 620.812222][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 620.818890][T16328] do_recvmmsg+0xc5/0x1ee0 [ 620.823314][T16328] do_recvmmsg+0xc5/0x1ee0 [ 621.011880][T16328] not chained 460000 origins [ 621.016531][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 621.025195][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 621.035241][T16328] Call Trace: [ 621.038534][T16328] dump_stack+0x1df/0x240 [ 621.042866][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 621.048597][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 621.053712][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 621.059610][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 621.064898][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 621.070098][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 621.075913][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 621.081988][T16328] ? kfree+0x61/0x30f0 [ 621.086081][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 621.091197][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 621.096747][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 621.102823][T16328] ? _copy_from_user+0x15b/0x260 [ 621.107765][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 621.112885][T16328] __msan_chain_origin+0x50/0x90 [ 621.117841][T16328] do_recvmmsg+0x105a/0x1ee0 [ 621.122482][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 621.127784][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 621.132816][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 621.137847][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 621.144614][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 621.149572][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 621.154432][T16328] do_syscall_64+0xb0/0x150 [ 621.158943][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 621.164834][T16328] RIP: 0033:0x45c1d9 [ 621.168719][T16328] Code: Bad RIP value. [ 621.172780][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 621.181195][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 621.189173][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 621.197148][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 621.205126][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 621.213105][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 621.221090][T16328] Uninit was stored to memory at: [ 621.226126][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 621.231850][T16328] __msan_chain_origin+0x50/0x90 [ 621.236790][T16328] do_recvmmsg+0x105a/0x1ee0 [ 621.241382][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 621.246320][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 621.251185][T16328] do_syscall_64+0xb0/0x150 [ 621.255708][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 621.261589][T16328] [ 621.263909][T16328] Uninit was stored to memory at: [ 621.268937][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 621.274659][T16328] __msan_chain_origin+0x50/0x90 [ 621.279604][T16328] do_recvmmsg+0x105a/0x1ee0 [ 621.284194][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 621.289130][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 621.293982][T16328] do_syscall_64+0xb0/0x150 [ 621.298491][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 621.304372][T16328] [ 621.306694][T16328] Uninit was stored to memory at: [ 621.311726][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 621.317451][T16328] __msan_chain_origin+0x50/0x90 [ 621.322395][T16328] do_recvmmsg+0x105a/0x1ee0 [ 621.326992][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 621.332117][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 621.336974][T16328] do_syscall_64+0xb0/0x150 [ 621.341478][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 621.347971][T16328] [ 621.350296][T16328] Uninit was stored to memory at: [ 621.355326][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 621.361046][T16328] __msan_chain_origin+0x50/0x90 [ 621.366772][T16328] do_recvmmsg+0x105a/0x1ee0 [ 621.371366][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 621.376390][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 621.381245][T16328] do_syscall_64+0xb0/0x150 [ 621.385755][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 621.391640][T16328] [ 621.393967][T16328] Uninit was stored to memory at: [ 621.399063][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 621.404784][T16328] __msan_chain_origin+0x50/0x90 [ 621.409728][T16328] do_recvmmsg+0x105a/0x1ee0 [ 621.414326][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 621.419271][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 621.424128][T16328] do_syscall_64+0xb0/0x150 [ 621.428631][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 621.434544][T16328] [ 621.436864][T16328] Uninit was stored to memory at: [ 621.441891][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 621.447614][T16328] __msan_chain_origin+0x50/0x90 [ 621.452556][T16328] do_recvmmsg+0x105a/0x1ee0 [ 621.457151][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 621.462088][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 621.466939][T16328] do_syscall_64+0xb0/0x150 [ 621.471444][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 621.477332][T16328] [ 621.479654][T16328] Uninit was stored to memory at: [ 621.484679][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 621.490399][T16328] __msan_chain_origin+0x50/0x90 [ 621.495347][T16328] do_recvmmsg+0x105a/0x1ee0 [ 621.499941][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 621.504877][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 621.509728][T16328] do_syscall_64+0xb0/0x150 [ 621.514236][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 621.520114][T16328] [ 621.522432][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 621.529110][T16328] do_recvmmsg+0xc5/0x1ee0 [ 621.533527][T16328] do_recvmmsg+0xc5/0x1ee0 [ 621.612748][T16328] not chained 470000 origins [ 621.617389][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 621.626061][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 621.636120][T16328] Call Trace: [ 621.639461][T16328] dump_stack+0x1df/0x240 [ 621.643812][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 621.649543][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 621.654663][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 621.660563][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 621.665865][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 621.671073][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 621.676887][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 621.682960][T16328] ? kfree+0x61/0x30f0 [ 621.687051][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 621.692262][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 621.697814][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 621.703894][T16328] ? _copy_from_user+0x15b/0x260 [ 621.708840][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 621.713958][T16328] __msan_chain_origin+0x50/0x90 [ 621.718899][T16328] do_recvmmsg+0x105a/0x1ee0 [ 621.723634][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 621.728929][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 621.733945][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 621.738964][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 621.744969][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 621.749910][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 621.754751][T16328] do_syscall_64+0xb0/0x150 [ 621.759244][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 621.765224][T16328] RIP: 0033:0x45c1d9 [ 621.769095][T16328] Code: Bad RIP value. [ 621.773157][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 621.781561][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 621.789528][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 621.797483][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 621.805436][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 621.813391][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 621.821355][T16328] Uninit was stored to memory at: [ 621.827068][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 621.832771][T16328] __msan_chain_origin+0x50/0x90 [ 621.837693][T16328] do_recvmmsg+0x105a/0x1ee0 [ 621.842266][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 621.847186][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 621.852042][T16328] do_syscall_64+0xb0/0x150 [ 621.856530][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 621.862929][T16328] [ 621.865236][T16328] Uninit was stored to memory at: [ 621.870243][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 621.875959][T16328] __msan_chain_origin+0x50/0x90 [ 621.880885][T16328] do_recvmmsg+0x105a/0x1ee0 [ 621.885460][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 621.890384][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 621.895220][T16328] do_syscall_64+0xb0/0x150 [ 621.899723][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 621.905594][T16328] [ 621.907914][T16328] Uninit was stored to memory at: [ 621.912942][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 621.918645][T16328] __msan_chain_origin+0x50/0x90 [ 621.923565][T16328] do_recvmmsg+0x105a/0x1ee0 [ 621.928139][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 621.933062][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 621.937897][T16328] do_syscall_64+0xb0/0x150 [ 621.942386][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 621.948254][T16328] [ 621.950561][T16328] Uninit was stored to memory at: [ 621.955571][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 621.961273][T16328] __msan_chain_origin+0x50/0x90 [ 621.966192][T16328] do_recvmmsg+0x105a/0x1ee0 [ 621.970765][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 621.975702][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 621.980553][T16328] do_syscall_64+0xb0/0x150 [ 621.985051][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 621.990919][T16328] [ 621.993236][T16328] Uninit was stored to memory at: [ 621.998264][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 622.003964][T16328] __msan_chain_origin+0x50/0x90 [ 622.008900][T16328] do_recvmmsg+0x105a/0x1ee0 [ 622.013473][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 622.018406][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 622.023253][T16328] do_syscall_64+0xb0/0x150 [ 622.027740][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 622.033620][T16328] [ 622.035927][T16328] Uninit was stored to memory at: [ 622.040941][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 622.046658][T16328] __msan_chain_origin+0x50/0x90 [ 622.051579][T16328] do_recvmmsg+0x105a/0x1ee0 [ 622.056156][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 622.061075][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 622.065918][T16328] do_syscall_64+0xb0/0x150 [ 622.070408][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 622.076276][T16328] [ 622.078586][T16328] Uninit was stored to memory at: [ 622.083608][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 622.089310][T16328] __msan_chain_origin+0x50/0x90 [ 622.094231][T16328] do_recvmmsg+0x105a/0x1ee0 [ 622.098823][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 622.103744][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 622.108583][T16328] do_syscall_64+0xb0/0x150 [ 622.113092][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 622.118968][T16328] [ 622.121289][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 622.127947][T16328] do_recvmmsg+0xc5/0x1ee0 [ 622.132348][T16328] do_recvmmsg+0xc5/0x1ee0 [ 622.221095][T16330] not chained 480000 origins [ 622.225727][T16330] CPU: 0 PID: 16330 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 622.234386][T16330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 622.244441][T16330] Call Trace: [ 622.248087][T16330] dump_stack+0x1df/0x240 [ 622.252425][T16330] kmsan_internal_chain_origin+0x6f/0x130 [ 622.258146][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 622.263262][T16330] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 622.269156][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 622.274457][T16330] ? kmsan_get_metadata+0x11d/0x180 [ 622.279661][T16330] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 622.285472][T16330] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 622.291540][T16330] ? kfree+0x61/0x30f0 [ 622.295612][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 622.300723][T16330] ? kmsan_set_origin_checked+0x95/0xf0 [ 622.306272][T16330] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 622.312339][T16330] ? _copy_from_user+0x15b/0x260 [ 622.317264][T16330] ? kmsan_get_metadata+0x4f/0x180 [ 622.322365][T16330] __msan_chain_origin+0x50/0x90 [ 622.327294][T16330] do_recvmmsg+0x105a/0x1ee0 [ 622.331898][T16330] ? __msan_poison_alloca+0xf0/0x120 [ 622.337173][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 622.342185][T16330] ? __se_sys_recvmmsg+0xac/0x350 [ 622.347193][T16330] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 622.353076][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 622.358012][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 622.362856][T16330] do_syscall_64+0xb0/0x150 [ 622.367358][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 622.373231][T16330] RIP: 0033:0x45c1d9 [ 622.377103][T16330] Code: Bad RIP value. [ 622.381159][T16330] RSP: 002b:00007f3455a73c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 622.389562][T16330] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 622.397541][T16330] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 622.405505][T16330] RBP: 000000000078bff0 R08: 0000000000000000 R09: 0000000000000000 [ 622.413465][T16330] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bfac [ 622.421437][T16330] R13: 0000000000c9fb6f R14: 00007f3455a749c0 R15: 000000000078bfac [ 622.429404][T16330] Uninit was stored to memory at: [ 622.434421][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 622.440126][T16330] __msan_chain_origin+0x50/0x90 [ 622.445052][T16330] do_recvmmsg+0x105a/0x1ee0 [ 622.449632][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 622.454553][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 622.459388][T16330] do_syscall_64+0xb0/0x150 [ 622.463888][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 622.469757][T16330] [ 622.472070][T16330] Uninit was stored to memory at: [ 622.477082][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 622.482785][T16330] __msan_chain_origin+0x50/0x90 [ 622.487709][T16330] do_recvmmsg+0x105a/0x1ee0 [ 622.492284][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 622.497213][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 622.502066][T16330] do_syscall_64+0xb0/0x150 [ 622.506554][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 622.512434][T16330] [ 622.514749][T16330] Uninit was stored to memory at: [ 622.519761][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 622.525465][T16330] __msan_chain_origin+0x50/0x90 [ 622.530388][T16330] do_recvmmsg+0x105a/0x1ee0 [ 622.534966][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 622.539986][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 622.544822][T16330] do_syscall_64+0xb0/0x150 [ 622.549328][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 622.555208][T16330] [ 622.557523][T16330] Uninit was stored to memory at: [ 622.562535][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 622.568237][T16330] __msan_chain_origin+0x50/0x90 [ 622.573154][T16330] do_recvmmsg+0x105a/0x1ee0 [ 622.577725][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 622.582647][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 622.587484][T16330] do_syscall_64+0xb0/0x150 [ 622.591973][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 622.597955][T16330] [ 622.600276][T16330] Uninit was stored to memory at: [ 622.605289][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 622.610996][T16330] __msan_chain_origin+0x50/0x90 [ 622.615922][T16330] do_recvmmsg+0x105a/0x1ee0 [ 622.620497][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 622.625417][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 622.630250][T16330] do_syscall_64+0xb0/0x150 [ 622.634739][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 622.640605][T16330] [ 622.642912][T16330] Uninit was stored to memory at: [ 622.647922][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 622.653636][T16330] __msan_chain_origin+0x50/0x90 [ 622.658560][T16330] do_recvmmsg+0x105a/0x1ee0 [ 622.663136][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 622.668056][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 622.672901][T16330] do_syscall_64+0xb0/0x150 [ 622.677390][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 622.683256][T16330] [ 622.685567][T16330] Uninit was stored to memory at: [ 622.690578][T16330] kmsan_internal_chain_origin+0xad/0x130 [ 622.696279][T16330] __msan_chain_origin+0x50/0x90 [ 622.701202][T16330] do_recvmmsg+0x105a/0x1ee0 [ 622.705775][T16330] __se_sys_recvmmsg+0x1d1/0x350 [ 622.710697][T16330] __x64_sys_recvmmsg+0x62/0x80 [ 622.715545][T16330] do_syscall_64+0xb0/0x150 [ 622.720034][T16330] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 622.725900][T16330] [ 622.728212][T16330] Local variable ----msg_sys@do_recvmmsg created at: [ 622.734868][T16330] do_recvmmsg+0xc5/0x1ee0 [ 622.739269][T16330] do_recvmmsg+0xc5/0x1ee0 [ 622.887865][T16328] not chained 490000 origins [ 622.892506][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 622.901187][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 622.911250][T16328] Call Trace: [ 622.914555][T16328] dump_stack+0x1df/0x240 [ 622.918911][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 622.924657][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 622.929776][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 622.935676][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 622.940970][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 622.946181][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 622.951992][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 622.958065][T16328] ? kfree+0x61/0x30f0 [ 622.962145][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 622.967262][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 622.972822][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 622.978901][T16328] ? _copy_from_user+0x15b/0x260 [ 622.983841][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 622.988954][T16328] __msan_chain_origin+0x50/0x90 [ 622.993902][T16328] do_recvmmsg+0x105a/0x1ee0 [ 622.998528][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 623.003818][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 623.008868][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 623.013898][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 623.019799][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 623.024851][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 623.029711][T16328] do_syscall_64+0xb0/0x150 [ 623.034223][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 623.040114][T16328] RIP: 0033:0x45c1d9 [ 623.044008][T16328] Code: Bad RIP value. [ 623.048071][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 623.056504][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 623.064481][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 623.072460][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 623.080435][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 623.088410][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 623.096396][T16328] Uninit was stored to memory at: [ 623.101434][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 623.107155][T16328] __msan_chain_origin+0x50/0x90 [ 623.112093][T16328] do_recvmmsg+0x105a/0x1ee0 [ 623.116687][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 623.121626][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 623.126485][T16328] do_syscall_64+0xb0/0x150 [ 623.131004][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 623.136887][T16328] [ 623.139208][T16328] Uninit was stored to memory at: [ 623.144237][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 623.149962][T16328] __msan_chain_origin+0x50/0x90 [ 623.154907][T16328] do_recvmmsg+0x105a/0x1ee0 [ 623.159501][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 623.164547][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 623.169399][T16328] do_syscall_64+0xb0/0x150 [ 623.173912][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 623.179791][T16328] [ 623.182112][T16328] Uninit was stored to memory at: [ 623.187139][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 623.192857][T16328] __msan_chain_origin+0x50/0x90 [ 623.197794][T16328] do_recvmmsg+0x105a/0x1ee0 [ 623.202387][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 623.207329][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 623.212357][T16328] do_syscall_64+0xb0/0x150 [ 623.216873][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 623.222755][T16328] [ 623.225081][T16328] Uninit was stored to memory at: [ 623.230112][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 623.235838][T16328] __msan_chain_origin+0x50/0x90 [ 623.240779][T16328] do_recvmmsg+0x105a/0x1ee0 [ 623.245376][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 623.250357][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 623.255209][T16328] do_syscall_64+0xb0/0x150 [ 623.259723][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 623.265605][T16328] [ 623.267931][T16328] Uninit was stored to memory at: [ 623.272963][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 623.278687][T16328] __msan_chain_origin+0x50/0x90 [ 623.283625][T16328] do_recvmmsg+0x105a/0x1ee0 [ 623.288217][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 623.293158][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 623.298025][T16328] do_syscall_64+0xb0/0x150 [ 623.302547][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 623.308428][T16328] [ 623.310751][T16328] Uninit was stored to memory at: [ 623.315951][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 623.321673][T16328] __msan_chain_origin+0x50/0x90 [ 623.326618][T16328] do_recvmmsg+0x105a/0x1ee0 [ 623.331213][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 623.336850][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 623.341711][T16328] do_syscall_64+0xb0/0x150 [ 623.346225][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 623.352109][T16328] [ 623.354434][T16328] Uninit was stored to memory at: [ 623.359463][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 623.365187][T16328] __msan_chain_origin+0x50/0x90 [ 623.370129][T16328] do_recvmmsg+0x105a/0x1ee0 [ 623.374721][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 623.379662][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 623.384524][T16328] do_syscall_64+0xb0/0x150 [ 623.389032][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 623.394999][T16328] [ 623.397333][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 623.404045][T16328] do_recvmmsg+0xc5/0x1ee0 [ 623.408461][T16328] do_recvmmsg+0xc5/0x1ee0 [ 623.546603][T16328] not chained 500000 origins [ 623.551237][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 623.559905][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 623.569968][T16328] Call Trace: [ 623.573267][T16328] dump_stack+0x1df/0x240 [ 623.577613][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 623.583336][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 623.588460][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 623.594359][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 623.599652][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 623.604853][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 623.610670][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 623.616735][T16328] ? kfree+0x61/0x30f0 [ 623.628541][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 623.633662][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 623.639218][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 623.645294][T16328] ? _copy_from_user+0x15b/0x260 [ 623.650237][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 623.655353][T16328] __msan_chain_origin+0x50/0x90 [ 623.660297][T16328] do_recvmmsg+0x105a/0x1ee0 [ 623.664926][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 623.670221][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 623.675250][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 623.680281][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 623.686179][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 623.691128][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 623.695982][T16328] do_syscall_64+0xb0/0x150 [ 623.700492][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 623.706376][T16328] RIP: 0033:0x45c1d9 [ 623.710334][T16328] Code: Bad RIP value. [ 623.714392][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 623.722798][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 623.730773][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 623.738771][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 623.746745][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 623.754714][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 623.762703][T16328] Uninit was stored to memory at: [ 623.767727][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 623.773452][T16328] __msan_chain_origin+0x50/0x90 [ 623.778382][T16328] do_recvmmsg+0x105a/0x1ee0 [ 623.782963][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 623.787886][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 623.792721][T16328] do_syscall_64+0xb0/0x150 [ 623.797209][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 623.803089][T16328] [ 623.805398][T16328] Uninit was stored to memory at: [ 623.810406][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 623.816108][T16328] __msan_chain_origin+0x50/0x90 [ 623.821030][T16328] do_recvmmsg+0x105a/0x1ee0 [ 623.825604][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 623.830527][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 623.835365][T16328] do_syscall_64+0xb0/0x150 [ 623.839854][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 623.845722][T16328] [ 623.848033][T16328] Uninit was stored to memory at: [ 623.853043][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 623.858745][T16328] __msan_chain_origin+0x50/0x90 [ 623.863668][T16328] do_recvmmsg+0x105a/0x1ee0 [ 623.868241][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 623.873164][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 623.878002][T16328] do_syscall_64+0xb0/0x150 [ 623.882490][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 623.888357][T16328] [ 623.890755][T16328] Uninit was stored to memory at: [ 623.895774][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 623.901476][T16328] __msan_chain_origin+0x50/0x90 [ 623.906399][T16328] do_recvmmsg+0x105a/0x1ee0 [ 623.910973][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 623.915894][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 623.920745][T16328] do_syscall_64+0xb0/0x150 [ 623.925234][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 623.931102][T16328] [ 623.933409][T16328] Uninit was stored to memory at: [ 623.938418][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 623.944119][T16328] __msan_chain_origin+0x50/0x90 [ 623.949045][T16328] do_recvmmsg+0x105a/0x1ee0 [ 623.953620][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 623.958553][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 623.963387][T16328] do_syscall_64+0xb0/0x150 [ 623.967876][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 623.973743][T16328] [ 623.977351][T16328] Uninit was stored to memory at: [ 623.982360][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 623.988065][T16328] __msan_chain_origin+0x50/0x90 [ 623.992987][T16328] do_recvmmsg+0x105a/0x1ee0 [ 623.997574][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 624.002496][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 624.007331][T16328] do_syscall_64+0xb0/0x150 [ 624.011820][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 624.017714][T16328] [ 624.020024][T16328] Uninit was stored to memory at: [ 624.025032][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 624.030734][T16328] __msan_chain_origin+0x50/0x90 [ 624.035671][T16328] do_recvmmsg+0x105a/0x1ee0 [ 624.040243][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 624.045163][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 624.050001][T16328] do_syscall_64+0xb0/0x150 [ 624.054488][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 624.060358][T16328] [ 624.062669][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 624.069324][T16328] do_recvmmsg+0xc5/0x1ee0 [ 624.073724][T16328] do_recvmmsg+0xc5/0x1ee0 [ 624.142608][T16328] not chained 510000 origins [ 624.147238][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 624.155901][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 624.165950][T16328] Call Trace: [ 624.169243][T16328] dump_stack+0x1df/0x240 [ 624.173588][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 624.179308][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 624.184417][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 624.190311][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 624.195598][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 624.200797][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 624.206609][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 624.212671][T16328] ? kfree+0x61/0x30f0 [ 624.216740][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 624.221856][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 624.227403][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 624.233471][T16328] ? _copy_from_user+0x15b/0x260 [ 624.238407][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 624.243628][T16328] __msan_chain_origin+0x50/0x90 [ 624.248569][T16328] do_recvmmsg+0x105a/0x1ee0 [ 624.253193][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 624.258502][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 624.263526][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 624.268573][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 624.274464][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 624.279412][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 624.284265][T16328] do_syscall_64+0xb0/0x150 [ 624.288772][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 624.294668][T16328] RIP: 0033:0x45c1d9 [ 624.298643][T16328] Code: Bad RIP value. [ 624.302736][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 624.311143][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 624.319110][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 624.327078][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 624.335045][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 624.343021][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 624.351006][T16328] Uninit was stored to memory at: [ 624.356065][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 624.361785][T16328] __msan_chain_origin+0x50/0x90 [ 624.366717][T16328] do_recvmmsg+0x105a/0x1ee0 [ 624.371299][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 624.376232][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 624.381082][T16328] do_syscall_64+0xb0/0x150 [ 624.385580][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 624.391457][T16328] [ 624.393774][T16328] Uninit was stored to memory at: [ 624.398795][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 624.404515][T16328] __msan_chain_origin+0x50/0x90 [ 624.409448][T16328] do_recvmmsg+0x105a/0x1ee0 [ 624.414036][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 624.418970][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 624.423820][T16328] do_syscall_64+0xb0/0x150 [ 624.428324][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 624.434198][T16328] [ 624.436514][T16328] Uninit was stored to memory at: [ 624.441564][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 624.447278][T16328] __msan_chain_origin+0x50/0x90 [ 624.452213][T16328] do_recvmmsg+0x105a/0x1ee0 [ 624.456802][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 624.461735][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 624.466572][T16328] do_syscall_64+0xb0/0x150 [ 624.471059][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 624.476926][T16328] [ 624.479256][T16328] Uninit was stored to memory at: [ 624.484279][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 624.489983][T16328] __msan_chain_origin+0x50/0x90 [ 624.494910][T16328] do_recvmmsg+0x105a/0x1ee0 [ 624.499495][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 624.504416][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 624.509250][T16328] do_syscall_64+0xb0/0x150 [ 624.513737][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 624.519603][T16328] [ 624.521909][T16328] Uninit was stored to memory at: [ 624.526920][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 624.532622][T16328] __msan_chain_origin+0x50/0x90 [ 624.537545][T16328] do_recvmmsg+0x105a/0x1ee0 [ 624.542120][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 624.547050][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 624.551884][T16328] do_syscall_64+0xb0/0x150 [ 624.556388][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 624.562262][T16328] [ 624.564572][T16328] Uninit was stored to memory at: [ 624.569595][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 624.575296][T16328] __msan_chain_origin+0x50/0x90 [ 624.580217][T16328] do_recvmmsg+0x105a/0x1ee0 [ 624.584821][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 624.589754][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 624.594597][T16328] do_syscall_64+0xb0/0x150 [ 624.599177][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 624.605047][T16328] [ 624.607359][T16328] Uninit was stored to memory at: [ 624.612374][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 624.618090][T16328] __msan_chain_origin+0x50/0x90 [ 624.623022][T16328] do_recvmmsg+0x105a/0x1ee0 [ 624.627606][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 624.632526][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 624.637362][T16328] do_syscall_64+0xb0/0x150 [ 624.641853][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 624.647720][T16328] [ 624.650028][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 624.656687][T16328] do_recvmmsg+0xc5/0x1ee0 [ 624.661092][T16328] do_recvmmsg+0xc5/0x1ee0 [ 624.839126][T16328] not chained 520000 origins [ 624.843773][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 624.852472][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 624.862531][T16328] Call Trace: [ 624.865830][T16328] dump_stack+0x1df/0x240 [ 624.870175][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 624.875901][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 624.881016][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 624.886909][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 624.892200][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 624.897408][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 624.903221][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 624.909295][T16328] ? kfree+0x61/0x30f0 [ 624.913371][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 624.918489][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 624.924038][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 624.930113][T16328] ? _copy_from_user+0x15b/0x260 [ 624.935057][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 624.940173][T16328] __msan_chain_origin+0x50/0x90 [ 624.945122][T16328] do_recvmmsg+0x105a/0x1ee0 [ 624.949758][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 624.955055][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 624.960088][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 624.965290][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 624.971190][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 624.976144][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 624.981002][T16328] do_syscall_64+0xb0/0x150 [ 624.985515][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 624.991415][T16328] RIP: 0033:0x45c1d9 [ 624.995299][T16328] Code: Bad RIP value. [ 624.999358][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 625.007779][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 625.015753][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 625.023730][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 625.031705][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 625.039684][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 625.047671][T16328] Uninit was stored to memory at: [ 625.052709][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 625.058430][T16328] __msan_chain_origin+0x50/0x90 [ 625.063380][T16328] do_recvmmsg+0x105a/0x1ee0 [ 625.068145][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 625.073080][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 625.077933][T16328] do_syscall_64+0xb0/0x150 [ 625.082444][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 625.088322][T16328] [ 625.090641][T16328] Uninit was stored to memory at: [ 625.095666][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 625.101395][T16328] __msan_chain_origin+0x50/0x90 [ 625.106339][T16328] do_recvmmsg+0x105a/0x1ee0 [ 625.110934][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 625.115870][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 625.120726][T16328] do_syscall_64+0xb0/0x150 [ 625.125234][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 625.131114][T16328] [ 625.133434][T16328] Uninit was stored to memory at: [ 625.138466][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 625.144186][T16328] __msan_chain_origin+0x50/0x90 [ 625.149127][T16328] do_recvmmsg+0x105a/0x1ee0 [ 625.153719][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 625.158663][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 625.163515][T16328] do_syscall_64+0xb0/0x150 [ 625.168021][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 625.173900][T16328] [ 625.176226][T16328] Uninit was stored to memory at: [ 625.181264][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 625.186988][T16328] __msan_chain_origin+0x50/0x90 [ 625.191929][T16328] do_recvmmsg+0x105a/0x1ee0 [ 625.196518][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 625.201453][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 625.206305][T16328] do_syscall_64+0xb0/0x150 [ 625.210812][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 625.216691][T16328] [ 625.219013][T16328] Uninit was stored to memory at: [ 625.224038][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 625.229822][T16328] __msan_chain_origin+0x50/0x90 [ 625.234763][T16328] do_recvmmsg+0x105a/0x1ee0 [ 625.239396][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 625.244331][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 625.249186][T16328] do_syscall_64+0xb0/0x150 [ 625.253696][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 625.259579][T16328] [ 625.261897][T16328] Uninit was stored to memory at: [ 625.266926][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 625.272652][T16328] __msan_chain_origin+0x50/0x90 [ 625.277596][T16328] do_recvmmsg+0x105a/0x1ee0 [ 625.282189][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 625.287134][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 625.291988][T16328] do_syscall_64+0xb0/0x150 [ 625.296491][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 625.302377][T16328] [ 625.304693][T16328] Uninit was stored to memory at: [ 625.309723][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 625.315446][T16328] __msan_chain_origin+0x50/0x90 [ 625.320390][T16328] do_recvmmsg+0x105a/0x1ee0 [ 625.324983][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 625.329927][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 625.334781][T16328] do_syscall_64+0xb0/0x150 [ 625.339288][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 625.345169][T16328] [ 625.347492][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 625.354169][T16328] do_recvmmsg+0xc5/0x1ee0 [ 625.358588][T16328] do_recvmmsg+0xc5/0x1ee0 [ 625.509291][T16328] not chained 530000 origins [ 625.513926][T16328] CPU: 1 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 625.522593][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 625.533433][T16328] Call Trace: [ 625.536741][T16328] dump_stack+0x1df/0x240 [ 625.541079][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 625.546807][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 625.551922][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 625.557823][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 625.563116][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 625.568327][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 625.574151][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 625.580230][T16328] ? kfree+0x61/0x30f0 [ 625.584305][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 625.589425][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 625.594975][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 625.601049][T16328] ? _copy_from_user+0x15b/0x260 [ 625.606086][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 625.611202][T16328] __msan_chain_origin+0x50/0x90 [ 625.616149][T16328] do_recvmmsg+0x105a/0x1ee0 [ 625.620778][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 625.626072][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 625.631100][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 625.636129][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 625.642032][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 625.646988][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 625.651853][T16328] do_syscall_64+0xb0/0x150 [ 625.656367][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 625.662258][T16328] RIP: 0033:0x45c1d9 [ 625.666145][T16328] Code: Bad RIP value. [ 625.670210][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 625.678738][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 625.686709][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 625.694773][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 625.702750][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 625.710725][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 625.718706][T16328] Uninit was stored to memory at: [ 625.723742][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 625.729464][T16328] __msan_chain_origin+0x50/0x90 [ 625.734402][T16328] do_recvmmsg+0x105a/0x1ee0 [ 625.738990][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 625.743935][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 625.748787][T16328] do_syscall_64+0xb0/0x150 [ 625.753294][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 625.759173][T16328] [ 625.761495][T16328] Uninit was stored to memory at: [ 625.766521][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 625.772256][T16328] __msan_chain_origin+0x50/0x90 [ 625.777194][T16328] do_recvmmsg+0x105a/0x1ee0 [ 625.781954][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 625.786879][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 625.791714][T16328] do_syscall_64+0xb0/0x150 [ 625.796202][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 625.802070][T16328] [ 625.805163][T16328] Uninit was stored to memory at: [ 625.810173][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 625.815964][T16328] __msan_chain_origin+0x50/0x90 [ 625.820883][T16328] do_recvmmsg+0x105a/0x1ee0 [ 625.825458][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 625.830380][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 625.835228][T16328] do_syscall_64+0xb0/0x150 [ 625.839732][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 625.845606][T16328] [ 625.847922][T16328] Uninit was stored to memory at: [ 625.852935][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 625.858671][T16328] __msan_chain_origin+0x50/0x90 [ 625.863601][T16328] do_recvmmsg+0x105a/0x1ee0 [ 625.868176][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 625.873097][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 625.877931][T16328] do_syscall_64+0xb0/0x150 [ 625.882420][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 625.888284][T16328] [ 625.890592][T16328] Uninit was stored to memory at: [ 625.895600][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 625.901297][T16328] __msan_chain_origin+0x50/0x90 [ 625.906218][T16328] do_recvmmsg+0x105a/0x1ee0 [ 625.910894][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 625.915814][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 625.920647][T16328] do_syscall_64+0xb0/0x150 [ 625.925137][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 625.931127][T16328] [ 625.933432][T16328] Uninit was stored to memory at: [ 625.938439][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 625.944141][T16328] __msan_chain_origin+0x50/0x90 [ 625.949068][T16328] do_recvmmsg+0x105a/0x1ee0 [ 625.953641][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 625.958560][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 625.963395][T16328] do_syscall_64+0xb0/0x150 [ 625.967886][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 625.973752][T16328] [ 625.976056][T16328] Uninit was stored to memory at: [ 625.981080][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 625.986785][T16328] __msan_chain_origin+0x50/0x90 [ 625.991707][T16328] do_recvmmsg+0x105a/0x1ee0 [ 625.996279][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 626.001216][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 626.006052][T16328] do_syscall_64+0xb0/0x150 [ 626.010541][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 626.016408][T16328] [ 626.018741][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 626.033301][T16328] do_recvmmsg+0xc5/0x1ee0 [ 626.037704][T16328] do_recvmmsg+0xc5/0x1ee0 [ 626.063317][T16328] not chained 540000 origins [ 626.067962][T16328] CPU: 0 PID: 16328 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 626.076631][T16328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 626.086682][T16328] Call Trace: [ 626.089968][T16328] dump_stack+0x1df/0x240 [ 626.094290][T16328] kmsan_internal_chain_origin+0x6f/0x130 [ 626.099995][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 626.105098][T16328] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 626.111152][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 626.116425][T16328] ? kmsan_get_metadata+0x11d/0x180 [ 626.121608][T16328] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 626.127403][T16328] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 626.133456][T16328] ? kfree+0x61/0x30f0 [ 626.137515][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 626.142612][T16328] ? kmsan_set_origin_checked+0x95/0xf0 [ 626.148152][T16328] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 626.154207][T16328] ? _copy_from_user+0x15b/0x260 [ 626.159132][T16328] ? kmsan_get_metadata+0x4f/0x180 [ 626.164229][T16328] __msan_chain_origin+0x50/0x90 [ 626.169172][T16328] do_recvmmsg+0x105a/0x1ee0 [ 626.173790][T16328] ? __msan_poison_alloca+0xf0/0x120 [ 626.179153][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 626.184176][T16328] ? __se_sys_recvmmsg+0xac/0x350 [ 626.190054][T16328] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 626.195938][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 626.200870][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 626.205710][T16328] do_syscall_64+0xb0/0x150 [ 626.210637][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 626.216511][T16328] RIP: 0033:0x45c1d9 [ 626.220383][T16328] Code: Bad RIP value. [ 626.224429][T16328] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 626.232829][T16328] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 626.240784][T16328] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 626.249259][T16328] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 626.257216][T16328] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 626.265172][T16328] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 626.273136][T16328] Uninit was stored to memory at: [ 626.278148][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 626.283853][T16328] __msan_chain_origin+0x50/0x90 [ 626.288776][T16328] do_recvmmsg+0x105a/0x1ee0 [ 626.293364][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 626.298290][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 626.303126][T16328] do_syscall_64+0xb0/0x150 [ 626.307614][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 626.313480][T16328] [ 626.315788][T16328] Uninit was stored to memory at: [ 626.320796][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 626.326499][T16328] __msan_chain_origin+0x50/0x90 [ 626.331420][T16328] do_recvmmsg+0x105a/0x1ee0 [ 626.335995][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 626.340916][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 626.345750][T16328] do_syscall_64+0xb0/0x150 [ 626.350255][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 626.356131][T16328] [ 626.358441][T16328] Uninit was stored to memory at: [ 626.363449][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 626.369150][T16328] __msan_chain_origin+0x50/0x90 [ 626.374075][T16328] do_recvmmsg+0x105a/0x1ee0 [ 626.378648][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 626.383566][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 626.388404][T16328] do_syscall_64+0xb0/0x150 [ 626.392896][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 626.398761][T16328] [ 626.401071][T16328] Uninit was stored to memory at: [ 626.406080][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 626.411780][T16328] __msan_chain_origin+0x50/0x90 [ 626.416702][T16328] do_recvmmsg+0x105a/0x1ee0 [ 626.421277][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 626.426200][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 626.431123][T16328] do_syscall_64+0xb0/0x150 [ 626.435612][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 626.441481][T16328] [ 626.443787][T16328] Uninit was stored to memory at: [ 626.448808][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 626.454510][T16328] __msan_chain_origin+0x50/0x90 [ 626.459432][T16328] do_recvmmsg+0x105a/0x1ee0 [ 626.464005][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 626.468928][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 626.473763][T16328] do_syscall_64+0xb0/0x150 [ 626.478252][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 626.484552][T16328] [ 626.486859][T16328] Uninit was stored to memory at: [ 626.491871][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 626.497576][T16328] __msan_chain_origin+0x50/0x90 [ 626.502510][T16328] do_recvmmsg+0x105a/0x1ee0 [ 626.507087][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 626.512008][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 626.516844][T16328] do_syscall_64+0xb0/0x150 [ 626.521331][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 626.527200][T16328] [ 626.529520][T16328] Uninit was stored to memory at: [ 626.534528][T16328] kmsan_internal_chain_origin+0xad/0x130 [ 626.540814][T16328] __msan_chain_origin+0x50/0x90 [ 626.545737][T16328] do_recvmmsg+0x105a/0x1ee0 [ 626.550324][T16328] __se_sys_recvmmsg+0x1d1/0x350 [ 626.555248][T16328] __x64_sys_recvmmsg+0x62/0x80 [ 626.560084][T16328] do_syscall_64+0xb0/0x150 [ 626.564573][T16328] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 626.570439][T16328] [ 626.572750][T16328] Local variable ----msg_sys@do_recvmmsg created at: [ 626.579410][T16328] do_recvmmsg+0xc5/0x1ee0 [ 626.583809][T16328] do_recvmmsg+0xc5/0x1ee0 00:47:47 executing program 1: ioctl$EVIOCGLED(0xffffffffffffffff, 0x80404519, &(0x7f0000000380)) r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100)='ethtool\x00') sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYRES16=r0, @ANYBLOB="00012dbd7000fbdbdf250c0000002c00018008000100", @ANYRES32=0x0, @ANYBLOB="080001006bd519e9d478a8d73d6e1beed30485ef1c121b690a10dac6aacf6f27681940c110042d5ccd60ccb12c72aafbf93b118e498c166374e9503f8c28867c2ff92918932283852670559fb525134a224c8fbcb21a6cef66707c8e56ec8169c49972958383b755bdfabd1157f7ecef958085e91bf876111f220472def4565c6e137d92a0132a620d37459bbe261b73ea2af7001de4", @ANYRES32=0x0, @ANYBLOB='\b\x00', @ANYRES32=0x0, @ANYBLOB="080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="8400018014000200726f73653000000000000000000000000800030001000000080003000300000014000200726f73653000"/60, @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB], 0xc4}, 0x1, 0x0, 0x0, 0x4040000}, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f) bind$inet6(r1, &(0x7f00000003c0)={0xa, 0x4e22}, 0x1c) setsockopt$inet6_mtu(r1, 0x29, 0x17, 0x0, 0x0) listen(r1, 0xfffffffb) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$FIONCLEX(0xffffffffffffffff, 0x5450) sendto$inet6(r2, 0x0, 0x0, 0x20000004, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) recvfrom$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) accept4(r1, 0x0, 0x0, 0x0) 00:47:47 executing program 0: socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) read(r1, &(0x7f0000001140)=""/4088, 0xff8) write(r0, 0x0, 0x0) write(r0, &(0x7f0000000080)="8a", 0x1) 00:47:47 executing program 3: clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x80000002, 0x0) r0 = getpid() r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) rt_tgsigqueueinfo(r0, r0, 0x16, &(0x7f0000000180)) ptrace(0x10, r0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000400)="806e554068d95910af4ef90091fe8dd82d0a1fe4033209ace443876e259f24811b3163a0c1f77d52e2885f93b344c9c28a1e4cd6b88b75dc7edf52bd7cd93636dddbe00d15bcc7d0b4b9e099a61b4503b4eea989d18c069f4e841998babb452084534c806ce3328694b7b591472d972f3fcc4bbff67d9fe447ccc86f34d3b0a8be9a4a2a8c51d2199b") r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x15, 0xc011, r3, 0x0) ptrace$getregset(0x4205, r0, 0x2, &(0x7f0000000100)={0x0, 0x7ffffffff000}) 00:47:47 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:47:47 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:47:47 executing program 5: prlimit64(0x0, 0xe, 0x0, 0x0) getpid() timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x7, &(0x7f0000000000)={0x0, 0x0, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000280)=0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, [0x0, 0x6]}, 0x7}, 0x1c) timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) clock_gettime(0x0, &(0x7f0000000080)) clock_nanosleep(0x8, 0x0, &(0x7f00000000c0), 0x0) 00:47:48 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:47:48 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:47:48 executing program 0: pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) socket$nl_route(0x10, 0x3, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r3, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001c0001000000000000000000e8ffffff0000000000000000080001"], 0x24}}, 0x0) write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0) 00:47:48 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r1, &(0x7f0000002bc0)=[{{0x0, 0xfffffffffffffd10, 0x0, 0x0, 0x0, 0xfffffffffffffde4}}], 0x40000fd, 0x0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_all\x00', 0x275a, 0x0) r3 = creat(0x0, 0x0) write$cgroup_type(r3, &(0x7f0000000180)='threaded\x00', 0x2d1ee37) r4 = creat(&(0x7f0000000280)='./file0\x00', 0x23) write$cgroup_type(r4, &(0x7f0000000180)='threaded\x00', 0x2d1ee37) mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r4, 0x28, &(0x7f00000000c0)}, 0x10) pipe(&(0x7f0000000200)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r5 = dup2(r2, r0) readlinkat(r5, 0x0, &(0x7f0000000040)=""/71, 0x47) 00:47:48 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:47:48 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:47:49 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:47:49 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) [ 628.154845][T16592] not chained 550000 origins [ 628.159487][T16592] CPU: 0 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 628.168159][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 628.178225][T16592] Call Trace: [ 628.181541][T16592] dump_stack+0x1df/0x240 [ 628.185889][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 628.191619][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 628.196738][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 628.202649][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 628.207959][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 628.213172][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 628.218993][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 628.225073][T16592] ? kfree+0x61/0x30f0 [ 628.229155][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 628.234278][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 628.239845][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 628.246019][T16592] ? _copy_from_user+0x15b/0x260 [ 628.250992][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 628.256123][T16592] __msan_chain_origin+0x50/0x90 [ 628.261082][T16592] do_recvmmsg+0x105a/0x1ee0 [ 628.265701][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 628.270980][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 628.275993][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 628.281017][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 628.286901][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 628.291834][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 628.296675][T16592] do_syscall_64+0xb0/0x150 [ 628.301167][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 628.307042][T16592] RIP: 0033:0x45c1d9 [ 628.310914][T16592] Code: Bad RIP value. [ 628.314979][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 628.323377][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 628.331335][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 628.339290][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 628.347254][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 628.355342][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 628.363315][T16592] Uninit was stored to memory at: [ 628.368332][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 628.374032][T16592] __msan_chain_origin+0x50/0x90 [ 628.378963][T16592] do_recvmmsg+0x105a/0x1ee0 [ 628.383538][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 628.388460][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 628.393300][T16592] do_syscall_64+0xb0/0x150 [ 628.397789][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 628.403657][T16592] [ 628.405967][T16592] Uninit was stored to memory at: [ 628.410986][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 628.416700][T16592] __msan_chain_origin+0x50/0x90 [ 628.421624][T16592] do_recvmmsg+0x105a/0x1ee0 [ 628.426196][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 628.431129][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 628.435964][T16592] do_syscall_64+0xb0/0x150 [ 628.440460][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 628.446344][T16592] [ 628.448652][T16592] Uninit was stored to memory at: [ 628.453660][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 628.459360][T16592] __msan_chain_origin+0x50/0x90 [ 628.464282][T16592] do_recvmmsg+0x105a/0x1ee0 [ 628.468858][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 628.473780][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 628.478614][T16592] do_syscall_64+0xb0/0x150 [ 628.483119][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 628.488987][T16592] [ 628.491295][T16592] Uninit was stored to memory at: [ 628.496306][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 628.502006][T16592] __msan_chain_origin+0x50/0x90 [ 628.507105][T16592] do_recvmmsg+0x105a/0x1ee0 [ 628.511680][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 628.516618][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 628.521466][T16592] do_syscall_64+0xb0/0x150 [ 628.525963][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 628.531830][T16592] [ 628.534140][T16592] Uninit was stored to memory at: [ 628.539172][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 628.544900][T16592] __msan_chain_origin+0x50/0x90 [ 628.549828][T16592] do_recvmmsg+0x105a/0x1ee0 [ 628.554412][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 628.559336][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 628.564172][T16592] do_syscall_64+0xb0/0x150 [ 628.568660][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 628.574529][T16592] [ 628.576836][T16592] Uninit was stored to memory at: [ 628.581847][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 628.587565][T16592] __msan_chain_origin+0x50/0x90 [ 628.592485][T16592] do_recvmmsg+0x105a/0x1ee0 [ 628.597062][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 628.601980][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 628.606813][T16592] do_syscall_64+0xb0/0x150 [ 628.611302][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 628.617171][T16592] [ 628.619478][T16592] Uninit was stored to memory at: [ 628.624487][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 628.630191][T16592] __msan_chain_origin+0x50/0x90 [ 628.635114][T16592] do_recvmmsg+0x105a/0x1ee0 [ 628.639686][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 628.644607][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 628.649442][T16592] do_syscall_64+0xb0/0x150 [ 628.653930][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 628.659798][T16592] [ 628.662110][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 628.668785][T16592] do_recvmmsg+0xc5/0x1ee0 [ 628.673203][T16592] do_recvmmsg+0xc5/0x1ee0 00:47:49 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:47:50 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) [ 629.629517][T16598] not chained 560000 origins [ 629.634157][T16598] CPU: 0 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 629.642858][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 629.652922][T16598] Call Trace: [ 629.656235][T16598] dump_stack+0x1df/0x240 [ 629.660580][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 629.666312][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 629.671429][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 629.677417][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 629.682724][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 629.687933][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 629.693753][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 629.699837][T16598] ? kfree+0x61/0x30f0 [ 629.703916][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 629.709042][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 629.714597][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 629.720681][T16598] ? _copy_from_user+0x15b/0x260 [ 629.725632][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 629.730763][T16598] __msan_chain_origin+0x50/0x90 [ 629.735723][T16598] do_recvmmsg+0x105a/0x1ee0 [ 629.740355][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 629.745655][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 629.750687][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 629.755727][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 629.761642][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 629.766602][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 629.771466][T16598] do_syscall_64+0xb0/0x150 [ 629.775994][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 629.781889][T16598] RIP: 0033:0x45c1d9 [ 629.785786][T16598] Code: Bad RIP value. [ 629.789855][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 629.798359][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 629.806334][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 629.814304][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 629.822281][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 629.830260][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 629.838269][T16598] Uninit was stored to memory at: [ 629.843305][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 629.849031][T16598] __msan_chain_origin+0x50/0x90 [ 629.853975][T16598] do_recvmmsg+0x105a/0x1ee0 [ 629.858569][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 629.863779][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 629.868643][T16598] do_syscall_64+0xb0/0x150 [ 629.873168][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 629.879053][T16598] [ 629.881375][T16598] Uninit was stored to memory at: [ 629.886405][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 629.892125][T16598] __msan_chain_origin+0x50/0x90 [ 629.897066][T16598] do_recvmmsg+0x105a/0x1ee0 [ 629.901664][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 629.906604][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 629.911472][T16598] do_syscall_64+0xb0/0x150 [ 629.915983][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 629.921861][T16598] [ 629.924183][T16598] Uninit was stored to memory at: [ 629.929489][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 629.935210][T16598] __msan_chain_origin+0x50/0x90 [ 629.940152][T16598] do_recvmmsg+0x105a/0x1ee0 [ 629.944742][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 629.949698][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 629.954551][T16598] do_syscall_64+0xb0/0x150 [ 629.959059][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 629.964942][T16598] [ 629.967265][T16598] Uninit was stored to memory at: [ 629.972296][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 629.978017][T16598] __msan_chain_origin+0x50/0x90 [ 629.982960][T16598] do_recvmmsg+0x105a/0x1ee0 [ 629.987558][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 629.992534][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 629.997392][T16598] do_syscall_64+0xb0/0x150 [ 630.001898][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 630.007775][T16598] [ 630.010102][T16598] Uninit was stored to memory at: [ 630.015133][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 630.020859][T16598] __msan_chain_origin+0x50/0x90 [ 630.025799][T16598] do_recvmmsg+0x105a/0x1ee0 [ 630.030403][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 630.035344][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 630.040202][T16598] do_syscall_64+0xb0/0x150 [ 630.044713][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 630.050595][T16598] [ 630.052917][T16598] Uninit was stored to memory at: [ 630.057952][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 630.063681][T16598] __msan_chain_origin+0x50/0x90 [ 630.068627][T16598] do_recvmmsg+0x105a/0x1ee0 [ 630.073231][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 630.078178][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 630.083042][T16598] do_syscall_64+0xb0/0x150 [ 630.087554][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 630.093440][T16598] [ 630.095763][T16598] Uninit was stored to memory at: [ 630.100795][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 630.106530][T16598] __msan_chain_origin+0x50/0x90 [ 630.111472][T16598] do_recvmmsg+0x105a/0x1ee0 [ 630.116070][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 630.121022][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 630.125887][T16598] do_syscall_64+0xb0/0x150 [ 630.130399][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 630.136403][T16598] [ 630.138731][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 630.145852][T16598] do_recvmmsg+0xc5/0x1ee0 [ 630.150274][T16598] do_recvmmsg+0xc5/0x1ee0 [ 630.456027][T16592] not chained 570000 origins [ 630.460667][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 630.469349][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 630.479492][T16592] Call Trace: [ 630.482790][T16592] dump_stack+0x1df/0x240 [ 630.487140][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 630.492870][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 630.497988][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 630.503890][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 630.509188][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 630.514396][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 630.520302][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 630.526389][T16592] ? kfree+0x61/0x30f0 [ 630.530473][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 630.535589][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 630.541147][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 630.547228][T16592] ? _copy_from_user+0x15b/0x260 [ 630.552179][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 630.557730][T16592] __msan_chain_origin+0x50/0x90 [ 630.562678][T16592] do_recvmmsg+0x105a/0x1ee0 [ 630.567306][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 630.572727][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 630.577756][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 630.582787][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 630.588692][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 630.593654][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 630.598511][T16592] do_syscall_64+0xb0/0x150 [ 630.603029][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 630.608923][T16592] RIP: 0033:0x45c1d9 [ 630.612817][T16592] Code: Bad RIP value. [ 630.616883][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 630.625300][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 630.633280][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 630.641259][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 630.649238][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 630.657216][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 630.665225][T16592] Uninit was stored to memory at: [ 630.670262][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 630.675986][T16592] __msan_chain_origin+0x50/0x90 [ 630.680932][T16592] do_recvmmsg+0x105a/0x1ee0 [ 630.685545][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 630.690494][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 630.695349][T16592] do_syscall_64+0xb0/0x150 [ 630.699842][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 630.705708][T16592] [ 630.708017][T16592] Uninit was stored to memory at: [ 630.713031][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 630.718884][T16592] __msan_chain_origin+0x50/0x90 [ 630.723816][T16592] do_recvmmsg+0x105a/0x1ee0 [ 630.728403][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 630.733358][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 630.738197][T16592] do_syscall_64+0xb0/0x150 [ 630.742688][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 630.748556][T16592] [ 630.750865][T16592] Uninit was stored to memory at: [ 630.755893][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 630.761600][T16592] __msan_chain_origin+0x50/0x90 [ 630.766537][T16592] do_recvmmsg+0x105a/0x1ee0 [ 630.771120][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 630.776052][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 630.780897][T16592] do_syscall_64+0xb0/0x150 [ 630.785389][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 630.791256][T16592] [ 630.793574][T16592] Uninit was stored to memory at: [ 630.798586][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 630.804289][T16592] __msan_chain_origin+0x50/0x90 [ 630.809211][T16592] do_recvmmsg+0x105a/0x1ee0 [ 630.813783][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 630.818710][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 630.823561][T16592] do_syscall_64+0xb0/0x150 [ 630.828049][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 630.833916][T16592] [ 630.836225][T16592] Uninit was stored to memory at: [ 630.841233][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 630.846933][T16592] __msan_chain_origin+0x50/0x90 [ 630.851855][T16592] do_recvmmsg+0x105a/0x1ee0 [ 630.856432][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 630.861357][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 630.866195][T16592] do_syscall_64+0xb0/0x150 [ 630.870684][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 630.876551][T16592] [ 630.878859][T16592] Uninit was stored to memory at: [ 630.883869][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 630.889570][T16592] __msan_chain_origin+0x50/0x90 [ 630.894492][T16592] do_recvmmsg+0x105a/0x1ee0 [ 630.899071][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 630.903993][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 630.908829][T16592] do_syscall_64+0xb0/0x150 [ 630.913317][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 630.919209][T16592] [ 630.921519][T16592] Uninit was stored to memory at: [ 630.926544][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 630.932253][T16592] __msan_chain_origin+0x50/0x90 [ 630.937174][T16592] do_recvmmsg+0x105a/0x1ee0 [ 630.941752][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 630.946674][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 630.951510][T16592] do_syscall_64+0xb0/0x150 [ 630.956013][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 630.961878][T16592] [ 630.964187][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 630.970846][T16592] do_recvmmsg+0xc5/0x1ee0 [ 630.975260][T16592] do_recvmmsg+0xc5/0x1ee0 [ 631.188281][T16592] not chained 580000 origins [ 631.193111][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 631.201777][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 631.211838][T16592] Call Trace: [ 631.215131][T16592] dump_stack+0x1df/0x240 [ 631.219473][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 631.225219][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 631.230336][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 631.236245][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 631.241575][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 631.246775][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 631.252588][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 631.258656][T16592] ? kfree+0x61/0x30f0 [ 631.262726][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 631.267846][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 631.273395][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 631.279466][T16592] ? _copy_from_user+0x15b/0x260 [ 631.284401][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 631.289515][T16592] __msan_chain_origin+0x50/0x90 [ 631.294456][T16592] do_recvmmsg+0x105a/0x1ee0 [ 631.299081][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 631.304371][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 631.309396][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 631.314421][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 631.320318][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 631.325264][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 631.330121][T16592] do_syscall_64+0xb0/0x150 [ 631.334629][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 631.340517][T16592] RIP: 0033:0x45c1d9 [ 631.344404][T16592] Code: Bad RIP value. [ 631.348462][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 631.356871][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 631.364844][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 631.372819][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 631.380788][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 631.388763][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 631.396859][T16592] Uninit was stored to memory at: [ 631.401900][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 631.407618][T16592] __msan_chain_origin+0x50/0x90 [ 631.412556][T16592] do_recvmmsg+0x105a/0x1ee0 [ 631.417149][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 631.422086][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 631.426941][T16592] do_syscall_64+0xb0/0x150 [ 631.431447][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 631.437327][T16592] [ 631.439644][T16592] Uninit was stored to memory at: [ 631.444666][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 631.450388][T16592] __msan_chain_origin+0x50/0x90 [ 631.455332][T16592] do_recvmmsg+0x105a/0x1ee0 [ 631.459922][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 631.464856][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 631.469710][T16592] do_syscall_64+0xb0/0x150 [ 631.474209][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 631.480090][T16592] [ 631.482408][T16592] Uninit was stored to memory at: [ 631.487504][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 631.493221][T16592] __msan_chain_origin+0x50/0x90 [ 631.498159][T16592] do_recvmmsg+0x105a/0x1ee0 [ 631.502744][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 631.507682][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 631.512534][T16592] do_syscall_64+0xb0/0x150 [ 631.517039][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 631.522919][T16592] [ 631.525234][T16592] Uninit was stored to memory at: [ 631.530260][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 631.535975][T16592] __msan_chain_origin+0x50/0x90 [ 631.540915][T16592] do_recvmmsg+0x105a/0x1ee0 [ 631.545502][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 631.550443][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 631.555294][T16592] do_syscall_64+0xb0/0x150 [ 631.559797][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 631.565680][T16592] [ 631.568000][T16592] Uninit was stored to memory at: [ 631.573024][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 631.578742][T16592] __msan_chain_origin+0x50/0x90 [ 631.583685][T16592] do_recvmmsg+0x105a/0x1ee0 [ 631.588273][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 631.593206][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 631.598057][T16592] do_syscall_64+0xb0/0x150 [ 631.602609][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 631.608489][T16592] [ 631.610814][T16592] Uninit was stored to memory at: [ 631.615840][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 631.621553][T16592] __msan_chain_origin+0x50/0x90 [ 631.626487][T16592] do_recvmmsg+0x105a/0x1ee0 [ 631.631076][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 631.636019][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 631.640868][T16592] do_syscall_64+0xb0/0x150 [ 631.645369][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 631.651246][T16592] [ 631.653566][T16592] Uninit was stored to memory at: [ 631.658588][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 631.664390][T16592] __msan_chain_origin+0x50/0x90 [ 631.669334][T16592] do_recvmmsg+0x105a/0x1ee0 [ 631.673922][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 631.678861][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 631.683709][T16592] do_syscall_64+0xb0/0x150 [ 631.688305][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 631.694182][T16592] [ 631.696509][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 631.703180][T16592] do_recvmmsg+0xc5/0x1ee0 [ 631.707594][T16592] do_recvmmsg+0xc5/0x1ee0 [ 631.760087][T16592] not chained 590000 origins [ 631.764722][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 631.773394][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 631.783449][T16592] Call Trace: [ 631.786751][T16592] dump_stack+0x1df/0x240 [ 631.791088][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 631.796901][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 631.802015][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 631.807911][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 631.813197][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 631.818398][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 631.824203][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 631.830272][T16592] ? kfree+0x61/0x30f0 [ 631.834344][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 631.839460][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 631.845006][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 631.851078][T16592] ? _copy_from_user+0x15b/0x260 [ 631.856020][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 631.861132][T16592] __msan_chain_origin+0x50/0x90 [ 631.866081][T16592] do_recvmmsg+0x105a/0x1ee0 [ 631.870706][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 631.875996][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 631.881018][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 631.886039][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 631.891937][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 631.896890][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 631.901743][T16592] do_syscall_64+0xb0/0x150 [ 631.906252][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 631.912141][T16592] RIP: 0033:0x45c1d9 [ 631.916025][T16592] Code: Bad RIP value. [ 631.920087][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 631.928497][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 631.936466][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 631.944434][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 631.952405][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 631.960410][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 631.968386][T16592] Uninit was stored to memory at: [ 631.973408][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 631.979129][T16592] __msan_chain_origin+0x50/0x90 [ 631.984066][T16592] do_recvmmsg+0x105a/0x1ee0 [ 631.988652][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 631.993587][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 631.998436][T16592] do_syscall_64+0xb0/0x150 [ 632.003033][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 632.008904][T16592] [ 632.011211][T16592] Uninit was stored to memory at: [ 632.016220][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 632.021922][T16592] __msan_chain_origin+0x50/0x90 [ 632.026848][T16592] do_recvmmsg+0x105a/0x1ee0 [ 632.031424][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 632.036346][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 632.041183][T16592] do_syscall_64+0xb0/0x150 [ 632.045672][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 632.051539][T16592] [ 632.053848][T16592] Uninit was stored to memory at: [ 632.058857][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 632.064558][T16592] __msan_chain_origin+0x50/0x90 [ 632.069478][T16592] do_recvmmsg+0x105a/0x1ee0 [ 632.074062][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 632.078984][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 632.083818][T16592] do_syscall_64+0xb0/0x150 [ 632.088314][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 632.094182][T16592] [ 632.096489][T16592] Uninit was stored to memory at: [ 632.101508][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 632.107210][T16592] __msan_chain_origin+0x50/0x90 [ 632.112129][T16592] do_recvmmsg+0x105a/0x1ee0 [ 632.116700][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 632.121632][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 632.126468][T16592] do_syscall_64+0xb0/0x150 [ 632.130957][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 632.136838][T16592] [ 632.139147][T16592] Uninit was stored to memory at: [ 632.144157][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 632.149860][T16592] __msan_chain_origin+0x50/0x90 [ 632.154786][T16592] do_recvmmsg+0x105a/0x1ee0 [ 632.159360][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 632.164292][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 632.169130][T16592] do_syscall_64+0xb0/0x150 [ 632.173617][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 632.179487][T16592] [ 632.181798][T16592] Uninit was stored to memory at: [ 632.186827][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 632.192542][T16592] __msan_chain_origin+0x50/0x90 [ 632.197465][T16592] do_recvmmsg+0x105a/0x1ee0 [ 632.202037][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 632.210518][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 632.215352][T16592] do_syscall_64+0xb0/0x150 [ 632.219842][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 632.225708][T16592] [ 632.228019][T16592] Uninit was stored to memory at: [ 632.233028][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 632.238729][T16592] __msan_chain_origin+0x50/0x90 [ 632.243651][T16592] do_recvmmsg+0x105a/0x1ee0 [ 632.248225][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 632.253145][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 632.257980][T16592] do_syscall_64+0xb0/0x150 [ 632.262469][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 632.268339][T16592] [ 632.270652][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 632.277312][T16592] do_recvmmsg+0xc5/0x1ee0 [ 632.281717][T16592] do_recvmmsg+0xc5/0x1ee0 [ 632.310541][T16592] not chained 600000 origins [ 632.315172][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 632.323837][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 632.333889][T16592] Call Trace: [ 632.337189][T16592] dump_stack+0x1df/0x240 [ 632.341532][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 632.347256][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 632.352369][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 632.358353][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 632.363648][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 632.368852][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 632.374661][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 632.380733][T16592] ? kfree+0x61/0x30f0 [ 632.384803][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 632.389926][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 632.395475][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 632.401545][T16592] ? _copy_from_user+0x15b/0x260 [ 632.406751][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 632.411861][T16592] __msan_chain_origin+0x50/0x90 [ 632.416805][T16592] do_recvmmsg+0x105a/0x1ee0 [ 632.421435][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 632.426723][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 632.431747][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 632.436774][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 632.442670][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 632.447621][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 632.452474][T16592] do_syscall_64+0xb0/0x150 [ 632.456980][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 632.462872][T16592] RIP: 0033:0x45c1d9 [ 632.466756][T16592] Code: Bad RIP value. [ 632.470814][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 632.479229][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 632.487198][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 632.495184][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 632.503156][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 632.511133][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 632.519115][T16592] Uninit was stored to memory at: [ 632.524143][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 632.529866][T16592] __msan_chain_origin+0x50/0x90 [ 632.535063][T16592] do_recvmmsg+0x105a/0x1ee0 [ 632.539689][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 632.544624][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 632.549476][T16592] do_syscall_64+0xb0/0x150 [ 632.553979][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 632.559857][T16592] [ 632.562173][T16592] Uninit was stored to memory at: [ 632.567196][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 632.572913][T16592] __msan_chain_origin+0x50/0x90 [ 632.577852][T16592] do_recvmmsg+0x105a/0x1ee0 [ 632.582437][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 632.587415][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 632.592272][T16592] do_syscall_64+0xb0/0x150 [ 632.596781][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 632.602671][T16592] [ 632.604987][T16592] Uninit was stored to memory at: [ 632.610015][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 632.615727][T16592] __msan_chain_origin+0x50/0x90 [ 632.620652][T16592] do_recvmmsg+0x105a/0x1ee0 [ 632.625227][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 632.630428][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 632.635284][T16592] do_syscall_64+0xb0/0x150 [ 632.639778][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 632.645651][T16592] [ 632.647967][T16592] Uninit was stored to memory at: [ 632.652975][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 632.658679][T16592] __msan_chain_origin+0x50/0x90 [ 632.663608][T16592] do_recvmmsg+0x105a/0x1ee0 [ 632.668186][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 632.673112][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 632.677948][T16592] do_syscall_64+0xb0/0x150 [ 632.682450][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 632.688316][T16592] [ 632.690624][T16592] Uninit was stored to memory at: [ 632.695638][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 632.701340][T16592] __msan_chain_origin+0x50/0x90 [ 632.706280][T16592] do_recvmmsg+0x105a/0x1ee0 [ 632.710861][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 632.715782][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 632.720616][T16592] do_syscall_64+0xb0/0x150 [ 632.725109][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 632.730978][T16592] [ 632.733286][T16592] Uninit was stored to memory at: [ 632.738297][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 632.743998][T16592] __msan_chain_origin+0x50/0x90 [ 632.749035][T16592] do_recvmmsg+0x105a/0x1ee0 [ 632.753630][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 632.758563][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 632.763401][T16592] do_syscall_64+0xb0/0x150 [ 632.767894][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 632.773760][T16592] [ 632.776068][T16592] Uninit was stored to memory at: [ 632.781173][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 632.786877][T16592] __msan_chain_origin+0x50/0x90 [ 632.791820][T16592] do_recvmmsg+0x105a/0x1ee0 [ 632.796396][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 632.801319][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 632.806157][T16592] do_syscall_64+0xb0/0x150 [ 632.810659][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 632.816530][T16592] [ 632.818841][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 632.825512][T16592] do_recvmmsg+0xc5/0x1ee0 [ 632.829911][T16592] do_recvmmsg+0xc5/0x1ee0 00:47:54 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:47:54 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:47:54 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_mreq(r0, 0x0, 0x24, &(0x7f0000000200)={@rand_addr, @rand_addr=0x64010102}, 0x8) 00:47:54 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:47:54 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000180)={0x2, 0x4e21, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000040)=[@ip_retopts={{0x28, 0x0, 0x7, {[@noop, @timestamp_addr={0x44, 0x14, 0xe, 0x2, 0x0, [{@dev}, {@loopback}]}]}}}], 0x28}}], 0x1, 0x0) [ 633.777902][T16598] not chained 610000 origins [ 633.782540][T16598] CPU: 0 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 633.791206][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 633.801251][T16598] Call Trace: [ 633.804536][T16598] dump_stack+0x1df/0x240 [ 633.808864][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 633.814575][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 633.819693][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 633.825572][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 633.830846][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 633.836031][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 633.841823][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 633.847877][T16598] ? kfree+0x61/0x30f0 [ 633.851933][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 633.857032][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 633.862566][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 633.868627][T16598] ? _copy_from_user+0x15b/0x260 [ 633.873647][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 633.878751][T16598] __msan_chain_origin+0x50/0x90 [ 633.883677][T16598] do_recvmmsg+0x105a/0x1ee0 [ 633.888279][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 633.893552][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 633.898560][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 633.903571][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 633.909463][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 633.914393][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 633.919232][T16598] do_syscall_64+0xb0/0x150 [ 633.923725][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 633.929600][T16598] RIP: 0033:0x45c1d9 [ 633.933474][T16598] Code: Bad RIP value. [ 633.937524][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 633.945921][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 633.953879][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 633.961835][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 633.969903][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 633.978732][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 633.986701][T16598] Uninit was stored to memory at: [ 633.991718][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 633.998047][T16598] __msan_chain_origin+0x50/0x90 [ 634.002973][T16598] do_recvmmsg+0x105a/0x1ee0 [ 634.007555][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 634.012480][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 634.017856][T16598] do_syscall_64+0xb0/0x150 [ 634.022350][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 634.028221][T16598] [ 634.030531][T16598] Uninit was stored to memory at: [ 634.035544][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 634.041425][T16598] __msan_chain_origin+0x50/0x90 [ 634.046437][T16598] do_recvmmsg+0x105a/0x1ee0 [ 634.051026][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 634.055951][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 634.061222][T16598] do_syscall_64+0xb0/0x150 [ 634.065711][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 634.071580][T16598] [ 634.073894][T16598] Uninit was stored to memory at: [ 634.078908][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 634.084613][T16598] __msan_chain_origin+0x50/0x90 [ 634.089539][T16598] do_recvmmsg+0x105a/0x1ee0 [ 634.094114][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 634.099038][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 634.103875][T16598] do_syscall_64+0xb0/0x150 [ 634.108375][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 634.114270][T16598] [ 634.116583][T16598] Uninit was stored to memory at: [ 634.121597][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 634.127733][T16598] __msan_chain_origin+0x50/0x90 [ 634.135781][T16598] do_recvmmsg+0x105a/0x1ee0 [ 634.140359][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 634.145311][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 634.150153][T16598] do_syscall_64+0xb0/0x150 [ 634.154644][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 634.160514][T16598] [ 634.162827][T16598] Uninit was stored to memory at: [ 634.168015][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 634.173720][T16598] __msan_chain_origin+0x50/0x90 [ 634.178645][T16598] do_recvmmsg+0x105a/0x1ee0 [ 634.183222][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 634.188151][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 634.192996][T16598] do_syscall_64+0xb0/0x150 [ 634.197489][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 634.203357][T16598] [ 634.205666][T16598] Uninit was stored to memory at: [ 634.210679][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 634.216387][T16598] __msan_chain_origin+0x50/0x90 [ 634.221311][T16598] do_recvmmsg+0x105a/0x1ee0 [ 634.225891][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 634.230813][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 634.235650][T16598] do_syscall_64+0xb0/0x150 [ 634.240141][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 634.246184][T16598] [ 634.248494][T16598] Uninit was stored to memory at: [ 634.253505][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 634.259209][T16598] __msan_chain_origin+0x50/0x90 [ 634.264135][T16598] do_recvmmsg+0x105a/0x1ee0 [ 634.268711][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 634.273632][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 634.278467][T16598] do_syscall_64+0xb0/0x150 [ 634.282956][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 634.288828][T16598] [ 634.291139][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 634.297802][T16598] do_recvmmsg+0xc5/0x1ee0 [ 634.302205][T16598] do_recvmmsg+0xc5/0x1ee0 [ 634.522646][T16592] not chained 620000 origins [ 634.527274][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 634.535956][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 634.546026][T16592] Call Trace: [ 634.549321][T16592] dump_stack+0x1df/0x240 [ 634.553640][T16592] ? psi_group_change+0x1007/0x13c0 [ 634.558834][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 634.564542][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 634.569661][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 634.575730][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 634.581021][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 634.586213][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 634.592018][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 634.598079][T16592] ? kfree+0x61/0x30f0 [ 634.602137][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 634.607237][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 634.612772][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 634.618829][T16592] ? _copy_from_user+0x15b/0x260 [ 634.623754][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 634.628855][T16592] __msan_chain_origin+0x50/0x90 [ 634.633805][T16592] do_recvmmsg+0x105a/0x1ee0 [ 634.638757][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 634.644031][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 634.649041][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 634.654051][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 634.659934][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 634.665568][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 634.670407][T16592] do_syscall_64+0xb0/0x150 [ 634.674901][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 634.680777][T16592] RIP: 0033:0x45c1d9 [ 634.684649][T16592] Code: Bad RIP value. [ 634.688700][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 634.697110][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 634.705070][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 634.713133][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 634.721384][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 634.729374][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 634.737458][T16592] Uninit was stored to memory at: [ 634.742493][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 634.748299][T16592] __msan_chain_origin+0x50/0x90 [ 634.753423][T16592] do_recvmmsg+0x105a/0x1ee0 [ 634.758010][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 634.762934][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 634.767888][T16592] do_syscall_64+0xb0/0x150 [ 634.772389][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 634.778266][T16592] [ 634.780584][T16592] Uninit was stored to memory at: [ 634.785601][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 634.791304][T16592] __msan_chain_origin+0x50/0x90 [ 634.796232][T16592] do_recvmmsg+0x105a/0x1ee0 [ 634.800830][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 634.805754][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 634.810593][T16592] do_syscall_64+0xb0/0x150 [ 634.815084][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 634.820955][T16592] [ 634.823263][T16592] Uninit was stored to memory at: [ 634.828273][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 634.834144][T16592] __msan_chain_origin+0x50/0x90 [ 634.839085][T16592] do_recvmmsg+0x105a/0x1ee0 [ 634.843669][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 634.848594][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 634.857652][T16592] do_syscall_64+0xb0/0x150 [ 634.862229][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 634.868118][T16592] [ 634.870440][T16592] Uninit was stored to memory at: [ 634.875452][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 634.881155][T16592] __msan_chain_origin+0x50/0x90 [ 634.886077][T16592] do_recvmmsg+0x105a/0x1ee0 [ 634.890651][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 634.895575][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 634.900418][T16592] do_syscall_64+0xb0/0x150 [ 634.905170][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 634.911039][T16592] [ 634.913351][T16592] Uninit was stored to memory at: [ 634.918360][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 634.924065][T16592] __msan_chain_origin+0x50/0x90 [ 634.928990][T16592] do_recvmmsg+0x105a/0x1ee0 [ 634.933564][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 634.938489][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 634.943347][T16592] do_syscall_64+0xb0/0x150 [ 634.947849][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 634.953753][T16592] [ 634.956069][T16592] Uninit was stored to memory at: [ 634.961085][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 634.966791][T16592] __msan_chain_origin+0x50/0x90 [ 634.971722][T16592] do_recvmmsg+0x105a/0x1ee0 [ 634.976298][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 634.981221][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 634.986056][T16592] do_syscall_64+0xb0/0x150 [ 634.990547][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 634.996417][T16592] [ 634.998725][T16592] Uninit was stored to memory at: [ 635.003739][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 635.009444][T16592] __msan_chain_origin+0x50/0x90 [ 635.014368][T16592] do_recvmmsg+0x105a/0x1ee0 [ 635.018946][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 635.023867][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 635.028706][T16592] do_syscall_64+0xb0/0x150 [ 635.033197][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 635.039067][T16592] [ 635.041383][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 635.048042][T16592] do_recvmmsg+0xc5/0x1ee0 [ 635.052441][T16592] do_recvmmsg+0xc5/0x1ee0 [ 635.439120][T16598] not chained 630000 origins [ 635.443762][T16598] CPU: 0 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 635.452439][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 635.462502][T16598] Call Trace: [ 635.465812][T16598] dump_stack+0x1df/0x240 [ 635.470162][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 635.475900][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 635.481813][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 635.487717][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 635.493009][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 635.498216][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 635.504070][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 635.510141][T16598] ? kfree+0x61/0x30f0 [ 635.514217][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 635.519333][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 635.524892][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 635.530977][T16598] ? _copy_from_user+0x15b/0x260 [ 635.535921][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 635.541036][T16598] __msan_chain_origin+0x50/0x90 [ 635.545978][T16598] do_recvmmsg+0x105a/0x1ee0 [ 635.550608][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 635.555899][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 635.560926][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 635.566832][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 635.572730][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 635.577681][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 635.582540][T16598] do_syscall_64+0xb0/0x150 [ 635.587068][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 635.592955][T16598] RIP: 0033:0x45c1d9 [ 635.597103][T16598] Code: Bad RIP value. [ 635.601167][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 635.609580][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 635.617553][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 635.625530][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 635.633503][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 635.641476][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 635.649457][T16598] Uninit was stored to memory at: [ 635.654517][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 635.660258][T16598] __msan_chain_origin+0x50/0x90 [ 635.665193][T16598] do_recvmmsg+0x105a/0x1ee0 [ 635.669784][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 635.674720][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 635.679573][T16598] do_syscall_64+0xb0/0x150 [ 635.684085][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 635.689967][T16598] [ 635.692293][T16598] Uninit was stored to memory at: [ 635.697338][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 635.703058][T16598] __msan_chain_origin+0x50/0x90 [ 635.707996][T16598] do_recvmmsg+0x105a/0x1ee0 [ 635.712581][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 635.717518][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 635.722368][T16598] do_syscall_64+0xb0/0x150 [ 635.726878][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 635.732757][T16598] [ 635.735074][T16598] Uninit was stored to memory at: [ 635.740111][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 635.745838][T16598] __msan_chain_origin+0x50/0x90 [ 635.750788][T16598] do_recvmmsg+0x105a/0x1ee0 [ 635.755374][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 635.760322][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 635.765170][T16598] do_syscall_64+0xb0/0x150 [ 635.769685][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 635.775680][T16598] [ 635.778009][T16598] Uninit was stored to memory at: [ 635.783037][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 635.788757][T16598] __msan_chain_origin+0x50/0x90 [ 635.793693][T16598] do_recvmmsg+0x105a/0x1ee0 [ 635.798283][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 635.803229][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 635.808087][T16598] do_syscall_64+0xb0/0x150 [ 635.812589][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 635.818468][T16598] [ 635.820790][T16598] Uninit was stored to memory at: [ 635.825820][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 635.831540][T16598] __msan_chain_origin+0x50/0x90 [ 635.836480][T16598] do_recvmmsg+0x105a/0x1ee0 [ 635.841078][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 635.846015][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 635.850886][T16598] do_syscall_64+0xb0/0x150 [ 635.855565][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 635.861446][T16598] [ 635.863766][T16598] Uninit was stored to memory at: [ 635.868798][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 635.874513][T16598] __msan_chain_origin+0x50/0x90 [ 635.879452][T16598] do_recvmmsg+0x105a/0x1ee0 [ 635.884049][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 635.888992][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 635.893846][T16598] do_syscall_64+0xb0/0x150 [ 635.898356][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 635.905197][T16598] [ 635.907522][T16598] Uninit was stored to memory at: [ 635.912549][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 635.918273][T16598] __msan_chain_origin+0x50/0x90 [ 635.923224][T16598] do_recvmmsg+0x105a/0x1ee0 [ 635.927827][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 635.932765][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 635.937619][T16598] do_syscall_64+0xb0/0x150 [ 635.942131][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 635.948009][T16598] [ 635.950335][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 635.957011][T16598] do_recvmmsg+0xc5/0x1ee0 [ 635.961430][T16598] do_recvmmsg+0xc5/0x1ee0 [ 636.152186][T16592] not chained 640000 origins [ 636.156823][T16592] CPU: 0 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 636.165492][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 636.175827][T16592] Call Trace: [ 636.179126][T16592] dump_stack+0x1df/0x240 [ 636.183454][T16592] ? psi_group_change+0x1007/0x13c0 [ 636.188663][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 636.194385][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 636.199501][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 636.205392][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 636.210685][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 636.215884][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 636.221691][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 636.227758][T16592] ? kfree+0x61/0x30f0 [ 636.231981][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 636.237098][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 636.242648][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 636.248722][T16592] ? _copy_from_user+0x15b/0x260 [ 636.253663][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 636.258779][T16592] __msan_chain_origin+0x50/0x90 [ 636.263719][T16592] do_recvmmsg+0x105a/0x1ee0 [ 636.268356][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 636.273651][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 636.278678][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 636.283708][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 636.289609][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 636.294558][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 636.299413][T16592] do_syscall_64+0xb0/0x150 [ 636.303926][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 636.309815][T16592] RIP: 0033:0x45c1d9 [ 636.313696][T16592] Code: Bad RIP value. [ 636.317752][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 636.326161][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 636.334130][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 636.342101][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 636.350073][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 636.358046][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 636.366026][T16592] Uninit was stored to memory at: [ 636.371079][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 636.376798][T16592] __msan_chain_origin+0x50/0x90 [ 636.381734][T16592] do_recvmmsg+0x105a/0x1ee0 [ 636.386326][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 636.391261][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 636.396114][T16592] do_syscall_64+0xb0/0x150 [ 636.400615][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 636.406492][T16592] [ 636.408811][T16592] Uninit was stored to memory at: [ 636.413832][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 636.419553][T16592] __msan_chain_origin+0x50/0x90 [ 636.424474][T16592] do_recvmmsg+0x105a/0x1ee0 [ 636.429047][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 636.433969][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 636.438806][T16592] do_syscall_64+0xb0/0x150 [ 636.443292][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 636.449162][T16592] [ 636.451472][T16592] Uninit was stored to memory at: [ 636.456482][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 636.462195][T16592] __msan_chain_origin+0x50/0x90 [ 636.467119][T16592] do_recvmmsg+0x105a/0x1ee0 [ 636.471695][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 636.476617][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 636.481455][T16592] do_syscall_64+0xb0/0x150 [ 636.485942][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 636.491808][T16592] [ 636.494115][T16592] Uninit was stored to memory at: [ 636.499126][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 636.504825][T16592] __msan_chain_origin+0x50/0x90 [ 636.509749][T16592] do_recvmmsg+0x105a/0x1ee0 [ 636.514343][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 636.519265][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 636.524100][T16592] do_syscall_64+0xb0/0x150 [ 636.528589][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 636.534455][T16592] [ 636.536764][T16592] Uninit was stored to memory at: [ 636.541776][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 636.547488][T16592] __msan_chain_origin+0x50/0x90 [ 636.552413][T16592] do_recvmmsg+0x105a/0x1ee0 [ 636.556988][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 636.561909][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 636.566755][T16592] do_syscall_64+0xb0/0x150 [ 636.571246][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 636.577126][T16592] [ 636.579437][T16592] Uninit was stored to memory at: [ 636.584465][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 636.590170][T16592] __msan_chain_origin+0x50/0x90 [ 636.595106][T16592] do_recvmmsg+0x105a/0x1ee0 [ 636.599691][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 636.604624][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 636.609472][T16592] do_syscall_64+0xb0/0x150 [ 636.613965][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 636.619837][T16592] [ 636.622145][T16592] Uninit was stored to memory at: [ 636.627157][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 636.632860][T16592] __msan_chain_origin+0x50/0x90 [ 636.637782][T16592] do_recvmmsg+0x105a/0x1ee0 [ 636.642355][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 636.647275][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 636.652111][T16592] do_syscall_64+0xb0/0x150 [ 636.656598][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 636.662466][T16592] [ 636.664776][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 636.671698][T16592] do_recvmmsg+0xc5/0x1ee0 [ 636.676097][T16592] do_recvmmsg+0xc5/0x1ee0 [ 636.914419][T16598] not chained 650000 origins [ 636.919055][T16598] CPU: 1 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 636.927728][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 636.937786][T16598] Call Trace: [ 636.941085][T16598] dump_stack+0x1df/0x240 [ 636.945430][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 636.951162][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 636.956280][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 636.962207][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 636.967513][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 636.972719][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 636.978559][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 636.984636][T16598] ? kfree+0x61/0x30f0 [ 636.988717][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 636.993834][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 636.999386][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 637.005474][T16598] ? _copy_from_user+0x15b/0x260 [ 637.010416][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 637.015531][T16598] __msan_chain_origin+0x50/0x90 [ 637.020475][T16598] do_recvmmsg+0x105a/0x1ee0 [ 637.025106][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 637.030399][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 637.035430][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 637.040460][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 637.046357][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 637.051306][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 637.056161][T16598] do_syscall_64+0xb0/0x150 [ 637.060670][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 637.066563][T16598] RIP: 0033:0x45c1d9 [ 637.070452][T16598] Code: Bad RIP value. [ 637.074514][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 637.082930][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 637.090901][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 637.098885][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 637.106862][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 637.114834][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 637.122812][T16598] Uninit was stored to memory at: [ 637.127842][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 637.133559][T16598] __msan_chain_origin+0x50/0x90 [ 637.138498][T16598] do_recvmmsg+0x105a/0x1ee0 [ 637.143093][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 637.148030][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 637.152875][T16598] do_syscall_64+0xb0/0x150 [ 637.157378][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 637.163252][T16598] [ 637.165567][T16598] Uninit was stored to memory at: [ 637.170603][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 637.176318][T16598] __msan_chain_origin+0x50/0x90 [ 637.181252][T16598] do_recvmmsg+0x105a/0x1ee0 [ 637.185838][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 637.190773][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 637.195621][T16598] do_syscall_64+0xb0/0x150 [ 637.200123][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 637.205999][T16598] [ 637.208315][T16598] Uninit was stored to memory at: [ 637.213337][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 637.219051][T16598] __msan_chain_origin+0x50/0x90 [ 637.223983][T16598] do_recvmmsg+0x105a/0x1ee0 [ 637.228571][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 637.233505][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 637.238352][T16598] do_syscall_64+0xb0/0x150 [ 637.242865][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 637.248743][T16598] [ 637.251062][T16598] Uninit was stored to memory at: [ 637.256086][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 637.261805][T16598] __msan_chain_origin+0x50/0x90 [ 637.266736][T16598] do_recvmmsg+0x105a/0x1ee0 [ 637.271320][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 637.276255][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 637.281101][T16598] do_syscall_64+0xb0/0x150 [ 637.285599][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 637.291478][T16598] [ 637.293795][T16598] Uninit was stored to memory at: [ 637.298816][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 637.304530][T16598] __msan_chain_origin+0x50/0x90 [ 637.309578][T16598] do_recvmmsg+0x105a/0x1ee0 [ 637.314165][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 637.319125][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 637.323972][T16598] do_syscall_64+0xb0/0x150 [ 637.328476][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 637.334352][T16598] [ 637.336671][T16598] Uninit was stored to memory at: [ 637.341695][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 637.347413][T16598] __msan_chain_origin+0x50/0x90 [ 637.352348][T16598] do_recvmmsg+0x105a/0x1ee0 [ 637.356939][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 637.361872][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 637.366727][T16598] do_syscall_64+0xb0/0x150 [ 637.371227][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 637.377103][T16598] [ 637.379422][T16598] Uninit was stored to memory at: [ 637.384443][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 637.390160][T16598] __msan_chain_origin+0x50/0x90 [ 637.395149][T16598] do_recvmmsg+0x105a/0x1ee0 [ 637.399743][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 637.404678][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 637.409525][T16598] do_syscall_64+0xb0/0x150 [ 637.414022][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 637.419900][T16598] [ 637.422222][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 637.428894][T16598] do_recvmmsg+0xc5/0x1ee0 [ 637.433313][T16598] do_recvmmsg+0xc5/0x1ee0 [ 637.529358][T16592] not chained 660000 origins [ 637.533991][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 637.542655][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 637.552708][T16592] Call Trace: [ 637.556005][T16592] dump_stack+0x1df/0x240 [ 637.560338][T16592] ? psi_group_change+0x1007/0x13c0 [ 637.565561][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 637.571294][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 637.576421][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 637.582318][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 637.587609][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 637.592811][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 637.598644][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 637.604714][T16592] ? kfree+0x61/0x30f0 [ 637.608788][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 637.613903][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 637.619451][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 637.625527][T16592] ? _copy_from_user+0x15b/0x260 [ 637.630468][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 637.635580][T16592] __msan_chain_origin+0x50/0x90 [ 637.640533][T16592] do_recvmmsg+0x105a/0x1ee0 [ 637.645156][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 637.650444][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 637.655471][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 637.660500][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 637.666406][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 637.671356][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 637.676215][T16592] do_syscall_64+0xb0/0x150 [ 637.680724][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 637.686613][T16592] RIP: 0033:0x45c1d9 [ 637.690501][T16592] Code: Bad RIP value. [ 637.694565][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 637.702977][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 637.710954][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 637.718925][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 637.726897][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 637.734867][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 637.742851][T16592] Uninit was stored to memory at: [ 637.747886][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 637.753608][T16592] __msan_chain_origin+0x50/0x90 [ 637.758549][T16592] do_recvmmsg+0x105a/0x1ee0 [ 637.763138][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 637.768091][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 637.772945][T16592] do_syscall_64+0xb0/0x150 [ 637.777456][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 637.783339][T16592] [ 637.785661][T16592] Uninit was stored to memory at: [ 637.790685][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 637.796399][T16592] __msan_chain_origin+0x50/0x90 [ 637.801353][T16592] do_recvmmsg+0x105a/0x1ee0 [ 637.805940][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 637.810874][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 637.815723][T16592] do_syscall_64+0xb0/0x150 [ 637.820225][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 637.826110][T16592] [ 637.828426][T16592] Uninit was stored to memory at: [ 637.833455][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 637.839172][T16592] __msan_chain_origin+0x50/0x90 [ 637.844113][T16592] do_recvmmsg+0x105a/0x1ee0 [ 637.848703][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 637.853637][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 637.858487][T16592] do_syscall_64+0xb0/0x150 [ 637.863253][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 637.869141][T16592] [ 637.871459][T16592] Uninit was stored to memory at: [ 637.876487][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 637.882209][T16592] __msan_chain_origin+0x50/0x90 [ 637.887145][T16592] do_recvmmsg+0x105a/0x1ee0 [ 637.891732][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 637.896664][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 637.901601][T16592] do_syscall_64+0xb0/0x150 [ 637.906106][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 637.913113][T16592] [ 637.915430][T16592] Uninit was stored to memory at: [ 637.920459][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 637.926177][T16592] __msan_chain_origin+0x50/0x90 [ 637.931114][T16592] do_recvmmsg+0x105a/0x1ee0 [ 637.935700][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 637.940635][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 637.945506][T16592] do_syscall_64+0xb0/0x150 [ 637.950034][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 637.955911][T16592] [ 637.958237][T16592] Uninit was stored to memory at: [ 637.963259][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 637.968977][T16592] __msan_chain_origin+0x50/0x90 [ 637.973912][T16592] do_recvmmsg+0x105a/0x1ee0 [ 637.978504][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 637.983445][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 637.988297][T16592] do_syscall_64+0xb0/0x150 [ 637.992798][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 637.998678][T16592] [ 638.000997][T16592] Uninit was stored to memory at: [ 638.006020][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 638.011741][T16592] __msan_chain_origin+0x50/0x90 [ 638.016676][T16592] do_recvmmsg+0x105a/0x1ee0 [ 638.021260][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 638.026181][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 638.031019][T16592] do_syscall_64+0xb0/0x150 [ 638.035542][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 638.041409][T16592] [ 638.043718][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 638.050374][T16592] do_recvmmsg+0xc5/0x1ee0 [ 638.054773][T16592] do_recvmmsg+0xc5/0x1ee0 [ 638.229808][T16592] not chained 670000 origins [ 638.234453][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 638.243102][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 638.253237][T16592] Call Trace: [ 638.256526][T16592] dump_stack+0x1df/0x240 [ 638.260841][T16592] ? psi_group_change+0x1007/0x13c0 [ 638.266031][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 638.271738][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 638.276838][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 638.282718][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 638.287991][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 638.293180][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 638.298977][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 638.305030][T16592] ? kfree+0x61/0x30f0 [ 638.309088][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 638.314183][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 638.319715][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 638.325774][T16592] ? _copy_from_user+0x15b/0x260 [ 638.330701][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 638.335798][T16592] __msan_chain_origin+0x50/0x90 [ 638.340726][T16592] do_recvmmsg+0x105a/0x1ee0 [ 638.345331][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 638.350606][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 638.355616][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 638.360625][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 638.366506][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 638.371444][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 638.376283][T16592] do_syscall_64+0xb0/0x150 [ 638.380775][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 638.386646][T16592] RIP: 0033:0x45c1d9 [ 638.390531][T16592] Code: Bad RIP value. [ 638.394577][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 638.402971][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 638.410928][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 638.418886][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 638.426842][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 638.434808][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 638.442771][T16592] Uninit was stored to memory at: [ 638.447784][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 638.453500][T16592] __msan_chain_origin+0x50/0x90 [ 638.458426][T16592] do_recvmmsg+0x105a/0x1ee0 [ 638.462997][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 638.467920][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 638.472754][T16592] do_syscall_64+0xb0/0x150 [ 638.477242][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 638.483109][T16592] [ 638.485417][T16592] Uninit was stored to memory at: [ 638.490428][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 638.496130][T16592] __msan_chain_origin+0x50/0x90 [ 638.501068][T16592] do_recvmmsg+0x105a/0x1ee0 [ 638.505640][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 638.510561][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 638.515401][T16592] do_syscall_64+0xb0/0x150 [ 638.519890][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 638.525864][T16592] [ 638.528181][T16592] Uninit was stored to memory at: [ 638.533207][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 638.538915][T16592] __msan_chain_origin+0x50/0x90 [ 638.543839][T16592] do_recvmmsg+0x105a/0x1ee0 [ 638.548414][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 638.553335][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 638.558174][T16592] do_syscall_64+0xb0/0x150 [ 638.562662][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 638.568527][T16592] [ 638.570835][T16592] Uninit was stored to memory at: [ 638.575843][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 638.581546][T16592] __msan_chain_origin+0x50/0x90 [ 638.586483][T16592] do_recvmmsg+0x105a/0x1ee0 [ 638.591058][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 638.595997][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 638.600837][T16592] do_syscall_64+0xb0/0x150 [ 638.605336][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 638.611908][T16592] [ 638.614220][T16592] Uninit was stored to memory at: [ 638.619228][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 638.624930][T16592] __msan_chain_origin+0x50/0x90 [ 638.629852][T16592] do_recvmmsg+0x105a/0x1ee0 [ 638.634426][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 638.639345][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 638.644183][T16592] do_syscall_64+0xb0/0x150 [ 638.649371][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 638.655236][T16592] [ 638.657544][T16592] Uninit was stored to memory at: [ 638.662555][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 638.668256][T16592] __msan_chain_origin+0x50/0x90 [ 638.673182][T16592] do_recvmmsg+0x105a/0x1ee0 [ 638.677758][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 638.682681][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 638.687516][T16592] do_syscall_64+0xb0/0x150 [ 638.692003][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 638.697880][T16592] [ 638.700201][T16592] Uninit was stored to memory at: [ 638.705229][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 638.710937][T16592] __msan_chain_origin+0x50/0x90 [ 638.715862][T16592] do_recvmmsg+0x105a/0x1ee0 [ 638.720439][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 638.725380][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 638.730223][T16592] do_syscall_64+0xb0/0x150 [ 638.734709][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 638.740577][T16592] [ 638.742888][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 638.749548][T16592] do_recvmmsg+0xc5/0x1ee0 [ 638.753947][T16592] do_recvmmsg+0xc5/0x1ee0 [ 638.925062][T16592] not chained 680000 origins [ 638.929701][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 638.938372][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 638.948426][T16592] Call Trace: [ 638.951724][T16592] dump_stack+0x1df/0x240 [ 638.956066][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 638.961792][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 638.966914][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 638.972814][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 638.978108][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 638.983309][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 638.989118][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 638.995197][T16592] ? kfree+0x61/0x30f0 [ 638.999304][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 639.004421][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 639.009987][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 639.016063][T16592] ? _copy_from_user+0x15b/0x260 [ 639.021006][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 639.026131][T16592] __msan_chain_origin+0x50/0x90 [ 639.039767][T16592] do_recvmmsg+0x105a/0x1ee0 [ 639.044401][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 639.049691][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 639.054718][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 639.059746][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 639.065647][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 639.070600][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 639.075462][T16592] do_syscall_64+0xb0/0x150 [ 639.079973][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 639.085861][T16592] RIP: 0033:0x45c1d9 [ 639.089743][T16592] Code: Bad RIP value. [ 639.093804][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 639.102222][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 639.111846][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 639.119822][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 639.127795][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 639.135771][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 639.143754][T16592] Uninit was stored to memory at: [ 639.148784][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 639.154507][T16592] __msan_chain_origin+0x50/0x90 [ 639.159447][T16592] do_recvmmsg+0x105a/0x1ee0 [ 639.164048][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 639.168998][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 639.173856][T16592] do_syscall_64+0xb0/0x150 [ 639.178378][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 639.184258][T16592] [ 639.186579][T16592] Uninit was stored to memory at: [ 639.191606][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 639.197327][T16592] __msan_chain_origin+0x50/0x90 [ 639.202264][T16592] do_recvmmsg+0x105a/0x1ee0 [ 639.206858][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 639.211795][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 639.216648][T16592] do_syscall_64+0xb0/0x150 [ 639.221158][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 639.227038][T16592] [ 639.229377][T16592] Uninit was stored to memory at: [ 639.234408][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 639.240129][T16592] __msan_chain_origin+0x50/0x90 [ 639.245068][T16592] do_recvmmsg+0x105a/0x1ee0 [ 639.249657][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 639.254605][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 639.259457][T16592] do_syscall_64+0xb0/0x150 [ 639.263963][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 639.269844][T16592] [ 639.272164][T16592] Uninit was stored to memory at: [ 639.277195][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 639.282915][T16592] __msan_chain_origin+0x50/0x90 [ 639.287855][T16592] do_recvmmsg+0x105a/0x1ee0 [ 639.292446][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 639.297388][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 639.302238][T16592] do_syscall_64+0xb0/0x150 [ 639.306743][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 639.312618][T16592] [ 639.314936][T16592] Uninit was stored to memory at: [ 639.319965][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 639.325685][T16592] __msan_chain_origin+0x50/0x90 [ 639.330627][T16592] do_recvmmsg+0x105a/0x1ee0 [ 639.335216][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 639.340157][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 639.345011][T16592] do_syscall_64+0xb0/0x150 [ 639.349524][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 639.355406][T16592] [ 639.357722][T16592] Uninit was stored to memory at: [ 639.362750][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 639.368472][T16592] __msan_chain_origin+0x50/0x90 [ 639.373411][T16592] do_recvmmsg+0x105a/0x1ee0 [ 639.378006][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 639.382946][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 639.387798][T16592] do_syscall_64+0xb0/0x150 [ 639.392437][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 639.398321][T16592] [ 639.400642][T16592] Uninit was stored to memory at: [ 639.405671][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 639.411391][T16592] __msan_chain_origin+0x50/0x90 [ 639.416330][T16592] do_recvmmsg+0x105a/0x1ee0 [ 639.420922][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 639.425860][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 639.430715][T16592] do_syscall_64+0xb0/0x150 [ 639.435222][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 639.441130][T16592] [ 639.443455][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 639.450135][T16592] do_recvmmsg+0xc5/0x1ee0 [ 639.454575][T16592] do_recvmmsg+0xc5/0x1ee0 [ 639.626315][T16598] not chained 690000 origins [ 639.630951][T16598] CPU: 1 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 639.639624][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 639.649678][T16598] Call Trace: [ 639.652976][T16598] dump_stack+0x1df/0x240 [ 639.657317][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 639.663044][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 639.668162][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 639.674055][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 639.679343][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 639.684551][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 639.690366][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 639.696443][T16598] ? kfree+0x61/0x30f0 [ 639.700534][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 639.705654][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 639.711203][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 639.717279][T16598] ? _copy_from_user+0x15b/0x260 [ 639.722223][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 639.727338][T16598] __msan_chain_origin+0x50/0x90 [ 639.732284][T16598] do_recvmmsg+0x105a/0x1ee0 [ 639.736911][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 639.742203][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 639.747231][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 639.752259][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 639.758167][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 639.763125][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 639.767990][T16598] do_syscall_64+0xb0/0x150 [ 639.772505][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 639.778399][T16598] RIP: 0033:0x45c1d9 [ 639.782286][T16598] Code: Bad RIP value. [ 639.786346][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 639.794762][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 639.802737][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 639.810707][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 639.818671][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 639.826643][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 639.834608][T16598] Uninit was stored to memory at: [ 639.839626][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 639.845327][T16598] __msan_chain_origin+0x50/0x90 [ 639.850253][T16598] do_recvmmsg+0x105a/0x1ee0 [ 639.854834][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 639.859755][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 639.864590][T16598] do_syscall_64+0xb0/0x150 [ 639.869086][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 639.874953][T16598] [ 639.877259][T16598] Uninit was stored to memory at: [ 639.882282][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 639.887989][T16598] __msan_chain_origin+0x50/0x90 [ 639.892909][T16598] do_recvmmsg+0x105a/0x1ee0 [ 639.897484][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 639.902419][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 639.907258][T16598] do_syscall_64+0xb0/0x150 [ 639.911917][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 639.917786][T16598] [ 639.920092][T16598] Uninit was stored to memory at: [ 639.925100][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 639.930804][T16598] __msan_chain_origin+0x50/0x90 [ 639.935728][T16598] do_recvmmsg+0x105a/0x1ee0 [ 639.940302][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 639.945225][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 639.950061][T16598] do_syscall_64+0xb0/0x150 [ 639.954568][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 639.960439][T16598] [ 639.962749][T16598] Uninit was stored to memory at: [ 639.967758][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 639.973547][T16598] __msan_chain_origin+0x50/0x90 [ 639.978469][T16598] do_recvmmsg+0x105a/0x1ee0 [ 639.983045][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 639.987975][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 639.992814][T16598] do_syscall_64+0xb0/0x150 [ 639.997307][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 640.003176][T16598] [ 640.005484][T16598] Uninit was stored to memory at: [ 640.010493][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 640.016195][T16598] __msan_chain_origin+0x50/0x90 [ 640.021119][T16598] do_recvmmsg+0x105a/0x1ee0 [ 640.025697][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 640.030620][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 640.035458][T16598] do_syscall_64+0xb0/0x150 [ 640.039945][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 640.045812][T16598] [ 640.048123][T16598] Uninit was stored to memory at: [ 640.053131][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 640.058835][T16598] __msan_chain_origin+0x50/0x90 [ 640.063756][T16598] do_recvmmsg+0x105a/0x1ee0 [ 640.068333][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 640.073257][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 640.078097][T16598] do_syscall_64+0xb0/0x150 [ 640.082592][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 640.088459][T16598] [ 640.090776][T16598] Uninit was stored to memory at: [ 640.095788][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 640.101499][T16598] __msan_chain_origin+0x50/0x90 [ 640.106420][T16598] do_recvmmsg+0x105a/0x1ee0 [ 640.111081][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 640.116003][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 640.120842][T16598] do_syscall_64+0xb0/0x150 [ 640.125339][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 640.131204][T16598] [ 640.133515][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 640.140174][T16598] do_recvmmsg+0xc5/0x1ee0 [ 640.144572][T16598] do_recvmmsg+0xc5/0x1ee0 [ 640.395115][T16592] not chained 700000 origins [ 640.399751][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 640.408508][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 640.418561][T16592] Call Trace: [ 640.421863][T16592] dump_stack+0x1df/0x240 [ 640.426200][T16592] ? psi_group_change+0x1007/0x13c0 [ 640.431409][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 640.437134][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 640.442251][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 640.448152][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 640.453446][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 640.458650][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 640.464464][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 640.470538][T16592] ? kfree+0x61/0x30f0 [ 640.474618][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 640.479737][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 640.485305][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 640.491379][T16592] ? _copy_from_user+0x15b/0x260 [ 640.496324][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 640.501444][T16592] __msan_chain_origin+0x50/0x90 [ 640.506391][T16592] do_recvmmsg+0x105a/0x1ee0 [ 640.511016][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 640.516308][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 640.521336][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 640.526366][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 640.532271][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 640.537224][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 640.542112][T16592] do_syscall_64+0xb0/0x150 [ 640.546629][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 640.552525][T16592] RIP: 0033:0x45c1d9 [ 640.556410][T16592] Code: Bad RIP value. [ 640.560468][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 640.568884][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 640.576863][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 640.584840][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 640.592823][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 640.600799][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 640.608782][T16592] Uninit was stored to memory at: [ 640.613815][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 640.619536][T16592] __msan_chain_origin+0x50/0x90 [ 640.624482][T16592] do_recvmmsg+0x105a/0x1ee0 [ 640.629074][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 640.634009][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 640.638861][T16592] do_syscall_64+0xb0/0x150 [ 640.643370][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 640.649256][T16592] [ 640.651576][T16592] Uninit was stored to memory at: [ 640.656607][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 640.662326][T16592] __msan_chain_origin+0x50/0x90 [ 640.667268][T16592] do_recvmmsg+0x105a/0x1ee0 [ 640.671857][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 640.676792][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 640.681649][T16592] do_syscall_64+0xb0/0x150 [ 640.686156][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 640.692040][T16592] [ 640.694365][T16592] Uninit was stored to memory at: [ 640.699408][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 640.705138][T16592] __msan_chain_origin+0x50/0x90 [ 640.710089][T16592] do_recvmmsg+0x105a/0x1ee0 [ 640.714690][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 640.719637][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 640.724493][T16592] do_syscall_64+0xb0/0x150 [ 640.729005][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 640.734890][T16592] [ 640.737214][T16592] Uninit was stored to memory at: [ 640.742249][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 640.747977][T16592] __msan_chain_origin+0x50/0x90 [ 640.752915][T16592] do_recvmmsg+0x105a/0x1ee0 [ 640.757515][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 640.762461][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 640.767321][T16592] do_syscall_64+0xb0/0x150 [ 640.771835][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 640.777720][T16592] [ 640.780045][T16592] Uninit was stored to memory at: [ 640.785076][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 640.790807][T16592] __msan_chain_origin+0x50/0x90 [ 640.795748][T16592] do_recvmmsg+0x105a/0x1ee0 [ 640.800344][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 640.805279][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 640.810132][T16592] do_syscall_64+0xb0/0x150 [ 640.814644][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 640.820520][T16592] [ 640.822840][T16592] Uninit was stored to memory at: [ 640.827863][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 640.833582][T16592] __msan_chain_origin+0x50/0x90 [ 640.838518][T16592] do_recvmmsg+0x105a/0x1ee0 [ 640.843106][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 640.848045][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 640.852937][T16592] do_syscall_64+0xb0/0x150 [ 640.857442][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 640.863322][T16592] [ 640.865642][T16592] Uninit was stored to memory at: [ 640.870663][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 640.876378][T16592] __msan_chain_origin+0x50/0x90 [ 640.881312][T16592] do_recvmmsg+0x105a/0x1ee0 [ 640.885901][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 640.890841][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 640.895692][T16592] do_syscall_64+0xb0/0x150 [ 640.900278][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 640.906162][T16592] [ 640.908480][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 640.915153][T16592] do_recvmmsg+0xc5/0x1ee0 [ 640.919565][T16592] do_recvmmsg+0xc5/0x1ee0 [ 641.228312][T16592] not chained 710000 origins [ 641.232951][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 641.241616][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 641.251681][T16592] Call Trace: [ 641.254974][T16592] dump_stack+0x1df/0x240 [ 641.259315][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 641.265051][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 641.270165][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 641.276064][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 641.282306][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 641.287501][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 641.293303][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 641.299371][T16592] ? kfree+0x61/0x30f0 [ 641.303441][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 641.308552][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 641.314097][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 641.320168][T16592] ? _copy_from_user+0x15b/0x260 [ 641.325105][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 641.330216][T16592] __msan_chain_origin+0x50/0x90 [ 641.335154][T16592] do_recvmmsg+0x105a/0x1ee0 [ 641.339775][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 641.345070][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 641.350114][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 641.355137][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 641.361031][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 641.366013][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 641.370867][T16592] do_syscall_64+0xb0/0x150 [ 641.375396][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 641.381281][T16592] RIP: 0033:0x45c1d9 [ 641.385162][T16592] Code: Bad RIP value. [ 641.389221][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 641.397630][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 641.405598][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 641.413569][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 641.421537][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 641.429589][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 641.437565][T16592] Uninit was stored to memory at: [ 641.442592][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 641.448308][T16592] __msan_chain_origin+0x50/0x90 [ 641.453245][T16592] do_recvmmsg+0x105a/0x1ee0 [ 641.457846][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 641.462778][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 641.467628][T16592] do_syscall_64+0xb0/0x150 [ 641.472131][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 641.478006][T16592] [ 641.480325][T16592] Uninit was stored to memory at: [ 641.485349][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 641.491068][T16592] __msan_chain_origin+0x50/0x90 [ 641.496007][T16592] do_recvmmsg+0x105a/0x1ee0 [ 641.500599][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 641.505551][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 641.510401][T16592] do_syscall_64+0xb0/0x150 [ 641.514904][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 641.520782][T16592] [ 641.523104][T16592] Uninit was stored to memory at: [ 641.528217][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 641.533939][T16592] __msan_chain_origin+0x50/0x90 [ 641.538873][T16592] do_recvmmsg+0x105a/0x1ee0 [ 641.543460][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 641.548394][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 641.553250][T16592] do_syscall_64+0xb0/0x150 [ 641.557769][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 641.563652][T16592] [ 641.565972][T16592] Uninit was stored to memory at: [ 641.571002][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 641.576720][T16592] __msan_chain_origin+0x50/0x90 [ 641.581655][T16592] do_recvmmsg+0x105a/0x1ee0 [ 641.586242][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 641.591177][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 641.596025][T16592] do_syscall_64+0xb0/0x150 [ 641.600529][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 641.606405][T16592] [ 641.608725][T16592] Uninit was stored to memory at: [ 641.613752][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 641.619472][T16592] __msan_chain_origin+0x50/0x90 [ 641.624406][T16592] do_recvmmsg+0x105a/0x1ee0 [ 641.628991][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 641.633929][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 641.638801][T16592] do_syscall_64+0xb0/0x150 [ 641.643306][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 641.649183][T16592] [ 641.651501][T16592] Uninit was stored to memory at: [ 641.656523][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 641.662326][T16592] __msan_chain_origin+0x50/0x90 [ 641.667261][T16592] do_recvmmsg+0x105a/0x1ee0 [ 641.671847][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 641.676796][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 641.681656][T16592] do_syscall_64+0xb0/0x150 [ 641.686156][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 641.692035][T16592] [ 641.694353][T16592] Uninit was stored to memory at: [ 641.699382][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 641.705095][T16592] __msan_chain_origin+0x50/0x90 [ 641.710115][T16592] do_recvmmsg+0x105a/0x1ee0 [ 641.714703][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 641.719638][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 641.724487][T16592] do_syscall_64+0xb0/0x150 [ 641.728991][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 641.734869][T16592] [ 641.737191][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 641.744398][T16592] do_recvmmsg+0xc5/0x1ee0 [ 641.748819][T16592] do_recvmmsg+0xc5/0x1ee0 [ 641.890940][T16592] not chained 720000 origins [ 641.895575][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 641.904246][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 641.914299][T16592] Call Trace: [ 641.917597][T16592] dump_stack+0x1df/0x240 [ 641.921934][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 641.927649][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 641.932757][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 641.938650][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 641.943932][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 641.949140][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 641.954944][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 641.961009][T16592] ? kfree+0x61/0x30f0 [ 641.965085][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 641.970192][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 641.975735][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 641.981805][T16592] ? _copy_from_user+0x15b/0x260 [ 641.986738][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 641.991845][T16592] __msan_chain_origin+0x50/0x90 [ 641.996781][T16592] do_recvmmsg+0x105a/0x1ee0 [ 642.001410][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 642.006695][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 642.011717][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 642.016737][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 642.017742][T16598] not chained 730000 origins [ 642.022646][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 642.032138][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 642.036976][T16592] do_syscall_64+0xb0/0x150 [ 642.041467][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.047350][T16592] RIP: 0033:0x45c1d9 [ 642.051222][T16592] Code: Bad RIP value. [ 642.055268][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 642.063660][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 642.071625][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 642.079578][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 642.087532][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 642.095485][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 642.103475][T16592] Uninit was stored to memory at: [ 642.103486][T16598] CPU: 0 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 642.103499][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 642.108509][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 642.117157][T16598] Call Trace: [ 642.127215][T16592] __msan_chain_origin+0x50/0x90 [ 642.132932][T16598] dump_stack+0x1df/0x240 [ 642.136190][T16592] do_recvmmsg+0x105a/0x1ee0 [ 642.141106][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 642.145416][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 642.150071][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 642.155762][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 642.160674][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 642.165760][T16592] do_syscall_64+0xb0/0x150 [ 642.170582][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 642.176447][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.180922][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 642.186171][T16592] [ 642.192061][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 642.197233][T16592] Uninit was stored to memory at: [ 642.199550][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 642.205328][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 642.210327][T16598] ? kfree+0x61/0x30f0 [ 642.216364][T16592] __msan_chain_origin+0x50/0x90 [ 642.222058][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 642.226103][T16592] do_recvmmsg+0x105a/0x1ee0 [ 642.231021][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 642.236116][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 642.241028][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 642.246551][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 642.251462][T16598] ? _copy_from_user+0x15b/0x260 [ 642.257503][T16592] do_syscall_64+0xb0/0x150 [ 642.262326][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 642.267239][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.271718][T16598] __msan_chain_origin+0x50/0x90 [ 642.276792][T16592] [ 642.282679][T16598] do_recvmmsg+0x105a/0x1ee0 [ 642.287579][T16592] Uninit was stored to memory at: [ 642.289923][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 642.294463][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 642.299462][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 642.304719][T16592] __msan_chain_origin+0x50/0x90 [ 642.310416][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 642.315858][T16592] do_recvmmsg+0x105a/0x1ee0 [ 642.320771][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 642.326307][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 642.330878][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 642.336753][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 642.341689][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 642.346602][T16592] do_syscall_64+0xb0/0x150 [ 642.351426][T16598] do_syscall_64+0xb0/0x150 [ 642.356262][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.360742][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.365206][T16592] [ 642.371077][T16598] RIP: 0033:0x45c1d9 [ 642.376934][T16592] Uninit was stored to memory at: [ 642.379240][T16598] Code: Bad RIP value. [ 642.384074][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 642.389077][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 642.393126][T16592] __msan_chain_origin+0x50/0x90 [ 642.398816][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 642.407218][T16592] do_recvmmsg+0x105a/0x1ee0 [ 642.412126][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 642.420087][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 642.424645][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 642.432620][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 642.437525][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 642.445479][T16592] do_syscall_64+0xb0/0x150 [ 642.450297][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 642.458266][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.462744][T16598] Uninit was stored to memory at: [ 642.470689][T16592] [ 642.476565][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 642.481563][T16592] Uninit was stored to memory at: [ 642.483880][T16598] __msan_chain_origin+0x50/0x90 [ 642.489571][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 642.494567][T16598] do_recvmmsg+0x105a/0x1ee0 [ 642.499475][T16592] __msan_chain_origin+0x50/0x90 [ 642.505179][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 642.509740][T16592] do_recvmmsg+0x105a/0x1ee0 [ 642.514653][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 642.519564][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 642.524127][T16598] do_syscall_64+0xb0/0x150 [ 642.528950][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 642.533861][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.538345][T16592] do_syscall_64+0xb0/0x150 [ 642.543156][T16598] [ 642.549047][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.553524][T16598] Uninit was stored to memory at: [ 642.555828][T16592] [ 642.561724][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 642.566724][T16592] Uninit was stored to memory at: [ 642.569038][T16598] __msan_chain_origin+0x50/0x90 [ 642.574748][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 642.579765][T16598] do_recvmmsg+0x105a/0x1ee0 [ 642.584757][T16592] __msan_chain_origin+0x50/0x90 [ 642.590449][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 642.595012][T16592] do_recvmmsg+0x105a/0x1ee0 [ 642.599921][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 642.604831][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 642.609508][T16598] do_syscall_64+0xb0/0x150 [ 642.614419][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 642.619345][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.623821][T16592] do_syscall_64+0xb0/0x150 [ 642.628633][T16598] [ 642.634533][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.639003][T16598] Uninit was stored to memory at: [ 642.641308][T16592] [ 642.647274][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 642.652261][T16592] Uninit was stored to memory at: [ 642.654578][T16598] __msan_chain_origin+0x50/0x90 [ 642.660284][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 642.665287][T16598] do_recvmmsg+0x105a/0x1ee0 [ 642.670197][T16592] __msan_chain_origin+0x50/0x90 [ 642.675889][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 642.680454][T16592] do_recvmmsg+0x105a/0x1ee0 [ 642.685365][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 642.690290][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 642.695310][T16598] do_syscall_64+0xb0/0x150 [ 642.700131][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 642.705053][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.709541][T16592] do_syscall_64+0xb0/0x150 [ 642.714356][T16598] [ 642.720248][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.724725][T16598] Uninit was stored to memory at: [ 642.727032][T16592] [ 642.732922][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 642.737908][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 642.740234][T16598] __msan_chain_origin+0x50/0x90 [ 642.745947][T16592] do_recvmmsg+0xc5/0x1ee0 [ 642.745968][T16592] do_recvmmsg+0xc5/0x1ee0 [ 642.752643][T16598] do_recvmmsg+0x105a/0x1ee0 [ 642.770947][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 642.775884][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 642.780738][T16598] do_syscall_64+0xb0/0x150 [ 642.785240][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.791120][T16598] [ 642.793439][T16598] Uninit was stored to memory at: [ 642.798463][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 642.804181][T16598] __msan_chain_origin+0x50/0x90 [ 642.809116][T16598] do_recvmmsg+0x105a/0x1ee0 [ 642.813702][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 642.818637][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 642.823498][T16598] do_syscall_64+0xb0/0x150 [ 642.828022][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.834332][T16598] [ 642.836646][T16598] Uninit was stored to memory at: [ 642.841666][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 642.847383][T16598] __msan_chain_origin+0x50/0x90 [ 642.852318][T16598] do_recvmmsg+0x105a/0x1ee0 [ 642.856910][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 642.861852][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 642.866712][T16598] do_syscall_64+0xb0/0x150 [ 642.871213][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.877090][T16598] [ 642.879412][T16598] Uninit was stored to memory at: [ 642.884434][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 642.890150][T16598] __msan_chain_origin+0x50/0x90 [ 642.895084][T16598] do_recvmmsg+0x105a/0x1ee0 [ 642.899670][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 642.904604][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 642.909456][T16598] do_syscall_64+0xb0/0x150 [ 642.913957][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 642.919832][T16598] [ 642.922154][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 642.928828][T16598] do_recvmmsg+0xc5/0x1ee0 [ 642.933247][T16598] do_recvmmsg+0xc5/0x1ee0 [ 643.229840][T16592] not chained 740000 origins [ 643.235427][T16592] CPU: 0 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 643.244094][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 643.254150][T16592] Call Trace: [ 643.257454][T16592] dump_stack+0x1df/0x240 [ 643.261784][T16592] ? psi_group_change+0x1007/0x13c0 [ 643.266987][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 643.272703][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 643.277844][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 643.283741][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 643.289031][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 643.294230][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 643.300041][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 643.306111][T16592] ? kfree+0x61/0x30f0 [ 643.310182][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 643.315289][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 643.320844][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 643.326918][T16592] ? _copy_from_user+0x15b/0x260 [ 643.331859][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 643.336970][T16592] __msan_chain_origin+0x50/0x90 [ 643.341908][T16592] do_recvmmsg+0x105a/0x1ee0 [ 643.346529][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 643.351840][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 643.356869][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 643.361892][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 643.367877][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 643.372825][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 643.377689][T16592] do_syscall_64+0xb0/0x150 [ 643.382194][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 643.388084][T16592] RIP: 0033:0x45c1d9 [ 643.391964][T16592] Code: Bad RIP value. [ 643.396022][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 643.404427][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 643.412391][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 643.420349][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 643.428308][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 643.436278][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 643.444243][T16592] Uninit was stored to memory at: [ 643.449258][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 643.454961][T16592] __msan_chain_origin+0x50/0x90 [ 643.459884][T16592] do_recvmmsg+0x105a/0x1ee0 [ 643.465165][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 643.470099][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 643.474934][T16592] do_syscall_64+0xb0/0x150 [ 643.479425][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 643.485302][T16592] [ 643.487610][T16592] Uninit was stored to memory at: [ 643.492620][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 643.498324][T16592] __msan_chain_origin+0x50/0x90 [ 643.503245][T16592] do_recvmmsg+0x105a/0x1ee0 [ 643.507818][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 643.512740][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 643.517582][T16592] do_syscall_64+0xb0/0x150 [ 643.522069][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 643.527943][T16592] [ 643.530255][T16592] Uninit was stored to memory at: [ 643.535264][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 643.540966][T16592] __msan_chain_origin+0x50/0x90 [ 643.545904][T16592] do_recvmmsg+0x105a/0x1ee0 [ 643.550480][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 643.555412][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 643.560249][T16592] do_syscall_64+0xb0/0x150 [ 643.564758][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 643.570624][T16592] [ 643.572945][T16592] Uninit was stored to memory at: [ 643.577959][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 643.583663][T16592] __msan_chain_origin+0x50/0x90 [ 643.588606][T16592] do_recvmmsg+0x105a/0x1ee0 [ 643.593187][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 643.598111][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 643.602955][T16592] do_syscall_64+0xb0/0x150 [ 643.607445][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 643.613311][T16592] [ 643.615619][T16592] Uninit was stored to memory at: [ 643.620642][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 643.626348][T16592] __msan_chain_origin+0x50/0x90 [ 643.631267][T16592] do_recvmmsg+0x105a/0x1ee0 [ 643.635843][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 643.640765][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 643.645606][T16592] do_syscall_64+0xb0/0x150 [ 643.650096][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 643.655965][T16592] [ 643.658274][T16592] Uninit was stored to memory at: [ 643.663298][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 643.669016][T16592] __msan_chain_origin+0x50/0x90 [ 643.673949][T16592] do_recvmmsg+0x105a/0x1ee0 [ 643.678521][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 643.683444][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 643.688280][T16592] do_syscall_64+0xb0/0x150 [ 643.692772][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 643.698640][T16592] [ 643.700963][T16592] Uninit was stored to memory at: [ 643.705984][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 643.711703][T16592] __msan_chain_origin+0x50/0x90 [ 643.716624][T16592] do_recvmmsg+0x105a/0x1ee0 [ 643.721198][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 643.726123][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 643.730961][T16592] do_syscall_64+0xb0/0x150 [ 643.735451][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 643.741319][T16592] [ 643.743631][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 643.750305][T16592] do_recvmmsg+0xc5/0x1ee0 [ 643.754714][T16592] do_recvmmsg+0xc5/0x1ee0 [ 643.795281][T16598] not chained 750000 origins [ 643.799930][T16598] CPU: 1 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 643.808602][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 643.818657][T16598] Call Trace: [ 643.821952][T16598] dump_stack+0x1df/0x240 [ 643.826295][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 643.832027][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 643.837147][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 643.843047][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 643.848335][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 643.853522][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 643.859313][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 643.865367][T16598] ? kfree+0x61/0x30f0 [ 643.869427][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 643.874523][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 643.880058][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 643.886113][T16598] ? _copy_from_user+0x15b/0x260 [ 643.891055][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 643.896168][T16598] __msan_chain_origin+0x50/0x90 [ 643.901106][T16598] do_recvmmsg+0x105a/0x1ee0 [ 643.905713][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 643.910987][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 643.916001][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 643.921010][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 643.926898][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 643.931834][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 643.936690][T16598] do_syscall_64+0xb0/0x150 [ 643.941205][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 643.947084][T16598] RIP: 0033:0x45c1d9 [ 643.950955][T16598] Code: Bad RIP value. [ 643.955019][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 643.963432][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 643.971392][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 643.979361][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 643.987318][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 643.995292][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 644.003254][T16598] Uninit was stored to memory at: [ 644.008269][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 644.013979][T16598] __msan_chain_origin+0x50/0x90 [ 644.018901][T16598] do_recvmmsg+0x105a/0x1ee0 [ 644.023475][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 644.028399][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 644.033236][T16598] do_syscall_64+0xb0/0x150 [ 644.037728][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 644.043597][T16598] [ 644.045906][T16598] Uninit was stored to memory at: [ 644.050918][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 644.056620][T16598] __msan_chain_origin+0x50/0x90 [ 644.061561][T16598] do_recvmmsg+0x105a/0x1ee0 [ 644.066135][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 644.071148][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 644.075983][T16598] do_syscall_64+0xb0/0x150 [ 644.080472][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 644.087733][T16598] [ 644.090046][T16598] Uninit was stored to memory at: [ 644.095058][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 644.100763][T16598] __msan_chain_origin+0x50/0x90 [ 644.105686][T16598] do_recvmmsg+0x105a/0x1ee0 [ 644.110261][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 644.115186][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 644.120024][T16598] do_syscall_64+0xb0/0x150 [ 644.124517][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 644.130397][T16598] [ 644.132704][T16598] Uninit was stored to memory at: [ 644.137733][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 644.143469][T16598] __msan_chain_origin+0x50/0x90 [ 644.148401][T16598] do_recvmmsg+0x105a/0x1ee0 [ 644.152976][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 644.157900][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 644.162737][T16598] do_syscall_64+0xb0/0x150 [ 644.167230][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 644.173097][T16598] [ 644.175432][T16598] Uninit was stored to memory at: [ 644.180464][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 644.186167][T16598] __msan_chain_origin+0x50/0x90 [ 644.191097][T16598] do_recvmmsg+0x105a/0x1ee0 [ 644.195671][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 644.200591][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 644.205426][T16598] do_syscall_64+0xb0/0x150 [ 644.209928][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 644.215795][T16598] [ 644.218103][T16598] Uninit was stored to memory at: [ 644.223110][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 644.228823][T16598] __msan_chain_origin+0x50/0x90 [ 644.233746][T16598] do_recvmmsg+0x105a/0x1ee0 [ 644.238321][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 644.243245][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 644.248084][T16598] do_syscall_64+0xb0/0x150 [ 644.252577][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 644.258634][T16598] [ 644.260945][T16598] Uninit was stored to memory at: [ 644.265976][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 644.271680][T16598] __msan_chain_origin+0x50/0x90 [ 644.276605][T16598] do_recvmmsg+0x105a/0x1ee0 [ 644.281180][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 644.286105][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 644.290939][T16598] do_syscall_64+0xb0/0x150 [ 644.295427][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 644.301294][T16598] [ 644.303605][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 644.310262][T16598] do_recvmmsg+0xc5/0x1ee0 [ 644.314662][T16598] do_recvmmsg+0xc5/0x1ee0 [ 644.508017][T16598] not chained 760000 origins [ 644.512659][T16598] CPU: 0 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 644.521329][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 644.531490][T16598] Call Trace: [ 644.534794][T16598] dump_stack+0x1df/0x240 [ 644.539142][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 644.544871][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 644.549987][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 644.555890][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 644.561185][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 644.566479][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 644.572428][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 644.578538][T16598] ? kfree+0x61/0x30f0 [ 644.582618][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 644.587738][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 644.593292][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 644.599435][T16598] ? _copy_from_user+0x15b/0x260 [ 644.604388][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 644.609516][T16598] __msan_chain_origin+0x50/0x90 [ 644.614560][T16598] do_recvmmsg+0x105a/0x1ee0 [ 644.619192][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 644.624491][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 644.629523][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 644.634555][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 644.640460][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 644.645422][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 644.650282][T16598] do_syscall_64+0xb0/0x150 [ 644.654798][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 644.660704][T16598] RIP: 0033:0x45c1d9 [ 644.664588][T16598] Code: Bad RIP value. [ 644.668649][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 644.677064][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 644.685127][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 644.693103][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 644.701083][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 644.709057][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 644.717042][T16598] Uninit was stored to memory at: [ 644.722080][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 644.727818][T16598] __msan_chain_origin+0x50/0x90 [ 644.732769][T16598] do_recvmmsg+0x105a/0x1ee0 [ 644.737369][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 644.742321][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 644.747175][T16598] do_syscall_64+0xb0/0x150 [ 644.751692][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 644.757578][T16598] [ 644.759902][T16598] Uninit was stored to memory at: [ 644.764938][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 644.770671][T16598] __msan_chain_origin+0x50/0x90 [ 644.775613][T16598] do_recvmmsg+0x105a/0x1ee0 [ 644.780212][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 644.785155][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 644.790012][T16598] do_syscall_64+0xb0/0x150 [ 644.794526][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 644.800406][T16598] [ 644.802726][T16598] Uninit was stored to memory at: [ 644.807758][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 644.813480][T16598] __msan_chain_origin+0x50/0x90 [ 644.818429][T16598] do_recvmmsg+0x105a/0x1ee0 [ 644.823025][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 644.827965][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 644.832822][T16598] do_syscall_64+0xb0/0x150 [ 644.837359][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 644.843240][T16598] [ 644.845558][T16598] Uninit was stored to memory at: [ 644.850586][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 644.856308][T16598] __msan_chain_origin+0x50/0x90 [ 644.861254][T16598] do_recvmmsg+0x105a/0x1ee0 [ 644.865845][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 644.870803][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 644.875654][T16598] do_syscall_64+0xb0/0x150 [ 644.880157][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 644.886073][T16598] [ 644.888394][T16598] Uninit was stored to memory at: [ 644.893430][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 644.899155][T16598] __msan_chain_origin+0x50/0x90 [ 644.904093][T16598] do_recvmmsg+0x105a/0x1ee0 [ 644.908686][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 644.913628][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 644.918489][T16598] do_syscall_64+0xb0/0x150 [ 644.922995][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 644.928876][T16598] [ 644.931194][T16598] Uninit was stored to memory at: [ 644.936223][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 644.941939][T16598] __msan_chain_origin+0x50/0x90 [ 644.946880][T16598] do_recvmmsg+0x105a/0x1ee0 [ 644.951472][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 644.960067][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 644.964918][T16598] do_syscall_64+0xb0/0x150 [ 644.971342][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 644.977225][T16598] [ 644.979551][T16598] Uninit was stored to memory at: [ 644.984582][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 644.990307][T16598] __msan_chain_origin+0x50/0x90 [ 644.995256][T16598] do_recvmmsg+0x105a/0x1ee0 [ 644.999846][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 645.004782][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 645.010505][T16598] do_syscall_64+0xb0/0x150 [ 645.015013][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 645.020891][T16598] [ 645.023211][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 645.029888][T16598] do_recvmmsg+0xc5/0x1ee0 [ 645.034303][T16598] do_recvmmsg+0xc5/0x1ee0 [ 645.115763][T16592] not chained 770000 origins [ 645.120398][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 645.129075][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 645.139117][T16592] Call Trace: [ 645.142399][T16592] dump_stack+0x1df/0x240 [ 645.146718][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 645.152427][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 645.157523][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 645.163411][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 645.168686][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 645.173871][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 645.179665][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 645.185724][T16592] ? kfree+0x61/0x30f0 [ 645.189783][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 645.194880][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 645.200416][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 645.206483][T16592] ? _copy_from_user+0x15b/0x260 [ 645.211405][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 645.216505][T16592] __msan_chain_origin+0x50/0x90 [ 645.221446][T16592] do_recvmmsg+0x105a/0x1ee0 [ 645.226051][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 645.231333][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 645.236346][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 645.241357][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 645.247240][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 645.252174][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 645.257027][T16592] do_syscall_64+0xb0/0x150 [ 645.261522][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 645.267395][T16592] RIP: 0033:0x45c1d9 [ 645.271266][T16592] Code: Bad RIP value. [ 645.275314][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 645.283710][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 645.291666][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 645.299622][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 645.307588][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 645.315547][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 645.323511][T16592] Uninit was stored to memory at: [ 645.328523][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 645.334226][T16592] __msan_chain_origin+0x50/0x90 [ 645.339148][T16592] do_recvmmsg+0x105a/0x1ee0 [ 645.343721][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 645.348644][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 645.353480][T16592] do_syscall_64+0xb0/0x150 [ 645.357966][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 645.363835][T16592] [ 645.366143][T16592] Uninit was stored to memory at: [ 645.371179][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 645.376895][T16592] __msan_chain_origin+0x50/0x90 [ 645.381816][T16592] do_recvmmsg+0x105a/0x1ee0 [ 645.386392][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 645.391313][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 645.396150][T16592] do_syscall_64+0xb0/0x150 [ 645.401421][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 645.407287][T16592] [ 645.409595][T16592] Uninit was stored to memory at: [ 645.414603][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 645.420306][T16592] __msan_chain_origin+0x50/0x90 [ 645.425229][T16592] do_recvmmsg+0x105a/0x1ee0 [ 645.429804][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 645.434728][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 645.439563][T16592] do_syscall_64+0xb0/0x150 [ 645.444051][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 645.449931][T16592] [ 645.452240][T16592] Uninit was stored to memory at: [ 645.457247][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 645.462948][T16592] __msan_chain_origin+0x50/0x90 [ 645.467869][T16592] do_recvmmsg+0x105a/0x1ee0 [ 645.472443][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 645.477366][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 645.482213][T16592] do_syscall_64+0xb0/0x150 [ 645.486702][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 645.493178][T16592] [ 645.495485][T16592] Uninit was stored to memory at: [ 645.500507][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 645.506212][T16592] __msan_chain_origin+0x50/0x90 [ 645.511133][T16592] do_recvmmsg+0x105a/0x1ee0 [ 645.515721][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 645.520641][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 645.525473][T16592] do_syscall_64+0xb0/0x150 [ 645.529963][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 645.535844][T16592] [ 645.538153][T16592] Uninit was stored to memory at: [ 645.543162][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 645.548978][T16592] __msan_chain_origin+0x50/0x90 [ 645.553901][T16592] do_recvmmsg+0x105a/0x1ee0 [ 645.558478][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 645.563399][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 645.568231][T16592] do_syscall_64+0xb0/0x150 [ 645.572734][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 645.578602][T16592] [ 645.580908][T16592] Uninit was stored to memory at: [ 645.585916][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 645.591618][T16592] __msan_chain_origin+0x50/0x90 [ 645.596542][T16592] do_recvmmsg+0x105a/0x1ee0 [ 645.601115][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 645.606037][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 645.610886][T16592] do_syscall_64+0xb0/0x150 [ 645.615375][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 645.621242][T16592] [ 645.623553][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 645.630221][T16592] do_recvmmsg+0xc5/0x1ee0 [ 645.634622][T16592] do_recvmmsg+0xc5/0x1ee0 [ 645.825249][T16592] not chained 780000 origins [ 645.829893][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 645.838558][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 645.848607][T16592] Call Trace: [ 645.851905][T16592] dump_stack+0x1df/0x240 [ 645.856241][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 645.861960][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 645.867088][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 645.873074][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 645.878361][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 645.883566][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 645.889377][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 645.895443][T16592] ? kfree+0x61/0x30f0 [ 645.899519][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 645.904628][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 645.910177][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 645.916246][T16592] ? _copy_from_user+0x15b/0x260 [ 645.921181][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 645.926291][T16592] __msan_chain_origin+0x50/0x90 [ 645.931231][T16592] do_recvmmsg+0x105a/0x1ee0 [ 645.935853][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 645.941138][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 645.946160][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 645.951182][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 645.957080][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 645.962027][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 645.966888][T16592] do_syscall_64+0xb0/0x150 [ 645.971393][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 645.977280][T16592] RIP: 0033:0x45c1d9 [ 645.981164][T16592] Code: Bad RIP value. [ 645.985219][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 645.993627][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 646.001597][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 646.009568][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 646.017538][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 646.025510][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 646.033522][T16592] Uninit was stored to memory at: [ 646.038557][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 646.044277][T16592] __msan_chain_origin+0x50/0x90 [ 646.049214][T16592] do_recvmmsg+0x105a/0x1ee0 [ 646.053801][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 646.058735][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 646.063583][T16592] do_syscall_64+0xb0/0x150 [ 646.068112][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 646.073992][T16592] [ 646.076332][T16592] Uninit was stored to memory at: [ 646.081356][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 646.087085][T16592] __msan_chain_origin+0x50/0x90 [ 646.092048][T16592] do_recvmmsg+0x105a/0x1ee0 [ 646.096637][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 646.101572][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 646.106420][T16592] do_syscall_64+0xb0/0x150 [ 646.110921][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 646.116797][T16592] [ 646.119116][T16592] Uninit was stored to memory at: [ 646.124143][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 646.129865][T16592] __msan_chain_origin+0x50/0x90 [ 646.134799][T16592] do_recvmmsg+0x105a/0x1ee0 [ 646.139391][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 646.144325][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 646.149173][T16592] do_syscall_64+0xb0/0x150 [ 646.153674][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 646.159552][T16592] [ 646.161867][T16592] Uninit was stored to memory at: [ 646.166891][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 646.172607][T16592] __msan_chain_origin+0x50/0x90 [ 646.177550][T16592] do_recvmmsg+0x105a/0x1ee0 [ 646.182140][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 646.187088][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 646.191939][T16592] do_syscall_64+0xb0/0x150 [ 646.196443][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 646.202321][T16592] [ 646.204644][T16592] Uninit was stored to memory at: [ 646.209668][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 646.215381][T16592] __msan_chain_origin+0x50/0x90 [ 646.220317][T16592] do_recvmmsg+0x105a/0x1ee0 [ 646.224904][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 646.229844][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 646.234701][T16592] do_syscall_64+0xb0/0x150 [ 646.239204][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 646.245189][T16592] [ 646.247507][T16592] Uninit was stored to memory at: [ 646.252530][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 646.258259][T16592] __msan_chain_origin+0x50/0x90 [ 646.263195][T16592] do_recvmmsg+0x105a/0x1ee0 [ 646.267787][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 646.272721][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 646.277577][T16592] do_syscall_64+0xb0/0x150 [ 646.282079][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 646.287957][T16592] [ 646.290280][T16592] Uninit was stored to memory at: [ 646.295304][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 646.301020][T16592] __msan_chain_origin+0x50/0x90 [ 646.305965][T16592] do_recvmmsg+0x105a/0x1ee0 [ 646.310561][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 646.315493][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 646.320345][T16592] do_syscall_64+0xb0/0x150 [ 646.324845][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 646.330724][T16592] [ 646.333049][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 646.339720][T16592] do_recvmmsg+0xc5/0x1ee0 [ 646.344132][T16592] do_recvmmsg+0xc5/0x1ee0 [ 646.419840][T16592] not chained 790000 origins [ 646.424488][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 646.433150][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 646.443207][T16592] Call Trace: [ 646.446502][T16592] dump_stack+0x1df/0x240 [ 646.450837][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 646.456558][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 646.461670][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 646.467564][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 646.472848][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 646.478052][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 646.483880][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 646.489956][T16592] ? kfree+0x61/0x30f0 [ 646.494038][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 646.499153][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 646.504708][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 646.510780][T16592] ? _copy_from_user+0x15b/0x260 [ 646.515716][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 646.520832][T16592] __msan_chain_origin+0x50/0x90 [ 646.525789][T16592] do_recvmmsg+0x105a/0x1ee0 [ 646.530427][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 646.535719][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 646.540743][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 646.545769][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 646.551666][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 646.556619][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 646.561815][T16592] do_syscall_64+0xb0/0x150 [ 646.566314][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 646.572216][T16592] RIP: 0033:0x45c1d9 [ 646.576103][T16592] Code: Bad RIP value. [ 646.580245][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 646.588643][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 646.596614][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 646.604585][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 646.612550][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 646.620616][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 646.628587][T16592] Uninit was stored to memory at: [ 646.633601][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 646.639309][T16592] __msan_chain_origin+0x50/0x90 [ 646.644230][T16592] do_recvmmsg+0x105a/0x1ee0 [ 646.648805][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 646.653726][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 646.658562][T16592] do_syscall_64+0xb0/0x150 [ 646.663069][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 646.668940][T16592] [ 646.671251][T16592] Uninit was stored to memory at: [ 646.676274][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 646.681975][T16592] __msan_chain_origin+0x50/0x90 [ 646.686895][T16592] do_recvmmsg+0x105a/0x1ee0 [ 646.691471][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 646.696398][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 646.701234][T16592] do_syscall_64+0xb0/0x150 [ 646.705723][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 646.711591][T16592] [ 646.713899][T16592] Uninit was stored to memory at: [ 646.718911][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 646.724636][T16592] __msan_chain_origin+0x50/0x90 [ 646.729564][T16592] do_recvmmsg+0x105a/0x1ee0 [ 646.734158][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 646.739101][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 646.743939][T16592] do_syscall_64+0xb0/0x150 [ 646.748439][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 646.754318][T16592] [ 646.756624][T16592] Uninit was stored to memory at: [ 646.761652][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 646.767451][T16592] __msan_chain_origin+0x50/0x90 [ 646.772388][T16592] do_recvmmsg+0x105a/0x1ee0 [ 646.776964][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 646.789178][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 646.794013][T16592] do_syscall_64+0xb0/0x150 [ 646.798504][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 646.804371][T16592] [ 646.806678][T16592] Uninit was stored to memory at: [ 646.811689][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 646.817391][T16592] __msan_chain_origin+0x50/0x90 [ 646.822311][T16592] do_recvmmsg+0x105a/0x1ee0 [ 646.826886][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 646.831806][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 646.836638][T16592] do_syscall_64+0xb0/0x150 [ 646.841126][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 646.846994][T16592] [ 646.849302][T16592] Uninit was stored to memory at: [ 646.854311][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 646.860013][T16592] __msan_chain_origin+0x50/0x90 [ 646.864934][T16592] do_recvmmsg+0x105a/0x1ee0 [ 646.869509][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 646.874431][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 646.879265][T16592] do_syscall_64+0xb0/0x150 [ 646.883762][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 646.889629][T16592] [ 646.891940][T16592] Uninit was stored to memory at: [ 646.896971][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 646.902687][T16592] __msan_chain_origin+0x50/0x90 [ 646.907616][T16592] do_recvmmsg+0x105a/0x1ee0 [ 646.912189][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 646.917115][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 646.921951][T16592] do_syscall_64+0xb0/0x150 [ 646.926442][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 646.932318][T16592] [ 646.934628][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 646.941286][T16592] do_recvmmsg+0xc5/0x1ee0 [ 646.945697][T16592] do_recvmmsg+0xc5/0x1ee0 [ 647.024976][T16592] not chained 800000 origins [ 647.029634][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 647.038300][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 647.048352][T16592] Call Trace: [ 647.051646][T16592] dump_stack+0x1df/0x240 [ 647.055979][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 647.061696][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 647.066809][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 647.072705][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 647.077991][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 647.083189][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 647.088996][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 647.095057][T16592] ? kfree+0x61/0x30f0 [ 647.099128][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 647.104236][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 647.109786][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 647.115859][T16592] ? _copy_from_user+0x15b/0x260 [ 647.120794][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 647.125899][T16592] __msan_chain_origin+0x50/0x90 [ 647.130841][T16592] do_recvmmsg+0x105a/0x1ee0 [ 647.135549][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 647.140842][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 647.145870][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 647.150890][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 647.156883][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 647.161829][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 647.166685][T16592] do_syscall_64+0xb0/0x150 [ 647.171194][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 647.177080][T16592] RIP: 0033:0x45c1d9 [ 647.180961][T16592] Code: Bad RIP value. [ 647.185023][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 647.193517][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 647.201483][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 647.209478][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 647.217475][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 647.225464][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 647.233442][T16592] Uninit was stored to memory at: [ 647.238464][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 647.244177][T16592] __msan_chain_origin+0x50/0x90 [ 647.249199][T16592] do_recvmmsg+0x105a/0x1ee0 [ 647.253784][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 647.258719][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 647.263586][T16592] do_syscall_64+0xb0/0x150 [ 647.268187][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 647.274159][T16592] [ 647.276480][T16592] Uninit was stored to memory at: [ 647.281504][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 647.287219][T16592] __msan_chain_origin+0x50/0x90 [ 647.292152][T16592] do_recvmmsg+0x105a/0x1ee0 [ 647.296738][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 647.301670][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 647.306521][T16592] do_syscall_64+0xb0/0x150 [ 647.311024][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 647.316915][T16592] [ 647.319232][T16592] Uninit was stored to memory at: [ 647.324259][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 647.329974][T16592] __msan_chain_origin+0x50/0x90 [ 647.334912][T16592] do_recvmmsg+0x105a/0x1ee0 [ 647.339498][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 647.344431][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 647.349301][T16592] do_syscall_64+0xb0/0x150 [ 647.353804][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 647.359684][T16592] [ 647.362000][T16592] Uninit was stored to memory at: [ 647.367021][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 647.372746][T16592] __msan_chain_origin+0x50/0x90 [ 647.377679][T16592] do_recvmmsg+0x105a/0x1ee0 [ 647.382263][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 647.387200][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 647.392051][T16592] do_syscall_64+0xb0/0x150 [ 647.396552][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 647.402429][T16592] [ 647.404756][T16592] Uninit was stored to memory at: [ 647.409785][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 647.415499][T16592] __msan_chain_origin+0x50/0x90 [ 647.420433][T16592] do_recvmmsg+0x105a/0x1ee0 [ 647.425018][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 647.429957][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 647.434804][T16592] do_syscall_64+0xb0/0x150 [ 647.439312][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 647.445186][T16592] [ 647.447505][T16592] Uninit was stored to memory at: [ 647.452531][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 647.458245][T16592] __msan_chain_origin+0x50/0x90 [ 647.463203][T16592] do_recvmmsg+0x105a/0x1ee0 [ 647.467807][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 647.472742][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 647.477586][T16592] do_syscall_64+0xb0/0x150 [ 647.482076][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 647.487946][T16592] [ 647.490251][T16592] Uninit was stored to memory at: [ 647.495262][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 647.500963][T16592] __msan_chain_origin+0x50/0x90 [ 647.505886][T16592] do_recvmmsg+0x105a/0x1ee0 [ 647.510474][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 647.515396][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 647.520232][T16592] do_syscall_64+0xb0/0x150 [ 647.524721][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 647.530591][T16592] [ 647.532899][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 647.539555][T16592] do_recvmmsg+0xc5/0x1ee0 [ 647.543964][T16592] do_recvmmsg+0xc5/0x1ee0 [ 647.660928][T16592] not chained 810000 origins [ 647.665566][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 647.674231][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 647.684289][T16592] Call Trace: [ 647.687584][T16592] dump_stack+0x1df/0x240 [ 647.691914][T16592] ? psi_group_change+0x1007/0x13c0 [ 647.697114][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 647.702834][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 647.707943][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 647.713840][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 647.719126][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 647.724323][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 647.730324][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 647.736394][T16592] ? kfree+0x61/0x30f0 [ 647.740473][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 647.745588][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 647.751136][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 647.757211][T16592] ? _copy_from_user+0x15b/0x260 [ 647.762152][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 647.767285][T16592] __msan_chain_origin+0x50/0x90 [ 647.772235][T16592] do_recvmmsg+0x105a/0x1ee0 [ 647.776859][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 647.782145][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 647.787168][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 647.792190][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 647.798086][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 647.803039][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 647.807892][T16592] do_syscall_64+0xb0/0x150 [ 647.812404][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 647.818289][T16592] RIP: 0033:0x45c1d9 [ 647.822169][T16592] Code: Bad RIP value. [ 647.826227][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 647.834635][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 647.842600][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 647.850567][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 647.858534][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 647.866503][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 647.874567][T16592] Uninit was stored to memory at: [ 647.879594][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 647.885327][T16592] __msan_chain_origin+0x50/0x90 [ 647.890268][T16592] do_recvmmsg+0x105a/0x1ee0 [ 647.894851][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 647.899784][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 647.904630][T16592] do_syscall_64+0xb0/0x150 [ 647.909131][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 647.915011][T16592] [ 647.917345][T16592] Uninit was stored to memory at: [ 647.922366][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 647.928103][T16592] __msan_chain_origin+0x50/0x90 [ 647.933045][T16592] do_recvmmsg+0x105a/0x1ee0 [ 647.937631][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 647.942565][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 647.947413][T16592] do_syscall_64+0xb0/0x150 [ 647.951913][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 647.957791][T16592] [ 647.960111][T16592] Uninit was stored to memory at: [ 647.965132][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 647.970854][T16592] __msan_chain_origin+0x50/0x90 [ 647.975787][T16592] do_recvmmsg+0x105a/0x1ee0 [ 647.980372][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 647.985305][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 647.990241][T16592] do_syscall_64+0xb0/0x150 [ 647.994768][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 648.000643][T16592] [ 648.002958][T16592] Uninit was stored to memory at: [ 648.007980][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 648.013696][T16592] __msan_chain_origin+0x50/0x90 [ 648.018637][T16592] do_recvmmsg+0x105a/0x1ee0 [ 648.023223][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 648.028159][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 648.033019][T16592] do_syscall_64+0xb0/0x150 [ 648.037520][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 648.043394][T16592] [ 648.045711][T16592] Uninit was stored to memory at: [ 648.050733][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 648.056446][T16592] __msan_chain_origin+0x50/0x90 [ 648.061378][T16592] do_recvmmsg+0x105a/0x1ee0 [ 648.065966][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 648.070898][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 648.075746][T16592] do_syscall_64+0xb0/0x150 [ 648.080258][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 648.086137][T16592] [ 648.088454][T16592] Uninit was stored to memory at: [ 648.093503][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 648.099219][T16592] __msan_chain_origin+0x50/0x90 [ 648.104151][T16592] do_recvmmsg+0x105a/0x1ee0 [ 648.108740][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 648.113675][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 648.118545][T16592] do_syscall_64+0xb0/0x150 [ 648.123049][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 648.128926][T16592] [ 648.131243][T16592] Uninit was stored to memory at: [ 648.136266][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 648.141978][T16592] __msan_chain_origin+0x50/0x90 [ 648.146915][T16592] do_recvmmsg+0x105a/0x1ee0 [ 648.151502][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 648.156435][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 648.161284][T16592] do_syscall_64+0xb0/0x150 [ 648.165782][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 648.171653][T16592] [ 648.173971][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 648.180643][T16592] do_recvmmsg+0xc5/0x1ee0 [ 648.185065][T16592] do_recvmmsg+0xc5/0x1ee0 [ 648.344570][T16592] not chained 820000 origins [ 648.349203][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 648.357867][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 648.367912][T16592] Call Trace: [ 648.371205][T16592] dump_stack+0x1df/0x240 [ 648.375536][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 648.381255][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 648.386363][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 648.392254][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 648.397538][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 648.402733][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 648.408540][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 648.414602][T16592] ? kfree+0x61/0x30f0 [ 648.418672][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 648.423791][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 648.429323][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 648.435392][T16592] ? _copy_from_user+0x15b/0x260 [ 648.440315][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 648.445413][T16592] __msan_chain_origin+0x50/0x90 [ 648.450341][T16592] do_recvmmsg+0x105a/0x1ee0 [ 648.455035][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 648.460320][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 648.465330][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 648.470340][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 648.476234][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 648.481179][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 648.486025][T16592] do_syscall_64+0xb0/0x150 [ 648.490519][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 648.496394][T16592] RIP: 0033:0x45c1d9 [ 648.500266][T16592] Code: Bad RIP value. [ 648.504322][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 648.512730][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 648.520700][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 648.528679][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 648.536647][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 648.544610][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 648.552581][T16592] Uninit was stored to memory at: [ 648.557598][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 648.563308][T16592] __msan_chain_origin+0x50/0x90 [ 648.568237][T16592] do_recvmmsg+0x105a/0x1ee0 [ 648.572832][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 648.577759][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 648.582599][T16592] do_syscall_64+0xb0/0x150 [ 648.587092][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 648.592983][T16592] [ 648.595308][T16592] Uninit was stored to memory at: [ 648.600329][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 648.606051][T16592] __msan_chain_origin+0x50/0x90 [ 648.610986][T16592] do_recvmmsg+0x105a/0x1ee0 [ 648.615561][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 648.620482][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 648.625318][T16592] do_syscall_64+0xb0/0x150 [ 648.629805][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 648.635678][T16592] [ 648.637991][T16592] Uninit was stored to memory at: [ 648.643024][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 648.648728][T16592] __msan_chain_origin+0x50/0x90 [ 648.653653][T16592] do_recvmmsg+0x105a/0x1ee0 [ 648.658228][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 648.663148][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 648.667981][T16592] do_syscall_64+0xb0/0x150 [ 648.672466][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 648.678332][T16592] [ 648.680641][T16592] Uninit was stored to memory at: [ 648.685654][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 648.691361][T16592] __msan_chain_origin+0x50/0x90 [ 648.696301][T16592] do_recvmmsg+0x105a/0x1ee0 [ 648.700895][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 648.705824][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 648.710666][T16592] do_syscall_64+0xb0/0x150 [ 648.715154][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 648.721020][T16592] [ 648.723331][T16592] Uninit was stored to memory at: [ 648.728341][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 648.734044][T16592] __msan_chain_origin+0x50/0x90 [ 648.738963][T16592] do_recvmmsg+0x105a/0x1ee0 [ 648.743539][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 648.748459][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 648.753295][T16592] do_syscall_64+0xb0/0x150 [ 648.757810][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 648.763689][T16592] [ 648.766008][T16592] Uninit was stored to memory at: [ 648.771028][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 648.776751][T16592] __msan_chain_origin+0x50/0x90 [ 648.781676][T16592] do_recvmmsg+0x105a/0x1ee0 [ 648.786249][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 648.791170][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 648.796023][T16592] do_syscall_64+0xb0/0x150 [ 648.800510][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 648.806376][T16592] [ 648.808684][T16592] Uninit was stored to memory at: [ 648.813694][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 648.819485][T16592] __msan_chain_origin+0x50/0x90 [ 648.824405][T16592] do_recvmmsg+0x105a/0x1ee0 [ 648.828986][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 648.833909][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 648.838746][T16592] do_syscall_64+0xb0/0x150 [ 648.843243][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 648.849109][T16592] [ 648.851421][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 648.858082][T16592] do_recvmmsg+0xc5/0x1ee0 [ 648.862483][T16592] do_recvmmsg+0xc5/0x1ee0 [ 648.946896][T16598] not chained 830000 origins [ 648.951529][T16598] CPU: 0 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 648.960195][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 648.970268][T16598] Call Trace: [ 648.973567][T16598] dump_stack+0x1df/0x240 [ 648.977905][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 648.983628][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 648.988742][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 648.994640][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 648.999930][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 649.005130][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 649.010939][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 649.017010][T16598] ? kfree+0x61/0x30f0 [ 649.021085][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 649.026197][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 649.031744][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 649.037817][T16598] ? _copy_from_user+0x15b/0x260 [ 649.042757][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 649.047872][T16598] __msan_chain_origin+0x50/0x90 [ 649.052815][T16598] do_recvmmsg+0x105a/0x1ee0 [ 649.057436][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 649.062726][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 649.067756][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 649.072777][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 649.078673][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 649.083623][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 649.088477][T16598] do_syscall_64+0xb0/0x150 [ 649.092984][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 649.098879][T16598] RIP: 0033:0x45c1d9 [ 649.102763][T16598] Code: Bad RIP value. [ 649.106824][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 649.115244][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 649.123216][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 649.131192][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 649.139173][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 649.147148][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 649.155126][T16598] Uninit was stored to memory at: [ 649.160244][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 649.165988][T16598] __msan_chain_origin+0x50/0x90 [ 649.170925][T16598] do_recvmmsg+0x105a/0x1ee0 [ 649.175531][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 649.180464][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 649.185312][T16598] do_syscall_64+0xb0/0x150 [ 649.189813][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 649.195690][T16598] [ 649.198005][T16598] Uninit was stored to memory at: [ 649.203031][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 649.208755][T16598] __msan_chain_origin+0x50/0x90 [ 649.213695][T16598] do_recvmmsg+0x105a/0x1ee0 [ 649.218315][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 649.223250][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 649.228101][T16598] do_syscall_64+0xb0/0x150 [ 649.232603][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 649.238480][T16598] [ 649.240794][T16598] Uninit was stored to memory at: [ 649.245816][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 649.251536][T16598] __msan_chain_origin+0x50/0x90 [ 649.256475][T16598] do_recvmmsg+0x105a/0x1ee0 [ 649.261068][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 649.266008][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 649.270862][T16598] do_syscall_64+0xb0/0x150 [ 649.275369][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 649.281247][T16598] [ 649.283573][T16598] Uninit was stored to memory at: [ 649.288609][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 649.294331][T16598] __msan_chain_origin+0x50/0x90 [ 649.299273][T16598] do_recvmmsg+0x105a/0x1ee0 [ 649.303868][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 649.308817][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 649.313672][T16598] do_syscall_64+0xb0/0x150 [ 649.318181][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 649.324063][T16598] [ 649.326383][T16598] Uninit was stored to memory at: [ 649.331413][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 649.337144][T16598] __msan_chain_origin+0x50/0x90 [ 649.342091][T16598] do_recvmmsg+0x105a/0x1ee0 [ 649.346683][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 649.351625][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 649.356477][T16598] do_syscall_64+0xb0/0x150 [ 649.360982][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 649.366861][T16598] [ 649.369183][T16598] Uninit was stored to memory at: [ 649.374209][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 649.379935][T16598] __msan_chain_origin+0x50/0x90 [ 649.386007][T16598] do_recvmmsg+0x105a/0x1ee0 [ 649.390601][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 649.395545][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 649.400403][T16598] do_syscall_64+0xb0/0x150 [ 649.404915][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 649.410796][T16598] [ 649.413117][T16598] Uninit was stored to memory at: [ 649.418145][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 649.423868][T16598] __msan_chain_origin+0x50/0x90 [ 649.428821][T16598] do_recvmmsg+0x105a/0x1ee0 [ 649.433414][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 649.438355][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 649.443211][T16598] do_syscall_64+0xb0/0x150 [ 649.447723][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 649.453612][T16598] [ 649.455932][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 649.462610][T16598] do_recvmmsg+0xc5/0x1ee0 [ 649.467031][T16598] do_recvmmsg+0xc5/0x1ee0 [ 649.693846][T16592] not chained 840000 origins [ 649.698486][T16592] CPU: 0 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 649.707196][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 649.717258][T16592] Call Trace: [ 649.720567][T16592] dump_stack+0x1df/0x240 [ 649.724914][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 649.730643][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 649.735761][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 649.741668][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 649.747063][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 649.752267][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 649.758110][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 649.764188][T16592] ? kfree+0x61/0x30f0 [ 649.768264][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 649.773380][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 649.779020][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 649.785098][T16592] ? _copy_from_user+0x15b/0x260 [ 649.790043][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 649.795163][T16592] __msan_chain_origin+0x50/0x90 [ 649.800113][T16592] do_recvmmsg+0x105a/0x1ee0 [ 649.804743][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 649.810049][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 649.815079][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 649.820109][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 649.826012][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 649.830985][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 649.835845][T16592] do_syscall_64+0xb0/0x150 [ 649.840357][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 649.846246][T16592] RIP: 0033:0x45c1d9 [ 649.850131][T16592] Code: Bad RIP value. [ 649.854192][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 649.862605][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 649.870580][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 649.878554][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 649.886526][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 649.894500][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 649.902488][T16592] Uninit was stored to memory at: [ 649.907519][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 649.913242][T16592] __msan_chain_origin+0x50/0x90 [ 649.918182][T16592] do_recvmmsg+0x105a/0x1ee0 [ 649.922773][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 649.927714][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 649.932569][T16592] do_syscall_64+0xb0/0x150 [ 649.937080][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 649.942961][T16592] [ 649.945281][T16592] Uninit was stored to memory at: [ 649.950313][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 649.956039][T16592] __msan_chain_origin+0x50/0x90 [ 649.960985][T16592] do_recvmmsg+0x105a/0x1ee0 [ 649.965580][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 649.970518][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 649.975371][T16592] do_syscall_64+0xb0/0x150 [ 649.979875][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 649.985756][T16592] [ 649.988078][T16592] Uninit was stored to memory at: [ 649.993109][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 649.998831][T16592] __msan_chain_origin+0x50/0x90 [ 650.003774][T16592] do_recvmmsg+0x105a/0x1ee0 [ 650.008366][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 650.013308][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 650.018257][T16592] do_syscall_64+0xb0/0x150 [ 650.022762][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 650.028641][T16592] [ 650.030962][T16592] Uninit was stored to memory at: [ 650.035988][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 650.041798][T16592] __msan_chain_origin+0x50/0x90 [ 650.046736][T16592] do_recvmmsg+0x105a/0x1ee0 [ 650.051330][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 650.056273][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 650.061130][T16592] do_syscall_64+0xb0/0x150 [ 650.065666][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 650.071582][T16592] [ 650.073902][T16592] Uninit was stored to memory at: [ 650.078928][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 650.085087][T16592] __msan_chain_origin+0x50/0x90 [ 650.090031][T16592] do_recvmmsg+0x105a/0x1ee0 [ 650.094629][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 650.099572][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 650.104429][T16592] do_syscall_64+0xb0/0x150 [ 650.108952][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 650.114832][T16592] [ 650.117156][T16592] Uninit was stored to memory at: [ 650.122188][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 650.127923][T16592] __msan_chain_origin+0x50/0x90 [ 650.132892][T16592] do_recvmmsg+0x105a/0x1ee0 [ 650.137488][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 650.142425][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 650.147285][T16592] do_syscall_64+0xb0/0x150 [ 650.151788][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 650.157666][T16592] [ 650.159984][T16592] Uninit was stored to memory at: [ 650.165014][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 650.170736][T16592] __msan_chain_origin+0x50/0x90 [ 650.175675][T16592] do_recvmmsg+0x105a/0x1ee0 [ 650.180265][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 650.185206][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 650.190066][T16592] do_syscall_64+0xb0/0x150 [ 650.194577][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 650.200463][T16592] [ 650.202788][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 650.209468][T16592] do_recvmmsg+0xc5/0x1ee0 [ 650.213885][T16592] do_recvmmsg+0xc5/0x1ee0 [ 650.379493][T16598] not chained 850000 origins [ 650.384124][T16598] CPU: 0 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 650.392884][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 650.402941][T16598] Call Trace: [ 650.406243][T16598] dump_stack+0x1df/0x240 [ 650.410581][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 650.416308][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 650.421425][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 650.427331][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 650.432622][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 650.437828][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 650.443643][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 650.449725][T16598] ? kfree+0x61/0x30f0 [ 650.453800][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 650.458920][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 650.464482][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 650.470563][T16598] ? _copy_from_user+0x15b/0x260 [ 650.475512][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 650.480636][T16598] __msan_chain_origin+0x50/0x90 [ 650.485589][T16598] do_recvmmsg+0x105a/0x1ee0 [ 650.490219][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 650.495516][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 650.500542][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 650.505573][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 650.511488][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 650.516442][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 650.521312][T16598] do_syscall_64+0xb0/0x150 [ 650.525828][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 650.531715][T16598] RIP: 0033:0x45c1d9 [ 650.535600][T16598] Code: Bad RIP value. [ 650.539661][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 650.548078][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 650.556142][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 650.564120][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 650.572100][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 650.581032][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 650.589018][T16598] Uninit was stored to memory at: [ 650.594050][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 650.599791][T16598] __msan_chain_origin+0x50/0x90 [ 650.604745][T16598] do_recvmmsg+0x105a/0x1ee0 [ 650.609344][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 650.614287][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 650.619148][T16598] do_syscall_64+0xb0/0x150 [ 650.623654][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 650.629537][T16598] [ 650.631969][T16598] Uninit was stored to memory at: [ 650.637086][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 650.642806][T16598] __msan_chain_origin+0x50/0x90 [ 650.647747][T16598] do_recvmmsg+0x105a/0x1ee0 [ 650.652343][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 650.657283][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 650.662143][T16598] do_syscall_64+0xb0/0x150 [ 650.666650][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 650.672532][T16598] [ 650.674855][T16598] Uninit was stored to memory at: [ 650.679882][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 650.685606][T16598] __msan_chain_origin+0x50/0x90 [ 650.690549][T16598] do_recvmmsg+0x105a/0x1ee0 [ 650.695142][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 650.700087][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 650.704940][T16598] do_syscall_64+0xb0/0x150 [ 650.709447][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 650.715333][T16598] [ 650.717654][T16598] Uninit was stored to memory at: [ 650.722683][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 650.728407][T16598] __msan_chain_origin+0x50/0x90 [ 650.733351][T16598] do_recvmmsg+0x105a/0x1ee0 [ 650.737943][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 650.742884][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 650.747736][T16598] do_syscall_64+0xb0/0x150 [ 650.752239][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 650.758126][T16598] [ 650.760446][T16598] Uninit was stored to memory at: [ 650.765573][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 650.771350][T16598] __msan_chain_origin+0x50/0x90 [ 650.776295][T16598] do_recvmmsg+0x105a/0x1ee0 [ 650.780897][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 650.785835][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 650.790858][T16598] do_syscall_64+0xb0/0x150 [ 650.795362][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 650.801242][T16598] [ 650.803562][T16598] Uninit was stored to memory at: [ 650.808592][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 650.814308][T16598] __msan_chain_origin+0x50/0x90 [ 650.819250][T16598] do_recvmmsg+0x105a/0x1ee0 [ 650.823839][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 650.828779][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 650.833630][T16598] do_syscall_64+0xb0/0x150 [ 650.838138][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 650.844046][T16598] [ 650.846365][T16598] Uninit was stored to memory at: [ 650.851389][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 650.857112][T16598] __msan_chain_origin+0x50/0x90 [ 650.862053][T16598] do_recvmmsg+0x105a/0x1ee0 [ 650.866661][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 650.871598][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 650.876452][T16598] do_syscall_64+0xb0/0x150 [ 650.880956][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 650.886836][T16598] [ 650.889160][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 650.895839][T16598] do_recvmmsg+0xc5/0x1ee0 [ 650.900253][T16598] do_recvmmsg+0xc5/0x1ee0 [ 651.090888][T16598] not chained 860000 origins [ 651.095521][T16598] CPU: 0 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 651.104185][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 651.114239][T16598] Call Trace: [ 651.117534][T16598] dump_stack+0x1df/0x240 [ 651.121873][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 651.127596][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 651.132708][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 651.138607][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 651.143901][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 651.149102][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 651.154911][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 651.160979][T16598] ? kfree+0x61/0x30f0 [ 651.165057][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 651.170170][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 651.175720][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 651.181791][T16598] ? _copy_from_user+0x15b/0x260 [ 651.186730][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 651.191841][T16598] __msan_chain_origin+0x50/0x90 [ 651.196786][T16598] do_recvmmsg+0x105a/0x1ee0 [ 651.201407][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 651.206692][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 651.211713][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 651.216737][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 651.222634][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 651.227581][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 651.233127][T16598] do_syscall_64+0xb0/0x150 [ 651.237635][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 651.243520][T16598] RIP: 0033:0x45c1d9 [ 651.247400][T16598] Code: Bad RIP value. [ 651.251459][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 651.259865][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 651.267831][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 651.275799][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 651.283766][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 651.291739][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 651.299725][T16598] Uninit was stored to memory at: [ 651.304759][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 651.310478][T16598] __msan_chain_origin+0x50/0x90 [ 651.315414][T16598] do_recvmmsg+0x105a/0x1ee0 [ 651.320030][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 651.324976][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 651.329814][T16598] do_syscall_64+0xb0/0x150 [ 651.334304][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 651.340174][T16598] [ 651.342480][T16598] Uninit was stored to memory at: [ 651.347491][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 651.353211][T16598] __msan_chain_origin+0x50/0x90 [ 651.358142][T16598] do_recvmmsg+0x105a/0x1ee0 [ 651.362718][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 651.367641][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 651.372474][T16598] do_syscall_64+0xb0/0x150 [ 651.376964][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 651.382831][T16598] [ 651.385141][T16598] Uninit was stored to memory at: [ 651.390150][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 651.395853][T16598] __msan_chain_origin+0x50/0x90 [ 651.400775][T16598] do_recvmmsg+0x105a/0x1ee0 [ 651.405349][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 651.410271][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 651.415106][T16598] do_syscall_64+0xb0/0x150 [ 651.419613][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 651.425480][T16598] [ 651.427788][T16598] Uninit was stored to memory at: [ 651.432796][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 651.438499][T16598] __msan_chain_origin+0x50/0x90 [ 651.443423][T16598] do_recvmmsg+0x105a/0x1ee0 [ 651.448000][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 651.452923][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 651.457760][T16598] do_syscall_64+0xb0/0x150 [ 651.462246][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 651.468115][T16598] [ 651.470425][T16598] Uninit was stored to memory at: [ 651.475450][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 651.481153][T16598] __msan_chain_origin+0x50/0x90 [ 651.486079][T16598] do_recvmmsg+0x105a/0x1ee0 [ 651.490653][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 651.495662][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 651.500499][T16598] do_syscall_64+0xb0/0x150 [ 651.504985][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 651.510854][T16598] [ 651.513163][T16598] Uninit was stored to memory at: [ 651.518173][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 651.523885][T16598] __msan_chain_origin+0x50/0x90 [ 651.528807][T16598] do_recvmmsg+0x105a/0x1ee0 [ 651.533382][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 651.538314][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 651.543258][T16598] do_syscall_64+0xb0/0x150 [ 651.547748][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 651.553617][T16598] [ 651.555928][T16598] Uninit was stored to memory at: [ 651.560955][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 651.566659][T16598] __msan_chain_origin+0x50/0x90 [ 651.571590][T16598] do_recvmmsg+0x105a/0x1ee0 [ 651.576425][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 651.581346][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 651.586182][T16598] do_syscall_64+0xb0/0x150 [ 651.590686][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 651.596566][T16598] [ 651.598882][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 651.605548][T16598] do_recvmmsg+0xc5/0x1ee0 [ 651.609948][T16598] do_recvmmsg+0xc5/0x1ee0 [ 651.644615][T16592] not chained 870000 origins [ 651.649245][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 651.657914][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 651.667963][T16592] Call Trace: [ 651.671291][T16592] dump_stack+0x1df/0x240 [ 651.675627][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 651.681347][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 651.686475][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 651.692375][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 651.697663][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 651.702862][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 651.708666][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 651.714732][T16592] ? kfree+0x61/0x30f0 [ 651.718810][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 651.723957][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 651.729506][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 651.735578][T16592] ? _copy_from_user+0x15b/0x260 [ 651.740512][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 651.745620][T16592] __msan_chain_origin+0x50/0x90 [ 651.750579][T16592] do_recvmmsg+0x105a/0x1ee0 [ 651.755208][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 651.760501][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 651.765525][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 651.770564][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 651.776460][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 651.781410][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 651.786263][T16592] do_syscall_64+0xb0/0x150 [ 651.790769][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 651.796650][T16592] RIP: 0033:0x45c1d9 [ 651.800531][T16592] Code: Bad RIP value. [ 651.804589][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 651.812998][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 651.820965][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 651.828931][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 651.837331][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 651.845298][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 651.853273][T16592] Uninit was stored to memory at: [ 651.858299][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 651.864014][T16592] __msan_chain_origin+0x50/0x90 [ 651.868949][T16592] do_recvmmsg+0x105a/0x1ee0 [ 651.873534][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 651.878466][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 651.883312][T16592] do_syscall_64+0xb0/0x150 [ 651.887812][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 651.893687][T16592] [ 651.896004][T16592] Uninit was stored to memory at: [ 651.901026][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 651.906745][T16592] __msan_chain_origin+0x50/0x90 [ 651.911680][T16592] do_recvmmsg+0x105a/0x1ee0 [ 651.916267][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 651.921199][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 651.926061][T16592] do_syscall_64+0xb0/0x150 [ 651.930562][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 651.936442][T16592] [ 651.938760][T16592] Uninit was stored to memory at: [ 651.943782][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 651.949496][T16592] __msan_chain_origin+0x50/0x90 [ 651.954428][T16592] do_recvmmsg+0x105a/0x1ee0 [ 651.959017][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 651.963957][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 651.968806][T16592] do_syscall_64+0xb0/0x150 [ 651.973310][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 651.979185][T16592] [ 651.981499][T16592] Uninit was stored to memory at: [ 651.986528][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 651.992249][T16592] __msan_chain_origin+0x50/0x90 [ 651.997181][T16592] do_recvmmsg+0x105a/0x1ee0 [ 652.001780][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 652.006727][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 652.011577][T16592] do_syscall_64+0xb0/0x150 [ 652.016077][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 652.021955][T16592] [ 652.024272][T16592] Uninit was stored to memory at: [ 652.029298][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 652.035011][T16592] __msan_chain_origin+0x50/0x90 [ 652.039946][T16592] do_recvmmsg+0x105a/0x1ee0 [ 652.044531][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 652.049469][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 652.054320][T16592] do_syscall_64+0xb0/0x150 [ 652.058821][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 652.064698][T16592] [ 652.067014][T16592] Uninit was stored to memory at: [ 652.072039][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 652.077750][T16592] __msan_chain_origin+0x50/0x90 [ 652.084593][T16592] do_recvmmsg+0x105a/0x1ee0 [ 652.089178][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 652.094112][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 652.098961][T16592] do_syscall_64+0xb0/0x150 [ 652.103472][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 652.109348][T16592] [ 652.111668][T16592] Uninit was stored to memory at: [ 652.116690][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 652.122401][T16592] __msan_chain_origin+0x50/0x90 [ 652.127336][T16592] do_recvmmsg+0x105a/0x1ee0 [ 652.131949][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 652.136882][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 652.141730][T16592] do_syscall_64+0xb0/0x150 [ 652.146233][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 652.152112][T16592] [ 652.154432][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 652.161106][T16592] do_recvmmsg+0xc5/0x1ee0 [ 652.165516][T16592] do_recvmmsg+0xc5/0x1ee0 [ 652.322966][T16592] not chained 880000 origins [ 652.327611][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 652.336276][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 652.346325][T16592] Call Trace: [ 652.349616][T16592] dump_stack+0x1df/0x240 [ 652.353955][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 652.359676][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 652.364790][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 652.370688][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 652.375973][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 652.381171][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 652.386980][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 652.393045][T16592] ? kfree+0x61/0x30f0 [ 652.397116][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 652.402235][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 652.407782][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 652.413854][T16592] ? _copy_from_user+0x15b/0x260 [ 652.418792][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 652.423902][T16592] __msan_chain_origin+0x50/0x90 [ 652.428846][T16592] do_recvmmsg+0x105a/0x1ee0 [ 652.433468][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 652.438754][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 652.443860][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 652.448884][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 652.454777][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 652.459724][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 652.464575][T16592] do_syscall_64+0xb0/0x150 [ 652.469087][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 652.474974][T16592] RIP: 0033:0x45c1d9 [ 652.478854][T16592] Code: Bad RIP value. [ 652.482921][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 652.491327][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 652.499295][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 652.507263][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 652.515228][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 652.523196][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 652.531193][T16592] Uninit was stored to memory at: [ 652.536221][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 652.541940][T16592] __msan_chain_origin+0x50/0x90 [ 652.546873][T16592] do_recvmmsg+0x105a/0x1ee0 [ 652.551459][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 652.556396][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 652.561246][T16592] do_syscall_64+0xb0/0x150 [ 652.565745][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 652.571619][T16592] [ 652.573934][T16592] Uninit was stored to memory at: [ 652.579116][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 652.584848][T16592] __msan_chain_origin+0x50/0x90 [ 652.589791][T16592] do_recvmmsg+0x105a/0x1ee0 [ 652.594386][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 652.599327][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 652.604523][T16592] do_syscall_64+0xb0/0x150 [ 652.609026][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 652.614904][T16592] [ 652.617224][T16592] Uninit was stored to memory at: [ 652.622273][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 652.628013][T16592] __msan_chain_origin+0x50/0x90 [ 652.632948][T16592] do_recvmmsg+0x105a/0x1ee0 [ 652.637534][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 652.642469][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 652.647329][T16592] do_syscall_64+0xb0/0x150 [ 652.651829][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 652.657708][T16592] [ 652.660027][T16592] Uninit was stored to memory at: [ 652.665051][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 652.670767][T16592] __msan_chain_origin+0x50/0x90 [ 652.675698][T16592] do_recvmmsg+0x105a/0x1ee0 [ 652.680288][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 652.685224][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 652.690074][T16592] do_syscall_64+0xb0/0x150 [ 652.694576][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 652.700450][T16592] [ 652.702769][T16592] Uninit was stored to memory at: [ 652.707793][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 652.713509][T16592] __msan_chain_origin+0x50/0x90 [ 652.718448][T16592] do_recvmmsg+0x105a/0x1ee0 [ 652.723034][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 652.728006][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 652.732864][T16592] do_syscall_64+0xb0/0x150 [ 652.737373][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 652.743251][T16592] [ 652.745567][T16592] Uninit was stored to memory at: [ 652.750592][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 652.756311][T16592] __msan_chain_origin+0x50/0x90 [ 652.761245][T16592] do_recvmmsg+0x105a/0x1ee0 [ 652.765840][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 652.770778][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 652.775625][T16592] do_syscall_64+0xb0/0x150 [ 652.780141][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 652.786019][T16592] [ 652.788353][T16592] Uninit was stored to memory at: [ 652.793374][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 652.799091][T16592] __msan_chain_origin+0x50/0x90 [ 652.804027][T16592] do_recvmmsg+0x105a/0x1ee0 [ 652.808614][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 652.813551][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 652.818403][T16592] do_syscall_64+0xb0/0x150 [ 652.822999][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 652.828874][T16592] [ 652.831195][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 652.837868][T16592] do_recvmmsg+0xc5/0x1ee0 [ 652.842365][T16592] do_recvmmsg+0xc5/0x1ee0 [ 653.014699][T16598] not chained 890000 origins [ 653.019333][T16598] CPU: 1 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 653.027995][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 653.038045][T16598] Call Trace: [ 653.041340][T16598] dump_stack+0x1df/0x240 [ 653.045676][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 653.051394][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 653.056509][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 653.062402][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 653.067690][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 653.072888][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 653.078696][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 653.084762][T16598] ? kfree+0x61/0x30f0 [ 653.088836][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 653.093946][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 653.099504][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 653.105575][T16598] ? _copy_from_user+0x15b/0x260 [ 653.110515][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 653.115627][T16598] __msan_chain_origin+0x50/0x90 [ 653.120570][T16598] do_recvmmsg+0x105a/0x1ee0 [ 653.125191][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 653.130484][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 653.135510][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 653.140533][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 653.146429][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 653.151374][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 653.156227][T16598] do_syscall_64+0xb0/0x150 [ 653.160734][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 653.166616][T16598] RIP: 0033:0x45c1d9 [ 653.170500][T16598] Code: Bad RIP value. [ 653.174557][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 653.182963][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 653.190932][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 653.198901][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 653.206867][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 653.214835][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 653.222811][T16598] Uninit was stored to memory at: [ 653.227836][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 653.233555][T16598] __msan_chain_origin+0x50/0x90 [ 653.238498][T16598] do_recvmmsg+0x105a/0x1ee0 [ 653.243086][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 653.248020][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 653.252869][T16598] do_syscall_64+0xb0/0x150 [ 653.257372][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 653.263248][T16598] [ 653.265566][T16598] Uninit was stored to memory at: [ 653.270595][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 653.276309][T16598] __msan_chain_origin+0x50/0x90 [ 653.281244][T16598] do_recvmmsg+0x105a/0x1ee0 [ 653.285829][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 653.290765][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 653.295616][T16598] do_syscall_64+0xb0/0x150 [ 653.300122][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 653.305997][T16598] [ 653.308313][T16598] Uninit was stored to memory at: [ 653.313337][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 653.319052][T16598] __msan_chain_origin+0x50/0x90 [ 653.323989][T16598] do_recvmmsg+0x105a/0x1ee0 [ 653.328573][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 653.333508][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 653.338356][T16598] do_syscall_64+0xb0/0x150 [ 653.342856][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 653.348738][T16598] [ 653.351056][T16598] Uninit was stored to memory at: [ 653.356082][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 653.361797][T16598] __msan_chain_origin+0x50/0x90 [ 653.366736][T16598] do_recvmmsg+0x105a/0x1ee0 [ 653.371330][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 653.376265][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 653.381113][T16598] do_syscall_64+0xb0/0x150 [ 653.385612][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 653.391493][T16598] [ 653.393814][T16598] Uninit was stored to memory at: [ 653.398841][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 653.404556][T16598] __msan_chain_origin+0x50/0x90 [ 653.409498][T16598] do_recvmmsg+0x105a/0x1ee0 [ 653.414086][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 653.419021][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 653.423871][T16598] do_syscall_64+0xb0/0x150 [ 653.428383][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 653.434266][T16598] [ 653.436586][T16598] Uninit was stored to memory at: [ 653.441610][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 653.447323][T16598] __msan_chain_origin+0x50/0x90 [ 653.452260][T16598] do_recvmmsg+0x105a/0x1ee0 [ 653.456848][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 653.461781][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 653.466630][T16598] do_syscall_64+0xb0/0x150 [ 653.471133][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 653.477009][T16598] [ 653.479330][T16598] Uninit was stored to memory at: [ 653.484353][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 653.490076][T16598] __msan_chain_origin+0x50/0x90 [ 653.495104][T16598] do_recvmmsg+0x105a/0x1ee0 [ 653.499690][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 653.504625][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 653.509492][T16598] do_syscall_64+0xb0/0x150 [ 653.513994][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 653.519874][T16598] [ 653.522195][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 653.528864][T16598] do_recvmmsg+0xc5/0x1ee0 [ 653.533277][T16598] do_recvmmsg+0xc5/0x1ee0 [ 653.717133][T16592] not chained 900000 origins [ 653.721772][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 653.730438][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 653.740488][T16592] Call Trace: [ 653.743781][T16592] dump_stack+0x1df/0x240 [ 653.748143][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 653.753870][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 653.758985][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 653.764881][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 653.770168][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 653.775366][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 653.781173][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 653.787242][T16592] ? kfree+0x61/0x30f0 [ 653.791311][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 653.796425][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 653.801973][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 653.808057][T16592] ? _copy_from_user+0x15b/0x260 [ 653.813021][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 653.818393][T16592] __msan_chain_origin+0x50/0x90 [ 653.823339][T16592] do_recvmmsg+0x105a/0x1ee0 [ 653.827961][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 653.833246][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 653.838268][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 653.843290][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 653.849186][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 653.854138][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 653.858992][T16592] do_syscall_64+0xb0/0x150 [ 653.863506][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 653.869394][T16592] RIP: 0033:0x45c1d9 [ 653.873278][T16592] Code: Bad RIP value. [ 653.877333][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 653.885754][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 653.893724][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 653.901691][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 653.909658][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 653.917629][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 653.925605][T16592] Uninit was stored to memory at: [ 653.930630][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 653.936347][T16592] __msan_chain_origin+0x50/0x90 [ 653.941290][T16592] do_recvmmsg+0x105a/0x1ee0 [ 653.945877][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 653.950818][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 653.955681][T16592] do_syscall_64+0xb0/0x150 [ 653.960270][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 653.966144][T16592] [ 653.968463][T16592] Uninit was stored to memory at: [ 653.973491][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 653.979203][T16592] __msan_chain_origin+0x50/0x90 [ 653.984142][T16592] do_recvmmsg+0x105a/0x1ee0 [ 653.988814][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 653.993746][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 653.998686][T16592] do_syscall_64+0xb0/0x150 [ 654.003196][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.009075][T16592] [ 654.011394][T16592] Uninit was stored to memory at: [ 654.016419][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 654.022133][T16592] __msan_chain_origin+0x50/0x90 [ 654.027066][T16592] do_recvmmsg+0x105a/0x1ee0 [ 654.031655][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 654.036588][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 654.041433][T16592] do_syscall_64+0xb0/0x150 [ 654.045933][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.051815][T16592] [ 654.054130][T16592] Uninit was stored to memory at: [ 654.059153][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 654.064866][T16592] __msan_chain_origin+0x50/0x90 [ 654.069798][T16592] do_recvmmsg+0x105a/0x1ee0 [ 654.074384][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 654.079325][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 654.084173][T16592] do_syscall_64+0xb0/0x150 [ 654.088674][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.094548][T16592] [ 654.096865][T16592] Uninit was stored to memory at: [ 654.101889][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 654.107603][T16592] __msan_chain_origin+0x50/0x90 [ 654.112536][T16592] do_recvmmsg+0x105a/0x1ee0 [ 654.117124][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 654.122057][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 654.126903][T16592] do_syscall_64+0xb0/0x150 [ 654.131404][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.137279][T16592] [ 654.139598][T16592] Uninit was stored to memory at: [ 654.144620][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 654.150338][T16592] __msan_chain_origin+0x50/0x90 [ 654.155272][T16592] do_recvmmsg+0x105a/0x1ee0 [ 654.159859][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 654.164793][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 654.169650][T16592] do_syscall_64+0xb0/0x150 [ 654.174150][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.180027][T16592] [ 654.182345][T16592] Uninit was stored to memory at: [ 654.187369][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 654.193083][T16592] __msan_chain_origin+0x50/0x90 [ 654.198191][T16592] do_recvmmsg+0x105a/0x1ee0 [ 654.202777][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 654.207708][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 654.212555][T16592] do_syscall_64+0xb0/0x150 [ 654.217055][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.222930][T16592] [ 654.225251][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 654.231922][T16592] do_recvmmsg+0xc5/0x1ee0 [ 654.236332][T16592] do_recvmmsg+0xc5/0x1ee0 [ 654.364678][T16598] not chained 910000 origins [ 654.369321][T16598] CPU: 0 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 654.377979][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 654.388021][T16598] Call Trace: [ 654.391323][T16598] dump_stack+0x1df/0x240 [ 654.395824][T16598] ? psi_group_change+0x1007/0x13c0 [ 654.401033][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 654.406744][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 654.412135][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 654.418026][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 654.423302][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 654.428490][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 654.434284][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 654.440340][T16598] ? kfree+0x61/0x30f0 [ 654.444401][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 654.449502][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 654.455055][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 654.461126][T16598] ? _copy_from_user+0x15b/0x260 [ 654.466062][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 654.471164][T16598] __msan_chain_origin+0x50/0x90 [ 654.476098][T16598] do_recvmmsg+0x105a/0x1ee0 [ 654.480704][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 654.485980][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 654.491259][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 654.496357][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 654.502239][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 654.507173][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 654.512451][T16598] do_syscall_64+0xb0/0x150 [ 654.516946][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.522826][T16598] RIP: 0033:0x45c1d9 [ 654.526711][T16598] Code: Bad RIP value. [ 654.530759][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 654.539194][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 654.547600][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 654.555654][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 654.563704][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 654.571678][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 654.581229][T16598] Uninit was stored to memory at: [ 654.586250][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 654.591959][T16598] __msan_chain_origin+0x50/0x90 [ 654.596884][T16598] do_recvmmsg+0x105a/0x1ee0 [ 654.601458][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 654.606380][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 654.611216][T16598] do_syscall_64+0xb0/0x150 [ 654.615706][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.621573][T16598] [ 654.623883][T16598] Uninit was stored to memory at: [ 654.628891][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 654.634595][T16598] __msan_chain_origin+0x50/0x90 [ 654.639550][T16598] do_recvmmsg+0x105a/0x1ee0 [ 654.644211][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 654.650105][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 654.654941][T16598] do_syscall_64+0xb0/0x150 [ 654.659442][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.665310][T16598] [ 654.667618][T16598] Uninit was stored to memory at: [ 654.672625][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 654.678340][T16598] __msan_chain_origin+0x50/0x90 [ 654.683349][T16598] do_recvmmsg+0x105a/0x1ee0 [ 654.687925][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 654.692976][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 654.697830][T16598] do_syscall_64+0xb0/0x150 [ 654.702333][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.708206][T16598] [ 654.710518][T16598] Uninit was stored to memory at: [ 654.715527][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 654.721233][T16598] __msan_chain_origin+0x50/0x90 [ 654.726161][T16598] do_recvmmsg+0x105a/0x1ee0 [ 654.730736][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 654.735655][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 654.740491][T16598] do_syscall_64+0xb0/0x150 [ 654.744977][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.750860][T16598] [ 654.753271][T16598] Uninit was stored to memory at: [ 654.758291][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 654.764000][T16598] __msan_chain_origin+0x50/0x90 [ 654.768933][T16598] do_recvmmsg+0x105a/0x1ee0 [ 654.773516][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 654.778441][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 654.783279][T16598] do_syscall_64+0xb0/0x150 [ 654.787790][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.793656][T16598] [ 654.795977][T16598] Uninit was stored to memory at: [ 654.800986][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 654.806698][T16598] __msan_chain_origin+0x50/0x90 [ 654.811627][T16598] do_recvmmsg+0x105a/0x1ee0 [ 654.816205][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 654.821127][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 654.825968][T16598] do_syscall_64+0xb0/0x150 [ 654.830461][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.836334][T16598] [ 654.838641][T16598] Uninit was stored to memory at: [ 654.843650][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 654.849353][T16598] __msan_chain_origin+0x50/0x90 [ 654.854289][T16598] do_recvmmsg+0x105a/0x1ee0 [ 654.858864][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 654.863787][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 654.868629][T16598] do_syscall_64+0xb0/0x150 [ 654.873121][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 654.878996][T16598] [ 654.881309][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 654.887990][T16598] do_recvmmsg+0xc5/0x1ee0 [ 654.892390][T16598] do_recvmmsg+0xc5/0x1ee0 [ 655.068882][T16592] not chained 920000 origins [ 655.073512][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 655.082181][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 655.092231][T16592] Call Trace: [ 655.095520][T16592] dump_stack+0x1df/0x240 [ 655.099853][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 655.105570][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 655.110685][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 655.116576][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 655.121861][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 655.127059][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 655.132868][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 655.138933][T16592] ? kfree+0x61/0x30f0 [ 655.143002][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 655.148111][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 655.153656][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 655.159725][T16592] ? _copy_from_user+0x15b/0x260 [ 655.164662][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 655.169770][T16592] __msan_chain_origin+0x50/0x90 [ 655.174745][T16592] do_recvmmsg+0x105a/0x1ee0 [ 655.179371][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 655.184743][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 655.189768][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 655.194797][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 655.200692][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 655.205660][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 655.210512][T16592] do_syscall_64+0xb0/0x150 [ 655.215020][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 655.220904][T16592] RIP: 0033:0x45c1d9 [ 655.229669][T16592] Code: Bad RIP value. [ 655.233725][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 655.242131][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 655.250099][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 655.258587][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 655.266557][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 655.274522][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 655.282500][T16592] Uninit was stored to memory at: [ 655.287527][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 655.293239][T16592] __msan_chain_origin+0x50/0x90 [ 655.298169][T16592] do_recvmmsg+0x105a/0x1ee0 [ 655.302754][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 655.307949][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 655.312824][T16592] do_syscall_64+0xb0/0x150 [ 655.317418][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 655.323293][T16592] [ 655.325610][T16592] Uninit was stored to memory at: [ 655.330641][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 655.336354][T16592] __msan_chain_origin+0x50/0x90 [ 655.341292][T16592] do_recvmmsg+0x105a/0x1ee0 [ 655.345879][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 655.350816][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 655.355665][T16592] do_syscall_64+0xb0/0x150 [ 655.360167][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 655.366044][T16592] [ 655.368377][T16592] Uninit was stored to memory at: [ 655.373489][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 655.379202][T16592] __msan_chain_origin+0x50/0x90 [ 655.384132][T16592] do_recvmmsg+0x105a/0x1ee0 [ 655.388715][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 655.393649][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 655.398502][T16592] do_syscall_64+0xb0/0x150 [ 655.403011][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 655.408987][T16592] [ 655.411307][T16592] Uninit was stored to memory at: [ 655.416331][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 655.422055][T16592] __msan_chain_origin+0x50/0x90 [ 655.426996][T16592] do_recvmmsg+0x105a/0x1ee0 [ 655.431584][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 655.436527][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 655.441377][T16592] do_syscall_64+0xb0/0x150 [ 655.445879][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 655.451756][T16592] [ 655.454079][T16592] Uninit was stored to memory at: [ 655.459279][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 655.465023][T16592] __msan_chain_origin+0x50/0x90 [ 655.469965][T16592] do_recvmmsg+0x105a/0x1ee0 [ 655.474555][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 655.479497][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 655.484347][T16592] do_syscall_64+0xb0/0x150 [ 655.488851][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 655.494728][T16592] [ 655.497047][T16592] Uninit was stored to memory at: [ 655.502174][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 655.507890][T16592] __msan_chain_origin+0x50/0x90 [ 655.513343][T16592] do_recvmmsg+0x105a/0x1ee0 [ 655.517933][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 655.522866][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 655.527717][T16592] do_syscall_64+0xb0/0x150 [ 655.532222][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 655.538449][T16592] [ 655.540775][T16592] Uninit was stored to memory at: [ 655.545893][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 655.551629][T16592] __msan_chain_origin+0x50/0x90 [ 655.557053][T16592] do_recvmmsg+0x105a/0x1ee0 [ 655.561643][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 655.566581][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 655.572821][T16592] do_syscall_64+0xb0/0x150 [ 655.577327][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 655.583235][T16592] [ 655.585575][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 655.592273][T16592] do_recvmmsg+0xc5/0x1ee0 [ 655.596697][T16592] do_recvmmsg+0xc5/0x1ee0 [ 655.755622][T16592] not chained 930000 origins [ 655.760255][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 655.768923][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 655.778989][T16592] Call Trace: [ 655.782281][T16592] dump_stack+0x1df/0x240 [ 655.786617][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 655.792335][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 655.797452][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 655.803348][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 655.808642][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 655.813838][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 655.819796][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 655.825863][T16592] ? kfree+0x61/0x30f0 [ 655.829935][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 655.835048][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 655.840599][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 655.846671][T16592] ? _copy_from_user+0x15b/0x260 [ 655.851610][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 655.856720][T16592] __msan_chain_origin+0x50/0x90 [ 655.861658][T16592] do_recvmmsg+0x105a/0x1ee0 [ 655.866279][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 655.871562][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 655.876583][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 655.881606][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 655.887503][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 655.892448][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 655.897328][T16592] do_syscall_64+0xb0/0x150 [ 655.901838][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 655.908853][T16592] RIP: 0033:0x45c1d9 [ 655.912736][T16592] Code: Bad RIP value. [ 655.916791][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 655.925199][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 655.933170][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 655.941135][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 655.949110][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 655.957102][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 655.965078][T16592] Uninit was stored to memory at: [ 655.970112][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 655.975827][T16592] __msan_chain_origin+0x50/0x90 [ 655.980759][T16592] do_recvmmsg+0x105a/0x1ee0 [ 655.985396][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 655.990360][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 655.995225][T16592] do_syscall_64+0xb0/0x150 [ 655.999729][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 656.005603][T16592] [ 656.007921][T16592] Uninit was stored to memory at: [ 656.012942][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 656.018659][T16592] __msan_chain_origin+0x50/0x90 [ 656.023591][T16592] do_recvmmsg+0x105a/0x1ee0 [ 656.028199][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 656.033133][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 656.037979][T16592] do_syscall_64+0xb0/0x150 [ 656.042482][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 656.048362][T16592] [ 656.050680][T16592] Uninit was stored to memory at: [ 656.055699][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 656.061415][T16592] __msan_chain_origin+0x50/0x90 [ 656.066349][T16592] do_recvmmsg+0x105a/0x1ee0 [ 656.070940][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 656.075873][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 656.080721][T16592] do_syscall_64+0xb0/0x150 [ 656.085222][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 656.091099][T16592] [ 656.093417][T16592] Uninit was stored to memory at: [ 656.098441][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 656.104153][T16592] __msan_chain_origin+0x50/0x90 [ 656.109092][T16592] do_recvmmsg+0x105a/0x1ee0 [ 656.113677][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 656.118610][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 656.123455][T16592] do_syscall_64+0xb0/0x150 [ 656.127972][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 656.133847][T16592] [ 656.136192][T16592] Uninit was stored to memory at: [ 656.141216][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 656.146933][T16592] __msan_chain_origin+0x50/0x90 [ 656.151870][T16592] do_recvmmsg+0x105a/0x1ee0 [ 656.156461][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 656.161395][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 656.166244][T16592] do_syscall_64+0xb0/0x150 [ 656.170746][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 656.176623][T16592] [ 656.178938][T16592] Uninit was stored to memory at: [ 656.183958][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 656.189675][T16592] __msan_chain_origin+0x50/0x90 [ 656.194636][T16592] do_recvmmsg+0x105a/0x1ee0 [ 656.199842][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 656.204779][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 656.210076][T16592] do_syscall_64+0xb0/0x150 [ 656.214580][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 656.220458][T16592] [ 656.222778][T16592] Uninit was stored to memory at: [ 656.227819][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 656.233532][T16592] __msan_chain_origin+0x50/0x90 [ 656.238466][T16592] do_recvmmsg+0x105a/0x1ee0 [ 656.243050][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 656.247982][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 656.252831][T16592] do_syscall_64+0xb0/0x150 [ 656.257332][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 656.263214][T16592] [ 656.265560][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 656.272236][T16592] do_recvmmsg+0xc5/0x1ee0 [ 656.276647][T16592] do_recvmmsg+0xc5/0x1ee0 [ 656.461330][T16598] not chained 940000 origins [ 656.465969][T16598] CPU: 1 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 656.474806][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 656.484856][T16598] Call Trace: [ 656.488151][T16598] dump_stack+0x1df/0x240 [ 656.492479][T16598] ? psi_group_change+0x1007/0x13c0 [ 656.497681][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 656.503401][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 656.508521][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 656.514418][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 656.519703][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 656.524904][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 656.530711][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 656.536778][T16598] ? kfree+0x61/0x30f0 [ 656.540849][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 656.545957][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 656.551592][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 656.557666][T16598] ? _copy_from_user+0x15b/0x260 [ 656.562606][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 656.567714][T16598] __msan_chain_origin+0x50/0x90 [ 656.572656][T16598] do_recvmmsg+0x105a/0x1ee0 [ 656.577278][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 656.582700][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 656.587731][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 656.592757][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 656.598653][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 656.603625][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 656.608480][T16598] do_syscall_64+0xb0/0x150 [ 656.612989][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 656.618874][T16598] RIP: 0033:0x45c1d9 [ 656.622775][T16598] Code: Bad RIP value. [ 656.626832][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 656.635239][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 656.643206][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 656.651191][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 656.659158][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 656.667125][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 656.675100][T16598] Uninit was stored to memory at: [ 656.680127][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 656.685838][T16598] __msan_chain_origin+0x50/0x90 [ 656.690773][T16598] do_recvmmsg+0x105a/0x1ee0 [ 656.695359][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 656.700296][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 656.705838][T16598] do_syscall_64+0xb0/0x150 [ 656.710353][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 656.716244][T16598] [ 656.718570][T16598] Uninit was stored to memory at: [ 656.723606][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 656.729327][T16598] __msan_chain_origin+0x50/0x90 [ 656.734264][T16598] do_recvmmsg+0x105a/0x1ee0 [ 656.738853][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 656.743787][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 656.748643][T16598] do_syscall_64+0xb0/0x150 [ 656.753145][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 656.759112][T16598] [ 656.761432][T16598] Uninit was stored to memory at: [ 656.766464][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 656.772544][T16598] __msan_chain_origin+0x50/0x90 [ 656.778355][T16598] do_recvmmsg+0x105a/0x1ee0 [ 656.782951][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 656.787896][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 656.792745][T16598] do_syscall_64+0xb0/0x150 [ 656.797250][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 656.803127][T16598] [ 656.805455][T16598] Uninit was stored to memory at: [ 656.810568][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 656.816293][T16598] __msan_chain_origin+0x50/0x90 [ 656.821226][T16598] do_recvmmsg+0x105a/0x1ee0 [ 656.825815][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 656.830756][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 656.835608][T16598] do_syscall_64+0xb0/0x150 [ 656.840463][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 656.846338][T16598] [ 656.848655][T16598] Uninit was stored to memory at: [ 656.853676][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 656.859394][T16598] __msan_chain_origin+0x50/0x90 [ 656.864326][T16598] do_recvmmsg+0x105a/0x1ee0 [ 656.868913][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 656.873844][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 656.878693][T16598] do_syscall_64+0xb0/0x150 [ 656.883194][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 656.889075][T16598] [ 656.891395][T16598] Uninit was stored to memory at: [ 656.896420][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 656.902134][T16598] __msan_chain_origin+0x50/0x90 [ 656.907099][T16598] do_recvmmsg+0x105a/0x1ee0 [ 656.911684][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 656.916616][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 656.921466][T16598] do_syscall_64+0xb0/0x150 [ 656.925971][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 656.931848][T16598] [ 656.934164][T16598] Uninit was stored to memory at: [ 656.939185][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 656.944898][T16598] __msan_chain_origin+0x50/0x90 [ 656.949834][T16598] do_recvmmsg+0x105a/0x1ee0 [ 656.954420][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 656.959353][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 656.964199][T16598] do_syscall_64+0xb0/0x150 [ 656.968699][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 656.974575][T16598] [ 656.976895][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 656.983584][T16598] do_recvmmsg+0xc5/0x1ee0 [ 656.988023][T16598] do_recvmmsg+0xc5/0x1ee0 [ 657.143275][T16598] not chained 950000 origins [ 657.147916][T16598] CPU: 1 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 657.156582][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 657.166635][T16598] Call Trace: [ 657.169931][T16598] dump_stack+0x1df/0x240 [ 657.174281][T16598] ? psi_group_change+0x1007/0x13c0 [ 657.179485][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 657.185208][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 657.190319][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 657.196214][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 657.201499][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 657.206697][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 657.212501][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 657.218565][T16598] ? kfree+0x61/0x30f0 [ 657.222636][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 657.227748][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 657.233295][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 657.239366][T16598] ? _copy_from_user+0x15b/0x260 [ 657.244448][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 657.249560][T16598] __msan_chain_origin+0x50/0x90 [ 657.254513][T16598] do_recvmmsg+0x105a/0x1ee0 [ 657.259140][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 657.264429][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 657.269453][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 657.274478][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 657.280372][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 657.285319][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 657.290184][T16598] do_syscall_64+0xb0/0x150 [ 657.294700][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 657.300591][T16598] RIP: 0033:0x45c1d9 [ 657.304469][T16598] Code: Bad RIP value. [ 657.308528][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 657.316939][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 657.324909][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 657.332875][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 657.340847][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 657.348900][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 657.356877][T16598] Uninit was stored to memory at: [ 657.361903][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 657.367617][T16598] __msan_chain_origin+0x50/0x90 [ 657.372553][T16598] do_recvmmsg+0x105a/0x1ee0 [ 657.379920][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 657.384940][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 657.389791][T16598] do_syscall_64+0xb0/0x150 [ 657.394293][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 657.400168][T16598] [ 657.402488][T16598] Uninit was stored to memory at: [ 657.407508][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 657.413226][T16598] __msan_chain_origin+0x50/0x90 [ 657.418160][T16598] do_recvmmsg+0x105a/0x1ee0 [ 657.422835][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 657.427771][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 657.432620][T16598] do_syscall_64+0xb0/0x150 [ 657.437122][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 657.442999][T16598] [ 657.445317][T16598] Uninit was stored to memory at: [ 657.450338][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 657.456065][T16598] __msan_chain_origin+0x50/0x90 [ 657.461022][T16598] do_recvmmsg+0x105a/0x1ee0 [ 657.465617][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 657.470555][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 657.475402][T16598] do_syscall_64+0xb0/0x150 [ 657.479908][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 657.485786][T16598] [ 657.488113][T16598] Uninit was stored to memory at: [ 657.493135][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 657.498849][T16598] __msan_chain_origin+0x50/0x90 [ 657.503783][T16598] do_recvmmsg+0x105a/0x1ee0 [ 657.508370][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 657.513314][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 657.518163][T16598] do_syscall_64+0xb0/0x150 [ 657.522661][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 657.528538][T16598] [ 657.530854][T16598] Uninit was stored to memory at: [ 657.535880][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 657.541596][T16598] __msan_chain_origin+0x50/0x90 [ 657.546550][T16598] do_recvmmsg+0x105a/0x1ee0 [ 657.551148][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 657.556090][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 657.560941][T16598] do_syscall_64+0xb0/0x150 [ 657.565447][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 657.571329][T16598] [ 657.573644][T16598] Uninit was stored to memory at: [ 657.578666][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 657.584378][T16598] __msan_chain_origin+0x50/0x90 [ 657.589314][T16598] do_recvmmsg+0x105a/0x1ee0 [ 657.594021][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 657.598958][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 657.603843][T16598] do_syscall_64+0xb0/0x150 [ 657.608351][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 657.614227][T16598] [ 657.616544][T16598] Uninit was stored to memory at: [ 657.621571][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 657.627292][T16598] __msan_chain_origin+0x50/0x90 [ 657.632227][T16598] do_recvmmsg+0x105a/0x1ee0 [ 657.636817][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 657.641755][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 657.646598][T16598] do_syscall_64+0xb0/0x150 [ 657.651619][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 657.657495][T16598] [ 657.659819][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 657.666491][T16598] do_recvmmsg+0xc5/0x1ee0 [ 657.670907][T16598] do_recvmmsg+0xc5/0x1ee0 [ 657.892110][T16592] not chained 960000 origins [ 657.896755][T16592] CPU: 0 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 657.905425][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 657.915478][T16592] Call Trace: [ 657.918780][T16592] dump_stack+0x1df/0x240 [ 657.923123][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 657.928851][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 657.933989][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 657.939890][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 657.945179][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 657.950382][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 657.956198][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 657.962274][T16592] ? kfree+0x61/0x30f0 [ 657.966365][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 657.971486][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 657.977050][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 657.983127][T16592] ? _copy_from_user+0x15b/0x260 [ 657.988084][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 657.993201][T16592] __msan_chain_origin+0x50/0x90 [ 657.998151][T16592] do_recvmmsg+0x105a/0x1ee0 [ 658.002794][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 658.008092][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 658.013122][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 658.018154][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 658.024060][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 658.029015][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 658.033902][T16592] do_syscall_64+0xb0/0x150 [ 658.038417][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 658.044306][T16592] RIP: 0033:0x45c1d9 [ 658.048193][T16592] Code: Bad RIP value. [ 658.052252][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 658.060664][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 658.068645][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 658.076722][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 658.084692][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 658.092664][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 658.100666][T16592] Uninit was stored to memory at: [ 658.105697][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 658.111421][T16592] __msan_chain_origin+0x50/0x90 [ 658.116366][T16592] do_recvmmsg+0x105a/0x1ee0 [ 658.120955][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 658.125893][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 658.130741][T16592] do_syscall_64+0xb0/0x150 [ 658.135248][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 658.141130][T16592] [ 658.143506][T16592] Uninit was stored to memory at: [ 658.148539][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 658.154262][T16592] __msan_chain_origin+0x50/0x90 [ 658.159202][T16592] do_recvmmsg+0x105a/0x1ee0 [ 658.163794][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 658.168733][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 658.173585][T16592] do_syscall_64+0xb0/0x150 [ 658.178092][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 658.183976][T16592] [ 658.186301][T16592] Uninit was stored to memory at: [ 658.191325][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 658.197050][T16592] __msan_chain_origin+0x50/0x90 [ 658.201988][T16592] do_recvmmsg+0x105a/0x1ee0 [ 658.206577][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 658.211516][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 658.216365][T16592] do_syscall_64+0xb0/0x150 [ 658.220867][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 658.226747][T16592] [ 658.229067][T16592] Uninit was stored to memory at: [ 658.234097][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 658.239815][T16592] __msan_chain_origin+0x50/0x90 [ 658.244836][T16592] do_recvmmsg+0x105a/0x1ee0 [ 658.249425][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 658.254363][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 658.259216][T16592] do_syscall_64+0xb0/0x150 [ 658.263722][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 658.269607][T16592] [ 658.271927][T16592] Uninit was stored to memory at: [ 658.276951][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 658.282669][T16592] __msan_chain_origin+0x50/0x90 [ 658.287607][T16592] do_recvmmsg+0x105a/0x1ee0 [ 658.292200][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 658.297137][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 658.301987][T16592] do_syscall_64+0xb0/0x150 [ 658.306493][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 658.312372][T16592] [ 658.314699][T16592] Uninit was stored to memory at: [ 658.319726][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 658.325443][T16592] __msan_chain_origin+0x50/0x90 [ 658.330385][T16592] do_recvmmsg+0x105a/0x1ee0 [ 658.334980][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 658.339916][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 658.344771][T16592] do_syscall_64+0xb0/0x150 [ 658.349275][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 658.355155][T16592] [ 658.357472][T16592] Uninit was stored to memory at: [ 658.362497][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 658.368216][T16592] __msan_chain_origin+0x50/0x90 [ 658.373153][T16592] do_recvmmsg+0x105a/0x1ee0 [ 658.377749][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 658.382685][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 658.387537][T16592] do_syscall_64+0xb0/0x150 [ 658.392043][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 658.397929][T16592] [ 658.400250][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 658.406926][T16592] do_recvmmsg+0xc5/0x1ee0 [ 658.411363][T16592] do_recvmmsg+0xc5/0x1ee0 [ 658.517610][T16592] not chained 970000 origins [ 658.522245][T16592] CPU: 0 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 658.530919][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 658.540978][T16592] Call Trace: [ 658.544275][T16592] dump_stack+0x1df/0x240 [ 658.548621][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 658.554344][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 658.559458][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 658.565361][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 658.570662][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 658.575863][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 658.581671][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 658.587740][T16592] ? kfree+0x61/0x30f0 [ 658.591809][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 658.596925][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 658.602592][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 658.608676][T16592] ? _copy_from_user+0x15b/0x260 [ 658.613619][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 658.618732][T16592] __msan_chain_origin+0x50/0x90 [ 658.623763][T16592] do_recvmmsg+0x105a/0x1ee0 [ 658.628401][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 658.633690][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 658.638711][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 658.643734][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 658.649638][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 658.654586][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 658.659442][T16592] do_syscall_64+0xb0/0x150 [ 658.663953][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 658.669844][T16592] RIP: 0033:0x45c1d9 [ 658.673731][T16592] Code: Bad RIP value. [ 658.677788][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 658.686194][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 658.694162][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 658.702309][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 658.710280][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 658.718248][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 658.726224][T16592] Uninit was stored to memory at: [ 658.731251][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 658.737059][T16592] __msan_chain_origin+0x50/0x90 [ 658.741993][T16592] do_recvmmsg+0x105a/0x1ee0 [ 658.746665][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 658.751710][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 658.756565][T16592] do_syscall_64+0xb0/0x150 [ 658.760331][T16598] not chained 980000 origins [ 658.761090][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 658.765668][T16598] CPU: 1 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 658.771535][T16592] [ 658.780197][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 658.783976][T16592] Uninit was stored to memory at: [ 658.794015][T16598] Call Trace: [ 658.799032][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 658.802293][T16598] dump_stack+0x1df/0x240 [ 658.807982][T16592] __msan_chain_origin+0x50/0x90 [ 658.812295][T16598] ? psi_group_change+0x1007/0x13c0 [ 658.817206][T16592] do_recvmmsg+0x105a/0x1ee0 [ 658.822385][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 658.826947][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 658.832648][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 658.837559][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 658.842644][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 658.847468][T16592] do_syscall_64+0xb0/0x150 [ 658.853337][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 658.857817][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 658.863076][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 658.868933][T16592] [ 658.874129][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 658.876442][T16592] Uninit was stored to memory at: [ 658.882231][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 658.887241][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 658.893282][T16598] ? kfree+0x61/0x30f0 [ 658.898974][T16592] __msan_chain_origin+0x50/0x90 [ 658.903020][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 658.907947][T16592] do_recvmmsg+0x105a/0x1ee0 [ 658.913032][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 658.917596][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 658.923114][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 658.928023][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 658.934062][T16598] ? _copy_from_user+0x15b/0x260 [ 658.938889][T16592] do_syscall_64+0xb0/0x150 [ 658.943800][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 658.948279][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 658.953376][T16598] __msan_chain_origin+0x50/0x90 [ 658.959230][T16592] [ 658.964152][T16598] do_recvmmsg+0x105a/0x1ee0 [ 658.966445][T16592] Uninit was stored to memory at: [ 658.971064][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 658.976050][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 658.981311][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 658.987001][T16592] __msan_chain_origin+0x50/0x90 [ 658.992010][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 658.996917][T16592] do_recvmmsg+0x105a/0x1ee0 [ 659.001916][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 659.006495][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 659.012363][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 659.017287][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 659.022202][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 659.027023][T16592] do_syscall_64+0xb0/0x150 [ 659.031862][T16598] do_syscall_64+0xb0/0x150 [ 659.036345][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 659.040825][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 659.046680][T16592] [ 659.052554][T16598] RIP: 0033:0x45c1d9 [ 659.054852][T16592] Uninit was stored to memory at: [ 659.058719][T16598] Code: Bad RIP value. [ 659.063723][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 659.067773][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 659.073471][T16592] __msan_chain_origin+0x50/0x90 [ 659.082283][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 659.087199][T16592] do_recvmmsg+0x105a/0x1ee0 [ 659.095142][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 659.099709][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 659.107654][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 659.112574][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 659.120778][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 659.125607][T16592] do_syscall_64+0xb0/0x150 [ 659.133548][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 659.138029][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 659.145991][T16598] Uninit was stored to memory at: [ 659.151865][T16592] [ 659.156873][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 659.159171][T16592] Uninit was stored to memory at: [ 659.164876][T16598] __msan_chain_origin+0x50/0x90 [ 659.169888][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 659.174798][T16598] do_recvmmsg+0x105a/0x1ee0 [ 659.180489][T16592] __msan_chain_origin+0x50/0x90 [ 659.185052][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 659.189974][T16592] do_recvmmsg+0x105a/0x1ee0 [ 659.194887][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 659.199449][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 659.204284][T16598] do_syscall_64+0xb0/0x150 [ 659.209192][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 659.213671][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 659.218593][T16592] do_syscall_64+0xb0/0x150 [ 659.224449][T16598] [ 659.228938][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 659.231234][T16598] Uninit was stored to memory at: [ 659.237097][T16592] [ 659.242105][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 659.244399][T16592] Uninit was stored to memory at: [ 659.250098][T16598] __msan_chain_origin+0x50/0x90 [ 659.255096][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 659.260019][T16598] do_recvmmsg+0x105a/0x1ee0 [ 659.265810][T16592] __msan_chain_origin+0x50/0x90 [ 659.270383][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 659.275300][T16592] do_recvmmsg+0x105a/0x1ee0 [ 659.280212][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 659.284779][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 659.289605][T16598] do_syscall_64+0xb0/0x150 [ 659.294515][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 659.298992][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 659.303816][T16592] do_syscall_64+0xb0/0x150 [ 659.309669][T16598] [ 659.314173][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 659.316470][T16598] Uninit was stored to memory at: [ 659.322339][T16592] [ 659.327463][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 659.330383][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 659.336174][T16598] __msan_chain_origin+0x50/0x90 [ 659.342821][T16592] do_recvmmsg+0xc5/0x1ee0 [ 659.347733][T16598] do_recvmmsg+0x105a/0x1ee0 [ 659.352129][T16592] do_recvmmsg+0xc5/0x1ee0 [ 659.356692][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 659.365997][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 659.370846][T16598] do_syscall_64+0xb0/0x150 [ 659.375348][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 659.381296][T16598] [ 659.383637][T16598] Uninit was stored to memory at: [ 659.388668][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 659.394389][T16598] __msan_chain_origin+0x50/0x90 [ 659.399321][T16598] do_recvmmsg+0x105a/0x1ee0 [ 659.403897][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 659.409111][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 659.413960][T16598] do_syscall_64+0xb0/0x150 [ 659.418449][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 659.424313][T16598] [ 659.426620][T16598] Uninit was stored to memory at: [ 659.431632][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 659.437355][T16598] __msan_chain_origin+0x50/0x90 [ 659.442280][T16598] do_recvmmsg+0x105a/0x1ee0 [ 659.446854][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 659.451776][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 659.456612][T16598] do_syscall_64+0xb0/0x150 [ 659.461116][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 659.466983][T16598] [ 659.469290][T16598] Uninit was stored to memory at: [ 659.474301][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 659.480001][T16598] __msan_chain_origin+0x50/0x90 [ 659.484928][T16598] do_recvmmsg+0x105a/0x1ee0 [ 659.489526][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 659.494448][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 659.499282][T16598] do_syscall_64+0xb0/0x150 [ 659.503773][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 659.509640][T16598] [ 659.511946][T16598] Uninit was stored to memory at: [ 659.516954][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 659.522656][T16598] __msan_chain_origin+0x50/0x90 [ 659.527574][T16598] do_recvmmsg+0x105a/0x1ee0 [ 659.532162][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 659.537171][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 659.542023][T16598] do_syscall_64+0xb0/0x150 [ 659.546523][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 659.552390][T16598] [ 659.554697][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 659.561356][T16598] do_recvmmsg+0xc5/0x1ee0 [ 659.565774][T16598] do_recvmmsg+0xc5/0x1ee0 [ 659.703803][T16598] not chained 990000 origins [ 659.708431][T16598] CPU: 0 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 659.717446][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 659.727491][T16598] Call Trace: [ 659.730771][T16598] dump_stack+0x1df/0x240 [ 659.735091][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 659.740292][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 659.746012][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 659.751121][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 659.757020][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 659.762294][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 659.767477][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 659.773271][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 659.779322][T16598] ? kfree+0x61/0x30f0 [ 659.783377][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 659.788476][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 659.794011][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 659.800068][T16598] ? _copy_from_user+0x15b/0x260 [ 659.804990][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 659.810174][T16598] __msan_chain_origin+0x50/0x90 [ 659.815101][T16598] do_recvmmsg+0x105a/0x1ee0 [ 659.819703][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 659.824982][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 659.829994][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 659.835094][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 659.840981][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 659.845919][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 659.850777][T16598] do_syscall_64+0xb0/0x150 [ 659.855270][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 659.861144][T16598] RIP: 0033:0x45c1d9 [ 659.865024][T16598] Code: Bad RIP value. [ 659.869072][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 659.877466][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 659.885420][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 659.893467][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 659.901516][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 659.909473][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 659.917445][T16598] Uninit was stored to memory at: [ 659.922462][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 659.928165][T16598] __msan_chain_origin+0x50/0x90 [ 659.933088][T16598] do_recvmmsg+0x105a/0x1ee0 [ 659.937660][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 659.942582][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 659.947415][T16598] do_syscall_64+0xb0/0x150 [ 659.951907][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 659.957773][T16598] [ 659.960083][T16598] Uninit was stored to memory at: [ 659.965106][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 659.970819][T16598] __msan_chain_origin+0x50/0x90 [ 659.975739][T16598] do_recvmmsg+0x105a/0x1ee0 [ 659.980312][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 659.985247][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 659.990082][T16598] do_syscall_64+0xb0/0x150 [ 659.994567][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 660.000433][T16598] [ 660.002743][T16598] Uninit was stored to memory at: [ 660.007752][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 660.013460][T16598] __msan_chain_origin+0x50/0x90 [ 660.018381][T16598] do_recvmmsg+0x105a/0x1ee0 [ 660.022954][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 660.027886][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 660.032722][T16598] do_syscall_64+0xb0/0x150 [ 660.037211][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 660.043078][T16598] [ 660.045398][T16598] Uninit was stored to memory at: [ 660.050406][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 660.056192][T16598] __msan_chain_origin+0x50/0x90 [ 660.061114][T16598] do_recvmmsg+0x105a/0x1ee0 [ 660.065688][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 660.070611][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 660.075449][T16598] do_syscall_64+0xb0/0x150 [ 660.079938][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 660.085806][T16598] [ 660.088128][T16598] Uninit was stored to memory at: [ 660.093137][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 660.098848][T16598] __msan_chain_origin+0x50/0x90 [ 660.103767][T16598] do_recvmmsg+0x105a/0x1ee0 [ 660.108338][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 660.113260][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 660.118095][T16598] do_syscall_64+0xb0/0x150 [ 660.122584][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 660.128456][T16598] [ 660.130783][T16598] Uninit was stored to memory at: [ 660.135792][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 660.141595][T16598] __msan_chain_origin+0x50/0x90 [ 660.146515][T16598] do_recvmmsg+0x105a/0x1ee0 [ 660.153347][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 660.158268][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 660.163123][T16598] do_syscall_64+0xb0/0x150 [ 660.167614][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 660.173480][T16598] [ 660.175788][T16598] Uninit was stored to memory at: [ 660.180802][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 660.186503][T16598] __msan_chain_origin+0x50/0x90 [ 660.191427][T16598] do_recvmmsg+0x105a/0x1ee0 [ 660.196008][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 660.200931][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 660.205900][T16598] do_syscall_64+0xb0/0x150 [ 660.210397][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 660.216263][T16598] [ 660.218575][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 660.225233][T16598] do_recvmmsg+0xc5/0x1ee0 [ 660.229642][T16598] do_recvmmsg+0xc5/0x1ee0 [ 660.402371][T16592] not chained 1000000 origins [ 660.407108][T16592] CPU: 0 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 660.415910][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 660.425968][T16592] Call Trace: [ 660.429270][T16592] dump_stack+0x1df/0x240 [ 660.433619][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 660.439347][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 660.444474][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 660.450375][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 660.455665][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 660.460872][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 660.466689][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 660.472759][T16592] ? kfree+0x61/0x30f0 [ 660.476845][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 660.481962][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 660.487512][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 660.493592][T16592] ? _copy_from_user+0x15b/0x260 [ 660.498535][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 660.503651][T16592] __msan_chain_origin+0x50/0x90 [ 660.508596][T16592] do_recvmmsg+0x105a/0x1ee0 [ 660.513221][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 660.518603][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 660.523637][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 660.528667][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 660.534574][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 660.539531][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 660.544478][T16592] do_syscall_64+0xb0/0x150 [ 660.548989][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 660.554879][T16592] RIP: 0033:0x45c1d9 [ 660.558761][T16592] Code: Bad RIP value. [ 660.562821][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 660.571244][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 660.579222][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 660.587198][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 660.595187][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 660.603277][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 660.611266][T16592] Uninit was stored to memory at: [ 660.616304][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 660.622036][T16592] __msan_chain_origin+0x50/0x90 [ 660.627281][T16592] do_recvmmsg+0x105a/0x1ee0 [ 660.631906][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 660.636847][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 660.641801][T16592] do_syscall_64+0xb0/0x150 [ 660.646401][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 660.652285][T16592] [ 660.654690][T16592] Uninit was stored to memory at: [ 660.659724][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 660.665521][T16592] __msan_chain_origin+0x50/0x90 [ 660.670468][T16592] do_recvmmsg+0x105a/0x1ee0 [ 660.675240][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 660.680187][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 660.685047][T16592] do_syscall_64+0xb0/0x150 [ 660.689570][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 660.695449][T16592] [ 660.697769][T16592] Uninit was stored to memory at: [ 660.702801][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 660.708543][T16592] __msan_chain_origin+0x50/0x90 [ 660.713534][T16592] do_recvmmsg+0x105a/0x1ee0 [ 660.718137][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 660.723117][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 660.727978][T16592] do_syscall_64+0xb0/0x150 [ 660.732507][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 660.738393][T16592] [ 660.740712][T16592] Uninit was stored to memory at: [ 660.745738][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 660.751444][T16592] __msan_chain_origin+0x50/0x90 [ 660.756367][T16592] do_recvmmsg+0x105a/0x1ee0 [ 660.760945][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 660.765867][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 660.770702][T16592] do_syscall_64+0xb0/0x150 [ 660.775204][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 660.781182][T16592] [ 660.783503][T16592] Uninit was stored to memory at: [ 660.788530][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 660.794240][T16592] __msan_chain_origin+0x50/0x90 [ 660.799167][T16592] do_recvmmsg+0x105a/0x1ee0 [ 660.803744][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 660.808668][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 660.813504][T16592] do_syscall_64+0xb0/0x150 [ 660.818116][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 660.823994][T16592] [ 660.826314][T16592] Uninit was stored to memory at: [ 660.831329][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 660.837047][T16592] __msan_chain_origin+0x50/0x90 [ 660.841989][T16592] do_recvmmsg+0x105a/0x1ee0 [ 660.846574][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 660.851503][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 660.856344][T16592] do_syscall_64+0xb0/0x150 [ 660.860838][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 660.866709][T16592] [ 660.869039][T16592] Uninit was stored to memory at: [ 660.874063][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 660.879781][T16592] __msan_chain_origin+0x50/0x90 [ 660.884712][T16592] do_recvmmsg+0x105a/0x1ee0 [ 660.889288][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 660.894210][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 660.899050][T16592] do_syscall_64+0xb0/0x150 [ 660.903555][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 660.909425][T16592] [ 660.911822][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 660.918500][T16592] do_recvmmsg+0xc5/0x1ee0 [ 660.922906][T16592] do_recvmmsg+0xc5/0x1ee0 [ 661.031846][T16592] not chained 1010000 origins [ 661.036565][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 661.045262][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 661.055312][T16592] Call Trace: [ 661.059308][T16592] dump_stack+0x1df/0x240 [ 661.063649][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 661.069372][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 661.074485][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 661.080380][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 661.085669][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 661.090866][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 661.096679][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 661.102747][T16592] ? kfree+0x61/0x30f0 [ 661.106816][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 661.111934][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 661.117510][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 661.123581][T16592] ? _copy_from_user+0x15b/0x260 [ 661.128517][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 661.133627][T16592] __msan_chain_origin+0x50/0x90 [ 661.138571][T16592] do_recvmmsg+0x105a/0x1ee0 [ 661.143219][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 661.148505][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 661.153525][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 661.158552][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 661.164443][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 661.169390][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 661.174243][T16592] do_syscall_64+0xb0/0x150 [ 661.178755][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 661.184718][T16592] RIP: 0033:0x45c1d9 [ 661.188591][T16592] Code: Bad RIP value. [ 661.192637][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 661.201033][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 661.208994][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 661.216951][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 661.224907][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 661.232866][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 661.240842][T16592] Uninit was stored to memory at: [ 661.246304][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 661.252011][T16592] __msan_chain_origin+0x50/0x90 [ 661.256934][T16592] do_recvmmsg+0x105a/0x1ee0 [ 661.261508][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 661.266429][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 661.271264][T16592] do_syscall_64+0xb0/0x150 [ 661.275751][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 661.281617][T16592] [ 661.283923][T16592] Uninit was stored to memory at: [ 661.288931][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 661.294633][T16592] __msan_chain_origin+0x50/0x90 [ 661.299555][T16592] do_recvmmsg+0x105a/0x1ee0 [ 661.304147][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 661.309091][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 661.313929][T16592] do_syscall_64+0xb0/0x150 [ 661.318419][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 661.324286][T16592] [ 661.326594][T16592] Uninit was stored to memory at: [ 661.331615][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 661.337323][T16592] __msan_chain_origin+0x50/0x90 [ 661.342248][T16592] do_recvmmsg+0x105a/0x1ee0 [ 661.346835][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 661.351757][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 661.356594][T16592] do_syscall_64+0xb0/0x150 [ 661.361094][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 661.367049][T16592] [ 661.369374][T16592] Uninit was stored to memory at: [ 661.374401][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 661.380103][T16592] __msan_chain_origin+0x50/0x90 [ 661.385025][T16592] do_recvmmsg+0x105a/0x1ee0 [ 661.389601][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 661.394523][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 661.399371][T16592] do_syscall_64+0xb0/0x150 [ 661.403858][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 661.409737][T16592] [ 661.412045][T16592] Uninit was stored to memory at: [ 661.417057][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 661.422775][T16592] __msan_chain_origin+0x50/0x90 [ 661.427698][T16592] do_recvmmsg+0x105a/0x1ee0 [ 661.432271][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 661.437195][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 661.442033][T16592] do_syscall_64+0xb0/0x150 [ 661.446520][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 661.452391][T16592] [ 661.454699][T16592] Uninit was stored to memory at: [ 661.459707][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 661.465422][T16592] __msan_chain_origin+0x50/0x90 [ 661.470344][T16592] do_recvmmsg+0x105a/0x1ee0 [ 661.474931][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 661.479854][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 661.484693][T16592] do_syscall_64+0xb0/0x150 [ 661.489183][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 661.495050][T16592] [ 661.497371][T16592] Uninit was stored to memory at: [ 661.502393][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 661.508096][T16592] __msan_chain_origin+0x50/0x90 [ 661.513018][T16592] do_recvmmsg+0x105a/0x1ee0 [ 661.517605][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 661.522525][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 661.527358][T16592] do_syscall_64+0xb0/0x150 [ 661.531859][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 661.537812][T16592] [ 661.540125][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 661.546799][T16592] do_recvmmsg+0xc5/0x1ee0 [ 661.551197][T16592] do_recvmmsg+0xc5/0x1ee0 [ 661.692743][T16592] not chained 1020000 origins [ 661.697475][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 661.706149][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 661.716208][T16592] Call Trace: [ 661.719513][T16592] dump_stack+0x1df/0x240 [ 661.723864][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 661.729593][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 661.734711][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 661.740631][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 661.745921][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 661.751127][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 661.756947][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 661.763029][T16592] ? kfree+0x61/0x30f0 [ 661.767116][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 661.772237][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 661.777791][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 661.783869][T16592] ? _copy_from_user+0x15b/0x260 [ 661.788816][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 661.793933][T16592] __msan_chain_origin+0x50/0x90 [ 661.798878][T16592] do_recvmmsg+0x105a/0x1ee0 [ 661.803513][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 661.808806][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 661.813835][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 661.818868][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 661.824771][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 661.829721][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 661.834580][T16592] do_syscall_64+0xb0/0x150 [ 661.839094][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 661.844984][T16592] RIP: 0033:0x45c1d9 [ 661.848872][T16592] Code: Bad RIP value. [ 661.852937][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 661.861351][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 661.869324][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 661.877296][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 661.885269][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 661.893246][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 661.901230][T16592] Uninit was stored to memory at: [ 661.906266][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 661.911988][T16592] __msan_chain_origin+0x50/0x90 [ 661.916926][T16592] do_recvmmsg+0x105a/0x1ee0 [ 661.921516][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 661.926454][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 661.931304][T16592] do_syscall_64+0xb0/0x150 [ 661.935809][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 661.941688][T16592] [ 661.944011][T16592] Uninit was stored to memory at: [ 661.949040][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 661.954761][T16592] __msan_chain_origin+0x50/0x90 [ 661.959812][T16592] do_recvmmsg+0x105a/0x1ee0 [ 661.964404][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 661.969346][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 661.974197][T16592] do_syscall_64+0xb0/0x150 [ 661.978702][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 661.984580][T16592] [ 661.986902][T16592] Uninit was stored to memory at: [ 661.991928][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 661.997648][T16592] __msan_chain_origin+0x50/0x90 [ 662.002591][T16592] do_recvmmsg+0x105a/0x1ee0 [ 662.009180][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 662.014122][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 662.018976][T16592] do_syscall_64+0xb0/0x150 [ 662.023486][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 662.029453][T16592] [ 662.031771][T16592] Uninit was stored to memory at: [ 662.036801][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 662.042518][T16592] __msan_chain_origin+0x50/0x90 [ 662.047458][T16592] do_recvmmsg+0x105a/0x1ee0 [ 662.052052][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 662.056989][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 662.061843][T16592] do_syscall_64+0xb0/0x150 [ 662.066349][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 662.072228][T16592] [ 662.074551][T16592] Uninit was stored to memory at: [ 662.079582][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 662.085305][T16592] __msan_chain_origin+0x50/0x90 [ 662.090244][T16592] do_recvmmsg+0x105a/0x1ee0 [ 662.094841][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 662.099786][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 662.104639][T16592] do_syscall_64+0xb0/0x150 [ 662.109147][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 662.115031][T16592] [ 662.117353][T16592] Uninit was stored to memory at: [ 662.122378][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 662.128099][T16592] __msan_chain_origin+0x50/0x90 [ 662.133042][T16592] do_recvmmsg+0x105a/0x1ee0 [ 662.137630][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 662.142569][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 662.147423][T16592] do_syscall_64+0xb0/0x150 [ 662.151934][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 662.157815][T16592] [ 662.160135][T16592] Uninit was stored to memory at: [ 662.165165][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 662.170891][T16592] __msan_chain_origin+0x50/0x90 [ 662.175833][T16592] do_recvmmsg+0x105a/0x1ee0 [ 662.180424][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 662.185362][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 662.190396][T16592] do_syscall_64+0xb0/0x150 [ 662.195861][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 662.201749][T16592] [ 662.204069][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 662.210746][T16592] do_recvmmsg+0xc5/0x1ee0 [ 662.215160][T16592] do_recvmmsg+0xc5/0x1ee0 [ 662.377546][T16592] not chained 1030000 origins [ 662.382264][T16592] CPU: 1 PID: 16592 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 662.390925][T16592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 662.400977][T16592] Call Trace: [ 662.404272][T16592] dump_stack+0x1df/0x240 [ 662.408607][T16592] kmsan_internal_chain_origin+0x6f/0x130 [ 662.414327][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 662.419440][T16592] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 662.425333][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 662.430617][T16592] ? kmsan_get_metadata+0x11d/0x180 [ 662.435813][T16592] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 662.441623][T16592] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 662.447686][T16592] ? kfree+0x61/0x30f0 [ 662.451758][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 662.456870][T16592] ? kmsan_set_origin_checked+0x95/0xf0 [ 662.462423][T16592] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 662.468493][T16592] ? _copy_from_user+0x15b/0x260 [ 662.473429][T16592] ? kmsan_get_metadata+0x4f/0x180 [ 662.478541][T16592] __msan_chain_origin+0x50/0x90 [ 662.483481][T16592] do_recvmmsg+0x105a/0x1ee0 [ 662.488099][T16592] ? __msan_poison_alloca+0xf0/0x120 [ 662.493384][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 662.498406][T16592] ? __se_sys_recvmmsg+0xac/0x350 [ 662.503430][T16592] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 662.509325][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 662.514272][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 662.519137][T16592] do_syscall_64+0xb0/0x150 [ 662.523643][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 662.529528][T16592] RIP: 0033:0x45c1d9 [ 662.533494][T16592] Code: Bad RIP value. [ 662.537553][T16592] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 662.545965][T16592] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 662.553930][T16592] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 662.561899][T16592] RBP: 000000000078bf50 R08: 0000000000000000 R09: 0000000000000000 [ 662.569867][T16592] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 662.577844][T16592] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 662.585830][T16592] Uninit was stored to memory at: [ 662.590870][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 662.596586][T16592] __msan_chain_origin+0x50/0x90 [ 662.601525][T16592] do_recvmmsg+0x105a/0x1ee0 [ 662.606112][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 662.611047][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 662.615897][T16592] do_syscall_64+0xb0/0x150 [ 662.620405][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 662.626281][T16592] [ 662.628599][T16592] Uninit was stored to memory at: [ 662.633623][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 662.639339][T16592] __msan_chain_origin+0x50/0x90 [ 662.644276][T16592] do_recvmmsg+0x105a/0x1ee0 [ 662.649296][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 662.654233][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 662.659081][T16592] do_syscall_64+0xb0/0x150 [ 662.663582][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 662.669460][T16592] [ 662.671777][T16592] Uninit was stored to memory at: [ 662.676800][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 662.682520][T16592] __msan_chain_origin+0x50/0x90 [ 662.687458][T16592] do_recvmmsg+0x105a/0x1ee0 [ 662.692048][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 662.696983][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 662.701832][T16592] do_syscall_64+0xb0/0x150 [ 662.706336][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 662.712211][T16592] [ 662.714530][T16592] Uninit was stored to memory at: [ 662.719554][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 662.725269][T16592] __msan_chain_origin+0x50/0x90 [ 662.730203][T16592] do_recvmmsg+0x105a/0x1ee0 [ 662.734790][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 662.739728][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 662.744573][T16592] do_syscall_64+0xb0/0x150 [ 662.749193][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 662.755076][T16592] [ 662.757395][T16592] Uninit was stored to memory at: [ 662.762421][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 662.768143][T16592] __msan_chain_origin+0x50/0x90 [ 662.773078][T16592] do_recvmmsg+0x105a/0x1ee0 [ 662.777666][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 662.782600][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 662.787449][T16592] do_syscall_64+0xb0/0x150 [ 662.791952][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 662.797838][T16592] [ 662.800156][T16592] Uninit was stored to memory at: [ 662.805177][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 662.810896][T16592] __msan_chain_origin+0x50/0x90 [ 662.815831][T16592] do_recvmmsg+0x105a/0x1ee0 [ 662.820443][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 662.825383][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 662.830244][T16592] do_syscall_64+0xb0/0x150 [ 662.834744][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 662.840620][T16592] [ 662.842935][T16592] Uninit was stored to memory at: [ 662.847964][T16592] kmsan_internal_chain_origin+0xad/0x130 [ 662.853677][T16592] __msan_chain_origin+0x50/0x90 [ 662.858610][T16592] do_recvmmsg+0x105a/0x1ee0 [ 662.863197][T16592] __se_sys_recvmmsg+0x1d1/0x350 [ 662.868129][T16592] __x64_sys_recvmmsg+0x62/0x80 [ 662.872973][T16592] do_syscall_64+0xb0/0x150 [ 662.877474][T16592] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 662.883352][T16592] [ 662.885670][T16592] Local variable ----msg_sys@do_recvmmsg created at: [ 662.892343][T16592] do_recvmmsg+0xc5/0x1ee0 [ 662.896756][T16592] do_recvmmsg+0xc5/0x1ee0 [ 663.050906][T16598] not chained 1040000 origins [ 663.055628][T16598] CPU: 1 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 663.064288][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 663.074339][T16598] Call Trace: [ 663.077639][T16598] dump_stack+0x1df/0x240 [ 663.081984][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 663.087712][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 663.092833][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 663.098741][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 663.104037][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 663.109246][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 663.115063][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 663.121138][T16598] ? kfree+0x61/0x30f0 [ 663.125218][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 663.130334][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 663.135899][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 663.141976][T16598] ? _copy_from_user+0x15b/0x260 [ 663.146918][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 663.152031][T16598] __msan_chain_origin+0x50/0x90 [ 663.156977][T16598] do_recvmmsg+0x105a/0x1ee0 [ 663.161602][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 663.166908][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 663.171938][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 663.176971][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 663.182881][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 663.188451][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 663.193308][T16598] do_syscall_64+0xb0/0x150 [ 663.198083][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 663.203974][T16598] RIP: 0033:0x45c1d9 [ 663.207857][T16598] Code: Bad RIP value. [ 663.211923][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 663.220333][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 663.228306][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 663.236280][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 663.244428][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 663.252400][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 663.260383][T16598] Uninit was stored to memory at: [ 663.265415][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 663.271143][T16598] __msan_chain_origin+0x50/0x90 [ 663.276087][T16598] do_recvmmsg+0x105a/0x1ee0 [ 663.281115][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 663.286063][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 663.290920][T16598] do_syscall_64+0xb0/0x150 [ 663.295429][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 663.301314][T16598] [ 663.303649][T16598] Uninit was stored to memory at: [ 663.308676][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 663.314399][T16598] __msan_chain_origin+0x50/0x90 [ 663.319357][T16598] do_recvmmsg+0x105a/0x1ee0 [ 663.323945][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 663.328886][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 663.333785][T16598] do_syscall_64+0xb0/0x150 [ 663.338296][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 663.344175][T16598] [ 663.346493][T16598] Uninit was stored to memory at: [ 663.351521][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 663.357244][T16598] __msan_chain_origin+0x50/0x90 [ 663.362192][T16598] do_recvmmsg+0x105a/0x1ee0 [ 663.366786][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 663.371727][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 663.376578][T16598] do_syscall_64+0xb0/0x150 [ 663.381084][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 663.386963][T16598] [ 663.389290][T16598] Uninit was stored to memory at: [ 663.394318][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 663.400054][T16598] __msan_chain_origin+0x50/0x90 [ 663.405130][T16598] do_recvmmsg+0x105a/0x1ee0 [ 663.409732][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 663.414677][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 663.419530][T16598] do_syscall_64+0xb0/0x150 [ 663.424042][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 663.429922][T16598] [ 663.432244][T16598] Uninit was stored to memory at: [ 663.437277][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 663.442999][T16598] __msan_chain_origin+0x50/0x90 [ 663.448288][T16598] do_recvmmsg+0x105a/0x1ee0 [ 663.452899][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 663.457836][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 663.462698][T16598] do_syscall_64+0xb0/0x150 [ 663.467211][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 663.473105][T16598] [ 663.476469][T16598] Uninit was stored to memory at: [ 663.481503][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 663.487231][T16598] __msan_chain_origin+0x50/0x90 [ 663.492169][T16598] do_recvmmsg+0x105a/0x1ee0 [ 663.496762][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 663.501702][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 663.506557][T16598] do_syscall_64+0xb0/0x150 [ 663.511065][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 663.516943][T16598] [ 663.519259][T16598] Uninit was stored to memory at: [ 663.524286][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 663.530017][T16598] __msan_chain_origin+0x50/0x90 [ 663.535076][T16598] do_recvmmsg+0x105a/0x1ee0 [ 663.539667][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 663.544608][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 663.549462][T16598] do_syscall_64+0xb0/0x150 [ 663.553970][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 663.559851][T16598] [ 663.562173][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 663.570848][T16598] do_recvmmsg+0xc5/0x1ee0 [ 663.575265][T16598] do_recvmmsg+0xc5/0x1ee0 [ 663.752428][T16598] not chained 1050000 origins [ 663.757157][T16598] CPU: 1 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 663.765832][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 663.775890][T16598] Call Trace: [ 663.779192][T16598] dump_stack+0x1df/0x240 [ 663.784067][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 663.789794][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 663.794921][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 663.800833][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 663.806127][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 663.811351][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 663.817164][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 663.823319][T16598] ? kfree+0x61/0x30f0 [ 663.827396][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 663.832511][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 663.838067][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 663.844144][T16598] ? _copy_from_user+0x15b/0x260 [ 663.849084][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 663.854198][T16598] __msan_chain_origin+0x50/0x90 [ 663.859145][T16598] do_recvmmsg+0x105a/0x1ee0 [ 663.863780][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 663.869072][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 663.874103][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 663.879137][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 663.885038][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 663.889991][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 663.894851][T16598] do_syscall_64+0xb0/0x150 [ 663.899368][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 663.905256][T16598] RIP: 0033:0x45c1d9 [ 663.909226][T16598] Code: Bad RIP value. [ 663.913286][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 663.921695][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 663.929669][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 663.937734][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 663.945707][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 663.953679][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 663.961753][T16598] Uninit was stored to memory at: [ 663.966791][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 663.972516][T16598] __msan_chain_origin+0x50/0x90 [ 663.977458][T16598] do_recvmmsg+0x105a/0x1ee0 [ 663.982048][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 663.986989][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 663.991844][T16598] do_syscall_64+0xb0/0x150 [ 663.996352][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 664.002231][T16598] [ 664.004548][T16598] Uninit was stored to memory at: [ 664.009578][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 664.015298][T16598] __msan_chain_origin+0x50/0x90 [ 664.020237][T16598] do_recvmmsg+0x105a/0x1ee0 [ 664.024842][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 664.029784][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 664.034638][T16598] do_syscall_64+0xb0/0x150 [ 664.039147][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 664.045033][T16598] [ 664.047357][T16598] Uninit was stored to memory at: [ 664.052387][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 664.058110][T16598] __msan_chain_origin+0x50/0x90 [ 664.063052][T16598] do_recvmmsg+0x105a/0x1ee0 [ 664.067642][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 664.072590][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 664.077445][T16598] do_syscall_64+0xb0/0x150 [ 664.081980][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 664.087868][T16598] [ 664.090185][T16598] Uninit was stored to memory at: [ 664.095212][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 664.100935][T16598] __msan_chain_origin+0x50/0x90 [ 664.105884][T16598] do_recvmmsg+0x105a/0x1ee0 [ 664.110481][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 664.115421][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 664.120274][T16598] do_syscall_64+0xb0/0x150 [ 664.124786][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 664.130683][T16598] [ 664.133001][T16598] Uninit was stored to memory at: [ 664.138029][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 664.143772][T16598] __msan_chain_origin+0x50/0x90 [ 664.148714][T16598] do_recvmmsg+0x105a/0x1ee0 [ 664.154003][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 664.158943][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 664.163805][T16598] do_syscall_64+0xb0/0x150 [ 664.168319][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 664.174199][T16598] [ 664.176532][T16598] Uninit was stored to memory at: [ 664.181599][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 664.187316][T16598] __msan_chain_origin+0x50/0x90 [ 664.192257][T16598] do_recvmmsg+0x105a/0x1ee0 [ 664.196852][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 664.201788][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 664.206651][T16598] do_syscall_64+0xb0/0x150 [ 664.211157][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 664.217036][T16598] [ 664.219354][T16598] Uninit was stored to memory at: [ 664.224472][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 664.230195][T16598] __msan_chain_origin+0x50/0x90 [ 664.235148][T16598] do_recvmmsg+0x105a/0x1ee0 [ 664.239742][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 664.244682][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 664.249535][T16598] do_syscall_64+0xb0/0x150 [ 664.254043][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 664.259919][T16598] [ 664.262242][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 664.268919][T16598] do_recvmmsg+0xc5/0x1ee0 [ 664.273335][T16598] do_recvmmsg+0xc5/0x1ee0 [ 664.442799][T16598] not chained 1060000 origins [ 664.447520][T16598] CPU: 1 PID: 16598 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 664.456182][T16598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 664.466228][T16598] Call Trace: [ 664.469526][T16598] dump_stack+0x1df/0x240 [ 664.473861][T16598] kmsan_internal_chain_origin+0x6f/0x130 [ 664.479581][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 664.484693][T16598] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 664.490586][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 664.495875][T16598] ? kmsan_get_metadata+0x11d/0x180 [ 664.501075][T16598] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 664.506881][T16598] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 664.512949][T16598] ? kfree+0x61/0x30f0 [ 664.517022][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 664.522130][T16598] ? kmsan_set_origin_checked+0x95/0xf0 [ 664.527674][T16598] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 664.533746][T16598] ? _copy_from_user+0x15b/0x260 [ 664.538681][T16598] ? kmsan_get_metadata+0x4f/0x180 [ 664.543795][T16598] __msan_chain_origin+0x50/0x90 [ 664.548821][T16598] do_recvmmsg+0x105a/0x1ee0 [ 664.553702][T16598] ? __msan_poison_alloca+0xf0/0x120 [ 664.558994][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 664.564015][T16598] ? __se_sys_recvmmsg+0xac/0x350 [ 664.569061][T16598] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 664.574967][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 664.579917][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 664.584773][T16598] do_syscall_64+0xb0/0x150 [ 664.589283][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 664.595170][T16598] RIP: 0033:0x45c1d9 [ 664.599077][T16598] Code: Bad RIP value. [ 664.603134][T16598] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 664.611540][T16598] RAX: ffffffffffffffda RBX: 0000000000024b40 RCX: 000000000045c1d9 [ 664.619506][T16598] RDX: 00000000040000fd RSI: 0000000020002bc0 RDI: 0000000000000004 [ 664.627472][T16598] RBP: 000000000078c090 R08: 0000000000000000 R09: 0000000000000000 [ 664.635438][T16598] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 664.643410][T16598] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 664.651386][T16598] Uninit was stored to memory at: [ 664.656411][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 664.662126][T16598] __msan_chain_origin+0x50/0x90 [ 664.667072][T16598] do_recvmmsg+0x105a/0x1ee0 [ 664.671672][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 664.676607][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 664.681463][T16598] do_syscall_64+0xb0/0x150 [ 664.685960][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 664.691837][T16598] [ 664.694156][T16598] Uninit was stored to memory at: [ 664.699177][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 664.704908][T16598] __msan_chain_origin+0x50/0x90 [ 664.709842][T16598] do_recvmmsg+0x105a/0x1ee0 [ 664.714425][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 664.719357][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 664.724203][T16598] do_syscall_64+0xb0/0x150 [ 664.728705][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 664.734579][T16598] [ 664.736898][T16598] Uninit was stored to memory at: [ 664.742035][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 664.747765][T16598] __msan_chain_origin+0x50/0x90 [ 664.752708][T16598] do_recvmmsg+0x105a/0x1ee0 [ 664.757297][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 664.762234][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 664.767093][T16598] do_syscall_64+0xb0/0x150 [ 664.771593][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 664.777470][T16598] [ 664.779791][T16598] Uninit was stored to memory at: [ 664.784813][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 664.790529][T16598] __msan_chain_origin+0x50/0x90 [ 664.795458][T16598] do_recvmmsg+0x105a/0x1ee0 [ 664.800043][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 664.805001][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 664.809852][T16598] do_syscall_64+0xb0/0x150 [ 664.814358][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 664.820250][T16598] [ 664.822568][T16598] Uninit was stored to memory at: [ 664.827679][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 664.833402][T16598] __msan_chain_origin+0x50/0x90 [ 664.838355][T16598] do_recvmmsg+0x105a/0x1ee0 [ 664.842945][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 664.847887][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 664.852737][T16598] do_syscall_64+0xb0/0x150 [ 664.857238][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 664.863115][T16598] [ 664.865430][T16598] Uninit was stored to memory at: [ 664.870455][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 664.876170][T16598] __msan_chain_origin+0x50/0x90 [ 664.881108][T16598] do_recvmmsg+0x105a/0x1ee0 [ 664.885694][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 664.890626][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 664.895474][T16598] do_syscall_64+0xb0/0x150 [ 664.899990][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 664.905872][T16598] [ 664.908186][T16598] Uninit was stored to memory at: [ 664.913207][T16598] kmsan_internal_chain_origin+0xad/0x130 [ 664.918923][T16598] __msan_chain_origin+0x50/0x90 [ 664.923951][T16598] do_recvmmsg+0x105a/0x1ee0 [ 664.928550][T16598] __se_sys_recvmmsg+0x1d1/0x350 [ 664.933495][T16598] __x64_sys_recvmmsg+0x62/0x80 [ 664.938352][T16598] do_syscall_64+0xb0/0x150 [ 664.943038][T16598] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 664.949094][T16598] [ 664.951417][T16598] Local variable ----msg_sys@do_recvmmsg created at: [ 664.958106][T16598] do_recvmmsg+0xc5/0x1ee0 [ 664.962526][T16598] do_recvmmsg+0xc5/0x1ee0 00:48:26 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000003c0)={0xa, 0x4e23, 0x0, @empty}, 0x1c) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) listen(r0, 0x0) r3 = socket$inet(0x2, 0x4000000000000001, 0x0) sendto$inet(r3, 0x0, 0x0, 0x200087bd, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10) write$binfmt_script(r3, &(0x7f0000000400)={'#! ', './file0'}, 0xb) 00:48:26 executing program 0: 00:48:26 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r2 = dup3(r0, 0xffffffffffffffff, 0x0) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:26 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) 00:48:26 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, 0xffffffffffffffff, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:48:26 executing program 5: 00:48:26 executing program 0: perf_event_open(&(0x7f000001d000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x80002, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000000)={'ipvlan0\x00'}) [ 665.376493][ C1] TCP: request_sock_TCP: Possible SYN flooding on port 20003. Sending cookies. Check SNMP counters. [ 665.432149][ C0] TCP: request_sock_TCP: Possible SYN flooding on port 20003. Sending cookies. Check SNMP counters. 00:48:26 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r2 = dup3(r0, 0xffffffffffffffff, 0x0) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:26 executing program 1: perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x6c, &(0x7f0000000040)=0x0) io_submit(r0, 0x55, &(0x7f0000000040)) 00:48:26 executing program 0: pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_procfs(0x0, &(0x7f0000000340)='net/route\x00') sendfile(r0, r1, 0x0, 0x320c) 00:48:26 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r2 = dup3(r0, 0xffffffffffffffff, 0x0) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:27 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) 00:48:27 executing program 1: 00:48:27 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) r1 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r2 = dup3(r0, r1, 0x0) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:27 executing program 0: 00:48:27 executing program 1: 00:48:28 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, 0xffffffffffffffff, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:48:28 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) r1 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r2 = dup3(r0, r1, 0x0) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:28 executing program 0: 00:48:28 executing program 1: 00:48:28 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) 00:48:28 executing program 5: 00:48:28 executing program 1: 00:48:28 executing program 0: 00:48:28 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) r1 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r2 = dup3(r0, r1, 0x0) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:28 executing program 1: 00:48:29 executing program 0: 00:48:29 executing program 2: setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r0 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r1 = dup3(0xffffffffffffffff, r0, 0x0) sendmsg$TIPC_NL_NET_SET(r1, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:30 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, 0xffffffffffffffff, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:48:30 executing program 1: 00:48:30 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:30 executing program 0: 00:48:30 executing program 2: setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r0 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r1 = dup3(0xffffffffffffffff, r0, 0x0) sendmsg$TIPC_NL_NET_SET(r1, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:30 executing program 5: 00:48:30 executing program 0: 00:48:30 executing program 1: 00:48:30 executing program 2: setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r0 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r1 = dup3(0xffffffffffffffff, r0, 0x0) sendmsg$TIPC_NL_NET_SET(r1, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:30 executing program 0: 00:48:30 executing program 2: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:30 executing program 1: 00:48:31 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, 0x0) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:48:31 executing program 1: 00:48:31 executing program 0: 00:48:31 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:31 executing program 2: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:31 executing program 5: 00:48:32 executing program 0: 00:48:32 executing program 2: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:32 executing program 1: 00:48:32 executing program 0: 00:48:32 executing program 1: 00:48:32 executing program 2: socketpair$unix(0x1, 0x5, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r0 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r1 = dup3(0xffffffffffffffff, r0, 0x0) sendmsg$TIPC_NL_NET_SET(r1, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:33 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, 0x0) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:48:33 executing program 0: 00:48:33 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:33 executing program 1: 00:48:33 executing program 2: socketpair$unix(0x1, 0x5, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r0 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r1 = dup3(0xffffffffffffffff, r0, 0x0) sendmsg$TIPC_NL_NET_SET(r1, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:33 executing program 5: 00:48:33 executing program 1: 00:48:33 executing program 2: socketpair$unix(0x1, 0x5, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r0 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r1 = dup3(0xffffffffffffffff, r0, 0x0) sendmsg$TIPC_NL_NET_SET(r1, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:33 executing program 0: 00:48:34 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r1 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r2 = dup3(r0, r1, 0x0) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:34 executing program 1: 00:48:34 executing program 0: 00:48:35 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, 0x0) ppoll(&(0x7f0000000100)=[{r1}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:48:35 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:35 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r1 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r2 = dup3(r0, r1, 0x0) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:35 executing program 1: 00:48:35 executing program 0: 00:48:35 executing program 5: 00:48:35 executing program 0: 00:48:35 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r1 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r2 = dup3(r0, r1, 0x0) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:35 executing program 1: 00:48:35 executing program 0: 00:48:36 executing program 1: 00:48:36 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, 0x0, 0x0) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:37 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(0x0, 0x0, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:48:37 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:37 executing program 0: 00:48:37 executing program 1: 00:48:37 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, 0x0, 0x0) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:37 executing program 5: 00:48:37 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, 0x0, 0x0) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:37 executing program 0: 00:48:37 executing program 1: 00:48:37 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x0, 0x0}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:37 executing program 1: 00:48:37 executing program 0: 00:48:38 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(0x0, 0x0, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:48:38 executing program 1: 00:48:38 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:38 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x0, 0x0}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:38 executing program 0: 00:48:38 executing program 5: 00:48:38 executing program 0: 00:48:38 executing program 1: 00:48:38 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x0, 0x0}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:38 executing program 0: 00:48:38 executing program 1: 00:48:39 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) [ 678.584404][ T1] systemd[1]: systemd-journald.service: Main process exited, code=killed, status=6/ABRT [ 678.633231][ T1] systemd[1]: systemd-journald.service: Unit entered failed state. [ 678.687140][ T1] systemd[1]: systemd-journald.service: Failed with result 'watchdog'. [ 678.721691][ T1] systemd[1]: systemd-journald.service: Service has no hold-off time, scheduling restart. [ 678.747127][ T1] systemd[1]: Stopped Flush Journal to Persistent Storage. [ 678.755358][ T1] systemd[1]: Stopping Flush Journal to Persistent Storage... [ 678.782201][ T1] systemd[1]: Stopped Journal Service. [ 678.849877][ T1] systemd[1]: Starting Journal Service... 00:48:40 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(0x0, 0x0, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:48:40 executing program 0: 00:48:40 executing program 3: socket$key(0xf, 0x3, 0x2) r0 = socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:40 executing program 1: 00:48:40 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) [ 679.319429][T16985] systemd-journald[16985]: File /run/log/journal/64dd78f1a75445a997c532444ad0f085/system.journal corrupted or uncleanly shut down, renaming and replacing. 00:48:41 executing program 5: 00:48:41 executing program 0: 00:48:41 executing program 1: 00:48:41 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:41 executing program 3: socket$key(0xf, 0x3, 0x2) r0 = socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:41 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:41 executing program 1: 00:48:42 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100), 0x0, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:48:42 executing program 0: 00:48:42 executing program 3: socket$key(0xf, 0x3, 0x2) r0 = socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:42 executing program 1: 00:48:42 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:42 executing program 5: 00:48:42 executing program 1: 00:48:42 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20, 0x0, 0x0, 0xfffff024}, {}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:42 executing program 1: 00:48:42 executing program 0: 00:48:42 executing program 3: sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:42 executing program 1: 00:48:43 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100), 0x0, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:48:43 executing program 0: 00:48:43 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:43 executing program 1: 00:48:43 executing program 3: sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:43 executing program 5: 00:48:44 executing program 1: 00:48:44 executing program 0: 00:48:44 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:44 executing program 3: sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:44 executing program 0: 00:48:44 executing program 1: 00:48:45 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100), 0x0, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:48:45 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:45 executing program 3: socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:45 executing program 0: 00:48:45 executing program 1: 00:48:45 executing program 5: 00:48:45 executing program 0: 00:48:45 executing program 1: 00:48:45 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x0, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:46 executing program 3: socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:46 executing program 0: 00:48:46 executing program 1: 00:48:47 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:48:47 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x0, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:47 executing program 0: 00:48:47 executing program 1: 00:48:47 executing program 3: socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:47 executing program 5: 00:48:47 executing program 1: 00:48:47 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x0, 0x0, 0x0, 0xfffff024}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:47 executing program 0: 00:48:47 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, 0x0, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:47 executing program 1: 00:48:47 executing program 0: 00:48:48 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:48:48 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:48 executing program 1: 00:48:48 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, 0x0, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:48 executing program 0: 00:48:48 executing program 5: 00:48:48 executing program 0: 00:48:49 executing program 1: 00:48:49 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000040)=[{0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:49 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, 0x0, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:49 executing program 1: 00:48:49 executing program 0: 00:48:50 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, 0x0, 0x0) 00:48:50 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000040)=[{0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:50 executing program 0: 00:48:50 executing program 1: 00:48:50 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:50 executing program 5: 00:48:50 executing program 0: 00:48:50 executing program 1: 00:48:50 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000040)=[{0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:50 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:50 executing program 0: 00:48:50 executing program 1: 00:48:51 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, 0x0, 0x0, 0x0) 00:48:51 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:51 executing program 0: 00:48:51 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:51 executing program 1: 00:48:51 executing program 5: 00:48:51 executing program 1: 00:48:51 executing program 0: 00:48:51 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:51 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:51 executing program 1: 00:48:52 executing program 0: 00:48:53 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, 0x0, 0x0, 0x0) 00:48:53 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:53 executing program 1: 00:48:53 executing program 0: 00:48:53 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:53 executing program 5: 00:48:54 executing program 1: 00:48:54 executing program 0: 00:48:54 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:54 executing program 1: 00:48:54 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:54 executing program 0: 00:48:55 executing program 4: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) socket(0x200000000000011, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000780)={0x40002016}) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000180)) ppoll(&(0x7f0000000100)=[{r1}], 0x1, 0x0, 0x0, 0x0) 00:48:55 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:55 executing program 1: 00:48:55 executing program 0: 00:48:55 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:55 executing program 5: 00:48:56 executing program 1: 00:48:56 executing program 0: 00:48:56 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:56 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:56 executing program 1: 00:48:56 executing program 0: shmget(0x3, 0x4000, 0x0, &(0x7f0000000000/0x4000)=nil) 00:48:58 executing program 5: r0 = creat(&(0x7f00000000c0)='./file1\x00', 0x0) r1 = fanotify_init(0x0, 0x0) fanotify_mark(r1, 0x105, 0x1b, r0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) readv(r1, &(0x7f00000004c0)=[{&(0x7f0000000040)=""/119, 0x77}], 0x2) 00:48:58 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(0x0, 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:58 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_GET_STATUS64(r0, 0x4c05, &(0x7f0000000240)) 00:48:58 executing program 0: r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x0, 0x2812, r0, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1081}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$FUSE_DIRENTPLUS(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="cc"], 0x5) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0, 0x32, 0xffffffffffffffff, 0x0) 00:48:58 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:58 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) accept(0xffffffffffffffff, 0x0, 0x0) 00:48:58 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(0x0, 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:48:58 executing program 1: 00:48:58 executing program 0: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) 00:48:58 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:48:58 executing program 0: open(&(0x7f0000000040)='./bus\x00', 0x607fe, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x0, 0x0) r1 = fanotify_init(0x200, 0x0) fanotify_mark(r1, 0x141, 0x4800003e, r0, 0x0) readv(r1, &(0x7f0000003e80)=[{&(0x7f0000000e00)=""/4096, 0x1000}], 0x1) 00:48:58 executing program 1: syz_emit_ethernet(0x46, &(0x7f0000000000)={@broadcast, @random="e0d35b1004bb", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @loopback}, "00006371ae9b1c01"}}}}}, 0x0) [ 698.735219][ T1] systemd[1]: Starting Load/Save RF Kill Switch Status... [ 698.891393][ T1] systemd[1]: Started Load/Save RF Kill Switch Status. [ 698.958241][T17322] sysfs: cannot create duplicate filename '/class/ieee80211/!' [ 698.965987][T17322] CPU: 1 PID: 17322 Comm: syz-executor.4 Not tainted 5.8.0-rc5-syzkaller #0 [ 698.974724][T17322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 698.984839][T17322] Call Trace: [ 698.988225][T17322] dump_stack+0x1df/0x240 [ 698.992639][T17322] sysfs_warn_dup+0x1c3/0x1f0 [ 698.997412][T17322] sysfs_do_create_link_sd+0x281/0x360 [ 699.002973][T17322] sysfs_create_link+0x125/0x190 [ 699.008010][T17322] device_add+0x1886/0x3ba0 [ 699.012621][T17322] ? kmsan_get_metadata+0x11d/0x180 [ 699.017915][T17322] wiphy_register+0x3123/0x3f00 [ 699.022894][T17322] ? kmsan_get_metadata+0x11d/0x180 [ 699.028192][T17322] ieee80211_register_hw+0x4d38/0x5860 [ 699.033767][T17322] mac80211_hwsim_new_radio+0x358d/0x52b0 [ 699.039593][T17322] hwsim_new_radio_nl+0x13bc/0x1940 [ 699.044892][T17322] ? hwsim_tx_info_frame_received_nl+0x1290/0x1290 [ 699.051478][T17322] genl_rcv_msg+0x1592/0x1740 [ 699.056268][T17322] ? kmsan_set_origin_checked+0x95/0xf0 [ 699.061922][T17322] netlink_rcv_skb+0x451/0x650 [ 699.066758][T17322] ? genl_rcv+0x80/0x80 [ 699.070993][T17322] genl_rcv+0x63/0x80 [ 699.075065][T17322] netlink_unicast+0xf9e/0x1100 [ 699.079991][T17322] ? genl_pernet_exit+0x90/0x90 [ 699.084950][T17322] netlink_sendmsg+0x1246/0x14d0 [ 699.090007][T17322] ? netlink_getsockopt+0x1440/0x1440 [ 699.095476][T17322] ____sys_sendmsg+0x1370/0x1400 [ 699.100526][T17322] __sys_sendmsg+0x623/0x750 [ 699.105222][T17322] ? kmsan_check_memory+0xd/0x10 [ 699.110237][T17322] ? _copy_to_user+0x12e/0x1d0 [ 699.115118][T17322] ? kmsan_get_metadata+0x11d/0x180 [ 699.120398][T17322] ? kmsan_get_metadata+0x11d/0x180 [ 699.125686][T17322] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 699.131580][T17322] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 699.137826][T17322] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 699.143828][T17322] __se_sys_sendmsg+0x97/0xb0 [ 699.148598][T17322] __x64_sys_sendmsg+0x4a/0x70 [ 699.153465][T17322] do_syscall_64+0xb0/0x150 [ 699.158069][T17322] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 699.164013][T17322] RIP: 0033:0x45c1d9 [ 699.167938][T17322] Code: Bad RIP value. [ 699.172052][T17322] RSP: 002b:00007f27af272c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 699.180799][T17322] RAX: ffffffffffffffda RBX: 000000000002ae80 RCX: 000000000045c1d9 [ 699.188837][T17322] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 699.196870][T17322] RBP: 000000000078bf40 R08: 0000000000000000 R09: 0000000000000000 [ 699.204909][T17322] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 699.212946][T17322] R13: 0000000000c9fb6f R14: 00007f27af2739c0 R15: 000000000078bf0c 00:49:00 executing program 5: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x0, @local}, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xd}}], 0x20) sendto$inet(r0, &(0x7f00003cef9f)='7', 0x1, 0x48c0, &(0x7f0000618000)={0x2, 0x0, @loopback}, 0x10) 00:49:00 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(0x0, 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:49:00 executing program 0: open(&(0x7f0000000040)='./bus\x00', 0x607fe, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x0, 0x0) r1 = fanotify_init(0x200, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) r2 = socket$inet6(0xa, 0x800000000000002, 0x0) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) fanotify_mark(r1, 0x141, 0x4800003e, r0, 0x0) readv(r1, &(0x7f0000003e80)=[{&(0x7f0000000e00)=""/4096, 0x1000}], 0x1) 00:49:00 executing program 1: r0 = syz_open_dev$video(&(0x7f0000000340)='/dev/video#\x00', 0x3, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) pread64(r0, &(0x7f00000000c0)=""/97, 0x61, 0x0) 00:49:00 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:01 executing program 4: r0 = socket$inet_sctp(0x2, 0x5, 0x84) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x0, @local}, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xd}}], 0x20) sendto$inet(r0, &(0x7f00003cef9f)='7', 0x1, 0x48c0, &(0x7f0000618000)={0x2, 0x0, @loopback}, 0x10) 00:49:01 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_GET_STATUS64(r0, 0x4c05, &(0x7f0000000240)) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) 00:49:01 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:49:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000040)=0x3) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x9}) ioctl$KVM_SET_CPUID(r2, 0xae80, 0x0) 00:49:01 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:01 executing program 5: unshare(0x40000000) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x6d, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x649f}, &(0x7f00000000c0)=0x18) [ 700.672756][T17365] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 00:49:01 executing program 1: set_mempolicy(0x1, 0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0xc8003, 0x0) 00:49:01 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:49:02 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd70000000"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:02 executing program 0: syz_open_pts(0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) 00:49:02 executing program 1: socket$netlink(0x10, 0x3, 0x0) r0 = socket$inet6(0xa, 0x3, 0x7) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg(r0, &(0x7f0000000480), 0x2e9, 0x0) r1 = socket$inet6(0xa, 0x3, 0x7) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg(r1, &(0x7f0000000480), 0x2e9, 0x0) 00:49:02 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x0, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) [ 701.120732][T17390] debugfs: Directory '!' with parent 'ieee80211' already present! [ 702.654074][T17407] not chained 1070000 origins [ 702.658808][T17407] CPU: 0 PID: 17407 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 702.667478][T17407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 702.677561][T17407] Call Trace: [ 702.680862][T17407] dump_stack+0x1df/0x240 [ 702.685205][T17407] kmsan_internal_chain_origin+0x6f/0x130 [ 702.690958][T17407] ? kmsan_get_metadata+0x11d/0x180 [ 702.696176][T17407] ? kmsan_get_metadata+0x4f/0x180 [ 702.701299][T17407] ? kmsan_set_origin_checked+0x95/0xf0 [ 702.706866][T17407] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 702.712958][T17407] ? _copy_from_user+0x15b/0x260 [ 702.717907][T17407] ? kmsan_get_metadata+0x4f/0x180 [ 702.723029][T17407] __msan_chain_origin+0x50/0x90 [ 702.727980][T17407] __copy_msghdr_from_user+0x555/0xaf0 [ 702.733462][T17407] ? __msan_get_context_state+0x9/0x20 [ 702.739176][T17407] __sys_sendmmsg+0x558/0xd80 [ 702.743884][T17407] ? kmsan_get_metadata+0x4f/0x180 [ 702.749015][T17407] ? kmsan_internal_set_origin+0x75/0xb0 [ 702.754659][T17407] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 702.760572][T17407] ? kmsan_check_memory+0xd/0x10 [ 702.765521][T17407] ? _copy_to_user+0x12e/0x1d0 [ 702.770311][T17407] ? kmsan_get_metadata+0x11d/0x180 [ 702.775517][T17407] ? kmsan_get_metadata+0x11d/0x180 [ 702.780723][T17407] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 702.786539][T17407] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 702.792697][T17407] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 702.798601][T17407] __se_sys_sendmmsg+0xbd/0xe0 [ 702.803403][T17407] __x64_sys_sendmmsg+0x56/0x70 [ 702.808264][T17407] do_syscall_64+0xb0/0x150 [ 702.812778][T17407] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 702.818671][T17407] RIP: 0033:0x45c1d9 [ 702.822563][T17407] Code: Bad RIP value. [ 702.826627][T17407] RSP: 002b:00007f3455a52c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 702.835043][T17407] RAX: ffffffffffffffda RBX: 0000000000025a40 RCX: 000000000045c1d9 [ 702.843018][T17407] RDX: 00000000000002e9 RSI: 0000000020000480 RDI: 0000000000000004 [ 702.851024][T17407] RBP: 000000000078c088 R08: 0000000000000000 R09: 0000000000000000 [ 702.859005][T17407] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 702.866981][T17407] R13: 0000000000c9fb6f R14: 00007f3455a539c0 R15: 000000000078c04c [ 702.874961][T17407] Uninit was stored to memory at: [ 702.880004][T17407] kmsan_internal_chain_origin+0xad/0x130 [ 702.885728][T17407] __msan_chain_origin+0x50/0x90 [ 702.890669][T17407] __copy_msghdr_from_user+0x555/0xaf0 [ 702.896131][T17407] __sys_sendmmsg+0x558/0xd80 [ 702.900813][T17407] __se_sys_sendmmsg+0xbd/0xe0 [ 702.905579][T17407] __x64_sys_sendmmsg+0x56/0x70 [ 702.910438][T17407] do_syscall_64+0xb0/0x150 [ 702.914949][T17407] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 702.920833][T17407] [ 702.923164][T17407] Uninit was stored to memory at: [ 702.928193][T17407] kmsan_internal_chain_origin+0xad/0x130 [ 702.933918][T17407] __msan_chain_origin+0x50/0x90 [ 702.938862][T17407] __copy_msghdr_from_user+0x555/0xaf0 [ 702.944323][T17407] __sys_sendmmsg+0x558/0xd80 [ 702.949007][T17407] __se_sys_sendmmsg+0xbd/0xe0 [ 702.953788][T17407] __x64_sys_sendmmsg+0x56/0x70 [ 702.958640][T17407] do_syscall_64+0xb0/0x150 [ 702.963146][T17407] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 702.969028][T17407] [ 702.971348][T17407] Uninit was stored to memory at: [ 702.976373][T17407] kmsan_internal_chain_origin+0xad/0x130 [ 702.982092][T17407] __msan_chain_origin+0x50/0x90 [ 702.987034][T17407] __copy_msghdr_from_user+0x555/0xaf0 [ 702.992500][T17407] __sys_sendmmsg+0x558/0xd80 [ 702.997181][T17407] __se_sys_sendmmsg+0xbd/0xe0 [ 703.001944][T17407] __x64_sys_sendmmsg+0x56/0x70 [ 703.006801][T17407] do_syscall_64+0xb0/0x150 [ 703.011312][T17407] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 703.017195][T17407] [ 703.019518][T17407] Uninit was stored to memory at: [ 703.024550][T17407] kmsan_internal_chain_origin+0xad/0x130 [ 703.030277][T17407] __msan_chain_origin+0x50/0x90 [ 703.035226][T17407] __copy_msghdr_from_user+0x555/0xaf0 [ 703.040693][T17407] __sys_sendmmsg+0x558/0xd80 [ 703.045375][T17407] __se_sys_sendmmsg+0xbd/0xe0 [ 703.050148][T17407] __x64_sys_sendmmsg+0x56/0x70 [ 703.055003][T17407] do_syscall_64+0xb0/0x150 [ 703.059512][T17407] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 703.065395][T17407] [ 703.067737][T17407] Uninit was stored to memory at: [ 703.072767][T17407] kmsan_internal_chain_origin+0xad/0x130 [ 703.078501][T17407] __msan_chain_origin+0x50/0x90 [ 703.083441][T17407] __copy_msghdr_from_user+0x555/0xaf0 [ 703.088910][T17407] __sys_sendmmsg+0x558/0xd80 [ 703.093588][T17407] __se_sys_sendmmsg+0xbd/0xe0 [ 703.098358][T17407] __x64_sys_sendmmsg+0x56/0x70 [ 703.103212][T17407] do_syscall_64+0xb0/0x150 [ 703.107722][T17407] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 703.113605][T17407] [ 703.115926][T17407] Uninit was stored to memory at: [ 703.120964][T17407] kmsan_internal_chain_origin+0xad/0x130 [ 703.126688][T17407] __msan_chain_origin+0x50/0x90 [ 703.131633][T17407] __copy_msghdr_from_user+0x555/0xaf0 [ 703.137095][T17407] __sys_sendmmsg+0x558/0xd80 [ 703.141774][T17407] __se_sys_sendmmsg+0xbd/0xe0 [ 703.146539][T17407] __x64_sys_sendmmsg+0x56/0x70 [ 703.151389][T17407] do_syscall_64+0xb0/0x150 [ 703.155899][T17407] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 703.161779][T17407] [ 703.164105][T17407] Uninit was stored to memory at: [ 703.169135][T17407] kmsan_internal_chain_origin+0xad/0x130 [ 703.174859][T17407] __msan_chain_origin+0x50/0x90 [ 703.179800][T17407] __copy_msghdr_from_user+0x555/0xaf0 [ 703.185261][T17407] __sys_sendmmsg+0x558/0xd80 [ 703.190141][T17407] __se_sys_sendmmsg+0xbd/0xe0 [ 703.194910][T17407] __x64_sys_sendmmsg+0x56/0x70 [ 703.199767][T17407] do_syscall_64+0xb0/0x150 [ 703.204275][T17407] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 703.210153][T17407] [ 703.212482][T17407] Local variable ----msg_sys@__sys_sendmmsg created at: [ 703.219435][T17407] __sys_sendmmsg+0xb7/0xd80 [ 703.224035][T17407] __sys_sendmmsg+0xb7/0xd80 [ 703.552831][T17415] IPVS: ftp: loaded support on port[0] = 21 [ 704.438053][T17422] IPVS: ftp: loaded support on port[0] = 21 00:49:05 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @remote}}}}}}, 0x0) 00:49:05 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd70000000"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:05 executing program 0: syz_open_pts(0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) 00:49:05 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r1 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r2 = dup3(0xffffffffffffffff, r1, 0x0) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) [ 704.744440][T17470] sysfs: cannot create duplicate filename '/class/ieee80211/!' [ 704.752285][T17470] CPU: 1 PID: 17470 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 704.761022][T17470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 704.771125][T17470] Call Trace: [ 704.774587][T17470] dump_stack+0x1df/0x240 [ 704.778974][T17470] sysfs_warn_dup+0x1c3/0x1f0 [ 704.783712][T17470] sysfs_do_create_link_sd+0x281/0x360 [ 704.789221][T17470] sysfs_create_link+0x125/0x190 [ 704.794214][T17470] device_add+0x1886/0x3ba0 [ 704.798783][T17470] ? kmsan_get_metadata+0x11d/0x180 [ 704.804038][T17470] wiphy_register+0x3123/0x3f00 [ 704.808992][T17470] ? kmsan_get_metadata+0x11d/0x180 [ 704.814236][T17470] ieee80211_register_hw+0x4d38/0x5860 [ 704.819758][T17470] mac80211_hwsim_new_radio+0x358d/0x52b0 [ 704.825535][T17470] hwsim_new_radio_nl+0x13bc/0x1940 [ 704.830786][T17470] ? hwsim_tx_info_frame_received_nl+0x1290/0x1290 [ 704.837332][T17470] genl_rcv_msg+0x1592/0x1740 [ 704.842067][T17470] ? kmsan_set_origin_checked+0x95/0xf0 [ 704.847684][T17470] netlink_rcv_skb+0x451/0x650 [ 704.852480][T17470] ? genl_rcv+0x80/0x80 [ 704.856671][T17470] genl_rcv+0x63/0x80 [ 704.860701][T17470] netlink_unicast+0xf9e/0x1100 [ 704.865587][T17470] ? genl_pernet_exit+0x90/0x90 [ 704.870490][T17470] netlink_sendmsg+0x1246/0x14d0 [ 704.875494][T17470] ? netlink_getsockopt+0x1440/0x1440 [ 704.880912][T17470] ____sys_sendmsg+0x1370/0x1400 [ 704.885910][T17470] __sys_sendmsg+0x623/0x750 [ 704.890568][T17470] ? kmsan_check_memory+0xd/0x10 [ 704.895543][T17470] ? _copy_to_user+0x12e/0x1d0 [ 704.900350][T17470] ? kmsan_get_metadata+0x11d/0x180 [ 704.905602][T17470] ? kmsan_get_metadata+0x11d/0x180 [ 704.910851][T17470] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 704.916717][T17470] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 704.922915][T17470] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 704.928860][T17470] __se_sys_sendmsg+0x97/0xb0 [ 704.933585][T17470] __x64_sys_sendmsg+0x4a/0x70 [ 704.938407][T17470] do_syscall_64+0xb0/0x150 [ 704.942970][T17470] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 704.948894][T17470] RIP: 0033:0x45c1d9 [ 704.952795][T17470] Code: Bad RIP value. [ 704.956880][T17470] RSP: 002b:00007effaf7d6c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 704.965328][T17470] RAX: ffffffffffffffda RBX: 000000000002ae80 RCX: 000000000045c1d9 [ 704.973330][T17470] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 704.981331][T17470] RBP: 000000000078bf40 R08: 0000000000000000 R09: 0000000000000000 [ 704.989330][T17470] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 704.997333][T17470] R13: 0000000000c9fb6f R14: 00007effaf7d79c0 R15: 000000000078bf0c 00:49:06 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="ff000000000000001c0012000c000100626f6e64"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8, 0x1, 'sit\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r3}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @local}]}}}]}, 0x40}}, 0x0) [ 705.067254][T16314] tipc: TX() has been purged, node left! [ 705.247371][T17481] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 705.309346][T17481] 8021q: adding VLAN 0 to HW filter on device bond1 [ 705.466604][T17481] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. 00:49:07 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000140)={0x84a5, 0x15}) close(r0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) dup2(0xffffffffffffffff, 0xffffffffffffffff) fsconfig$FSCONFIG_SET_FD(r2, 0x5, &(0x7f0000000000)='macvlan0\x00', 0x0, 0xffffffffffffffff) fallocate(0xffffffffffffffff, 0x2, 0x4, 0xffffffff00000001) r3 = socket$packet(0x11, 0x3, 0x300) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) r4 = dup(0xffffffffffffffff) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r4, 0x400c6615, &(0x7f0000000040)) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, &(0x7f0000000280), 0x4) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'macvlan0\x00', 0x0}) bind$packet(r3, &(0x7f0000000240)={0x11, 0x0, r5}, 0x14) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x4240a2a0) setsockopt$packet_int(r3, 0x107, 0xe, &(0x7f0000000080)=0x8000005, 0x4) 00:49:07 executing program 0: syz_open_pts(0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) 00:49:07 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r1 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r2 = dup3(0xffffffffffffffff, r1, 0x0) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:49:07 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd70000000"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:07 executing program 1: r0 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x0) ioctl$LOOP_GET_STATUS64(r0, 0x4c05, &(0x7f0000000100)) [ 706.536497][T17537] sysfs: cannot create duplicate filename '/class/ieee80211/!' [ 706.544159][T17537] CPU: 1 PID: 17537 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 706.552860][T17537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 706.562936][T17537] Call Trace: [ 706.566278][T17537] dump_stack+0x1df/0x240 [ 706.570671][T17537] sysfs_warn_dup+0x1c3/0x1f0 [ 706.575413][T17537] sysfs_do_create_link_sd+0x281/0x360 [ 706.581051][T17537] sysfs_create_link+0x125/0x190 [ 706.586057][T17537] device_add+0x1886/0x3ba0 [ 706.590622][T17537] ? kmsan_get_metadata+0x11d/0x180 [ 706.595878][T17537] wiphy_register+0x3123/0x3f00 [ 706.600796][T17537] ? kmsan_get_metadata+0x11d/0x180 [ 706.606054][T17537] ieee80211_register_hw+0x4d38/0x5860 [ 706.611583][T17537] mac80211_hwsim_new_radio+0x358d/0x52b0 [ 706.617360][T17537] hwsim_new_radio_nl+0x13bc/0x1940 [ 706.622616][T17537] ? hwsim_tx_info_frame_received_nl+0x1290/0x1290 [ 706.629155][T17537] genl_rcv_msg+0x1592/0x1740 [ 706.633898][T17537] ? kmsan_set_origin_checked+0x95/0xf0 [ 706.639509][T17537] netlink_rcv_skb+0x451/0x650 [ 706.644305][T17537] ? genl_rcv+0x80/0x80 [ 706.648499][T17537] genl_rcv+0x63/0x80 [ 706.652549][T17537] netlink_unicast+0xf9e/0x1100 [ 706.657457][T17537] ? genl_pernet_exit+0x90/0x90 [ 706.662363][T17537] netlink_sendmsg+0x1246/0x14d0 [ 706.667368][T17537] ? netlink_getsockopt+0x1440/0x1440 [ 706.672786][T17537] ____sys_sendmsg+0x1370/0x1400 [ 706.677785][T17537] __sys_sendmsg+0x623/0x750 [ 706.682443][T17537] ? kmsan_check_memory+0xd/0x10 [ 706.687425][T17537] ? _copy_to_user+0x12e/0x1d0 [ 706.692234][T17537] ? kmsan_get_metadata+0x11d/0x180 [ 706.697477][T17537] ? kmsan_get_metadata+0x11d/0x180 [ 706.702719][T17537] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 706.708583][T17537] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 706.714780][T17537] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 706.720727][T17537] __se_sys_sendmsg+0x97/0xb0 [ 706.725617][T17537] __x64_sys_sendmsg+0x4a/0x70 [ 706.730468][T17537] do_syscall_64+0xb0/0x150 [ 706.735037][T17537] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 706.740953][T17537] RIP: 0033:0x45c1d9 [ 706.744856][T17537] Code: Bad RIP value. [ 706.748976][T17537] RSP: 002b:00007effaf7d6c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 706.757450][T17537] RAX: ffffffffffffffda RBX: 000000000002ae80 RCX: 000000000045c1d9 [ 706.765456][T17537] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 706.773602][T17537] RBP: 000000000078bf40 R08: 0000000000000000 R09: 0000000000000000 [ 706.781612][T17537] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 706.789612][T17537] R13: 0000000000c9fb6f R14: 00007effaf7d79c0 R15: 000000000078bf0c 00:49:08 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) getsockopt$inet_sctp_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, 0x0, 0x0) 00:49:08 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r1 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r2 = dup3(0xffffffffffffffff, r1, 0x0) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) [ 707.000501][T17546] debugfs: Directory '!' with parent 'ieee80211' already present! [ 707.048791][T17546] sysfs: cannot create duplicate filename '/class/ieee80211/!' [ 707.056677][T17546] CPU: 1 PID: 17546 Comm: syz-executor.1 Not tainted 5.8.0-rc5-syzkaller #0 [ 707.065417][T17546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 707.075536][T17546] Call Trace: [ 707.079016][T17546] dump_stack+0x1df/0x240 [ 707.083444][T17546] sysfs_warn_dup+0x1c3/0x1f0 [ 707.088220][T17546] sysfs_do_create_link_sd+0x281/0x360 [ 707.093775][T17546] sysfs_create_link+0x125/0x190 [ 707.098812][T17546] device_add+0x1886/0x3ba0 [ 707.103415][T17546] ? kmsan_get_metadata+0x11d/0x180 [ 707.108717][T17546] wiphy_register+0x3123/0x3f00 [ 707.113689][T17546] ? kmsan_get_metadata+0x11d/0x180 [ 707.118981][T17546] ieee80211_register_hw+0x4d38/0x5860 [ 707.124525][T17546] mac80211_hwsim_new_radio+0x358d/0x52b0 [ 707.130305][T17546] hwsim_new_radio_nl+0x13bc/0x1940 [ 707.135565][T17546] ? hwsim_tx_info_frame_received_nl+0x1290/0x1290 [ 707.142107][T17546] genl_rcv_msg+0x1592/0x1740 [ 707.147451][T17546] ? kmsan_set_origin_checked+0x95/0xf0 [ 707.153055][T17546] netlink_rcv_skb+0x451/0x650 [ 707.157941][T17546] ? genl_rcv+0x80/0x80 [ 707.162146][T17546] genl_rcv+0x63/0x80 [ 707.166178][T17546] netlink_unicast+0xf9e/0x1100 [ 707.171069][T17546] ? genl_pernet_exit+0x90/0x90 [ 707.175979][T17546] netlink_sendmsg+0x1246/0x14d0 [ 707.180991][T17546] ? netlink_getsockopt+0x1440/0x1440 [ 707.186412][T17546] ____sys_sendmsg+0x1370/0x1400 [ 707.191418][T17546] __sys_sendmsg+0x623/0x750 [ 707.196077][T17546] ? kmsan_check_memory+0xd/0x10 [ 707.201143][T17546] ? _copy_to_user+0x12e/0x1d0 [ 707.205951][T17546] ? kmsan_get_metadata+0x11d/0x180 [ 707.211198][T17546] ? kmsan_get_metadata+0x11d/0x180 [ 707.216464][T17546] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 707.222333][T17546] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 707.228527][T17546] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 707.234473][T17546] __se_sys_sendmsg+0x97/0xb0 [ 707.239204][T17546] __x64_sys_sendmsg+0x4a/0x70 [ 707.244105][T17546] do_syscall_64+0xb0/0x150 [ 707.248751][T17546] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 707.254670][T17546] RIP: 0033:0x45c1d9 [ 707.258573][T17546] Code: Bad RIP value. [ 707.262661][T17546] RSP: 002b:00007f3455a94c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 707.271139][T17546] RAX: ffffffffffffffda RBX: 000000000002ae80 RCX: 000000000045c1d9 [ 707.279600][T17546] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 707.287598][T17546] RBP: 000000000078bf40 R08: 0000000000000000 R09: 0000000000000000 [ 707.295600][T17546] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 707.303701][T17546] R13: 0000000000c9fb6f R14: 00007f3455a959c0 R15: 000000000078bf0c [ 707.411541][ T1] systemd[1]: Starting Load/Save RF Kill Switch Status... 00:49:08 executing program 4: pipe(&(0x7f0000000000)={0xffffffffffffffff}) utimensat(r0, 0x0, 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffff9c) 00:49:08 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b0091"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:08 executing program 0: syz_open_pts(0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) 00:49:08 executing program 1: r0 = socket(0x18, 0x2, 0x0) sendmsg(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0xfffffffffffffe36}, 0x0) 00:49:08 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r2 = dup3(r0, 0xffffffffffffffff, 0x0) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) [ 707.680763][T17572] sysfs: cannot create duplicate filename '/class/ieee80211/!' [ 707.688852][T17572] CPU: 1 PID: 17572 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 707.697598][T17572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 707.707846][T17572] Call Trace: [ 707.711239][T17572] dump_stack+0x1df/0x240 [ 707.715672][T17572] sysfs_warn_dup+0x1c3/0x1f0 [ 707.720447][T17572] sysfs_do_create_link_sd+0x281/0x360 [ 707.726006][T17572] sysfs_create_link+0x125/0x190 [ 707.731062][T17572] device_add+0x1886/0x3ba0 [ 707.735662][T17572] ? kmsan_get_metadata+0x11d/0x180 [ 707.741718][T17572] wiphy_register+0x3123/0x3f00 [ 707.746701][T17572] ? kmsan_get_metadata+0x11d/0x180 [ 707.752000][T17572] ieee80211_register_hw+0x4d38/0x5860 [ 707.757582][T17572] mac80211_hwsim_new_radio+0x358d/0x52b0 [ 707.763417][T17572] hwsim_new_radio_nl+0x13bc/0x1940 [ 707.768720][T17572] ? hwsim_tx_info_frame_received_nl+0x1290/0x1290 [ 707.775295][T17572] genl_rcv_msg+0x1592/0x1740 [ 707.780077][T17572] ? kmsan_set_origin_checked+0x95/0xf0 [ 707.785732][T17572] netlink_rcv_skb+0x451/0x650 [ 707.790571][T17572] ? genl_rcv+0x80/0x80 [ 707.794809][T17572] genl_rcv+0x63/0x80 [ 707.798881][T17572] netlink_unicast+0xf9e/0x1100 [ 707.803814][T17572] ? genl_pernet_exit+0x90/0x90 [ 707.808773][T17572] netlink_sendmsg+0x1246/0x14d0 [ 707.813838][T17572] ? netlink_getsockopt+0x1440/0x1440 [ 707.820088][T17572] ____sys_sendmsg+0x1370/0x1400 [ 707.825141][T17572] __sys_sendmsg+0x623/0x750 [ 707.829844][T17572] ? kmsan_check_memory+0xd/0x10 [ 707.834865][T17572] ? _copy_to_user+0x12e/0x1d0 [ 707.839720][T17572] ? kmsan_get_metadata+0x11d/0x180 [ 707.845018][T17572] ? kmsan_get_metadata+0x11d/0x180 [ 707.850307][T17572] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 707.856207][T17572] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 707.862452][T17572] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 707.868449][T17572] __se_sys_sendmsg+0x97/0xb0 [ 707.873240][T17572] __x64_sys_sendmsg+0x4a/0x70 [ 707.878100][T17572] do_syscall_64+0xb0/0x150 [ 707.882709][T17572] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 707.888659][T17572] RIP: 0033:0x45c1d9 [ 707.892586][T17572] Code: Bad RIP value. [ 707.896794][T17572] RSP: 002b:00007effaf7d6c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 707.905290][T17572] RAX: ffffffffffffffda RBX: 000000000002ae80 RCX: 000000000045c1d9 [ 707.913414][T17572] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 707.921623][T17572] RBP: 000000000078bf40 R08: 0000000000000000 R09: 0000000000000000 [ 707.929661][T17572] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 707.937800][T17572] R13: 0000000000c9fb6f R14: 00007effaf7d79c0 R15: 000000000078bf0c [ 707.957404][ T1] systemd[1]: Started Load/Save RF Kill Switch Status. [ 708.106333][T16314] tipc: TX() has been purged, node left! 00:49:11 executing program 5: r0 = socket(0x1f, 0x1, 0x0) r1 = socket(0x1f, 0x1, 0x0) dup2(r0, r1) 00:49:11 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) fchown(r0, 0x0, 0x0) 00:49:11 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r2 = dup3(r0, 0xffffffffffffffff, 0x0) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:49:11 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b0091"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:11 executing program 0: syz_open_pts(0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:11 executing program 4: pipe(&(0x7f0000001280)={0xffffffffffffffff, 0xffffffffffffffff}) write(r0, 0x0, 0x0) [ 710.218832][T17610] sysfs: cannot create duplicate filename '/class/ieee80211/!' [ 710.227161][T17610] CPU: 1 PID: 17610 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 710.235914][T17610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 710.246141][T17610] Call Trace: [ 710.249617][T17610] dump_stack+0x1df/0x240 [ 710.254041][T17610] sysfs_warn_dup+0x1c3/0x1f0 [ 710.258828][T17610] sysfs_do_create_link_sd+0x281/0x360 [ 710.264391][T17610] sysfs_create_link+0x125/0x190 [ 710.269440][T17610] device_add+0x1886/0x3ba0 [ 710.274038][T17610] ? kmsan_get_metadata+0x11d/0x180 [ 710.279435][T17610] wiphy_register+0x3123/0x3f00 [ 710.284416][T17610] ? kmsan_get_metadata+0x11d/0x180 [ 710.289718][T17610] ieee80211_register_hw+0x4d38/0x5860 [ 710.295296][T17610] mac80211_hwsim_new_radio+0x358d/0x52b0 [ 710.301226][T17610] hwsim_new_radio_nl+0x13bc/0x1940 [ 710.306551][T17610] ? hwsim_tx_info_frame_received_nl+0x1290/0x1290 [ 710.313246][T17610] genl_rcv_msg+0x1592/0x1740 [ 710.318034][T17610] ? kmsan_set_origin_checked+0x95/0xf0 [ 710.323691][T17610] netlink_rcv_skb+0x451/0x650 [ 710.328533][T17610] ? genl_rcv+0x80/0x80 [ 710.332874][T17610] genl_rcv+0x63/0x80 [ 710.336960][T17610] netlink_unicast+0xf9e/0x1100 [ 710.341903][T17610] ? genl_pernet_exit+0x90/0x90 [ 710.346869][T17610] netlink_sendmsg+0x1246/0x14d0 [ 710.351933][T17610] ? netlink_getsockopt+0x1440/0x1440 [ 710.357397][T17610] ____sys_sendmsg+0x1370/0x1400 [ 710.362448][T17610] __sys_sendmsg+0x623/0x750 [ 710.367176][T17610] ? kmsan_check_memory+0xd/0x10 [ 710.372204][T17610] ? _copy_to_user+0x12e/0x1d0 [ 710.377059][T17610] ? kmsan_get_metadata+0x11d/0x180 [ 710.382348][T17610] ? kmsan_get_metadata+0x11d/0x180 [ 710.387652][T17610] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 710.393559][T17610] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 710.399801][T17610] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 710.409277][T17610] __se_sys_sendmsg+0x97/0xb0 [ 710.414062][T17610] __x64_sys_sendmsg+0x4a/0x70 [ 710.418938][T17610] do_syscall_64+0xb0/0x150 [ 710.423549][T17610] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 710.429507][T17610] RIP: 0033:0x45c1d9 [ 710.433438][T17610] Code: Bad RIP value. [ 710.437558][T17610] RSP: 002b:00007effaf7d6c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 710.446064][T17610] RAX: ffffffffffffffda RBX: 000000000002ae80 RCX: 000000000045c1d9 [ 710.454105][T17610] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 710.462146][T17610] RBP: 000000000078bf40 R08: 0000000000000000 R09: 0000000000000000 00:49:11 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r2 = dup3(r0, 0xffffffffffffffff, 0x0) sendmsg$TIPC_NL_NET_SET(r2, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) [ 710.470185][T17610] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 710.478219][T17610] R13: 0000000000c9fb6f R14: 00007effaf7d79c0 R15: 000000000078bf0c 00:49:11 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000040)=0x222, 0x4) bind$inet(r0, &(0x7f0000000440)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendmmsg(r0, &(0x7f0000004600)=[{{0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f0000000080)="296cd54286dbbb1ee10781", 0xb}, {&(0x7f00000002c0)="e08013563d3f4d22b91c90", 0xb}, {&(0x7f0000000380)="913ad81e69b6c0cafe8711692428c71d6018cd0d67dc31c123eab082372be9b9a13335d7094823d745ec8f0887a1247907986343017895957432239f188143bd80a5ce9a0fe0a11c9f43b3bd64bf85d7601556", 0x53}], 0x3}}], 0x1, 0x0) 00:49:11 executing program 0: syz_open_pts(0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:11 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b0091"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:12 executing program 4: r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000500)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000040)='asymmetric\x00', &(0x7f00000001c0)=@chain={'key_or_keyring:', 0x0, ':chain\x00'}) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000140)='asymmetric\x00', &(0x7f0000000000)=@keyring={'key_or_keyring:', r0}) 00:49:12 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc001102a}]}) 00:49:13 executing program 5: connect$unix(0xffffffffffffffff, &(0x7f00000000c0)=@abs={0x682eb13985c518e6, 0x7}, 0x1c) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r0 = socket(0x18, 0x1, 0x0) close(r0) r1 = socket(0x18, 0x1, 0x0) close(r1) socket(0x18, 0x400000002, 0x0) connect$unix(r1, &(0x7f00000000c0)=@abs={0x0, 0x7}, 0x1c) getsockopt(r0, 0x200000029, 0x2c, 0x0, 0x0) 00:49:13 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:49:13 executing program 0: syz_open_pts(0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:13 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:13 executing program 1: r0 = userfaultfd(0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000cd8ff4)) epoll_wait(r1, &(0x7f0000000180)=[{}], 0x1, 0x0) 00:49:13 executing program 0: syz_open_pts(0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:14 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) 00:49:14 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:14 executing program 1: open$dir(&(0x7f0000000080)='./file0\x00', 0x2088611, 0x0) r0 = socket(0x2, 0x2, 0x0) getsockopt$sock_int(r0, 0xffff, 0x0, 0x0, 0x0) truncate(&(0x7f0000000240)='./file0\x00', 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x3, 0x810, r1, 0x0) r2 = open(&(0x7f0000000000)='./file0\x00', 0x80400000000206, 0x0) mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x0, 0x10, r2, 0x0) unlinkat(0xffffffffffffffff, 0x0, 0x0) 00:49:14 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) [ 713.397698][T17682] sysfs: cannot create duplicate filename '/class/ieee80211/!' [ 713.405367][T17682] CPU: 0 PID: 17682 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 713.414105][T17682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 713.424742][T17682] Call Trace: [ 713.428111][T17682] dump_stack+0x1df/0x240 [ 713.432491][T17682] sysfs_warn_dup+0x1c3/0x1f0 [ 713.437219][T17682] sysfs_do_create_link_sd+0x281/0x360 [ 713.442735][T17682] sysfs_create_link+0x125/0x190 [ 713.447728][T17682] device_add+0x1886/0x3ba0 [ 713.452275][T17682] ? kmsan_get_metadata+0x11d/0x180 [ 713.457537][T17682] wiphy_register+0x3123/0x3f00 [ 713.462453][T17682] ? kmsan_get_metadata+0x11d/0x180 [ 713.467718][T17682] ieee80211_register_hw+0x4d38/0x5860 [ 713.473334][T17682] mac80211_hwsim_new_radio+0x358d/0x52b0 [ 713.479136][T17682] hwsim_new_radio_nl+0x13bc/0x1940 [ 713.484395][T17682] ? hwsim_tx_info_frame_received_nl+0x1290/0x1290 [ 713.490938][T17682] genl_rcv_msg+0x1592/0x1740 [ 713.495682][T17682] ? kmsan_set_origin_checked+0x95/0xf0 [ 713.501293][T17682] netlink_rcv_skb+0x451/0x650 [ 713.506093][T17682] ? genl_rcv+0x80/0x80 [ 713.510289][T17682] genl_rcv+0x63/0x80 [ 713.514321][T17682] netlink_unicast+0xf9e/0x1100 [ 713.519230][T17682] ? genl_pernet_exit+0x90/0x90 [ 713.525355][T17682] netlink_sendmsg+0x1246/0x14d0 [ 713.530360][T17682] ? netlink_getsockopt+0x1440/0x1440 [ 713.535781][T17682] ____sys_sendmsg+0x1370/0x1400 [ 713.540782][T17682] __sys_sendmsg+0x623/0x750 [ 713.545438][T17682] ? kmsan_check_memory+0xd/0x10 [ 713.550453][T17682] ? _copy_to_user+0x12e/0x1d0 [ 713.555291][T17682] ? kmsan_get_metadata+0x11d/0x180 [ 713.560552][T17682] ? kmsan_get_metadata+0x11d/0x180 [ 713.565801][T17682] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 713.571657][T17682] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 713.577858][T17682] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 713.583814][T17682] __se_sys_sendmsg+0x97/0xb0 [ 713.588544][T17682] __x64_sys_sendmsg+0x4a/0x70 [ 713.593480][T17682] do_syscall_64+0xb0/0x150 [ 713.598461][T17682] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 713.604419][T17682] RIP: 0033:0x45c1d9 [ 713.608340][T17682] Code: Bad RIP value. [ 713.612436][T17682] RSP: 002b:00007effaf7d6c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 713.620889][T17682] RAX: ffffffffffffffda RBX: 000000000002ae80 RCX: 000000000045c1d9 [ 713.628901][T17682] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 713.636916][T17682] RBP: 000000000078bf40 R08: 0000000000000000 R09: 0000000000000000 00:49:14 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone3(&(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000400)=[0x0], 0x1}, 0x58) 00:49:14 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={&(0x7f0000000c40)={0x14}, 0x33fe0}}, 0x0) [ 713.644914][T17682] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078bf0c [ 713.652917][T17682] R13: 0000000000c9fb6f R14: 00007effaf7d79c0 R15: 000000000078bf0c 00:49:16 executing program 5: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000000c0)='./file0\x00') perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4007, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_cpus\x00', 0x275a, 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) fallocate(r0, 0x0, 0x0, 0x110001) open_by_handle_at(0xffffffffffffffff, 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) 00:49:16 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) chmod(&(0x7f0000000180)='./file0\x00', 0x23f) setreuid(0xee00, 0x0) r0 = getuid() setreuid(0xee00, r0) mkdir(&(0x7f0000000040)='./file0/file1\x00', 0x0) rename(&(0x7f0000000280)='./file0/file1\x00', &(0x7f00000000c0)='./file1\x00') 00:49:16 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:16 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, 0x0, 0x0) 00:49:16 executing program 0: socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:16 executing program 0: socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:16 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, 0x0, 0x0) 00:49:16 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f00000300000000000000"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:16 executing program 1: sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00008feff0)={0x0}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x4, 0x0, &(0x7f00008feff0)={&(0x7f0000000e80)=ANY=[@ANYBLOB="020d0000100000002f3144e800000000030006000720000002005600e0000001000000f500000000080012000200010000f3ffffffffffff2f006c000101009f83ae02000000adb20200000000152c008000000000000001020014bb000001040000000000000000030005000020000002"], 0x80}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmmsg(r0, &(0x7f00000000c0), 0x2c8, 0x0) 00:49:16 executing program 0: socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:17 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4) connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) shutdown(r0, 0x1) setsockopt$inet_tcp_int(r0, 0x6, 0x4000000000014, &(0x7f0000000000)=0x80000000002, 0xe3) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000000)=@gcm_256={{}, "678f5a0c3b24bc37", "c4f98fb0127bc78f70c0ce8c98372b7e8612777bcfc6afb6a8b3c17681a0c4d4", "a6026ce4", "e838270a418ae0fd"}, 0x38) 00:49:17 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, 0x0, 0x0) 00:49:17 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_elf64(r0, &(0x7f0000000400)=ANY=[], 0x10132) setsockopt$sock_int(r1, 0x1, 0x2a, &(0x7f0000000100), 0x4) recvmmsg(r1, &(0x7f0000001140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x32012120, 0x0) 00:49:17 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x10, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0x2e, 0x2e, 0x5f, 0x600005f, 0x5f, 0x2e, 0x2e, 0x52, 0x2e, 0x5f, 0x2e, 0x2e, 0x5f, 0x2]}, 0x40) 00:49:17 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, 0x0, 0x0) 00:49:17 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f00000300000000000000"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:17 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, 0x0}, 0x0) 00:49:18 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:18 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, 0x0}, 0x0) 00:49:18 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, 0x0, 0x0) 00:49:18 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f00000300000000000000"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:18 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, 0x0, 0x0) 00:49:19 executing program 4: r0 = socket(0x1e, 0x4, 0x0) connect$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x1}}, 0x10) sendmmsg(r0, &(0x7f0000000080), 0x1a1, 0x0) connect$tipc(r0, &(0x7f0000000000)=@id={0x1e, 0x3, 0x0, {0x0, 0x80000004}}, 0x10) 00:49:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:19 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, 0x0}, 0x0) 00:49:20 executing program 5: r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) r1 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r1, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r0, {0x2, 0x0, @dev}, 0x2}}, 0x2e) 00:49:20 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x60}, 0x0) 00:49:20 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b00"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:20 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={0x0}}, 0x0) 00:49:20 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:20 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x60}, 0x0) 00:49:20 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:20 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={0x0}}, 0x0) 00:49:20 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b00"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:22 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = dup2(r2, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$packet_int(r1, 0x107, 0x10000000000f, &(0x7f0000006ffc)=0x4000000a, 0x4) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000200)={'hsr0\x00', 0x0}) bind$packet(r0, &(0x7f0000000640)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @link_local}, 0x14) sendto$inet6(r0, &(0x7f0000000300)="0503d03206023e0e01a00000c513f7c25975e697b02f892f6b2b2ff0dac8897c6b11876d886b143a301817ccd51cc5471d130a6632a88161b6fd8f24286a57c3fe257c3314a3974bb654697f", 0xfdfa, 0x0, 0x0, 0x0) 00:49:22 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x60}, 0x0) 00:49:22 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:22 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x20}, {0x6}]}, 0x10) r2 = open(&(0x7f0000000240)='./bus\x00', 0x141042, 0x0) r3 = dup3(r0, r2, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d80)={0x0}}, 0x0) 00:49:22 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b00"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:22 executing program 5: r0 = socket$pppl2tp(0x18, 0x1, 0x1) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) connect$pppl2tp(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={[], [], @loopback}}}}, 0x32) 00:49:22 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:22 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x60}, 0x0) 00:49:22 executing program 2: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/seq\x00', 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x4058534c, &(0x7f0000000340)={0x80, 0x1, 'client0\x00', 0x0, "d62e980da99179cf", "20fe85c57e00000000006b6d51a542ea98ad0033afc7f6c6e501c000"}) 00:49:22 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:22 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x60}, 0x0) 00:49:22 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x10000000000f, 0x0, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)) getsockname$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x6000000, &(0x7f0000000200)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9, 0x1, 'bond\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_ACTIVE_SLAVE={0x8}, @IFLA_BOND_MODE={0x5, 0x1, 0x5}]}}}]}, 0x44}}, 0x0) [ 722.208475][T17957] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 722.215048][T17957] hsr_slave_1: hsr_addr_subst_dest: Unknown node 00:49:23 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x10, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0x2e, 0x2e, 0x5f, 0x600005f, 0x5f, 0x2e, 0x2e, 0x52, 0x2e, 0x2e, 0x2e, 0x2e, 0x5f]}, 0x40) 00:49:23 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:23 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x60}, 0x0) 00:49:23 executing program 2: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) getresuid(&(0x7f00000000c0), 0x0, 0x0) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) r2 = dup3(r1, r0, 0x0) fchown(r2, 0x0, 0x0) 00:49:23 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:23 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x10, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0x2e, 0x2e, 0x5f, 0x600005f, 0x5f, 0x2e, 0x2e, 0x52, 0x2e, 0x5f, 0x2e, 0x2e, 0x5f]}, 0x40) 00:49:23 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:23 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x0, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:23 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r0, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:24 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x0, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:24 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:24 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r0, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:26 executing program 4: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) setsockopt$packet_int(r1, 0x107, 0x10000000000f, &(0x7f0000006ffc)=0x4000000a, 0x4) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)) getsockname$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x6000000, &(0x7f0000000200)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9, 0x1, 'bond\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_ACTIVE_SLAVE={0x8, 0x2, r3}, @IFLA_BOND_MODE={0x5, 0x1, 0x5}]}}}]}, 0x44}}, 0x0) 00:49:26 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) socket$key(0xf, 0x3, 0x2) sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:26 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x0, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:26 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r0, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:26 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:26 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010113}]}) 00:49:26 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x0, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:26 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:26 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:26 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x0, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:26 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:26 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:28 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x10, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0x2e, 0x2e, 0x5f, 0x600005f, 0x5f, 0x2e, 0x2e, 0x52, 0x2e, 0x5f, 0x2e, 0x2e, 0x5f, 0x2]}, 0x40) 00:49:28 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x0, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:28 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, 0x0, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:28 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:28 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:28 executing program 5: pipe(&(0x7f00000000c0)) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') fcntl$setstatus(r0, 0x4, 0x2000) 00:49:28 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:28 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:28 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x0, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:29 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:29 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r0, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:29 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x0, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:30 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000300)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-blowfish-asm\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000100)='\x00@\x00\x00', 0x4) r3 = accept(r2, 0x0, 0x0) sendmsg$SEG6_CMD_SET_TUNSRC(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[], 0xfffffd33}}, 0x0) sendmsg$inet6(r3, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0) 00:49:30 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, 0x0, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:30 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:30 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x0, 0xe00000000000000}, [@typed={0x6, 0x11, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:30 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r0, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:30 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010055}]}) 00:49:30 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:30 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x14, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}}, 0x14}, 0x1, 0x60}, 0x0) 00:49:30 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r0, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) [ 729.555976][ T1] systemd[1]: Starting Load/Save RF Kill Switch Status... 00:49:30 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:30 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x14, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}}, 0x14}, 0x1, 0x60}, 0x0) 00:49:30 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) [ 729.986762][ T1] systemd[1]: Started Load/Save RF Kill Switch Status. 00:49:32 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x10, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0x2e, 0x2e, 0x5f, 0x600005f, 0x5f, 0x2e, 0x2e, 0x52, 0x2e, 0x5f, 0x5f, 0x2e, 0x5f]}, 0x40) 00:49:32 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, 0x0, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:32 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:32 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x14, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}}, 0x14}, 0x1, 0x60}, 0x0) 00:49:32 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:32 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:49:32 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:32 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x0, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:32 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) [ 731.712028][ T1] systemd[1]: Started Journal Service. 00:49:33 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:33 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:33 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:34 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) waitid(0x1, 0x0, 0x0, 0x2, 0x0) 00:49:34 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x0, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:34 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:34 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:34 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:34 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:49:34 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x1c, 0x23, 0x829, 0x0, 0x0, {0x2804, 0xe00000000000000}, [@typed={0x6, 0x0, 0x0, 0x0, @str='/\x00'}]}, 0x1c}, 0x1, 0x60}, 0x0) 00:49:34 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:34 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:34 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:34 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:34 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:35 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:35 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010112}]}) 00:49:35 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0010117}]}) 00:49:35 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x12, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0x2e, 0x2e, 0x5f, 0x600005f, 0x5f, 0x2e, 0x2e, 0x52, 0x2e, 0x5f, 0x2e, 0x2e, 0x5f]}, 0x40) 00:49:35 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:35 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:49:35 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, 0x0) 00:49:35 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:35 executing program 0: r0 = userfaultfd(0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000cd8ff4)) epoll_wait(r1, &(0x7f0000000040)=[{}], 0x1, 0xfffffffc) 00:49:36 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:36 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, 0x0) 00:49:36 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:36 executing program 0: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) getsockname$packet(r2, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x6000000, &(0x7f0000000200)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9, 0x1, 'bond\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_ACTIVE_SLAVE={0x8, 0x2, r3}, @IFLA_BOND_MODE={0x5, 0x1, 0x5}]}}}]}, 0x44}}, 0x0) [ 735.269867][T18467] (unnamed net_device) (uninitialized): (slave ip_vti0): Device is not bonding slave [ 735.279682][T18467] (unnamed net_device) (uninitialized): option active_slave: invalid value (ip_vti0) 00:49:36 executing program 4: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000000c0)='./file0\x00') perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4007, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket(0x1e, 0x0, 0x0) socket(0x1e, 0x0, 0x0) setxattr$trusted_overlay_nlink(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)='trusted.overlay.nlink\x00', &(0x7f0000000400)={'L+', 0x69a8}, 0x16, 0x0) 00:49:36 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, 0x0) 00:49:36 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:36 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x10, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0x2e, 0x2e, 0x5f, 0x600005f, 0x5f, 0x2e, 0x2e, 0x52, 0x2e, 0x5f, 0x2e, 0x2e, 0x2e]}, 0x40) 00:49:36 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:49:36 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:37 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:37 executing program 0: r0 = userfaultfd(0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000cd8ff4)) sendmsg$NFNL_MSG_ACCT_DEL(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) epoll_wait(r1, &(0x7f0000000180)=[{}], 0x1, 0x0) 00:49:37 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)) 00:49:37 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000008c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x3b8, 0x200, 0x0, 0x200, 0x200, 0x0, 0x2e8, 0x2e8, 0x2e8, 0x2e8, 0x2e8, 0x3, 0x0, {[{{@ipv6={@remote, @mcast2, [], [], 'veth1_to_bond\x00', 'geneve1\x00'}, 0x0, 0x1c0, 0x200, 0x0, {}, [@common=@unspec=@string={{0xc0, 'string\x00'}, {0x0, 0x0, 'bm\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e6726401fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x8}}, @common=@inet=@hashlimit1={{0x58, 'hashlimit\x00'}, {'syzkaller1\x00', {0x0, 0x0, 0x4, 0x0, 0x0, 0x5, 0xa6}}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}, {{@ipv6={@ipv4={[], [], @empty}, @initdev={0xfe, 0x88, [], 0x0, 0x0}, [], [], 'veth0_to_team\x00', 'netdevsim0\x00'}, 0x0, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x418) 00:49:37 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:37 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)) 00:49:37 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:37 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_elf64(r2, &(0x7f0000000400)=ANY=[], 0x10132) setsockopt$sock_int(r3, 0x1, 0x2a, &(0x7f0000000100), 0x4) recvmmsg(r3, &(0x7f0000001140)=[{{0x0, 0x0, 0x0}}], 0x700, 0x0, 0x0) 00:49:37 executing program 4: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup(0xffffffffffffffff) r0 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00') r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f0000000240)={0x0, 0xb203, &(0x7f0000000400)={&(0x7f0000000100)={0x6c, r0, 0xc573de0d27bdfe6f, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x58, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0x2, 0x0, 0x0, @mcast2}}, {0x20, 0x2, @in6={0xa, 0x0, 0x0, @mcast2}}}}]}]}, 0x6c}}, 0x0) sendmsg$TIPC_NL_MEDIA_GET(0xffffffffffffffff, 0x0, 0x200cc8d0) 00:49:37 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:37 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)) 00:49:37 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, 0x0, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:49:38 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{}]}) 00:49:38 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0x2f0}]}) 00:49:38 executing program 0: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, &(0x7f0000006ffc), 0x4) r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) getsockname$packet(r2, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9, 0x1, 'bond\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_ACTIVE_SLAVE={0x8, 0x2, r3}]}}}]}, 0x3c}}, 0x0) dup(0xffffffffffffffff) 00:49:38 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{}]}) 00:49:38 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, 0x0) [ 737.449344][T18588] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 737.510572][T18592] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-rr(0) 00:49:38 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{}]}) 00:49:38 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) [ 738.024512][T18618] tipc: Enabling of bearer rejected, failed to enable media [ 738.059427][T18620] tipc: Enabling of bearer rejected, failed to enable media 00:49:39 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$unix(0x1, 0x2, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0xee01, r3, 0xffffffffffffffff) setresuid(0x0, 0x0, 0x0) 00:49:39 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, 0x0) 00:49:39 executing program 0: ioctl$BINDER_SET_MAX_THREADS(0xffffffffffffffff, 0x40046205, 0x0) socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000000c0)='./file0\x00') perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4007, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_cpus\x00', 0x275a, 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) fallocate(r0, 0x0, 0x0, 0x110001) open_by_handle_at(0xffffffffffffffff, 0x0, 0x80) r1 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r1, 0x0, 0x0) socket$inet6(0xa, 0x2, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) 00:49:39 executing program 1: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) chdir(&(0x7f00000000c0)='./file0\x00') perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4007, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_cpus\x00', 0x275a, 0x0) 00:49:39 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, 0x0, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:49:39 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:39 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'poly1305-generic\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x20, 0x0, 0x0, 0x0, 0x0, {}, [@NBD_ATTR_TIMEOUT={0xc}]}, 0x20}}, 0x0) 00:49:39 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x10, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0x2e, 0x2e, 0x5f, 0x600005f, 0x5f, 0x2e, 0x2e, 0x52, 0x2e, 0x5f, 0x2e, 0x2e, 0x5f], 0x0, 0xffffffffffffffff, 0x2, 0x1}, 0x40) 00:49:39 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, 0x0) 00:49:39 executing program 1: r0 = socket(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) close(r1) close(r2) pipe(&(0x7f0000000240)) splice(r0, 0x0, r2, 0x0, 0x2, 0x0) write$binfmt_misc(r2, &(0x7f0000000180)={'syz0'}, 0x4) ioctl$sock_inet_udp_SIOCINQ(r1, 0x541b, 0x0) write(r0, &(0x7f0000000080)="2400000012005f3414f9f40700090400818a0400"/36, 0x24) 00:49:39 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000040)=0x3) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe, 0x4, 0x0, 0x0, 0x9}) ioctl$KVM_SET_CPUID(r2, 0xae80, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) 00:49:39 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)) [ 738.822056][T18657] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. [ 738.940127][T18670] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 739.121897][T18662] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 00:49:40 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x10, 0x80002, 0x0) close(r2) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580)='batadv\x00') r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000400)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)={0x24, r3, 0x417, 0x0, 0x0, {0xf, 0x10}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x24}}, 0x0) 00:49:40 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x2}, 0x10}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:40 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=@newqdisc={0x2c, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_atm={0x8, 0x1, 'atm\x00'}]}, 0x2c}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xc, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9, 0x1, 'hfsc\x00'}, {0x14, 0x2, @TCA_HFSC_RSC={0x10}}}]}, 0x44}}, 0x0) 00:49:40 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)) 00:49:40 executing program 0: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'poly1305-generic\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x20, 0x0, 0x0, 0x0, 0x0, {}, [@NBD_ATTR_TIMEOUT={0xc}]}, 0x100020}}, 0x0) 00:49:40 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, 0x0, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:49:40 executing program 1: r0 = socket(0x1e, 0x4, 0x0) poll(&(0x7f00000003c0)=[{r0}], 0x1, 0x0) 00:49:40 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)) 00:49:40 executing program 0: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = dup(0xffffffffffffffff) setsockopt$packet_int(r0, 0x107, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) getsockname$packet(r3, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x6000000, &(0x7f0000000200)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9, 0x1, 'bond\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_ACTIVE_SLAVE={0x8, 0x2, r4}, @IFLA_BOND_MODE={0x5, 0x1, 0x5}]}}}]}, 0x44}}, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000140)) 00:49:40 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) [ 739.688665][T18709] (unnamed net_device) (uninitialized): (slave erspan0): Device is not bonding slave [ 739.698906][T18709] (unnamed net_device) (uninitialized): option active_slave: invalid value (erspan0) [ 739.776311][T18712] (unnamed net_device) (uninitialized): (slave erspan0): Device is not bonding slave [ 739.786055][T18712] (unnamed net_device) (uninitialized): option active_slave: invalid value (erspan0) 00:49:41 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{}]}) 00:49:41 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x2}, 0x10}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:41 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x10, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0x2e, 0x2e, 0x5f, 0x600005f, 0x5f, 0x2e, 0x2e, 0x52, 0x2e, 0x5f, 0x2e, 0x2e, 0x5f, 0xf3]}, 0x40) 00:49:41 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x80002, 0x9) sendmmsg$alg(r0, &(0x7f0000000140), 0xffffffffffffff68, 0x0) 00:49:41 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{}]}) 00:49:41 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:49:41 executing program 5: socket(0x1e, 0x4, 0x0) r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r0, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:49:41 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x2}, 0x10}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:42 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{}]}) 00:49:42 executing program 2: socket$netlink(0x10, 0x3, 0x0) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) r2 = dup3(r1, r0, 0x0) fchown(r2, 0x0, 0x0) write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f0000000200)={0x90, 0x0, 0x1, {0x1, 0x1, 0x9, 0x4, 0x2, 0x0, {0x5, 0x7, 0x78c, 0x5b, 0x3, 0x20, 0x80000001, 0x6, 0x1f, 0x2, 0x0, 0x0, 0x0, 0x80, 0x631}}}, 0x90) 00:49:42 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x10, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0x5f, 0x5f, 0x5f, 0x600005f, 0x5f, 0x2e, 0x2e, 0x52, 0x2e, 0x5f, 0x2e, 0x2e, 0x5f]}, 0x40) 00:49:42 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:42 executing program 0: r0 = socket(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) close(r1) close(r2) pipe(&(0x7f0000000240)) splice(r0, 0x0, r2, 0x0, 0x2, 0x0) write$binfmt_misc(r2, &(0x7f0000000180)={'syz1'}, 0x20000184) ioctl$sock_inet_udp_SIOCINQ(r1, 0x541b, 0x0) write(r0, &(0x7f0000000080)="2400000012005f3414f9f40700090400818a0400"/36, 0x24) 00:49:42 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xfffffdef}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) [ 741.910356][T18809] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. 00:49:43 executing program 4: bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x10, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0x5f, 0x2e, 0x5f, 0x600005f, 0x5f, 0x2e, 0x2e, 0x52, 0x2e, 0x5f, 0x2e, 0x2e, 0x5f]}, 0x40) 00:49:43 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:43 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:49:43 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x10, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0x5f, 0x2e, 0x5f, 0x600005f, 0x5f, 0x5f, 0x2e, 0x52, 0x2e, 0x5f, 0x2e, 0x2e, 0x5f]}, 0x40) 00:49:43 executing program 5: socket(0x1e, 0x4, 0x0) r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r0, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:49:43 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:43 executing program 2: r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000500)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000100)='asymmetric\x00', &(0x7f00000000c0)=@secondary='builtin_and_secondary_trusted\x00') 00:49:44 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:44 executing program 2: r0 = msgget$private(0x0, 0xa0) msgsnd(r0, &(0x7f0000000c80)=ANY=[@ANYBLOB="01"], 0x44b, 0x0) msgsnd(r0, 0x0, 0x4a4, 0x0) msgctl$IPC_RMID(r0, 0x0) 00:49:44 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) socket$key(0xf, 0x3, 0x2) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:49:44 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:44 executing program 2: openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/consoles\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r0, &(0x7f00000017c0), 0x1a2, 0x0) 00:49:44 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:49:44 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:44 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) r1 = dup(r0) setsockopt$packet_int(r1, 0x107, 0x10000000000f, &(0x7f0000006ffc)=0x4000000a, 0x4) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'hsr0\x00', 0x0}) bind$packet(r0, &(0x7f0000000640)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @link_local}, 0x14) sendto$inet6(r0, &(0x7f0000000300)="0503d03206023e0e01a00000c513f7c25975e697b02f892f6b2b2ff0dac8897c6b11876d886b143a301817ccd51cc5471d130a6632a88161b6fd8f24286a57c3fe257c3314a3974bb654697f", 0xfdfa, 0x0, 0x0, 0x0) ioctl$SG_SCSI_RESET(0xffffffffffffffff, 0x2284, 0x0) 00:49:44 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:49:44 executing program 5: socket(0x1e, 0x4, 0x0) r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r0, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) [ 743.893185][T18892] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 743.900281][T18892] hsr_slave_1: hsr_addr_subst_dest: Unknown node 00:49:45 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:45 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, 0x0, 0x0) 00:49:45 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:49:45 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:45 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x10, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0x2e, 0x2e, 0x5f, 0x600005f, 0x5f, 0x2e, 0x2e, 0x52, 0x2e, 0x5f, 0x2e, 0x2e, 0x5f, 0xf3]}, 0x40) 00:49:45 executing program 2: mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x0, 0x0) chdir(&(0x7f00000000c0)='./file0\x00') perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4007, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_cpus\x00', 0x275a, 0x0) 00:49:45 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:46 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:49:46 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, 0x0, 0x0) 00:49:46 executing program 1: socket$inet_udplite(0x2, 0x2, 0x88) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r0, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) 00:49:46 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r0, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:46 executing program 2: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}}, 0x0, 0xffff7fffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000012c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x6}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) close(r1) socket(0x840000000002, 0x3, 0x6) vmsplice(r0, &(0x7f00000001c0)=[{&(0x7f0000000000)="5e2314037dac082d1fcf874d6c2703fe14f09fc90d3292c76e1ccbc9", 0x1c}, {&(0x7f00000000c0)="3d3bb089cf275f86fffa1e99cee06d9672df3abeb0c3194ecc7485500be68aa7bbe582f360b3ba56d651209773dc362c5888308124a7a08e95225e2b0c43d455fe0f6579cf6db146f58a0ed31c2bbe7a6728eab7a5fce414d7a367be3d3036d5874e3a0463e22c795ddc5b56e750ce56696c112f10bf251c1110e163736e00f512958060f7138938782ff26d609bf23caba2a926", 0x94}], 0x2, 0x2) connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10) sendmmsg(r1, &(0x7f0000006d00), 0x800000000000237, 0x1ffffffe) socket$nl_xfrm(0x10, 0x3, 0x6) eventfd(0x7) timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x1c9c380}, {0x0, 0x1c9c380}}, 0x0) 00:49:46 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000002700)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) keyctl$instantiate(0xc, 0x0, &(0x7f0000000340)=@encrypted_load={'load ', 'default', 0x20, 'trusted:', 'cpuacct.usage_percpu_sys\x00', 0x20, 0x76, 0x20, [0x32, 0x32, 0x0, 0x63, 0xbaf419b5c01adc17]}, 0x4a, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0) r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, @perf_config_ext={0x0, 0x2000000ff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(0x0) ioctl$DRM_IOCTL_GET_SAREA_CTX(0xffffffffffffffff, 0xc010641d, 0x0) ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f00000001c0)={0x0, 0x0}) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, 0x0, 0x0) write$FUSE_INTERRUPT(0xffffffffffffffff, &(0x7f0000000080)={0x10}, 0x10) mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x7fffff, 0x10010, 0xffffffffffffffff, 0x799b8000) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, &(0x7f00000004c0)=ANY=[@ANYRES16=r4, @ANYRESDEC, @ANYRESHEX, @ANYRES64, @ANYRES32, @ANYRES32=r2, @ANYRESHEX, @ANYRESDEC, @ANYRESOCT], 0x7, 0x1) clone(0x49221503, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r5 = creat(&(0x7f00000002c0)='./bus\x00', 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x37, &(0x7f0000000300)=ANY=[@ANYBLOB="ba2c0c8bae5d5ede94f15bcc2f25fa032a120de584f18c57740a"], 0x38) write$cgroup_type(r5, &(0x7f0000000200)='threaded\x00', 0x175d900f) 00:49:46 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r0, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) [ 745.180209][T18966] IPVS: ftp: loaded support on port[0] = 21 [ 745.629276][T16307] tipc: TX() has been purged, node left! 00:49:47 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:49:47 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r0, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:47 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, 0x0, 0x0) 00:49:47 executing program 1: socket$inet_udplite(0x2, 0x2, 0x88) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r0, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) 00:49:47 executing program 2: socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x83, 0xa8a1}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003c00)=""/200, 0xc8}, 0x820000}], 0x1, 0x10003, 0x0) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x8001, 0x3, 0x0, 0x0, 0x7}, 0x0) r4 = accept4$unix(0xffffffffffffffff, 0x0, &(0x7f0000000340), 0x80000) ptrace(0x10, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0) io_submit(0x0, 0x2, &(0x7f0000000640)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x2, 0x8, r4, &(0x7f0000000440)="00230c557f7ca9c794325c36a06e5d1dbeb6e2316202026b1bd6df5d258a878acddd1bd55fd6c0a9c8fa852f461158ce8f5fb269330a1a1ff9ee3d3032fa5ae44cb047ea5c70bd5eeeecd797410f82245b528b388e58a6253d959ac4979802ca79b695ae8841f1df457af9907c631e1ab26b259d5a0ca19fc15a0bbeedede1b6ee745ebe560a9e4e656b12136d34b39165c34a7397ed601d6dce1abee418a793ffc06f5405aac1dc9c1b8577c28d0c324597761ff118d3b4a2e2e209aba87efc", 0xc0, 0x3f, 0x0, 0x3}, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x7ff, 0xffffffffffffffff, &(0x7f0000000500)="29116cf12c9788e1dd729e0bfc29eae333b764d2f5659ab2a6b6d54df17da8d873ed610fa62269169f98a7ae75e1991b8a7e3eec6dcc0fe06d563d286aa949e06dee7faee2adaeef7d220758c0298d18e625aef6419c0de4ab16a2cb8d7c3e2b7ca8ac6a627f383bad8111d9a010c3908fd8998af0d428350294e571aa69c0ef4ad26eb644c943896eeeba8d34b5a49e8e35a92cc9f6d0e6cd50f4d95252c600efc209cc5e048b09a3343fb0e0c9d72d09922ac255f48fe58e23c0df2ee37c", 0xbf, 0x886e582, 0x0, 0x2}]) io_submit(0x0, 0x1, &(0x7f0000000180)=[0x0]) r5 = socket$inet(0x2, 0x2, 0x0) bind$inet(r5, &(0x7f0000000200)={0x2, 0x1004e20}, 0x10) setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x1d, &(0x7f0000000240)=0x7, 0x4) sendto$inet(r5, 0x0, 0x0, 0x0, 0x0, 0x0) recvmmsg(r5, 0x0, 0x0, 0x0, 0x0) clone(0x8000103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r6 = socket$inet6(0xa, 0x803, 0x2) connect$inet6(r6, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in6=@empty, 0x0, 0x1, 0x2000, 0x0, 0xa, 0x0, 0x0, 0x21}, {0xfffffffffffffffc, 0x0, 0x0, 0x4, 0x0, 0x36d6, 0x7}, {0xfffffffffffffff9}, 0x800000, 0x0, 0x80000000000001}, {{@in=@empty, 0xffffffff, 0x3c}, 0xa, @in=@multicast2, 0x100000, 0x0, 0x0, 0x5, 0x4}}, 0xe8) sendmmsg(r6, &(0x7f0000008440)=[{{0x0, 0x536, 0x0}}], 0x400000000000107, 0xff00) 00:49:47 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:49:47 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:47 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ptmx\x00', 0x2f606557d6041b0a, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TCSETSW(0xffffffffffffffff, 0x5403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x9, 0x0, "711d06304775c8ae754d0fb414b67ace763694"}) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000040)=[@mss={0x2, 0x9}], 0x1) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "8000"}) write$binfmt_aout(r0, &(0x7f0000000000)=ANY=[], 0x8d) ioctl$TCSETA(r0, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x7f, 0x0, "078cf0251c0e00"}) r3 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r3, 0x5412, &(0x7f0000000100)={0xfffffff0, 0x0, 0x0, 0x0, 0x0, "000000000000000000000010000000001000"}) 00:49:47 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:48 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x802, 0x0) ioctl$UI_DEV_CREATE(r0, 0x5501) r1 = syz_open_dev$evdev(&(0x7f0000000b00)='/dev/input/event#\x00', 0x4, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$EVIOCGABS20(r1, 0x80184560, &(0x7f0000000080)=""/74) 00:49:48 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0) 00:49:48 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:48 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:49:48 executing program 1: socket$inet_udplite(0x2, 0x2, 0x88) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r0, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) 00:49:48 executing program 2: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/seq\x00', 0x4000) 00:49:48 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:48 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0) 00:49:49 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:49:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:49 executing program 2: 00:49:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:49 executing program 2: 00:49:49 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0) 00:49:49 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:49 executing program 5: socket(0x0, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:49:49 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:49 executing program 2: 00:49:49 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:49:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:49:50 executing program 2: 00:49:50 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x0) 00:49:50 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:49:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:49:50 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:50 executing program 2: write$FUSE_ENTRY(0xffffffffffffffff, &(0x7f0000000340)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}}}, 0x90) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x69, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x2) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue1\x00'}) write$sndseq(r0, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"a357b6b140cbb6215dd33459"}}], 0xfffffee4) 00:49:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:49:50 executing program 5: socket(0x0, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:49:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:51 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:49:52 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:49:59 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:49:59 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r0, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:49:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r1, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:49:59 executing program 5: socket(0x0, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) [ 762.993068][ C1] clocksource: timekeeping watchdog on CPU1: Marking clocksource 'tsc' as unstable because the skew is too large: [ 763.005559][ C1] clocksource: 'acpi_pm' wd_now: be0de5 wd_last: daa293 mask: ffffff [ 763.015870][ C1] clocksource: 'tsc' cs_now: 19c6a74f06f cs_last: 1952abc02c8 mask: ffffffffffffffff [ 763.028061][ C1] tsc: Marking TSC unstable due to clocksource watchdog [ 763.051285][T11053] TSC found unstable after boot, most likely due to broken BIOS. Use 'tsc=unstable'. [ 763.060963][T11053] sched_clock: Marking unstable (763156285260, -104725774)<-(763055219106, -3961246) [ 763.061559][T19202] clocksource: Switched to clocksource acpi_pm 00:50:04 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x0) 00:50:04 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r0, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:04 executing program 5: socket(0x1e, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:50:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:50:04 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:04 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = dup2(r0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) shmctl$SHM_LOCK(0x0, 0xb) shmctl$SHM_UNLOCK(0x0, 0xc) 00:50:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:50:04 executing program 2: 00:50:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xc0011022}]}) 00:50:04 executing program 2: 00:50:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, 0x0) 00:50:05 executing program 2: 00:50:05 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={0x0}}, 0x0) 00:50:05 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r0, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:05 executing program 5: socket(0x1e, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:50:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, 0x0) 00:50:05 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:05 executing program 2: 00:50:05 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0x0, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:50:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, 0x0) 00:50:06 executing program 2: 00:50:06 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)) 00:50:06 executing program 2: 00:50:06 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:06 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:06 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)) 00:50:06 executing program 5: socket(0x1e, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:50:06 executing program 2: 00:50:06 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0x0, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:50:06 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:06 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)) 00:50:06 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:07 executing program 2: 00:50:07 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:07 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{}]}) 00:50:07 executing program 2: 00:50:07 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:07 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{}]}) 00:50:07 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(0x0) sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:50:07 executing program 2: 00:50:07 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:07 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{}]}) 00:50:07 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="02070000220000000000000000000000020013001500000026bd700000000000010016004e21000002000b00910f000003000000000000001b0008"], 0x110}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x2, 0x11, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_kmaddress={0x3, 0x5, 0x0, @in={0x2, 0x0, @multicast1}, @in={0x2, 0x0, @loopback}}]}, 0x38}}, 0x0) sendmsg$key(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)={0x2, 0x0, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 00:50:07 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:08 executing program 2: 00:50:08 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, 0x0) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:08 executing program 0: 00:50:08 executing program 2: 00:50:08 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, 0x0) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:08 executing program 0: 00:50:08 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(0x0) sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:50:08 executing program 0: 00:50:08 executing program 2: 00:50:08 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, 0x0) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:08 executing program 3: 00:50:08 executing program 4: setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:09 executing program 2: 00:50:09 executing program 3: 00:50:09 executing program 0: 00:50:09 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:09 executing program 2: 00:50:09 executing program 3: 00:50:09 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(0x0) sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:50:09 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:09 executing program 0: 00:50:09 executing program 3: 00:50:09 executing program 2: 00:50:09 executing program 4: setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:09 executing program 0: 00:50:09 executing program 3: 00:50:09 executing program 2: 00:50:09 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:10 executing program 0: 00:50:10 executing program 2: 00:50:10 executing program 5: socket(0x1e, 0x4, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r0, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:50:10 executing program 3: 00:50:10 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:10 executing program 0: 00:50:10 executing program 2: 00:50:10 executing program 4: setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:10 executing program 3: 00:50:10 executing program 0: 00:50:10 executing program 2: 00:50:10 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:10 executing program 3: 00:50:10 executing program 0: 00:50:11 executing program 5: socket(0x1e, 0x4, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r0, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:50:11 executing program 2: 00:50:11 executing program 3: 00:50:11 executing program 0: 00:50:11 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:11 executing program 4: r0 = socket$inet(0x2, 0x0, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:11 executing program 0: 00:50:11 executing program 3: 00:50:11 executing program 2: 00:50:11 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, 0x0, 0x0) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:11 executing program 3: 00:50:12 executing program 0: 00:50:12 executing program 5: socket(0x1e, 0x4, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r0, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:50:12 executing program 2: 00:50:12 executing program 3: 00:50:12 executing program 0: 00:50:12 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, 0x0, 0x0) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:12 executing program 4: r0 = socket$inet(0x2, 0x0, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:12 executing program 2: 00:50:12 executing program 0: 00:50:12 executing program 3: 00:50:12 executing program 2: 00:50:12 executing program 0: 00:50:12 executing program 3: 00:50:13 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, 0x0, 0x0) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:13 executing program 3: 00:50:13 executing program 2: 00:50:13 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, 0x0, 0x0) 00:50:13 executing program 0: 00:50:14 executing program 4: r0 = socket$inet(0x2, 0x0, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:14 executing program 3: 00:50:14 executing program 0: 00:50:14 executing program 2: 00:50:14 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100), 0x0) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:14 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, 0x0, 0x0) 00:50:14 executing program 2: 00:50:14 executing program 3: 00:50:14 executing program 0: 00:50:14 executing program 2: 00:50:15 executing program 3: 00:50:15 executing program 0: 00:50:15 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:15 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100), 0x0) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:15 executing program 3: 00:50:15 executing program 2: 00:50:15 executing program 0: 00:50:15 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, 0x0, 0x0) 00:50:15 executing program 3: 00:50:15 executing program 2: 00:50:15 executing program 0: 00:50:15 executing program 3: 00:50:16 executing program 0: 00:50:16 executing program 2: 00:50:16 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:16 executing program 0: 00:50:16 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100), 0x0) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:16 executing program 3: 00:50:16 executing program 2: 00:50:16 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0) 00:50:16 executing program 3: 00:50:16 executing program 0: 00:50:16 executing program 2: 00:50:16 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{0x0}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:17 executing program 3: 00:50:17 executing program 2: 00:50:17 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:17 executing program 0: 00:50:17 executing program 3: 00:50:17 executing program 2: 00:50:17 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{0x0}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:18 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0) 00:50:18 executing program 3: 00:50:18 executing program 2: 00:50:18 executing program 0: 00:50:18 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{0x0}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:18 executing program 2: 00:50:18 executing program 3: 00:50:18 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:18 executing program 0: 00:50:18 executing program 2: 00:50:18 executing program 3: 00:50:18 executing program 1: socket$inet_udplite(0x2, 0x2, 0x88) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r0, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:18 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0) 00:50:18 executing program 0: 00:50:18 executing program 3: 00:50:18 executing program 2: 00:50:19 executing program 2: 00:50:19 executing program 0: 00:50:19 executing program 3: 00:50:19 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:19 executing program 2: 00:50:19 executing program 3: 00:50:19 executing program 0: 00:50:19 executing program 1: socket$inet_udplite(0x2, 0x2, 0x88) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r0, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:20 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0) 00:50:20 executing program 2: 00:50:20 executing program 0: 00:50:20 executing program 3: 00:50:20 executing program 3: 00:50:20 executing program 2: 00:50:20 executing program 0: perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x800000000000013, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) r0 = socket(0x11, 0x800000003, 0x0) bind(r0, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000640)=0x14) r2 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000940)=@newqdisc={0x14c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_choke={{0xa, 0x1, 'choke\x00'}, {0x11c, 0x2, [@TCA_CHOKE_STAB={0x104, 0x2, "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"}, @TCA_CHOKE_PARMS={0x14}]}}]}, 0x14c}}, 0x0) 00:50:20 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:20 executing program 3: perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup3(r1, r0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSWINSZ(r3, 0x5414, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x8}) 00:50:20 executing program 2: r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x4000000000000002, &(0x7f0000001740)=0x3f7, 0x4) bind$inet6(r0, &(0x7f0000f65000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendto$inet6(r0, 0x0, 0x0, 0xfffffefffbfbb73f, &(0x7f000006ffe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) 00:50:20 executing program 0: 00:50:20 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0) 00:50:20 executing program 1: socket$inet_udplite(0x2, 0x2, 0x88) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r0, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:21 executing program 0: 00:50:21 executing program 2: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f00000001c0)={0x20a927, 0x2d, 0x0, 0xffffffffffffff9c}) r2 = dup(r1) ppoll(&(0x7f0000000000)=[{r2, 0x4}], 0x1, 0x0, 0x0, 0x0) 00:50:21 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x4002d00, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() nanosleep(&(0x7f0000000000)={0x0, 0x1c9c380}, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) wait4(0x0, 0x0, 0x0, 0x0) r1 = memfd_create(&(0x7f00000000c0)='#\'}\xc6\x7f:(\xd7F\xd6-H,\xe7\xe0-\x82k:Po%n1!\x00\x00\xba\x00\x89\x00\xcb5o\x93\x060x0) io_submit(r0, 0x1, &(0x7f00000000c0)=[&(0x7f0000000140)={0x3a000000, 0x2759, 0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) 00:50:21 executing program 0: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/amemthresh\x00', 0x2, 0x0) write$FUSE_BMAP(r0, 0x0, 0x0) 00:50:21 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, 0x0, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:21 executing program 3: r0 = socket$unix(0x1, 0x5, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$phonet(0x23, 0x2, 0x1) ioctl$sock_TIOCINQ(r3, 0x541b, &(0x7f0000000000)) 00:50:21 executing program 0: r0 = open(&(0x7f0000000000)='./file0\x00', 0x60e, 0x0) mmap(&(0x7f0000000000/0x13000)=nil, 0x13000, 0x5, 0x810, r0, 0x0) close(r0) 00:50:21 executing program 2: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="b70200000d000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b700000000000000950000000000000056ce36b68b0f334d6c37d03057c90000866f55e3376e4a82071d7827af04f8426e5b0eb4642172797fc01200533324f871d94768e25851d3162c1bde856ed69b673e5b8d861ff207c0eb4b60a82fc3c0e2085d6add5893b223f703b454af0805f231eb8474953f640e3d490cdc0448ecf21b205768e34ab95b6ef820398c1ba4b81cee61a98d7df3768db9bd084623ca56c82b205eca4d90628aeacbd4654eb4371861a98bb8fc0fb89f8abf8e94d4429449cd85af76d9929b318c989bebd2f992112024650892c2e25b38f9cac8fea1a8c4712b53306c00a649a62720cd661d21ab5d7a8b9f974b4f5da4862c01b4cbe5f279fe779d5f9f366ec0aee3344d712d35edc17c209296c3db7ff279c9bc5ab356c3471399f860fef75f37888d0b0968f5a8fcdf57cc5c62f45fcaccb1a3401d604f415840873a0e1df38c8c7c9ce232542acf57c44faea190b98de36aa113dba42def9c5bc3c90823529860583d8fb2dd17279eafcbdb226c00545f7f7c4fa93603f2ae2260bb56cb1a542ab27dfb25f54b6f73e2da29ef6b6f33e099cd94987238b5b09ab1b377fc08135572dd7e7ae09d603115f1cde757c9d2fd838a84251cbe5f8e9e62fee4d1554fa20d84df5e107d368c139b5c17e916ab90422a72150235ea93abb04521db134aad75b7c41ec63ca90e22c26a6ef512cd5c598330e07b18183e20f145c031a129aed2186d7a6e3cc00125abaf55b18a727bfc6616d0df05a684730e2f014e5400000000000000007d468676e6c0da27c75254f16c0680519c26f1a602b0df27df00e16af8ac465612353a1e4fc13dfb"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffcca}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x18000000000002e0, 0xe, 0x0, &(0x7f0000000280)="b95b03b708030000009e40f086dd", 0x0, 0x0, 0x6000000000000000, 0x0, 0x0, 0x0, 0x0}, 0x40) 00:50:22 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0) 00:50:22 executing program 2: r0 = socket$inet6(0xa, 0x80003, 0xff) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r0, &(0x7f00000023c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000000)="0ca64e0c9cdc4f5c2df7d93022b70d825039976c22e07770b67a704f6137ffb1e38c8172908602b3", 0x28}], 0x1}}], 0x1, 0x0) 00:50:22 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, 0x0) 00:50:22 executing program 3: r0 = socket$unix(0x1, 0x5, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet_int(r3, 0x0, 0xf, &(0x7f0000d10ffc)=0xfffffffffffffff9, 0x4) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x4e22, @rand_addr=0x80000000}], 0x10) r4 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet_int(r4, 0x0, 0xf, &(0x7f0000d10ffc)=0xfffffffffffffff9, 0x4) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000100)=[@in={0x2, 0x4e22, @local}, @in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}], 0x2c) 00:50:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000001c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcd], 0x0, 0x5211}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000300)={0x1, 0x0, @pic={0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:50:22 executing program 0: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380)='/dev/nullb0\x00', 0x4000000044882, 0x0) io_setup(0x1, &(0x7f00000004c0)=0x0) io_submit(r1, 0x8, &(0x7f00000000c0)=[&(0x7f0000000140)={0x3a000000, 0x2759, 0xd, 0x0, 0x0, r0, &(0x7f0000000000)="98", 0x3e80000000}]) 00:50:22 executing program 2: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000611200000000000095000000000000001387096e16281fd43e588cf7a1d4c50ae8366e5cadf97f4e52fdb37bdab01f9f6cc297b130a1c98ea973fbaf38f9d47c570134b54dbee7458404277462d8ac80053e629d28c45b25e324fd54d237d71ff7b52f78ad9692619113594630a9eb6490c61332499f4861a57120ea351e61ca08b452a2bffd133c9c11305600a73d52319cc0e1b4049b537a6310d0ee13db80ad6553ed19a04679d0d664f61277501f370123113bd565aeb1486f9a79e314ecbc40fdb3702ecfcaed9cb384ec7011bd384577a5a7"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r1, r0, 0x2}, 0x10) socket$kcm(0x2, 0x2, 0x73) 00:50:22 executing program 3: r0 = socket(0x18, 0x2, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) getsockname$unix(r0, &(0x7f0000000000)=@abs, &(0x7f0000000040)=0x8) 00:50:23 executing program 3: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x800000000009031, 0xffffffffffffffff, 0x0) mlock(&(0x7f000004b000/0x9000)=nil, 0x9000) 00:50:23 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, 0x0) 00:50:23 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, 0x0, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:23 executing program 0: mlock(&(0x7f0000ffc000/0x4000)=nil, 0x4000) munlock(&(0x7f0000ffe000/0x1000)=nil, 0x1000) 00:50:23 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, 0x0, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:50:23 executing program 2: sendmsg$unix(0xffffffffffffffff, &(0x7f0000001700)={&(0x7f0000000180)=ANY=[], 0x1c, 0x0}, 0x0) r0 = socket(0x18, 0x2, 0x0) r1 = socket(0x18, 0x2, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r2 = dup2(r1, r0) sendmsg$unix(r2, &(0x7f0000001700)={0x0, 0x4, 0x0}, 0x0) 00:50:23 executing program 3: setrlimit(0x8, &(0x7f0000000040)={0x0, 0x40000000000000}) 00:50:23 executing program 0: 00:50:23 executing program 0: r0 = socket$inet6(0xa, 0x80003, 0x7) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x2149, 0x4) sendmmsg(r0, &(0x7f00000092c0), 0x3fffffffffffe9f, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) recvmmsg(r0, &(0x7f00000010c0)=[{{0x0, 0x0, 0x0}}], 0x300, 0xfec0, 0x0) 00:50:23 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000040)=0x3) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x2}) ioctl$KVM_SET_CPUID(r2, 0xae80, 0x0) 00:50:24 executing program 2: openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000000)={@my=0x0}) socket$vsock_stream(0x28, 0x1, 0x0) ioctl$VT_ACTIVATE(0xffffffffffffffff, 0x5606, 0xb5c0) [ 783.024129][T19829] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4241646265 (4241646265 ns) > initial count (296265111 ns). Using initial count to start timer. 00:50:24 executing program 2: perf_event_open(&(0x7f00000002c0)={0x2, 0x70, 0xa4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000000)={0x1000000002, 0x70, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 00:50:26 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, 0x0, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:26 executing program 3: bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)={0x7, 0x4, 0x8, 0xf1a}, 0x2c) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r1, 0x0, 0x0}, 0x10) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f4, &(0x7f0000000080)) 00:50:26 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0xe}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, 0x0) 00:50:26 executing program 2: r0 = socket(0x200000000000011, 0x4000000000080002, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$RTC_WKALM_SET(0xffffffffffffffff, 0x4028700f, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) bind$packet(r0, &(0x7f00000000c0)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @local}, 0x14) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="d00800002400ffff01009e000000000000000000", @ANYRES32, @ANYBLOB="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"], 0x8d0}}, 0x0) r5 = socket(0x1000000010, 0x80002, 0x0) sendmmsg$alg(r5, &(0x7f0000000200), 0x10efe10675dec16, 0x0) [ 785.073571][T19854] netlink: 88 bytes leftover after parsing attributes in process `syz-executor.2'. [ 785.181029][T19854] netlink: 88 bytes leftover after parsing attributes in process `syz-executor.2'. 00:50:26 executing program 0: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) move_pages(0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0, 0x0) r0 = socket$vsock_stream(0x28, 0x1, 0x0) r1 = dup(r0) connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @my=0x0}, 0x10) dup2(0xffffffffffffffff, 0xffffffffffffffff) 00:50:26 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:26 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newlink={0x38, 0x10, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ip6gretap={{0xe, 0x1, 'ip6gretap\x00'}, {0x4}}}]}, 0x38}}, 0x0) 00:50:26 executing program 2: socket$inet6_tcp(0xa, 0x1, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000029000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f00000001c0)="660f22e73e2e360f381dd626f20f0866b8000000000f23d00f21f866353000000c0f23f80f35670f01c5f2817b0000802e3e0f009f066a440f20c066350a000000440f22c0f30faeb4f9ff", 0x4b}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc62]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000480)=ANY=[@ANYBLOB="220000000000000401"]) pipe(&(0x7f0000000000)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 00:50:26 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, 0x0, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:50:27 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="300000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="000000000000080008000400", @ANYRES32=r2, @ANYBLOB="08001b"], 0x30}}, 0x0) 00:50:27 executing program 1: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) futex(0x0, 0x3, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, 0x0}, 0x10) move_pages(r1, 0x0, &(0x7f00000000c0), &(0x7f0000000100)=[0x1f], &(0x7f0000000180)=[0x0], 0x6) r2 = socket$vsock_stream(0x28, 0x1, 0x0) r3 = dup(r2) connect$vsock_stream(r3, &(0x7f0000000000)={0x28, 0x0, 0x0, @my=0x0}, 0x10) ioctl$VT_ACTIVATE(r3, 0x5606, 0xb5c0) 00:50:27 executing program 0: bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000100)='cgroup.threads\x00', 0x2, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)={0x7, 0x4, 0x8, 0xf1a}, 0x2c) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r1, 0x0, 0x0}, 0x10) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f4, &(0x7f0000000080)) 00:50:27 executing program 2: perf_event_open(&(0x7f00000002c0)={0x2, 0x70, 0xa4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000000)={@my=0x0}) [ 786.150222][T19893] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready 00:50:27 executing program 1: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f00000000c0)={0xf, 0x4, 0x8, 0x4, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x2000000]}, 0x40) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f00000006c0)=0x2000000000000001, 0x4) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000001c0)='syz_tun\x00', 0x10) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000080)={r0, &(0x7f0000000340), &(0x7f0000000100)=@tcp=r1}, 0x20) 00:50:27 executing program 0: perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$int_in(r0, 0x40000000af01, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/net/tun\x00', 0x0, 0x0) ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000100)=0x300000000) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000280)=ANY=[]) r2 = dup(r1) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000000)={0x0, r2}) 00:50:27 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000002840)={"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"}) ioctl$KVM_SET_IRQCHIP(r1, 0x4020aea5, &(0x7f00000000c0)={0x2, 0x0, @ioapic}) 00:50:27 executing program 2: prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, 0xffffffffffffffff) socket(0x0, 0x800000003, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000003340)=[{0x0}], 0x1}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000004c0)='stack\x00') perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(r0, &(0x7f00000017c0), 0x3da, 0x0) socket$netlink(0x10, 0x3, 0x0) 00:50:28 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, 0x0, 0xc46dfc707e1df77d, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:50:28 executing program 1: perf_event_open(&(0x7f00000002c0)={0x2, 0x70, 0xa4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000000)={@my=0x0}) r1 = socket$vsock_stream(0x28, 0x1, 0x0) r2 = dup(r1) connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @my=0x0}, 0x10) 00:50:28 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'cmac(aes)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="dfbc58ef6edd8c56a50104ad3279f601", 0x10) r1 = accept(r0, 0x0, 0x0) sendmmsg$inet6(r1, &(0x7f0000003100)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000140)="df8b21e988b9ddb189fdeb5780218c2acce513e1e9341659001a7c73dc0227a6ca00c7ddcfb368636706e7a691c6b416d4b8f0e6f352e2094186da", 0x3b}, {&(0x7f00000001c0)="8f01104bc5ab0348553ed97b1445b01ea5b594c6b9dd7bba4a5e804ec5674eba78cbd9da8286da8157", 0x29}, {&(0x7f0000000200)="96375f9b9ed6a9fc0ec7a73eed819bf651eae9d40495e9242e167afb7e9957f3ebc88a45bce2d8f2620bc57b172abd7175d955fda7069e444c430731e7926c995adf4875d88ae08fe60988", 0x4b}], 0x3}}], 0x1, 0x0) 00:50:28 executing program 0: prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x9, 0xff}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x9}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f00000028c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x2}, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r4, 0x6, 0x10000000013, &(0x7f00000001c0)=0x1, 0x4) connect$inet(r4, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4) sendmmsg(r4, &(0x7f0000007f40)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000400)="9f", 0x2bf}], 0x1}}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000940)='!', 0x1}], 0x1}}], 0x127ad, 0x0) ioctl$sock_bt_hidp_HIDPCONNADD(0xffffffffffffffff, 0x400448c8, &(0x7f0000000240)={r4, r1, 0x3ff, 0xb3, &(0x7f00000000c0)="bb13eeeccd9c8af40b401d3ccc09701eb01a2ef31699a4bae6833f0339f14f633964c2bc1aabaa6ae6310c04f9ccbdc120e1c8a4507c0b1b69aa27f1c4d58d89958142c864f1b4245fa396953a60ca1ce0574a06c53a5dfa3dd333f757dcee014ab0c39e6ccc0ab8fe09b08959d7a874a8e536fd2bc86fdeb1127d08de9dfcfacc86912a568f1506dffde6efce552573b528f95b7b4bb07f55196b7f37ee7879b34427ce1012c3c29835a37c0d0720cc825f65", 0x4, 0x7e, 0x3, 0x2, 0x81, 0x0, 0x9, 'syz1\x00'}) 00:50:28 executing program 2: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000000)='cpu\t&l6\n\x00\xff\x00\xdc.\xdf\xbbk\xad\x1b\xf3\xf6_|S\x93>\xb4\x15#b\x91\xec\xf2\x12\xbb\xd0\xcd0\xa4\xda\xa8\xe1o+\xbd}EV\xba6\xae\xee(4\xe4\x8d\x17\b\xa7\xb04G\xc28\xfb\x19\x94\xdf\x11JE\x02\x98Pm\x0f(\x98\xff\x05[\xd9\xad|\xa3\xc9Y~\xf4\xf7\xf9F\x9c\xf0\x83H\xb5\x12\xdeM\xecn\x8c\xdc\x8a\x89\x1c\xa1\x12\x91\xfa\xa5\x0e\xd5\x88\xd8\xbaR\xdc\aHg@2') 00:50:28 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:28 executing program 2: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000240)="6653070000053c27bc3376003639405cb4aed1736b533f9e1623a7cf73af21532ad62f0000001500ae47a825d86800278dcff47d010000805acf4f8f36460000000079aed75d492b415bcee00a06dc9d8e99ad2f81dcfc6afd983f79e65199615607676f8f9fc0ebf8b0b16d86a6a402ce783aa5bfb89e6f2c64884b3c5d052563def19f8b1200eaf284124422d8a4d302e96ea0cdfe02eaf9b66be609c68408e2b060e57495c8613f2351a27be673948c4b8c75a568955bf9da055a6cd0bf8e3b1bf111ed414f039ca4a74e7875034cc371152fa82459bc507495c9a65917e0d952326e50de1e4c276d4041b805c298b1bf280a6d670663fbb151d956ada863d014c200000000000073511b6c51d69d095cee557bd3bef0afd5a2e01b8c42c0150887c80380849547f5", 0x12a}], 0x100002c1, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) ioctl$sock_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000080)={0x0, @l2tp={0x2, 0x0, @multicast1}, @phonet, @phonet}) tkill(r0, 0x3c) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) [ 787.303578][T19950] not chained 1080000 origins [ 787.305389][T19950] CPU: 1 PID: 19950 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 787.305389][T19950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 787.305389][T19950] Call Trace: [ 787.305389][T19950] dump_stack+0x1df/0x240 [ 787.305389][T19950] kmsan_internal_chain_origin+0x6f/0x130 [ 787.305389][T19950] ? kmsan_get_metadata+0x11d/0x180 [ 787.305389][T19950] ? kmsan_get_metadata+0x11d/0x180 [ 787.305389][T19950] ? kmsan_set_origin_checked+0x95/0xf0 [ 787.305389][T19950] ? kmsan_get_metadata+0x11d/0x180 [ 787.305389][T19950] ? __local_bh_enable_ip+0x97/0x1d0 [ 787.305389][T19950] ? _raw_spin_unlock_bh+0x4b/0x60 [ 787.305389][T19950] ? kmsan_get_metadata+0x4f/0x180 [ 787.305389][T19950] ? kmsan_set_origin_checked+0x95/0xf0 [ 787.305389][T19950] ? kmsan_internal_unpoison_shadow+0x2f/0x40 [ 787.305389][T19950] ? _copy_from_user+0x15b/0x260 [ 787.305389][T19950] ? kmsan_get_metadata+0x4f/0x180 [ 787.305389][T19950] __msan_chain_origin+0x50/0x90 [ 787.305389][T19950] __copy_msghdr_from_user+0x555/0xaf0 [ 787.305389][T19950] ? __msan_get_context_state+0x9/0x20 [ 787.305389][T19950] __sys_sendmmsg+0x558/0xd80 [ 787.305389][T19950] ? kmsan_get_metadata+0x4f/0x180 [ 787.305389][T19950] ? kmsan_get_metadata+0x4f/0x180 [ 787.305389][T19950] ? kmsan_internal_set_origin+0x75/0xb0 [ 787.305389][T19950] ? kmsan_internal_check_memory+0xb1/0x3d0 [ 787.305389][T19950] ? kmsan_check_memory+0xd/0x10 [ 787.305389][T19950] ? _copy_to_user+0x12e/0x1d0 [ 787.305389][T19950] ? kmsan_get_metadata+0x11d/0x180 [ 787.305389][T19950] ? kmsan_get_metadata+0x11d/0x180 [ 787.305389][T19950] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 787.305389][T19950] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 787.305389][T19950] ? __prepare_exit_to_usermode+0x16c/0x4d0 [ 787.305389][T19950] __se_sys_sendmmsg+0xbd/0xe0 [ 787.305389][T19950] __x64_sys_sendmmsg+0x56/0x70 [ 787.305389][T19950] do_syscall_64+0xb0/0x150 [ 787.305389][T19950] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 787.305389][T19950] RIP: 0033:0x45c1d9 [ 787.305389][T19950] Code: Bad RIP value. [ 787.305389][T19950] RSP: 002b:00007effaf794c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 787.305389][T19950] RAX: ffffffffffffffda RBX: 0000000000025a40 RCX: 000000000045c1d9 [ 787.305389][T19950] RDX: 00000000000127ad RSI: 0000000020007f40 RDI: 0000000000000006 [ 787.305389][T19950] RBP: 000000000078c088 R08: 0000000000000000 R09: 0000000000000000 [ 787.305389][T19950] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000078c04c [ 787.305389][T19950] R13: 0000000000c9fb6f R14: 00007effaf7959c0 R15: 000000000078c04c [ 787.305389][T19950] Uninit was stored to memory at: [ 787.305389][T19950] kmsan_internal_chain_origin+0xad/0x130 [ 787.305389][T19950] __msan_chain_origin+0x50/0x90 [ 787.305389][T19950] __copy_msghdr_from_user+0x555/0xaf0 [ 787.305389][T19950] __sys_sendmmsg+0x558/0xd80 [ 787.305389][T19950] __se_sys_sendmmsg+0xbd/0xe0 [ 787.305389][T19950] __x64_sys_sendmmsg+0x56/0x70 [ 787.305389][T19950] do_syscall_64+0xb0/0x150 [ 787.305389][T19950] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 787.305389][T19950] [ 787.305389][T19950] Uninit was stored to memory at: [ 787.305389][T19950] kmsan_internal_chain_origin+0xad/0x130 [ 787.305389][T19950] __msan_chain_origin+0x50/0x90 [ 787.305389][T19950] __copy_msghdr_from_user+0x555/0xaf0 [ 787.305389][T19950] __sys_sendmmsg+0x558/0xd80 [ 787.305389][T19950] __se_sys_sendmmsg+0xbd/0xe0 [ 787.305389][T19950] __x64_sys_sendmmsg+0x56/0x70 [ 787.305389][T19950] do_syscall_64+0xb0/0x150 [ 787.305389][T19950] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 787.305389][T19950] [ 787.305389][T19950] Uninit was stored to memory at: [ 787.305389][T19950] kmsan_internal_chain_origin+0xad/0x130 [ 787.305389][T19950] __msan_chain_origin+0x50/0x90 [ 787.305389][T19950] __copy_msghdr_from_user+0x555/0xaf0 [ 787.305389][T19950] __sys_sendmmsg+0x558/0xd80 [ 787.305389][T19950] __se_sys_sendmmsg+0xbd/0xe0 [ 787.305389][T19950] __x64_sys_sendmmsg+0x56/0x70 [ 787.305389][T19950] do_syscall_64+0xb0/0x150 [ 787.305389][T19950] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 787.305389][T19950] [ 787.305389][T19950] Uninit was stored to memory at: [ 787.305389][T19950] kmsan_internal_chain_origin+0xad/0x130 [ 787.305389][T19950] __msan_chain_origin+0x50/0x90 [ 787.305389][T19950] __copy_msghdr_from_user+0x555/0xaf0 [ 787.305389][T19950] __sys_sendmmsg+0x558/0xd80 [ 787.305389][T19950] __se_sys_sendmmsg+0xbd/0xe0 [ 787.305389][T19950] __x64_sys_sendmmsg+0x56/0x70 [ 787.305389][T19950] do_syscall_64+0xb0/0x150 [ 787.305389][T19950] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 787.305389][T19950] [ 787.305389][T19950] Uninit was stored to memory at: [ 787.305389][T19950] kmsan_internal_chain_origin+0xad/0x130 [ 787.305389][T19950] __msan_chain_origin+0x50/0x90 [ 787.305389][T19950] __copy_msghdr_from_user+0x555/0xaf0 [ 787.305389][T19950] __sys_sendmmsg+0x558/0xd80 [ 787.305389][T19950] __se_sys_sendmmsg+0xbd/0xe0 [ 787.305389][T19950] __x64_sys_sendmmsg+0x56/0x70 [ 787.305389][T19950] do_syscall_64+0xb0/0x150 [ 787.305389][T19950] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 787.305389][T19950] [ 787.305389][T19950] Uninit was stored to memory at: [ 787.305389][T19950] kmsan_internal_chain_origin+0xad/0x130 [ 787.305389][T19950] __msan_chain_origin+0x50/0x90 [ 787.305389][T19950] __copy_msghdr_from_user+0x555/0xaf0 [ 787.305389][T19950] __sys_sendmmsg+0x558/0xd80 [ 787.305389][T19950] __se_sys_sendmmsg+0xbd/0xe0 [ 787.305389][T19950] __x64_sys_sendmmsg+0x56/0x70 [ 787.305389][T19950] do_syscall_64+0xb0/0x150 [ 787.305389][T19950] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 787.305389][T19950] [ 787.305389][T19950] Uninit was stored to memory at: [ 787.305389][T19950] kmsan_internal_chain_origin+0xad/0x130 [ 787.305389][T19950] __msan_chain_origin+0x50/0x90 [ 787.305389][T19950] __copy_msghdr_from_user+0x555/0xaf0 [ 787.305389][T19950] __sys_sendmmsg+0x558/0xd80 [ 787.305389][T19950] __se_sys_sendmmsg+0xbd/0xe0 [ 787.305389][T19950] __x64_sys_sendmmsg+0x56/0x70 [ 787.305389][T19950] do_syscall_64+0xb0/0x150 [ 787.305389][T19950] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 787.305389][T19950] 00:50:29 executing program 3: pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) write(r1, &(0x7f00000001c0), 0xfffffef3) read(r0, &(0x7f0000000200)=""/250, 0x1d000) [ 787.305389][T19950] Local variable ----msg_sys@__sys_sendmmsg created at: [ 787.305389][T19950] __sys_sendmmsg+0xb7/0xd80 [ 787.305389][T19950] __sys_sendmmsg+0xb7/0xd80 00:50:29 executing program 1: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000004a00)=[{{0x0, 0x0, &(0x7f0000000480)=[{0x0}], 0x1}, 0xfffff64b}, {{&(0x7f0000000ec0)=@tipc=@id, 0x80, &(0x7f00000023c0)=[{0x0}, {&(0x7f0000002240)=""/2, 0x2}, {&(0x7f0000002280)=""/33, 0x21}, {0x0}], 0x4}}, {{&(0x7f0000004800)=@ipx, 0x80, 0x0, 0x0, &(0x7f0000004980)=""/75, 0x4b}}], 0x3, 0x2, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r3, 0x407, 0x0) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) readv(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000180)=""/64, 0x40}, {&(0x7f00000002c0)=""/246, 0xf6}], 0x2) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x6}, 0x0) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000740)='./file0\x00', 0x1c) clone(0x103, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r4 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x6}, 0x1c) sendmmsg$inet(r4, &(0x7f00000010c0)=[{{&(0x7f00000000c0)={0x2, 0x4e21, @initdev}, 0x10, 0x0, 0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x18}}], 0x1b1, 0x0) connect$inet6(r2, &(0x7f0000000100)={0xa, 0x4e20, 0x800, @mcast2, 0x7}, 0x1c) socket$inet(0x2, 0x0, 0x9) 00:50:29 executing program 0: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000000)='cpu\t&l6\n\x00\xff\x00\xdc.\xdf\xbbk\xad\x1b\xf3\xf6_|S\x93>\xb4\x15#b\x91\xec\xf2\x12\xbb\xd0\xcd0\xa4\xda\xa8\xe1o+\xbd}EV\xba6\xae\xee(4\xe4\x8d\x17\b\xa7\xb04G\xc28\xfb\x19\x94\xdf\x11JE\x02\x98Pm\x0f(\x98\xff\x05[\xd9\xad|\xa3\xc9Y~\xf4\xf7\xf9F\x9c\xf0\x83H\xb5\x12\xdeM\xecn\x8c\xdc\x8a\x89\x1c\xa1\x12\x91\xfa\xa5\x0e\xd5\x88\xd8\xbaR\xdc\aHg@2') 00:50:29 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmsg$key(r0, &(0x7f00005f5000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000000)={0x2, 0x400000000000003, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_x_nat_t_type={0x1}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @loopback}}, @sadb_x_nat_t_port={0x1, 0x15}, @sadb_sa={0x2}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xffffffffffffffff}}}]}, 0x80}}, 0x0) 00:50:29 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000180)="0fae0dd0ee0f005a850f91d4360f0ff3b63ef0fe4e00660fe30a66b891d7e4700f23c00f21f8663503000a000f23f82e0f1c570f0f30", 0x36}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = dup2(r3, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) syz_open_dev$char_usb(0xc, 0xb4, 0x1) 00:50:31 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0x0, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:50:31 executing program 1: r0 = socket$inet(0x10, 0x80002, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)="4c0000001200ff0cfffefd9567a283b724a600800200000000000068354046002c001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca63d89613b6aabf35d4c1cbc882b079881", 0x4c}], 0x1}, 0x0) 00:50:31 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000002700)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=""/4096, 0x1000}}], 0x1, 0x0, 0x0) r0 = open(&(0x7f0000103ff8)='./file0\x00', 0x44042, 0x100) ftruncate(r0, 0x1000) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x806, 0x0) setxattr$trusted_overlay_origin(0x0, 0x0, &(0x7f0000000140)='y\x00', 0x2, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x0, 0x0) ppoll(&(0x7f0000000100)=[{0xffffffffffffffff, 0x2101, 0x64}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f00000002c0)=0x4) sendfile(r1, r0, 0x0, 0x40801001) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000080)=""/4, 0x4}], 0x2dc) r2 = creat(&(0x7f0000000040)='./bus\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x0) lseek(r2, 0x0, 0x3) io_submit(0x0, 0x0, 0x0) ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x8941, &(0x7f0000000240)=@get={0x1, &(0x7f0000000180)=""/164, 0x800}) setuid(0x0) 00:50:31 executing program 0: syz_emit_ethernet(0x7a, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd6035266800448402fe8000000000000000000000000000aafe8000000000000000000000000000aa"], 0x0) 00:50:31 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000000164"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) [ 790.622726][T20005] netlink: 'syz-executor.1': attribute type 29 has an invalid length. 00:50:31 executing program 0: r0 = socket$inet6_sctp(0x1c, 0x1, 0x84) connect$inet6(r0, &(0x7f0000000000)={0x1c, 0x1c, 0x3}, 0x1c) r1 = dup2(r0, r0) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x22, &(0x7f0000000000), &(0x7f0000000040)=0xc) [ 790.710761][T20009] netlink: 'syz-executor.1': attribute type 29 has an invalid length. 00:50:32 executing program 2: r0 = socket$nl_audit(0x10, 0x3, 0x9) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) sendmsg$AUDIT_USER_AVC(r0, &(0x7f0000002d80)={0x0, 0x0, &(0x7f0000002d40)={&(0x7f0000001d00)={0x670, 0x453, 0x0, 0x0, 0x0, "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"}, 0x670}}, 0x0) 00:50:32 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000300)={0x10, 0x2}, 0x10) connect$inet(r0, &(0x7f0000000000)={0x10, 0x2}, 0x10) sendmsg$inet_sctp(r0, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000040)="417af10b49abfa1c9987b8eed37d007d572e194d8e6c52735f7ed4cde5441fb726198426a07ca539765aed78f1895773efc9475243994950660cd31887bdf9fa492e14f38ddd4c90d621dc83bd6922a1a17af93ff52d6967f857656114f50a004ee3e7922555f4da9bcc942219778adab92da4a48fa5f9ae1a897652dc62d3075996331b41828d5b3fc944493c6e7e13924c07f0d1648358f0207be8b468f347b459019298", 0xa5}], 0x1}, 0x0) 00:50:32 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) close(r0) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) io_setup(0x3, &(0x7f0000000280)=0x0) io_submit(r4, 0x1e09328e, &(0x7f0000000040)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x3b}]) 00:50:32 executing program 2: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000002, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000180)="895b74e29fc8e535522bed7a32ea79b717bc42ac3a565d019abadd5a3d871dbb918bcc1518839ca88193da410d75165f0b7b52661c355c44fe7c9b54d75cec5971fba94f4d35647a799be05a9b5a2b1882bac98d3d7c2974d348d2e528d360381c5353709d09745856c834a2f893454d9f4f0000266300481bfb1ce8366858835bb1ebed3764d54bcffa", 0x8a}], 0x4, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2) sched_setattr(0x0, &(0x7f00000000c0)={0x38}, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) r3 = fcntl$dupfd(r2, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x20, r0, 0x0, 0x0) 00:50:32 executing program 1: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) r1 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r1, &(0x7f0000000080)={0x1c, 0x1c, 0x3}, 0x1c) dup2(r1, r0) connect$inet6(r0, &(0x7f0000000080)={0x1c, 0x1c, 0x3}, 0x1c) 00:50:32 executing program 2: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) r1 = socket$inet6_sctp(0x1c, 0x5, 0x84) r2 = dup2(r1, r0) sendto(r2, &(0x7f0000000200)="d2", 0x1, 0x0, &(0x7f0000000300)=@in6={0x1c, 0x1c}, 0x1c) 00:50:32 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0x0, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:50:32 executing program 1: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) r1 = dup(r0) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x9, &(0x7f0000000000), 0x4) 00:50:32 executing program 3: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r0, &(0x7f0000000000)={0x1c, 0x1c, 0x1}, 0x1c) 00:50:32 executing program 2: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) r1 = dup2(r0, r0) sendmsg$inet_sctp(r1, &(0x7f0000000700)={&(0x7f00000000c0)=@in={0x10, 0x2}, 0x10, 0x0, 0x0, &(0x7f0000000640)=[@dstaddrv6={0x1c, 0x84, 0xa, @loopback}], 0x1c}, 0x0) 00:50:32 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, 0x0, 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:33 executing program 0: r0 = socket(0x2, 0x5, 0x0) r1 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r1, &(0x7f0000000000)={0x1c, 0x1c, 0x3}, 0x1c) r2 = dup2(r1, r1) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x105, &(0x7f00000016c0)=ANY=[@ANYRES32=0x0], &(0x7f0000001700)=0x8) getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x2, &(0x7f0000000040)={r3}, &(0x7f0000000080)=0x14) 00:50:33 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000300)={0x10, 0x2}, 0x10) connect$inet(r0, &(0x7f0000000000)={0x10, 0x2}, 0x10) sendmsg$inet_sctp(r0, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000040)="417af10b49abfa1c9987b8eed37d007d572e194d8e6c52735f7ed4cde5441fb726198426a07ca539765aed78f1895773efc9475243994950660cd31887bdf9fa492e14f38ddd4c90d621dc83bd6922a1a17af93ff52d6967f857656114f50a004ee3e7922555f4da9bcc942219778adab92da4a48fa5f9ae1a897652dc62d3075996331b41828d5b3fc944493c6e7e13924c07f0d1648358f0207be8b468f3", 0x9f}, {&(0x7f0000000ec0)="d5", 0x1}, {&(0x7f0000000340)="9a", 0x1}], 0x3}, 0x0) 00:50:33 executing program 2: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) r1 = dup2(r0, r0) sendmsg$inet_sctp(r1, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000640)=[@dstaddrv6={0x1c, 0x84, 0xa, @loopback}], 0x1c}, 0x0) 00:50:33 executing program 3: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) r1 = dup2(r0, r0) sendmsg$inet_sctp(r1, &(0x7f0000001780)={&(0x7f0000001180)=@in6={0x1c, 0x1c, 0x3}, 0x1c, 0x0, 0x0, &(0x7f0000001740)=[@authinfo={0x10}], 0x10}, 0x0) 00:50:33 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt(r0, 0x0, 0x0, 0x0, 0x0) 00:50:33 executing program 0: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) r1 = dup2(r0, r0) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0xf, &(0x7f0000000040), &(0x7f0000000140)=0x1) 00:50:33 executing program 2: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f0000000340)=ANY=[@ANYBLOB="1c1c4e2000000000fe8000000000000000000000000000bb040b00"/120, @ANYRES32=0x0, @ANYBLOB="00000000be"], 0x98) 00:50:34 executing program 5: socket(0x1e, 0x4, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000540)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)={0x14, r1, 0x0, 0x0, 0x0, {0x6}}, 0x14}}, 0x0) 00:50:34 executing program 3: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f0000000340)=ANY=[@ANYBLOB="1c1c4e2000000000fe8000000000000000000000000000bb040b00"/127, @ANYRES32=0x0, @ANYBLOB="00000000bef7eddf0d69"], 0x98) 00:50:34 executing program 1: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) r1 = socket$inet6_sctp(0x1c, 0x5, 0x84) r2 = dup2(r1, r0) recvfrom$unix(r2, 0x0, 0x0, 0x1, 0x0, 0x0) 00:50:34 executing program 2: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) close(r0) r1 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r1, &(0x7f0000000000)={0x1c, 0x1c, 0x3}, 0x1c) getsockname$inet6(r0, 0x0, &(0x7f0000000080)) 00:50:34 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, 0x0, 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:34 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f0000000040)=ANY=[@ANYBLOB="10024e207f00000100"/136, @ANYRES32, @ANYBLOB="0101"], 0xa0) 00:50:34 executing program 3: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) r1 = dup(r0) r2 = socket$inet6_sctp(0x1c, 0x5, 0x84) r3 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r3, &(0x7f0000000000)={0x1c, 0x1c, 0x3}, 0x1c) r4 = dup2(r3, r2) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x105, &(0x7f00000016c0)={0x1, [0x0]}, &(0x7f0000001700)=0x8) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x26, &(0x7f0000000040)={r5}, 0x8) 00:50:34 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r0, 0x0, 0x22b41b9a8748b1b5, 0x0, 0x0, 0x800e00510) readv(r0, &(0x7f0000000000)=[{&(0x7f0000000240)=""/212, 0xd4}], 0x1) open(&(0x7f0000000040)='./file0\x00', 0x615, 0x0) shutdown(0xffffffffffffffff, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = socket$inet_udplite(0x2, 0x2, 0x88) recvmsg(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000001c0)=""/55, 0x37}, {0x0}, {0x0, 0xf}, {0x0}, {0x0}, {0x0}], 0x6}, 0x2) recvfrom$inet(r2, 0x0, 0x22b41b9a8748b1b5, 0x0, 0x0, 0x800e00510) shutdown(r1, 0x0) r3 = open(&(0x7f0000000180)='./file0\x00', 0x712, 0x0) flock(r3, 0x40000003) shutdown(r2, 0x0) 00:50:34 executing program 1: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) r1 = dup2(r0, r0) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0xa, &(0x7f00000000c0), &(0x7f0000000180)=0x98) 00:50:34 executing program 0: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) bind$inet6(r0, &(0x7f0000000040)={0x1c, 0x1c}, 0x1c) setsockopt$sock_linger(r0, 0xffff, 0x80, &(0x7f0000000100)={0x4}, 0x8) close(r0) 00:50:34 executing program 1: syz_emit_ethernet(0x7a, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd6035266800448402fe8000000000000000000000000000aafe8000000000000000000000000000aa04298a32895dbc35acad3bd300000000628bf289000086dd080088be0000000010000000010000000000264e6f240e9b18d667b02d0328cb9a0000080022eb0000000020"], 0x0) 00:50:35 executing program 1: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r0, &(0x7f0000000000)={0x1c, 0x1c, 0x3}, 0x1c) r1 = dup2(r0, r0) r2 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r2, &(0x7f0000000000)={0x1c, 0x1c, 0x3}, 0x1c) r3 = dup2(r2, r2) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x105, &(0x7f00000016c0)={0x1, [0x0]}, &(0x7f0000001700)=0x8) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x108, &(0x7f00000000c0)={r4, 0x0, 0x1}, &(0x7f0000000140)=0x18) 00:50:35 executing program 2: r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f00000000c0)={0xe, 0x4, 0x8, 0x9da, 0x0, 0xffffffffffffffff, 0x0, [0x0, 0x0, 0x0, 0x0, 0x2000000]}, 0x40) close(r0) 00:50:35 executing program 0: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r0, &(0x7f0000000000)={0x1c, 0x1c, 0x3}, 0x1c) r1 = dup2(r0, r0) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x105, &(0x7f00000016c0)={0x1, [0x0]}, &(0x7f0000001700)=0x8) r2 = socket$inet6_sctp(0x1c, 0x5, 0x84) r3 = dup2(r2, r2) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x105, &(0x7f00000016c0)={0x1, [0x0]}, &(0x7f0000001700)=0x8) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0xf, &(0x7f0000000000), &(0x7f0000000040)=0xc) 00:50:35 executing program 3: r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffffff) r1 = socket$inet6_sctp(0x1c, 0x5, 0x84) connect$inet6(r1, &(0x7f0000000000)={0x1c, 0x1c, 0x3}, 0x1c) 00:50:35 executing program 1: syz_emit_ethernet(0x9a, &(0x7f0000000000)={@local, @random, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, '\x00', 0x64, 0x11, 0x0, @empty, @mcast2, {[], {0x0, 0x4e22, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "121fbbdc682e3d8292e74469d6c9c684bbe3c6162d542cfa3db20d424f620e87", "2d8b60b7b138ab0e87dc287f1d66563c", {"ce454ed5da647f7d04bced07fc78208d", "533bf4762d9a52ab4ab2ac968bbeb837"}}}}}}}}, 0x0) 00:50:36 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, 0x0, 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:36 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000080)="390000001300034700bb65e1c3e4ffff0100000022000000560000002500000019000400043f000007fd17e5ffff0800040000000000000000", 0x39}], 0x1) 00:50:36 executing program 1: r0 = socket$inet6_sctp(0x1c, 0x5, 0x84) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f0000000340)=ANY=[@ANYBLOB="1c1c4e2000000000fe8000000000000000000000000000bb040b00"/128, @ANYRES32=0x0, @ANYBLOB="00000000bef7eddf0d69"], 0x98) 00:50:36 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r0, 0x0, 0x22b41b9a8748b1b5, 0x0, 0x0, 0x800e00510) readv(r0, &(0x7f0000000000)=[{&(0x7f0000000240)=""/212, 0xd4}], 0x1) open(&(0x7f0000000040)='./file0\x00', 0x615, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = socket$inet_udplite(0x2, 0x2, 0x88) recvmsg(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000001c0)=""/55, 0x37}, {0x0}, {0x0, 0xf}, {0x0}, {0x0}, {0x0}], 0x6}, 0x0) recvfrom$inet(r2, 0x0, 0x22b41b9a8748b1b5, 0x0, 0x0, 0x800e00510) shutdown(r1, 0x0) r3 = open(&(0x7f0000000180)='./file0\x00', 0x712, 0x0) flock(r3, 0x40000003) shutdown(r2, 0x0) 00:50:36 executing program 3: r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x8, &(0x7f0000000140), &(0x7f0000000080)=0x2) 00:50:36 executing program 0: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00008feff0)={0x0}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x4, 0x0, &(0x7f00008feff0)={&(0x7f0000000240)=ANY=[@ANYBLOB="020d0000100000002f3144e800000000030006000718000002004000e0000001000000f5000000000800120002000100000000000000000030006c000203009f7eae02000000adb20200000000152c000000000000000001020014bb000000000000002300000000030005000020000002"], 0x80}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmmsg(r0, &(0x7f00000000c0), 0x2c8, 0x0) socket$inet6(0xa, 0x2, 0x0) 00:50:36 executing program 3: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x2b, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000001a40)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 00:50:36 executing program 3: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00008feff0)={0x0}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x4, 0x0, &(0x7f00008feff0)={&(0x7f0000000240)=ANY=[@ANYBLOB="020d0000100000002f3144e800000000030006000718000002004000e0000001000000f5000000000800120002000100000000000000000030006c000203009f7eae02000000adb20200000000152c000000000000000001020014bb000000000000002300000000030005000020000002"], 0x80}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmmsg(r0, &(0x7f00000000c0), 0x2c8, 0x0) 00:50:36 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000005680)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000780)={0x2c, 0x2c, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @str='-(-+(:\xcf\x00'}, @typed={0xe, 0x1, 0x0, 0x0, @str='#+}^$:/\':\x00'}]}, 0x2c}], 0x1}, 0x0) 00:50:36 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f0000000000)='wg2\x00', 0x4) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) [ 795.392629][T20244] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 00:50:36 executing program 3: r0 = socket(0x1000000010, 0x80002, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000003c0)=0x10) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000009c0)=@newtfilter={0x38, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x8}}, [@filter_kind_options=@f_bpf={{0x8, 0x1, 'bpf\x00'}, {0xc, 0x2, [@TCA_BPF_CLASSID={0x8}]}}]}, 0x38}}, 0x0) 00:50:36 executing program 0: socket$inet6_tcp(0xa, 0x1, 0x0) r0 = openat$audio(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = dup2(r0, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f0000000100)='net/wireless\x00') r3 = open(&(0x7f0000000140)='./bus\x00', 0x1c1042, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_DRAIN(r2, 0x40045731, &(0x7f0000000000)=0x1) sendfile(r3, r2, 0x0, 0x4000000000dc) [ 795.669223][T20251] netlink: 'syz-executor.5': attribute type 4 has an invalid length. 00:50:37 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:37 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f0000000000)='wg2\x00', 0x4) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:37 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x22004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) recvmmsg(0xffffffffffffffff, &(0x7f0000002540)=[{{0x0, 0x0, &(0x7f00000000c0)=[{0x0}], 0x1}}], 0x1, 0x0, 0x0) exit(0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ip6_mr_vif\x00') preadv(r0, &(0x7f00000017c0), 0x1b4, 0x0) 00:50:37 executing program 3: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f0000000340)=@raw={'raw\x00', 0xc01, 0x3, 0x268, 0xd8, 0x5002004a, 0x0, 0xd8, 0x0, 0x1d0, 0x3c8, 0x3c8, 0x1d0, 0x3c8, 0x3, 0x0, {[{{@ip={@empty, @empty, 0x0, 0x0, 'bridge_slave_1\x00', 'gretap0\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz0\x00'}}}, {{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x60], 0x0, 0x98, 0xf8, 0x0, {}, [@common=@unspec=@state={{0x28, 'state\x00'}}]}, @common=@SET={0x60, 'SET\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2c8) 00:50:37 executing program 0: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00008feff0)={0x0}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x4, 0x0, &(0x7f00008feff0)={&(0x7f0000000240)=ANY=[@ANYBLOB="020d0000100000002f3144e800000000030006000718000002004000e0000001000000f5000000000800120002000100000000000000000030006c000203009f7eae02000000adb20200000000152c000000000000000001020014bb000000000000002300000000030005000020000002"], 0x80}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmmsg(r0, &(0x7f00000000c0), 0x2c8, 0x400300) 00:50:37 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000)='/dev/nullb0\x00', 0x101802, 0x0) r1 = dup(r0) r2 = dup(r1) ioctl$BLKZEROOUT(r2, 0x127f, &(0x7f0000000000)={0x0, 0x882200}) open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) [ 796.541737][T20268] xt_CT: You must specify a L4 protocol and not use inversions on it 00:50:37 executing program 3: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00008feff0)={0x0}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x4, 0x0, &(0x7f00008feff0)={&(0x7f0000000240)=ANY=[@ANYBLOB="020d0000100000002f3144e800000000030006000718000002004000e0000001000000f5000000000800120002000100000000000000000030006c000203009f7eae02000000adb20200000000152c000000000000000001020014bb000000000000002300000000030005000020000002"], 0x80}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmmsg(r0, &(0x7f00000000c0), 0x2c8, 0x0) socket$inet6(0xa, 0x2, 0x0) 00:50:37 executing program 0: 00:50:37 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f0000000000)='wg2\x00', 0x4) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:37 executing program 2: 00:50:38 executing program 3: 00:50:38 executing program 2: 00:50:38 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:38 executing program 0: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00008feff0)={0x0}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x4, 0x0, &(0x7f00008feff0)={&(0x7f0000000240)=ANY=[@ANYBLOB="020d0000100000002f3144e800000000030006000718000002004000e0000001000000f5000000000800120002000100000000000000000030006c000203009f7eae02000000adb20200000000152c000000000000000001020014bb000000000000002300000000030005000020000002"], 0x80}}, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmmsg(r0, &(0x7f00000000c0), 0x2c8, 0x400300) socket$inet6(0xa, 0x2, 0x0) 00:50:38 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f0000000000)='wg2\x00', 0x4) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:38 executing program 3: clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000)='/dev/nullb0\x00', 0x101802, 0x0) r1 = dup(r0) write$FUSE_DIRENT(r1, &(0x7f0000000480)={0x10}, 0x10) 00:50:38 executing program 2: 00:50:38 executing program 5: 00:50:38 executing program 2: 00:50:38 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:38 executing program 3: 00:50:38 executing program 0: 00:50:38 executing program 2: 00:50:38 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:39 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:39 executing program 3: 00:50:39 executing program 2: 00:50:39 executing program 5: 00:50:39 executing program 0: 00:50:39 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:39 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:39 executing program 2: 00:50:39 executing program 0: 00:50:39 executing program 3: 00:50:39 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:39 executing program 2: 00:50:40 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:40 executing program 3: 00:50:40 executing program 0: 00:50:40 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:40 executing program 5: 00:50:40 executing program 2: 00:50:40 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:40 executing program 0: 00:50:40 executing program 2: 00:50:40 executing program 3: 00:50:40 executing program 1: connect$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:40 executing program 1: connect$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:40 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:40 executing program 2: 00:50:40 executing program 0: 00:50:40 executing program 3: 00:50:40 executing program 1: connect$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:40 executing program 5: 00:50:41 executing program 2: 00:50:41 executing program 3: 00:50:41 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:41 executing program 0: 00:50:41 executing program 3: 00:50:41 executing program 2: 00:50:41 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:41 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:41 executing program 2: 00:50:41 executing program 0: 00:50:41 executing program 3: 00:50:42 executing program 5: 00:50:42 executing program 2: 00:50:42 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:42 executing program 3: 00:50:42 executing program 0: 00:50:42 executing program 0: 00:50:42 executing program 3: 00:50:42 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:42 executing program 2: 00:50:42 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, 0x0, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:42 executing program 0: 00:50:42 executing program 3: 00:50:42 executing program 5: 00:50:42 executing program 2: 00:50:42 executing program 0: 00:50:42 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, 0x0, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:42 executing program 3: 00:50:43 executing program 3: 00:50:43 executing program 2: 00:50:43 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:43 executing program 0: 00:50:43 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, 0x0, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:43 executing program 3: 00:50:43 executing program 2: 00:50:43 executing program 5: 00:50:43 executing program 0: 00:50:43 executing program 3: 00:50:43 executing program 2: 00:50:43 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:43 executing program 0: 00:50:43 executing program 2: 00:50:44 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:44 executing program 3: 00:50:44 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:44 executing program 0: 00:50:44 executing program 2: 00:50:44 executing program 5: 00:50:44 executing program 2: 00:50:44 executing program 3: 00:50:44 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:44 executing program 0: 00:50:44 executing program 0: 00:50:44 executing program 2: 00:50:44 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e00000"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:44 executing program 3: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0xa3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000000)={@my=0x0}) 00:50:44 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:44 executing program 0: 00:50:44 executing program 2: 00:50:44 executing program 5: 00:50:45 executing program 0: 00:50:45 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:45 executing program 2: 00:50:45 executing program 3: 00:50:45 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:45 executing program 0: 00:50:45 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e00000"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:45 executing program 2: 00:50:45 executing program 3: 00:50:45 executing program 0: 00:50:45 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x0, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:45 executing program 5: 00:50:45 executing program 3: 00:50:45 executing program 0: 00:50:45 executing program 2: 00:50:45 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x0, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:45 executing program 0: 00:50:46 executing program 3: 00:50:46 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e00000"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:46 executing program 2: 00:50:46 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x0, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:46 executing program 0: 00:50:46 executing program 3: 00:50:46 executing program 5: 00:50:46 executing program 0: 00:50:46 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:46 executing program 3: 00:50:46 executing program 2: 00:50:46 executing program 0: 00:50:46 executing program 3: 00:50:47 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:47 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:47 executing program 2: 00:50:47 executing program 3: 00:50:47 executing program 0: 00:50:47 executing program 5: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = getpid() r1 = getpid() kcmp$KCMP_EPOLL_TFD(r0, r1, 0x2, 0xffffffffffffffff, &(0x7f0000000040)) 00:50:47 executing program 0: 00:50:47 executing program 2: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e23}, 0x1c) listen(r0, 0x10001) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet6_sctp(0xa, 0x800000000000001, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r3, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) 00:50:47 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="06"], 0x20) 00:50:47 executing program 3: prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = inotify_init1(0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) sendmsg$NL80211_CMD_STOP_SCHED_SCAN(0xffffffffffffffff, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={0x0, 0x14}}, 0x0) fcntl$getownex(r0, 0x10, &(0x7f0000000000)={0x0, 0x0}) ptrace$setopts(0x4206, r1, 0x0, 0x0) [ 806.454260][T20540] ptrace attach of "/root/syz-executor.3"[9976] was attempted by "/root/syz-executor.3"[20540] [ 806.493762][T20544] ptrace attach of "/root/syz-executor.3"[9976] was attempted by "/root/syz-executor.3"[20544] 00:50:47 executing program 3: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0xea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f0000000100)=0x6, 0x4) sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf9281a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x27) 00:50:47 executing program 0: 00:50:48 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:48 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, 0x0, 0x20) 00:50:48 executing program 3: 00:50:48 executing program 2: r0 = socket$key(0xf, 0x3, 0x2) getsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f00000001c0), &(0x7f0000000200)=0x8) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) r2 = openat$cgroup_ro(r1, &(0x7f0000000140)='cpuacct.usage_sys\x00', 0x0, 0x0) setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000180)={0x1, 'veth0_macvtap\x00'}, 0x18) pipe(&(0x7f0000000080)) sendmsg$key(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x2, 0xa, 0x0, 0x0, 0x7, 0x0, 0x0, 0x25dfdbfd, [@sadb_x_filter={0x5, 0x1a, @in6=@private2, @in=@private=0xa010101, 0x0, 0x0, 0x4}]}, 0x38}}, 0x0) 00:50:48 executing program 0: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000ac0)='/dev/mixer\x00', 0x0, 0x0) ioctl$SOUND_MIXER_READ_RECSRC(r0, 0x541b, 0x0) 00:50:48 executing program 5: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000001c0)={0x0, {0x2, 0x0, @multicast1}, {0x2, 0x0, @dev}, {0x2, 0x0, @loopback}}) write(r0, &(0x7f0000000140)="150000000800080000000000c86b6525000013", 0x13) 00:50:48 executing program 3: clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) openat$mice(0xffffffffffffff9c, &(0x7f0000000080)='/dev/input/mice\x00', 0x187a00) 00:50:48 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) sendmsg$BATADV_CMD_SET_VLAN(r1, &(0x7f0000000200)={&(0x7f0000000000), 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x0, 0x200, 0x0, 0x0, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}]}, 0x1c}}, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/seq\x00', 0x42441) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000004c0)={0x0, 0x0, 0x0, 'queue0\x00'}) write$sndseq(r2, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"a35704000000b6215dd33459"}}], 0xffffff01) 00:50:48 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, 0x0, 0x20) 00:50:48 executing program 3: seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000340)={0x2, &(0x7f00000001c0)=[{0x44}, {0x6}]}) 00:50:48 executing program 0: io_submit(0x0, 0x5d, 0xffffffffffffffff) 00:50:48 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, 0x0, 0x20) [ 807.870544][ T33] audit: type=1326 audit(1595206248.969:6): auid=0 uid=0 gid=0 ses=4 subj==unconfined pid=20573 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45f01a code=0x0 00:50:49 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e000"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:49 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/consoles\x00', 0x0, 0x0) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0xf501, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x20000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r1, &(0x7f00000017c0), 0x1a2, 0x0) syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') ioctl$FICLONERANGE(0xffffffffffffffff, 0x4020940d, &(0x7f0000000000)={{}, 0x20, 0x1, 0xffffffff00000000}) 00:50:49 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x3, &(0x7f0000000180)={0x2, 'veth1_to_hsr\x00'}, 0x18) write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[], 0x20) 00:50:49 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0) mlockall(0x1) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x8000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) socket$inet6(0xa, 0x4, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0x5) r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0) r2 = openat$urandom(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/urandom\x00', 0x8442, 0x0) dup2(r2, r1) r3 = accept4(r1, &(0x7f0000000140)=@pppoe={0x18, 0x0, {0x0, @link_local}}, &(0x7f0000000080)=0x80, 0x80000) getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r3, 0x12, 0x2, &(0x7f00000001c0)=""/252, &(0x7f00000002c0)=0xfc) open$dir(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) [ 808.403544][ T33] audit: type=1326 audit(1595206249.499:7): auid=0 uid=0 gid=0 ses=4 subj==unconfined pid=20573 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45f01a code=0x0 00:50:49 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000180)='/dev/usbmon#\x00', 0x0, 0x800) ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000040)={0x0, 0x0}) 00:50:49 executing program 5: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/consoles\x00', 0x0, 0x0) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0xf501, 0x0) r1 = gettid() perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x20000000, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x1a2, 0x0) ioctl$FICLONERANGE(0xffffffffffffffff, 0x4020940d, &(0x7f0000000000)={{}, 0x20, 0x1, 0xffffffff00000000}) 00:50:49 executing program 1: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/consoles\x00', 0x0, 0x0) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0xf501, 0x0) r1 = gettid() perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x20000000, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41be, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') preadv(r2, &(0x7f00000017c0), 0x1a2, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00') ioctl$FICLONERANGE(r3, 0x4020940d, &(0x7f0000000000)={{}, 0x20, 0x1, 0xffffffff00000000}) 00:50:49 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=@mpls_delroute={0x24, 0x19, 0x1, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x1}, [@RTA_TTL_PROPAGATE={0x5}]}, 0x24}}, 0x0) 00:50:49 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=@mpls_delroute={0x24, 0x19, 0x1, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x1}, [@RTA_TTL_PROPAGATE={0x5, 0x1a, 0x38}]}, 0x24}}, 0x0) 00:50:50 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000001900010000000000000000001c140000fe00000100000000050006"], 0x24}}, 0x0) 00:50:50 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup2(r1, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000380)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @private=0xa010100, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2}}}}}}, 0x0) 00:50:50 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x10, 0x80002, 0x9) sendmmsg$alg(r0, &(0x7f0000000140), 0xffffffffffffff68, 0x0) write(0xffffffffffffffff, 0x0, 0x0) r1 = dup(0xffffffffffffffff) sendfile(0xffffffffffffffff, r1, &(0x7f0000000040), 0x0) socket$netlink(0x10, 0x3, 0x0) [ 809.084781][T20624] TCP: request_sock_TCP: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 809.142967][T20626] TCP: request_sock_TCP: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 00:50:50 executing program 4: r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000100)=ANY=[@ANYBLOB="e0000001ac1414aa0100000005000000e0000001e0000001"], 0x24) setsockopt$inet_mreqn(r0, 0x0, 0x28, &(0x7f0000000080)={@multicast1, @local}, 0xc) 00:50:50 executing program 2: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @broadcast}, 0x10) setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000440)=0x1, 0xffe6) sendto$inet(r0, 0x0, 0x0, 0x20040084, &(0x7f0000000e00)={0x2, 0x4e20}, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500)={0xffffffffffffffff}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0x1) setresuid(0x0, r2, 0x0) sendmmsg$inet(r0, &(0x7f0000007100)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000480)="5057f9d8d4a4d94d031b7102ce3392d9c8c260e5a669b2c1b53e9176902e74abec546eff0ae9005460ffdd93d2a39c128652182da185a8847e84f6f58e1ab1520715e908bd7c0697e923298f92f1d69f9c6ea2cdbbbfe83679bc8d", 0x5b}, {&(0x7f0000000e40)="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", 0x526}], 0x2}}, {{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f00000005c0)="d7", 0x1}], 0x1}}], 0x2, 0x6009854) 00:50:50 executing program 0: r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm_plock\x00', 0x44c81, 0x0) ioctl$VIDIOC_ENUMSTD(r0, 0xc0485619, &(0x7f0000000140)={0x3ff, 0x10, "6d59c72ec93cfd21f2545f337cedd9a954d88f6288fa8bc0", {0x0, 0x1000}, 0x9}) r1 = socket(0x10, 0x2, 0x0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000080)={0x7ff}, 0x10) write(r1, &(0x7f0000000280)="1c0000001a009b8a140000003b9b301f00"/28, 0x32) r2 = perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) perf_event_open(&(0x7f0000000000)={0x24c81a54c25e8799, 0x70, 0x5, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xa, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0x48fb}, 0x40040, 0x7, 0x8f, 0xd696c4ca4dbbd159, 0x2, 0x4, 0x4}, 0x0, 0xd, r2, 0x2) recvmmsg(r1, &(0x7f0000002ec0), 0x400000000000ec0, 0xa, &(0x7f00000001c0)={0x77359400}) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r3, &(0x7f00000017c0), 0x19e, 0x0) ioctl$LOOP_SET_CAPACITY(r3, 0x4c07) r4 = syz_open_procfs(0x0, &(0x7f0000000240)='syscall\x00') preadv(r4, 0x0, 0x0, 0x0) 00:50:50 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000600)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') unlink(&(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00') mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) 00:50:50 executing program 3: r0 = socket$kcm(0x2, 0x3, 0x2) ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000000)={'hsr0\x00', @remote}) socket$kcm(0x2, 0x3, 0x2) 00:50:51 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x9e3a3dce0dafe65f}) readv(r1, &(0x7f0000000100)=[{&(0x7f0000000180)=""/83, 0x14}], 0x1) ioctl$sock_inet_SIOCSIFADDR(r0, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7}}) 00:50:51 executing program 2: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') fcntl$setstatus(r1, 0x4, 0x2000) write$binfmt_misc(r0, &(0x7f0000000140)=ANY=[], 0xfd53) 00:50:51 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x1c) sendmmsg(r0, &(0x7f0000001780)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000e80)=[{0x10, 0x29, 0x3}], 0x10}}], 0x2, 0x0) 00:50:51 executing program 3: r0 = socket$unix(0x1, 0x1, 0x0) bind$unix(r0, &(0x7f0000001bc0)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x2) r1 = socket$unix(0x1, 0x801, 0x0) connect$unix(r1, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e) r2 = dup2(r1, r1) perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) connect$unix(r2, &(0x7f0000000040)=@file={0x1, './file0\x00'}, 0x6e) 00:50:51 executing program 0: mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) clone(0x26100900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(&(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='xfs\x00', 0x0, 0x0) 00:50:51 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='mountstats\x00') sendfile(r0, r1, 0x0, 0x33fe0) 00:50:51 executing program 2: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_elf64(r2, &(0x7f0000000400)=ANY=[], 0x10132) setsockopt$sock_int(r3, 0x1, 0x2a, &(0x7f0000000100), 0x4) recvmmsg(r3, &(0x7f0000001140)=[{{0x0, 0x0, 0x0}}], 0x700, 0x32010100, 0x0) [ 810.600012][T20669] ===================================================== [ 810.605423][T20669] BUG: KMSAN: uninit-value in nfnetlink_rcv+0x2f5/0x3ad0 [ 810.605423][T20669] CPU: 0 PID: 20669 Comm: syz-executor.0 Not tainted 5.8.0-rc5-syzkaller #0 [ 810.605423][T20669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 810.605423][T20669] Call Trace: [ 810.605423][T20669] dump_stack+0x1df/0x240 [ 810.605423][T20669] kmsan_report+0xf7/0x1e0 [ 810.605423][T20669] __msan_warning+0x58/0xa0 [ 810.605423][T20669] nfnetlink_rcv+0x2f5/0x3ad0 [ 810.605423][T20669] ? kmsan_get_metadata+0x11d/0x180 [ 810.605423][T20669] ? local_bh_enable+0x36/0x40 [ 810.605423][T20669] ? __dev_queue_xmit+0x338e/0x3b20 [ 810.605423][T20669] ? kmsan_get_metadata+0x11d/0x180 [ 810.605423][T20669] ? skb_clone+0x404/0x5d0 [ 810.605423][T20669] ? kmsan_get_metadata+0x11d/0x180 [ 810.605423][T20669] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 810.605423][T20669] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 810.605423][T20669] ? netlink_deliver_tap+0xdab/0xe90 [ 810.605423][T20669] ? kmsan_set_origin_checked+0x95/0xf0 [ 810.605423][T20669] ? kmsan_get_metadata+0x11d/0x180 [ 810.605423][T20669] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 810.605423][T20669] netlink_unicast+0xf9e/0x1100 [ 810.605423][T20669] ? nfnetlink_net_exit_batch+0x280/0x280 [ 810.605423][T20669] netlink_sendmsg+0x1246/0x14d0 [ 810.605423][T20669] ? netlink_getsockopt+0x1440/0x1440 [ 810.605423][T20669] kernel_sendmsg+0x433/0x440 [ 810.605423][T20669] sock_no_sendpage+0x235/0x300 [ 810.605423][T20669] ? sock_no_mmap+0x30/0x30 [ 810.605423][T20669] sock_sendpage+0x1e1/0x2c0 [ 810.605423][T20669] pipe_to_sendpage+0x38c/0x4c0 [ 810.605423][T20669] ? sock_fasync+0x250/0x250 [ 810.605423][T20669] __splice_from_pipe+0x565/0xf00 [ 810.605423][T20669] ? generic_splice_sendpage+0x2d0/0x2d0 [ 810.605423][T20669] generic_splice_sendpage+0x1d5/0x2d0 [ 810.605423][T20669] ? iter_file_splice_write+0x1800/0x1800 [ 810.605423][T20669] direct_splice_actor+0x1fd/0x580 [ 810.605423][T20669] ? kmsan_get_metadata+0x4f/0x180 [ 810.605423][T20669] splice_direct_to_actor+0x6b2/0xf50 [ 810.605423][T20669] ? do_splice_direct+0x580/0x580 [ 810.605423][T20669] do_splice_direct+0x342/0x580 [ 810.605423][T20669] do_sendfile+0x101b/0x1d40 [ 810.605423][T20669] __se_sys_sendfile64+0x2bb/0x360 [ 810.605423][T20669] ? kmsan_get_metadata+0x4f/0x180 [ 810.605423][T20669] __x64_sys_sendfile64+0x56/0x70 [ 810.605423][T20669] do_syscall_64+0xb0/0x150 [ 810.605423][T20669] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.605423][T20669] RIP: 0033:0x45c1d9 [ 810.605423][T20669] Code: Bad RIP value. [ 810.605423][T20669] RSP: 002b:00007effaf7d6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 810.605423][T20669] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9 [ 810.605423][T20669] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 810.605423][T20669] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000 [ 810.605423][T20669] R10: 0000000000033fe0 R11: 0000000000000246 R12: 000000000078bf0c [ 810.605423][T20669] R13: 0000000000c9fb6f R14: 00007effaf7d79c0 R15: 000000000078bf0c [ 810.605423][T20669] [ 810.605423][T20669] Uninit was stored to memory at: [ 810.605423][T20669] kmsan_internal_chain_origin+0xad/0x130 [ 810.605423][T20669] kmsan_memcpy_memmove_metadata+0x272/0x2e0 [ 810.605423][T20669] kmsan_memcpy_metadata+0xb/0x10 [ 810.605423][T20669] __msan_memcpy+0x43/0x50 [ 810.605423][T20669] _copy_from_iter_full+0xbfe/0x13b0 [ 810.605423][T20669] netlink_sendmsg+0xfaa/0x14d0 [ 810.605423][T20669] kernel_sendmsg+0x433/0x440 [ 810.605423][T20669] sock_no_sendpage+0x235/0x300 [ 810.605423][T20669] sock_sendpage+0x1e1/0x2c0 [ 810.605423][T20669] pipe_to_sendpage+0x38c/0x4c0 [ 810.605423][T20669] __splice_from_pipe+0x565/0xf00 [ 810.605423][T20669] generic_splice_sendpage+0x1d5/0x2d0 [ 810.605423][T20669] direct_splice_actor+0x1fd/0x580 [ 810.605423][T20669] splice_direct_to_actor+0x6b2/0xf50 [ 810.605423][T20669] do_splice_direct+0x342/0x580 [ 810.605423][T20669] do_sendfile+0x101b/0x1d40 [ 810.605423][T20669] __se_sys_sendfile64+0x2bb/0x360 [ 810.605423][T20669] __x64_sys_sendfile64+0x56/0x70 [ 810.605423][T20669] do_syscall_64+0xb0/0x150 [ 810.605423][T20669] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.605423][T20669] [ 810.605423][T20669] Uninit was created at: [ 810.605423][T20669] kmsan_save_stack_with_flags+0x3c/0x90 [ 810.605423][T20669] kmsan_alloc_page+0xb9/0x180 [ 810.605423][T20669] __alloc_pages_nodemask+0x56a2/0x5dc0 [ 810.605423][T20669] alloc_pages_current+0x672/0x990 [ 810.605423][T20669] push_pipe+0x605/0xb70 [ 810.605423][T20669] iov_iter_get_pages_alloc+0x18a9/0x21c0 [ 810.605423][T20669] do_splice_to+0x4fc/0x14f0 [ 810.605423][T20669] splice_direct_to_actor+0x45c/0xf50 [ 810.605423][T20669] do_splice_direct+0x342/0x580 [ 810.605423][T20669] do_sendfile+0x101b/0x1d40 [ 810.605423][T20669] __se_sys_sendfile64+0x2bb/0x360 [ 810.605423][T20669] __x64_sys_sendfile64+0x56/0x70 [ 810.605423][T20669] do_syscall_64+0xb0/0x150 [ 810.605423][T20669] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.605423][T20669] ===================================================== [ 810.605423][T20669] Disabling lock debugging due to kernel taint [ 810.605423][T20669] Kernel panic - not syncing: panic_on_warn set ... [ 810.605423][T20669] CPU: 0 PID: 20669 Comm: syz-executor.0 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 810.605423][T20669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 810.605423][T20669] Call Trace: [ 810.605423][T20669] dump_stack+0x1df/0x240 [ 810.605423][T20669] panic+0x3d5/0xc3e [ 810.605423][T20669] kmsan_report+0x1df/0x1e0 [ 810.605423][T20669] __msan_warning+0x58/0xa0 [ 810.605423][T20669] nfnetlink_rcv+0x2f5/0x3ad0 [ 810.605423][T20669] ? kmsan_get_metadata+0x11d/0x180 [ 810.605423][T20669] ? local_bh_enable+0x36/0x40 [ 810.605423][T20669] ? __dev_queue_xmit+0x338e/0x3b20 [ 810.605423][T20669] ? kmsan_get_metadata+0x11d/0x180 [ 810.605423][T20669] ? skb_clone+0x404/0x5d0 [ 810.605423][T20669] ? kmsan_get_metadata+0x11d/0x180 [ 810.605423][T20669] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 810.605423][T20669] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 810.605423][T20669] ? netlink_deliver_tap+0xdab/0xe90 [ 810.605423][T20669] ? kmsan_set_origin_checked+0x95/0xf0 [ 810.605423][T20669] ? kmsan_get_metadata+0x11d/0x180 [ 810.605423][T20669] ? kmsan_get_shadow_origin_ptr+0x81/0xb0 [ 810.605423][T20669] netlink_unicast+0xf9e/0x1100 [ 810.605423][T20669] ? nfnetlink_net_exit_batch+0x280/0x280 [ 810.605423][T20669] netlink_sendmsg+0x1246/0x14d0 [ 810.605423][T20669] ? netlink_getsockopt+0x1440/0x1440 [ 810.605423][T20669] kernel_sendmsg+0x433/0x440 [ 810.605423][T20669] sock_no_sendpage+0x235/0x300 [ 810.605423][T20669] ? sock_no_mmap+0x30/0x30 [ 810.605423][T20669] sock_sendpage+0x1e1/0x2c0 [ 810.605423][T20669] pipe_to_sendpage+0x38c/0x4c0 [ 810.605423][T20669] ? sock_fasync+0x250/0x250 [ 810.605423][T20669] __splice_from_pipe+0x565/0xf00 [ 810.605423][T20669] ? generic_splice_sendpage+0x2d0/0x2d0 [ 810.605423][T20669] generic_splice_sendpage+0x1d5/0x2d0 [ 810.605423][T20669] ? iter_file_splice_write+0x1800/0x1800 [ 810.605423][T20669] direct_splice_actor+0x1fd/0x580 [ 810.605423][T20669] ? kmsan_get_metadata+0x4f/0x180 [ 810.605423][T20669] splice_direct_to_actor+0x6b2/0xf50 [ 810.605423][T20669] ? do_splice_direct+0x580/0x580 [ 810.605423][T20669] do_splice_direct+0x342/0x580 [ 810.605423][T20669] do_sendfile+0x101b/0x1d40 [ 810.605423][T20669] __se_sys_sendfile64+0x2bb/0x360 [ 810.605423][T20669] ? kmsan_get_metadata+0x4f/0x180 [ 810.605423][T20669] __x64_sys_sendfile64+0x56/0x70 [ 810.605423][T20669] do_syscall_64+0xb0/0x150 [ 810.605423][T20669] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 810.605423][T20669] RIP: 0033:0x45c1d9 [ 810.605423][T20669] Code: Bad RIP value. [ 810.605423][T20669] RSP: 002b:00007effaf7d6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 810.605423][T20669] RAX: ffffffffffffffda RBX: 0000000000025a00 RCX: 000000000045c1d9 [ 810.605423][T20669] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 810.605423][T20669] RBP: 000000000078bf48 R08: 0000000000000000 R09: 0000000000000000 [ 810.605423][T20669] R10: 0000000000033fe0 R11: 0000000000000246 R12: 000000000078bf0c [ 810.605423][T20669] R13: 0000000000c9fb6f R14: 00007effaf7d79c0 R15: 000000000078bf0c [ 810.605423][T20669] Kernel Offset: 0x1ce00000 from 0xffffffff81000000 (relocation range: 0xffffffff80000000-0xffffffffbfffffff) [ 810.605423][T20669] Rebooting in 86400 seconds..