pressed
[ 1353.403987][T14831] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1353.418583][T14831] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1353.427336][T14831] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1353.436108][T14831] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1353.510056][T14823] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1353.520997][T14823] CPU: 1 PID: 14823 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1353.533422][T14823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1353.543476][T14823] Call Trace:
[ 1353.546752][T14823]  <TASK>
[ 1353.549683][T14823]  dump_stack_lvl+0xd6/0x122
[ 1353.554337][T14823]  dump_stack+0x11/0x15
[ 1353.558502][T14823]  dump_header+0x98/0x430
[ 1353.562914][T14823]  oom_kill_process+0x100/0x540
[ 1353.567771][T14823]  out_of_memory+0x620/0x880
[ 1353.572395][T14823]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1353.577955][T14823]  mem_cgroup_oom+0x2e7/0x370
[ 1353.582655][T14823]  try_charge_memcg+0x717/0x9c0
[ 1353.587516][T14823]  ? __alloc_pages+0x199/0x340
[ 1353.592319][T14823]  charge_memcg+0x54/0x250
[ 1353.596744][T14823]  __mem_cgroup_charge+0x25/0xa0
[ 1353.601761][T14823]  wp_page_copy+0x209/0x1460
[ 1353.606352][T14823]  ? shrink_zones+0x525/0x5d0
[ 1353.611084][T14823]  ? preempt_count_add+0x5e/0xa0
[ 1353.616134][T14823]  do_wp_page+0x2dd/0x780
[ 1353.620472][T14823]  handle_mm_fault+0x5ef/0xa80
[ 1353.625339][T14823]  do_user_addr_fault+0x4a1/0x980
[ 1353.630390][T14823]  exc_page_fault+0x60/0x160
[ 1353.635008][T14823]  asm_exc_page_fault+0x22/0x30
[ 1353.640016][T14823] RIP: 0033:0x7fa69bfc5970
[ 1353.646074][T14823] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1353.667154][T14823] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1353.673259][T14823] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1353.681281][T14823] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1353.689254][T14823] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1353.697258][T14823] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1353.705228][T14823] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1353.713227][T14823]  ? __sock_create+0x24/0x4e0
[ 1353.717929][T14823]  </TASK>
[ 1353.727868][T14823] memory: usage 307196kB, limit 307200kB, failcnt 40672
[ 1353.734896][T14823] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1353.741789][T14823] Memory cgroup stats for /syz0:
[ 1353.742167][T14823] anon 401408
[ 1353.742167][T14823] file 10457088
[ 1353.742167][T14823] kernel 303710208
[ 1353.742167][T14823] kernel_stack 81920
[ 1353.742167][T14823] pagetables 229376
[ 1353.742167][T14823] sec_pagetables 0
[ 1353.742167][T14823] percpu 9172448
[ 1353.742167][T14823] sock 0
[ 1353.742167][T14823] vmalloc 8192
[ 1353.742167][T14823] shmem 10457088
[ 1353.742167][T14823] file_mapped 159744
[ 1353.742167][T14823] file_dirty 0
[ 1353.742167][T14823] file_writeback 0
[ 1353.742167][T14823] swapcached 0
[ 1353.742167][T14823] inactive_anon 401408
[ 1353.742167][T14823] active_anon 10457088
[ 1353.742167][T14823] inactive_file 0
[ 1353.742167][T14823] active_file 0
[ 1353.742167][T14823] unevictable 0
[ 1353.742167][T14823] slab_reclaimable 39392
[ 1353.742167][T14823] slab_unreclaimable 294095528
[ 1353.742167][T14823] slab 294134920
[ 1353.742167][T14823] workingset_refault_anon 0
[ 1353.742167][T14823] workingset_refault_file 1
[ 1353.742167][T14823] workingset_activate_anon 0
[ 1353.837707][T14823] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14823,uid=0
05:13:09 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xec240000}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:09 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x2000000}]})
socket$nl_generic(0x10, 0x3, 0x10)

05:13:09 executing program 2:
r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_MON_SET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="48010000", @ANYRES16=r0, @ANYBLOB="0103f6ffffffffffff7204"], 0x148}}, 0x0)

05:13:09 executing program 4:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='spi_setup\x00'}, 0x10)

05:13:09 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x59a}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:09 executing program 1:
set_mempolicy(0x3, &(0x7f00000002c0)=0xfffffffffffffff9, 0x8)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x0)
r1 = openat$random(0xffffffffffffff9c, &(0x7f0000000080), 0x501000, 0x0)
fallocate(r1, 0x20, 0x0, 0x1000f4)
preadv2(r0, &(0x7f0000000100)=[{&(0x7f0000000000)=""/72, 0xe0ffc}], 0x1, 0x20004, 0x0, 0x8)

[ 1353.853129][T14823] Memory cgroup out of memory: Killed process 14823 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:09 executing program 2:
socket(0x25, 0x80805, 0x0)

05:13:09 executing program 4:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x2, 0x0, 0x0, 0xffff}]})

[ 1353.909263][   T23] audit: type=1326 audit(1667193189.701:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14842 comm="syz-executor.5" exe="/root/syz-executor.5" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7d0399a5a9 code=0x2000000
05:13:09 executing program 1:
set_mempolicy(0x3, &(0x7f00000002c0)=0xfffffffffffffff9, 0x8) (async, rerun: 32)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0) (rerun: 32)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x0) (async)
r1 = openat$random(0xffffffffffffff9c, &(0x7f0000000080), 0x501000, 0x0)
fallocate(r1, 0x20, 0x0, 0x1000f4) (async)
preadv2(r0, &(0x7f0000000100)=[{&(0x7f0000000000)=""/72, 0xe0ffc}], 0x1, 0x20004, 0x0, 0x8)

05:13:09 executing program 2:
pselect6(0x40, &(0x7f0000000000), &(0x7f0000000040)={0xffffffffffffffff}, 0x0, 0x0, &(0x7f0000000140)={0x0})

05:13:09 executing program 4:
openat$sysfs(0xffffffffffffff9c, 0x0, 0x1a12c0, 0x0)

05:13:09 executing program 2:
bpf$OBJ_GET_MAP(0x13, &(0x7f0000000040)={0x0, 0x0, 0x8}, 0x10)

[ 1354.053219][T14855] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1354.053911][T14847] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1354.064066][T14855] CPU: 0 PID: 14855 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1354.064132][T14855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1354.064141][T14855] Call Trace:
[ 1354.064146][T14855]  <TASK>
[ 1354.064152][T14855]  dump_stack_lvl+0xd6/0x122
[ 1354.064205][T14855]  dump_stack+0x11/0x15
[ 1354.072273][T14847] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1354.084634][T14855]  dump_header+0x98/0x430
[ 1354.094700][T14847] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1354.097944][T14855]  oom_kill_process+0x100/0x540
[ 1354.100882][T14847] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1354.105440][T14855]  out_of_memory+0x620/0x880
[ 1354.105460][T14855]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1354.105509][T14855]  mem_cgroup_oom+0x2e7/0x370
[ 1354.158113][T14855]  try_charge_memcg+0x717/0x9c0
[ 1354.162977][T14855]  __memcg_kmem_charge_page+0x2e4/0x480
[ 1354.168527][T14855]  alloc_thread_stack_node+0x101/0x360
[ 1354.174015][T14855]  dup_task_struct+0x96/0x2a0
[ 1354.178825][T14855]  copy_process+0x3ca/0x2100
[ 1354.183421][T14855]  ? _raw_spin_unlock+0x2d/0x50
[ 1354.188305][T14855]  kernel_clone+0x166/0x550
[ 1354.192818][T14855]  __x64_sys_clone+0xc3/0xf0
[ 1354.197419][T14855]  do_syscall_64+0x2b/0x70
[ 1354.201933][T14855]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1354.207834][T14855] RIP: 0033:0x7fa69c0199d1
[ 1354.212311][T14855] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1354.232011][T14855] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1354.240428][T14855] RAX: ffffffffffffffda RBX: 00007fa69b36b700 RCX: 00007fa69c0199d1
[ 1354.248434][T14855] RDX: 00007fa69b36b9d0 RSI: 00007fa69b36b2f0 RDI: 00000000003d0f00
[ 1354.256487][T14855] RBP: 00007ffd8ac50010 R08: 00007fa69b36b700 R09: 00007fa69b36b700
[ 1354.264467][T14855] R10: 00007fa69b36b9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1354.272495][T14855] R13: 00007ffd8ac4fe7f R14: 00007fa69b36b300 R15: 0000000000022000
[ 1354.280474][T14855]  </TASK>
[ 1354.283521][T14855] memory: usage 307200kB, limit 307200kB, failcnt 40743
[ 1354.290525][T14855] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1354.297399][T14855] Memory cgroup stats for /syz0:
[ 1354.297760][T14855] anon 393216
[ 1354.297760][T14855] file 10457088
[ 1354.297760][T14855] kernel 303722496
[ 1354.297760][T14855] kernel_stack 81920
[ 1354.297760][T14855] pagetables 229376
[ 1354.297760][T14855] sec_pagetables 0
[ 1354.297760][T14855] percpu 9172448
[ 1354.297760][T14855] sock 0
[ 1354.297760][T14855] vmalloc 8192
[ 1354.297760][T14855] shmem 10457088
[ 1354.297760][T14855] file_mapped 159744
[ 1354.297760][T14855] file_dirty 0
[ 1354.297760][T14855] file_writeback 0
[ 1354.297760][T14855] swapcached 0
[ 1354.297760][T14855] inactive_anon 393216
[ 1354.297760][T14855] active_anon 10457088
[ 1354.297760][T14855] inactive_file 0
[ 1354.297760][T14855] active_file 0
[ 1354.297760][T14855] unevictable 0
[ 1354.297760][T14855] slab_reclaimable 38416
[ 1354.297760][T14855] slab_unreclaimable 294105240
[ 1354.297760][T14855] slab 294143656
[ 1354.297760][T14855] workingset_refault_anon 0
[ 1354.297760][T14855] workingset_refault_file 1
[ 1354.297760][T14855] workingset_activate_anon 0
05:13:10 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xee030000}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1354.393339][T14855] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14855,uid=0
[ 1354.408690][T14855] Memory cgroup out of memory: Killed process 14855 (syz-executor.0) total-vm:46468kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1354.476663][T14874] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1354.487374][T14874] CPU: 0 PID: 14874 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1354.499847][T14874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1354.509946][T14874] Call Trace:
[ 1354.513220][T14874]  <TASK>
[ 1354.516148][T14874]  dump_stack_lvl+0xd6/0x122
[ 1354.520748][T14874]  dump_stack+0x11/0x15
[ 1354.524962][T14874]  dump_header+0x98/0x430
[ 1354.529295][T14874]  oom_kill_process+0x100/0x540
[ 1354.534152][T14874]  out_of_memory+0x620/0x880
[ 1354.538744][T14874]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1354.544340][T14874]  mem_cgroup_oom+0x2e7/0x370
[ 1354.549029][T14874]  try_charge_memcg+0x717/0x9c0
[ 1354.553888][T14874]  ? debug_smp_processor_id+0x13/0x20
[ 1354.559313][T14874]  ? mod_objcg_state+0x474/0x580
[ 1354.564325][T14874]  __memcg_kmem_charge_page+0x2e4/0x480
[ 1354.569919][T14874]  alloc_thread_stack_node+0x101/0x360
[ 1354.575391][T14874]  dup_task_struct+0x96/0x2a0
[ 1354.580156][T14874]  copy_process+0x3ca/0x2100
[ 1354.584756][T14874]  kernel_clone+0x166/0x550
[ 1354.589330][T14874]  __x64_sys_clone+0xc3/0xf0
[ 1354.593939][T14874]  do_syscall_64+0x2b/0x70
[ 1354.598430][T14874]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1354.604363][T14874] RIP: 0033:0x7fa69c0199d1
[ 1354.608780][T14874] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1354.628389][T14874] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1354.636805][T14874] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1354.644805][T14874] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1354.652784][T14874] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1354.660764][T14874] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1354.668802][T14874] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1354.676798][T14874]  </TASK>
[ 1354.687313][T14874] memory: usage 307200kB, limit 307200kB, failcnt 40837
[ 1354.694271][T14874] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1354.701120][T14874] Memory cgroup stats for /syz0:
[ 1354.701356][T14874] anon 380928
[ 1354.701356][T14874] file 10457088
[ 1354.701356][T14874] kernel 303734784
[ 1354.701356][T14874] kernel_stack 65536
[ 1354.701356][T14874] pagetables 229376
[ 1354.701356][T14874] sec_pagetables 0
[ 1354.701356][T14874] percpu 9172448
[ 1354.701356][T14874] sock 0
[ 1354.701356][T14874] vmalloc 8192
[ 1354.701356][T14874] shmem 10457088
[ 1354.701356][T14874] file_mapped 159744
[ 1354.701356][T14874] file_dirty 0
[ 1354.701356][T14874] file_writeback 0
[ 1354.701356][T14874] swapcached 0
[ 1354.701356][T14874] inactive_anon 335872
[ 1354.701356][T14874] active_anon 10457088
[ 1354.701356][T14874] inactive_file 0
[ 1354.701356][T14874] active_file 0
[ 1354.701356][T14874] unevictable 0
[ 1354.701356][T14874] slab_reclaimable 55896
[ 1354.701356][T14874] slab_unreclaimable 294106704
[ 1354.701356][T14874] slab 294162600
[ 1354.701356][T14874] workingset_refault_anon 0
[ 1354.701356][T14874] workingset_refault_file 1
[ 1354.701356][T14874] workingset_activate_anon 0
[ 1354.797153][T14874] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14874,uid=0
[ 1354.812486][T14874] Memory cgroup out of memory: Killed process 14874 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:10 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0xffffff1f}, 0x0)

05:13:10 executing program 1:
set_mempolicy(0x3, &(0x7f00000002c0)=0xfffffffffffffff9, 0x8) (async)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x0) (async)
r1 = openat$random(0xffffffffffffff9c, &(0x7f0000000080), 0x501000, 0x0)
fallocate(r1, 0x20, 0x0, 0x1000f4)
preadv2(r0, &(0x7f0000000100)=[{&(0x7f0000000000)=""/72, 0xe0ffc}], 0x1, 0x20004, 0x0, 0x8)

05:13:10 executing program 4:
r0 = socket(0x2, 0x1, 0x0)
setsockopt$WPAN_SECURITY(r0, 0x0, 0x30, 0x0, 0x0)

05:13:10 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000040)={'gre0\x00', &(0x7f0000000080)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0xc}, @local}}}})

05:13:10 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x5bf}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:10 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xefffffff}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:10 executing program 4:
r0 = socket(0x1, 0x80001, 0x0)
bind$pptp(r0, &(0x7f0000000000)={0x18, 0x2, {0x0, @remote}}, 0x1e)

05:13:10 executing program 4:
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/block/loop0', 0x20a040, 0x0)

05:13:10 executing program 1:
r0 = socket(0x25, 0x80805, 0x0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

05:13:10 executing program 2:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f00000002c0), 0x10)

[ 1355.021055][T14885] __nla_validate_parse: 8 callbacks suppressed
[ 1355.021069][T14885] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1355.076538][   T23] audit: type=1400 audit(1667193190.871:634): avc:  denied  { write } for  pid=14892 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[ 1355.076897][T14884] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1355.106620][T14884] CPU: 0 PID: 14884 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
05:13:10 executing program 5:
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000001440)={@cgroup, 0xffffffffffffffff, 0x12}, 0x10)

05:13:10 executing program 2:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCOUTQ(r0, 0x541b, 0x0)

[ 1355.119175][T14884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1355.129311][T14884] Call Trace:
[ 1355.132601][T14884]  <TASK>
[ 1355.135535][T14884]  dump_stack_lvl+0xd6/0x122
[ 1355.140224][T14884]  dump_stack+0x11/0x15
[ 1355.144398][T14884]  dump_header+0x98/0x430
[ 1355.144428][T14884]  oom_kill_process+0x100/0x540
[ 1355.144442][T14884]  out_of_memory+0x620/0x880
[ 1355.144456][T14884]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1355.144474][T14884]  mem_cgroup_oom+0x2e7/0x370
[ 1355.144534][T14884]  try_charge_memcg+0x717/0x9c0
05:13:11 executing program 4:
r0 = socket(0x2, 0x5, 0x0)
connect$802154_dgram(r0, &(0x7f0000000000)={0x24, @short}, 0x14)

05:13:11 executing program 5:
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x0, 0x0, 0x0, 0x0, 0x1964}, 0x48)

05:13:11 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000580), 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x14, r1, 0x1, 0x0, 0x0, {0x9}}, 0x14}}, 0x0)

[ 1355.144560][T14884]  ? __alloc_pages+0x199/0x340
[ 1355.144584][T14884]  charge_memcg+0x54/0x250
[ 1355.144601][T14884]  __mem_cgroup_charge+0x25/0xa0
[ 1355.144640][T14884]  wp_page_copy+0x209/0x1460
[ 1355.144715][T14884]  ? shrink_zones+0x525/0x5d0
[ 1355.144731][T14884]  ? preempt_count_add+0x5e/0xa0
[ 1355.144753][T14884]  do_wp_page+0x2dd/0x780
[ 1355.144825][T14884]  handle_mm_fault+0x5ef/0xa80
[ 1355.144845][T14884]  do_user_addr_fault+0x4a1/0x980
[ 1355.144864][T14884]  exc_page_fault+0x60/0x160
05:13:11 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000100)={'tunl0\x00', &(0x7f0000000200)={'erspan0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @multicast2}}}})

[ 1355.144878][T14884]  asm_exc_page_fault+0x22/0x30
[ 1355.144979][T14884] RIP: 0033:0x7fa69bfc5970
[ 1355.144991][T14884] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1355.145004][T14884] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1355.145016][T14884] RAX: 0000000034c8aabb RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1355.145026][T14884] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a2f7f
[ 1355.145098][T14884] RBP: 0000000034c8aabb R08: 0000000000000abb R09: 0000000034c8aabf
[ 1355.145108][T14884] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1355.145119][T14884] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff83a0d5e7
[ 1355.145129][T14884]  ? __sys_socket+0x27/0x220
[ 1355.145148][T14884]  </TASK>
[ 1355.145172][T14884] memory: usage 307200kB, limit 307200kB, failcnt 40908
[ 1355.145258][T14884] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1355.145266][T14884] Memory cgroup stats for /syz0:
[ 1355.145509][T14884] anon 397312
[ 1355.145509][T14884] file 10457088
[ 1355.145509][T14884] kernel 303718400
[ 1355.145509][T14884] kernel_stack 81920
[ 1355.145509][T14884] pagetables 229376
[ 1355.145509][T14884] sec_pagetables 0
[ 1355.145509][T14884] percpu 9172448
[ 1355.145509][T14884] sock 0
[ 1355.145509][T14884] vmalloc 8192
[ 1355.145509][T14884] shmem 10457088
[ 1355.145509][T14884] file_mapped 159744
[ 1355.145509][T14884] file_dirty 0
[ 1355.145509][T14884] file_writeback 0
[ 1355.145509][T14884] swapcached 0
[ 1355.145509][T14884] inactive_anon 397312
[ 1355.145509][T14884] active_anon 10457088
[ 1355.145509][T14884] inactive_file 0
[ 1355.145509][T14884] active_file 0
[ 1355.145509][T14884] unevictable 0
[ 1355.145509][T14884] slab_reclaimable 40768
[ 1355.145509][T14884] slab_unreclaimable 294100856
[ 1355.145509][T14884] slab 294141624
[ 1355.145509][T14884] workingset_refault_anon 0
[ 1355.145509][T14884] workingset_refault_file 1
[ 1355.145509][T14884] workingset_activate_anon 0
[ 1355.162656][T14891] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1355.164680][T14884] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14884,uid=0
[ 1355.164748][T14884] Memory cgroup out of memory: Killed process 14884 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1355.169402][T14891] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:13:11 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xf0ffffff}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:11 executing program 5:
r0 = socket(0x25, 0x80801, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)

05:13:11 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x5c0}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:11 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000580), 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x20, r1, 0x1, 0x0, 0x0, {0x9}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x0)

05:13:11 executing program 2:
r0 = syz_open_dev$vcsu(&(0x7f0000000000), 0x1, 0x1)
write$RDMA_USER_CM_CMD_CONNECT(r0, 0x0, 0x0)

05:13:11 executing program 4:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$TIOCOUTQ(r0, 0x5411, 0x0)

[ 1355.464178][T14891] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:11 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r0, &(0x7f0000000940)={&(0x7f0000000840), 0x8, &(0x7f0000000900)={&(0x7f00000008c0)={0x14}, 0x14}}, 0x0)

05:13:11 executing program 2:
r0 = semget$private(0x0, 0x5, 0x0)
semtimedop(r0, &(0x7f0000000000)=[{}, {0x0, 0x6}, {}], 0x3, &(0x7f0000000040)={0x0, 0x989680})

05:13:11 executing program 4:
modify_ldt$read_default(0x2, &(0x7f00000000c0)=""/75, 0x4b)

05:13:11 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_DEL(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000000c0)={0x0}}, 0x0)

05:13:11 executing program 5:
syz_open_procfs(0x0, &(0x7f0000002100)='net/sco\x00')

[ 1355.558252][T14936] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1355.576828][T14916] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1355.587800][T14916] CPU: 0 PID: 14916 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
05:13:11 executing program 4:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1d}, 0x0)

[ 1355.600218][T14916] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1355.610327][T14916] Call Trace:
[ 1355.613607][T14916]  <TASK>
[ 1355.616541][T14916]  dump_stack_lvl+0xd6/0x122
[ 1355.621149][T14916]  dump_stack+0x11/0x15
[ 1355.625331][T14916]  dump_header+0x98/0x430
[ 1355.629701][T14916]  oom_kill_process+0x100/0x540
[ 1355.634630][T14916]  out_of_memory+0x620/0x880
[ 1355.639295][T14916]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1355.644844][T14916]  mem_cgroup_oom+0x2e7/0x370
[ 1355.649588][T14916]  try_charge_memcg+0x717/0x9c0
[ 1355.654446][T14916]  ? __alloc_pages+0x199/0x340
[ 1355.659287][T14916]  charge_memcg+0x54/0x250
[ 1355.663781][T14916]  __mem_cgroup_charge+0x25/0xa0
[ 1355.668747][T14916]  wp_page_copy+0x209/0x1460
[ 1355.673435][T14916]  ? shrink_zones+0x525/0x5d0
[ 1355.678212][T14916]  ? preempt_count_add+0x5e/0xa0
[ 1355.683275][T14916]  do_wp_page+0x2dd/0x780
[ 1355.687634][T14916]  handle_mm_fault+0x5ef/0xa80
[ 1355.692441][T14916]  do_user_addr_fault+0x4a1/0x980
[ 1355.697549][T14916]  exc_page_fault+0x60/0x160
[ 1355.702403][T14916]  asm_exc_page_fault+0x22/0x30
[ 1355.707330][T14916] RIP: 0033:0x7fa69bfc5970
[ 1355.711745][T14916] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1355.731445][T14916] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1355.737514][T14916] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1355.745497][T14916] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1355.753489][T14916] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1355.761460][T14916] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1355.769432][T14916] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1355.777481][T14916]  ? __sock_create+0x24/0x4e0
[ 1355.782182][T14916]  </TASK>
[ 1355.792932][T14916] memory: usage 307200kB, limit 307200kB, failcnt 40980
[ 1355.799940][T14916] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1355.806857][T14916] Memory cgroup stats for /syz0:
[ 1355.807124][T14916] anon 401408
[ 1355.807124][T14916] file 10457088
[ 1355.807124][T14916] kernel 303714304
[ 1355.807124][T14916] kernel_stack 81920
[ 1355.807124][T14916] pagetables 229376
[ 1355.807124][T14916] sec_pagetables 0
[ 1355.807124][T14916] percpu 9172448
[ 1355.807124][T14916] sock 0
[ 1355.807124][T14916] vmalloc 8192
[ 1355.807124][T14916] shmem 10457088
[ 1355.807124][T14916] file_mapped 159744
[ 1355.807124][T14916] file_dirty 0
[ 1355.807124][T14916] file_writeback 0
[ 1355.807124][T14916] swapcached 0
[ 1355.807124][T14916] inactive_anon 401408
[ 1355.807124][T14916] active_anon 10457088
[ 1355.807124][T14916] inactive_file 0
[ 1355.807124][T14916] active_file 0
[ 1355.807124][T14916] unevictable 0
[ 1355.807124][T14916] slab_reclaimable 39392
[ 1355.807124][T14916] slab_unreclaimable 294100856
[ 1355.807124][T14916] slab 294140248
[ 1355.807124][T14916] workingset_refault_anon 0
[ 1355.807124][T14916] workingset_refault_file 1
[ 1355.807124][T14916] workingset_activate_anon 0
05:13:11 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xf2030000}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1355.848490][T14944] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1355.902933][T14916] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14916,uid=0
[ 1355.903000][T14916] Memory cgroup out of memory: Killed process 14916 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1355.991125][T14946] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1356.002578][T14946] CPU: 1 PID: 14946 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1356.013260][T14949] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1356.015048][T14946] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1356.015060][T14946] Call Trace:
[ 1356.015066][T14946]  <TASK>
05:13:11 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x600}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:11 executing program 2:
r0 = socket(0x25, 0x80801, 0x0)
accept4$vsock_stream(r0, 0x0, 0x0, 0x0)

05:13:11 executing program 5:
r0 = socket(0x2, 0x1, 0x0)
setsockopt$WPAN_SECURITY(r0, 0x0, 0x30, 0x0, 0x218)

05:13:11 executing program 4:
mremap(&(0x7f0000eb8000/0x3000)=nil, 0x3000, 0x2000, 0x0, &(0x7f0000c3a000/0x2000)=nil)
pkey_mprotect(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff)

05:13:11 executing program 1:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='f2fs_issue_flush\x00'}, 0x10)

[ 1356.015076][T14946]  dump_stack_lvl+0xd6/0x122
[ 1356.045244][T14946]  dump_stack+0x11/0x15
[ 1356.049420][T14946]  dump_header+0x98/0x430
[ 1356.053751][T14946]  oom_kill_process+0x100/0x540
[ 1356.058659][T14946]  out_of_memory+0x620/0x880
[ 1356.063252][T14946]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1356.068882][T14946]  mem_cgroup_oom+0x2e7/0x370
[ 1356.073569][T14946]  try_charge_memcg+0x717/0x9c0
[ 1356.078426][T14946]  ? __alloc_pages+0x199/0x340
[ 1356.083229][T14946]  charge_memcg+0x54/0x250
05:13:11 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000240)={'sit0\x00', &(0x7f0000000180)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @dev}}}})

[ 1356.087767][T14946]  __mem_cgroup_charge+0x25/0xa0
[ 1356.092720][T14946]  wp_page_copy+0x209/0x1460
[ 1356.097357][T14946]  ? shrink_zones+0x525/0x5d0
[ 1356.102039][T14946]  ? preempt_count_add+0x5e/0xa0
[ 1356.106987][T14946]  do_wp_page+0x2dd/0x780
[ 1356.111330][T14946]  handle_mm_fault+0x5ef/0xa80
[ 1356.116173][T14946]  do_user_addr_fault+0x4a1/0x980
[ 1356.121208][T14946]  exc_page_fault+0x60/0x160
[ 1356.125850][T14946]  asm_exc_page_fault+0x22/0x30
[ 1356.127280][T14957] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1356.130706][T14946] RIP: 0033:0x7fa69bfc5970
[ 1356.130723][T14946] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1356.130741][T14946] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1356.130755][T14946] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1356.130767][T14946] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
05:13:12 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x700}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1356.130779][T14946] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1356.130790][T14946] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1356.130802][T14946] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
[ 1356.210148][T14946]  ? __x64_sys_socket+0xc/0x50
[ 1356.215005][T14946]  </TASK>
[ 1356.218052][T14946] memory: usage 307200kB, limit 307200kB, failcnt 41038
[ 1356.225010][T14946] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1356.231866][T14946] Memory cgroup stats for /syz0:
[ 1356.232292][T14946] anon 393216
[ 1356.232292][T14946] file 10457088
[ 1356.232292][T14946] kernel 303722496
[ 1356.232292][T14946] kernel_stack 81920
[ 1356.232292][T14946] pagetables 229376
[ 1356.232292][T14946] sec_pagetables 0
[ 1356.232292][T14946] percpu 9172448
[ 1356.232292][T14946] sock 0
[ 1356.232292][T14946] vmalloc 8192
[ 1356.232292][T14946] shmem 10457088
[ 1356.232292][T14946] file_mapped 159744
[ 1356.232292][T14946] file_dirty 0
[ 1356.232292][T14946] file_writeback 0
[ 1356.232292][T14946] swapcached 0
[ 1356.232292][T14946] inactive_anon 335872
[ 1356.232292][T14946] active_anon 10457088
05:13:12 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f2, &(0x7f0000000040)={'gre0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @local}}}})

[ 1356.232292][T14946] inactive_file 0
[ 1356.232292][T14946] active_file 0
[ 1356.232292][T14946] unevictable 0
[ 1356.232292][T14946] slab_reclaimable 45296
[ 1356.232292][T14946] slab_unreclaimable 294101120
[ 1356.232292][T14946] slab 294146416
[ 1356.232292][T14946] workingset_refault_anon 0
[ 1356.232292][T14946] workingset_refault_file 1
[ 1356.232292][T14946] workingset_activate_anon 0
05:13:12 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)={0xf, 0x0, 0x0, 0x0, 0x0, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg2\x00'}, @WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_PEERS={0x4d8, 0x8, 0x0, 0x1, [{0x4d4, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8}, @WGPEER_A_ALLOWEDIPS={0x2fc, 0x9, 0x0, 0x1, [{0x4c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5}}]}, {0x94, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5}}]}, {0x40, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @dev}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @dev}, {0x5}}]}, {0x64, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @private}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5}}]}, {0xa0, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5}}]}, {0x88, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @private}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @dev}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5}}]}, {0x4c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5}}]}]}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_ALLOWEDIPS={0x174, 0x9, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5}}]}, {0x58, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5}}, @ipv4={{0x6}, {0x8}, {0x5}}]}, {0x4c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5}}]}, {0x88, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @private}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5}}]}]}]}]}, @WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}, @WGDEVICE_A_PEERS={0x894, 0x8, 0x0, 0x1, [{0x420, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x0, @broadcast}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "2ae579476ef0d5da137583a82e50ea5133dc5f54a4453260016927878084db45"}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6}, @WGPEER_A_FLAGS={0x8}, @WGPEER_A_ALLOWEDIPS={0x36c, 0x9, 0x0, 0x1, [{0x58, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @private}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5}}]}, {0x124, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @private}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @dev}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5}}, @ipv4={{0x6}, {0x8}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5}}]}, {0x40, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5}}]}, {0x4c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5}}, @ipv4={{0x6}, {0x8}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5}}]}, {0x94, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private2}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv4={{0x6}, {0x8}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5}}]}, {0x94, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @dev}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00'}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5}}]}]}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x0, 0x0, @mcast1}}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}]}, {0x50, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x0, 0x0, @mcast1}}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_FLAGS={0x8}]}, {0x48, 0x0, 0x0, 0x1, [@WGPEER_A_PRESHARED_KEY={0x24, 0x2, "98c392638673d334b4950c8b51491d244a551aa8ced894a163db491abc95330f"}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x0, 0x0, @mcast2}}]}, {0x80, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x0, 0x0, @private0}}]}, {0x174, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6}, @WGPEER_A_ALLOWEDIPS={0x90, 0x9, 0x0, 0x1, [{0x40, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5}}]}, {0x4c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @dev}, {0x5}}]}]}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "9244029f27c3ae80c69578394c3c51d006a62feee2abdbdffde743b1266e2e34"}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x0, 0x0, @private2}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "dd2ee3127f6f3b76931b1751169134d1eab2b0c2576605110b36c87f6a3fc38e"}]}, {0x1e4, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x0, @remote}}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x0, 0x0, @private2}}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x0, 0x0, @private1}}, @WGPEER_A_ALLOWEDIPS={0x15c, 0x9, 0x0, 0x1, [{0xb8, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @dev}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5}}]}, {0xa0, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @empty}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}]}]}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x0, @multicast1}}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6}]}]}, @WGDEVICE_A_PEERS={0xfc, 0x8, 0x0, 0x1, [{0xf8, 0x0, 0x0, 0x1, [@WGPEER_A_PRESHARED_KEY={0x24, 0x2, "2a8e9d740abc04bc3752a7f4bb784a899183dbf95ebdf2af3da9210a0c1a49eb"}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x0, 0x0, @mcast2}}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6}, @WGPEER_A_FLAGS={0x8}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "e180efefcfecbdac0856a60972b30ef226f85da59a347b7b227de30bd3993ca0"}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6}, @WGPEER_A_ALLOWEDIPS={0x74, 0x9, 0x0, 0x1, [{0x70, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @private2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00'}, {0x5}}]}]}]}]}]}, 0xec4}}, 0x0)

[ 1356.327920][T14946] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14946,uid=0
[ 1356.343199][T14946] Memory cgroup out of memory: Killed process 14946 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:12 executing program 2:
sendmsg$FOU_CMD_ADD(0xffffffffffffffff, 0x0, 0xf87f7feb9c7d7c47)

05:13:12 executing program 5:
r0 = socket(0x2, 0x1, 0x0)
setsockopt$WPAN_SECURITY(r0, 0x0, 0x6, 0x0, 0x0)

[ 1356.389265][T14971] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:12 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xf4030000}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:12 executing program 4:
clock_gettime(0x0, &(0x7f0000000040))
getresgid(&(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140))

05:13:12 executing program 1:
mlock2(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x0)
mlock2(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1)
mlock2(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0)

05:13:12 executing program 2:
pkey_mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff)
getrusage(0x0, &(0x7f0000000040))

05:13:12 executing program 5:
sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000e00)={0x0, 0x0, 0x0}, 0x0)
mlock2(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x0)
mremap(&(0x7f0000eb8000/0x3000)=nil, 0x3000, 0x2000, 0x3, &(0x7f0000c3a000/0x2000)=nil)
mremap(&(0x7f0000da0000/0x2000)=nil, 0x2000, 0x4000, 0x3, &(0x7f0000ec2000/0x4000)=nil)

05:13:12 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x900}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1356.441487][T14971] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:12 executing program 2:
mlock2(&(0x7f0000eba000/0x2000)=nil, 0x2000, 0x0)
mremap(&(0x7f0000eb8000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000c5f000/0x1000)=nil)

05:13:12 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x8011, r0, 0x0)

[ 1356.500853][T14983] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=1000
[ 1356.512452][T14983] CPU: 1 PID: 14983 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1356.523918][T14990] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1356.524942][T14983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1356.524954][T14983] Call Trace:
[ 1356.524960][T14983]  <TASK>
[ 1356.550550][T14983]  dump_stack_lvl+0xd6/0x122
[ 1356.555151][T14983]  dump_stack+0x11/0x15
[ 1356.559377][T14983]  dump_header+0x98/0x430
[ 1356.563763][T14983]  oom_kill_process+0x100/0x540
[ 1356.568619][T14983]  out_of_memory+0x620/0x880
[ 1356.573289][T14983]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1356.578930][T14983]  mem_cgroup_oom+0x2e7/0x370
[ 1356.583780][T14983]  try_charge_memcg+0x717/0x9c0
[ 1356.588794][T14983]  obj_cgroup_charge+0x171/0x2b0
[ 1356.593815][T14983]  kmem_cache_alloc_node+0x9b/0x380
05:13:12 executing program 4:
sendmsg$RDMA_NLDEV_CMD_STAT_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
mlock2(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x0)
mlock2(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1)
pkey_mprotect(&(0x7f0000ec9000/0x5000)=nil, 0x5000, 0x0, 0xffffffffffffffff)
mremap(&(0x7f0000eb8000/0x3000)=nil, 0x3000, 0x2000, 0x0, &(0x7f0000c3a000/0x2000)=nil)

[ 1356.599025][T14983]  ? dup_task_struct+0x5b/0x2a0
[ 1356.603927][T14983]  ? shrink_zones+0x525/0x5d0
[ 1356.608608][T14983]  dup_task_struct+0x5b/0x2a0
[ 1356.613294][T14983]  copy_process+0x3ca/0x2100
[ 1356.615602][   T23] audit: type=1400 audit(1667193192.361:635): avc:  denied  { map } for  pid=14994 comm="syz-executor.4" path="socket:[677737]" dev="sockfs" ino=677737 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[ 1356.617915][T14983]  kernel_clone+0x166/0x550
[ 1356.645993][T14983]  __x64_sys_clone+0xc3/0xf0
05:13:12 executing program 2:
r0 = socket$igmp(0x2, 0x3, 0x2)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, 0x0)

05:13:12 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000900)={<r0=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000b80)={0x0, 0x0, 0x0}, 0x40000001)

05:13:12 executing program 5:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000003600)={0x0, 0x0, 0x0, &(0x7f00000033c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

[ 1356.650607][T14983]  do_syscall_64+0x2b/0x70
[ 1356.655038][T14983]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1356.661010][T14983] RIP: 0033:0x7fa69c0199d1
[ 1356.665434][T14983] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1356.685209][T14983] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1356.693686][T14983] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1356.701674][T14983] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1356.709717][T14983] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1356.718306][T14983] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1356.726282][T14983] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1356.734266][T14983]  </TASK>
[ 1356.737332][T14983] memory: usage 307184kB, limit 307200kB, failcnt 41095
[ 1356.744285][T14983] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1356.751124][T14983] Memory cgroup stats for /syz0:
[ 1356.751581][T14983] anon 380928
[ 1356.751581][T14983] file 10457088
[ 1356.751581][T14983] kernel 303718400
[ 1356.751581][T14983] kernel_stack 65536
[ 1356.751581][T14983] pagetables 229376
[ 1356.751581][T14983] sec_pagetables 0
[ 1356.751581][T14983] percpu 9172448
[ 1356.751581][T14983] sock 0
[ 1356.751581][T14983] vmalloc 8192
[ 1356.751581][T14983] shmem 10457088
[ 1356.751581][T14983] file_mapped 159744
[ 1356.751581][T14983] file_dirty 0
[ 1356.751581][T14983] file_writeback 0
[ 1356.751581][T14983] swapcached 0
[ 1356.751581][T14983] inactive_anon 360448
[ 1356.751581][T14983] active_anon 10457088
[ 1356.751581][T14983] inactive_file 0
[ 1356.751581][T14983] active_file 0
[ 1356.751581][T14983] unevictable 0
[ 1356.751581][T14983] slab_reclaimable 56672
[ 1356.751581][T14983] slab_unreclaimable 294103040
[ 1356.751581][T14983] slab 294159712
[ 1356.751581][T14983] workingset_refault_anon 0
[ 1356.751581][T14983] workingset_refault_file 1
[ 1356.751581][T14983] workingset_activate_anon 0
05:13:12 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xf6030000}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:12 executing program 2:
set_mempolicy(0x3, &(0x7f00000002c0)=0xfffffffffffffff9, 0x8)
set_mempolicy(0x8000, &(0x7f00000000c0)=0x2, 0x3)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x0)
fallocate(r0, 0x71, 0x0, 0x1000f4)
set_mempolicy(0x1, &(0x7f0000000080)=0x7fffffff, 0x0)
preadv2(r0, &(0x7f0000000100)=[{&(0x7f0000000000)=""/72, 0xe0ffc}], 0x1, 0x20004, 0x0, 0x8)

05:13:12 executing program 1:
set_mempolicy(0x3, &(0x7f00000002c0)=0xfffffffffffffff9, 0x8)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x0)
set_mempolicy(0x0, &(0x7f0000000340)=0x2, 0x1ff)
r1 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
mkdirat(r1, &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
set_mempolicy(0x4000, &(0x7f0000000140)=0x7, 0x7)
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r2, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r1, &(0x7f0000000380)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2)
r3 = open_tree(r2, &(0x7f0000000080)='./bus\x00', 0x80900)
symlinkat(&(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r3, &(0x7f00000001c0)='./file0\x00')
fallocate(r0, 0x0, 0x0, 0x1000f4)
preadv2(r0, &(0x7f0000000100)=[{&(0x7f0000000000)=""/72, 0xe0ffc}], 0x1, 0x20004, 0x0, 0x8)

05:13:12 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:12 executing program 4:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, 0x0, 0x0)

[ 1356.847254][T14983] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=14983,uid=0
[ 1356.862584][T14983] Memory cgroup out of memory: Killed process 14983 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1356.941975][T14999] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1357.074527][T15022] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1357.086076][T15022] CPU: 0 PID: 15022 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1357.098492][T15022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1357.108549][T15022] Call Trace:
[ 1357.111912][T15022]  <TASK>
[ 1357.114837][T15022]  dump_stack_lvl+0xd6/0x122
[ 1357.119454][T15022]  dump_stack+0x11/0x15
[ 1357.123661][T15022]  dump_header+0x98/0x430
[ 1357.127993][T15022]  oom_kill_process+0x100/0x540
[ 1357.132902][T15022]  out_of_memory+0x620/0x880
[ 1357.137492][T15022]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1357.143046][T15022]  mem_cgroup_oom+0x2e7/0x370
[ 1357.147734][T15022]  try_charge_memcg+0x717/0x9c0
[ 1357.152618][T15022]  ? __alloc_pages+0x199/0x340
[ 1357.157387][T15022]  charge_memcg+0x54/0x250
[ 1357.161864][T15022]  __mem_cgroup_charge+0x25/0xa0
[ 1357.166804][T15022]  wp_page_copy+0x209/0x1460
[ 1357.171534][T15022]  ? shrink_zones+0x525/0x5d0
[ 1357.176220][T15022]  ? preempt_count_add+0x5e/0xa0
[ 1357.181297][T15022]  do_wp_page+0x2dd/0x780
[ 1357.185660][T15022]  handle_mm_fault+0x5ef/0xa80
[ 1357.190439][T15022]  do_user_addr_fault+0x4a1/0x980
[ 1357.195518][T15022]  exc_page_fault+0x60/0x160
[ 1357.200148][T15022]  asm_exc_page_fault+0x22/0x30
[ 1357.205080][T15022] RIP: 0033:0x7fa69bfc5970
[ 1357.209502][T15022] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1357.229186][T15022] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1357.235251][T15022] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1357.243218][T15022] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1357.251292][T15022] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1357.259259][T15022] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1357.267229][T15022] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1357.275260][T15022]  ? __sock_create+0x24/0x4e0
[ 1357.280091][T15022]  </TASK>
[ 1357.290679][T15022] memory: usage 307196kB, limit 307200kB, failcnt 41197
[ 1357.297639][T15022] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1357.304560][T15022] Memory cgroup stats for /syz0:
[ 1357.304812][T15022] anon 401408
[ 1357.304812][T15022] file 10457088
[ 1357.304812][T15022] kernel 303710208
[ 1357.304812][T15022] kernel_stack 81920
05:13:13 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xa00}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:13 executing program 2:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0xa, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000080)='GPL\x00', 0x5, 0xe1, &(0x7f00000000c0)=""/225, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

05:13:13 executing program 1:
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0xa, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0xe1, &(0x7f00000000c0)=""/225, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000e00)={r0, 0xe0, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)

[ 1357.304812][T15022] pagetables 229376
[ 1357.304812][T15022] sec_pagetables 0
[ 1357.304812][T15022] percpu 9172448
[ 1357.304812][T15022] sock 0
[ 1357.304812][T15022] vmalloc 8192
[ 1357.304812][T15022] shmem 10457088
[ 1357.304812][T15022] file_mapped 159744
[ 1357.304812][T15022] file_dirty 0
[ 1357.304812][T15022] file_writeback 0
[ 1357.304812][T15022] swapcached 0
[ 1357.304812][T15022] inactive_anon 401408
[ 1357.304812][T15022] active_anon 10457088
[ 1357.304812][T15022] inactive_file 0
[ 1357.304812][T15022] active_file 0
[ 1357.304812][T15022] unevictable 0
[ 1357.304812][T15022] slab_reclaimable 39392
[ 1357.304812][T15022] slab_unreclaimable 294095528
[ 1357.304812][T15022] slab 294134920
[ 1357.304812][T15022] workingset_refault_anon 0
[ 1357.304812][T15022] workingset_refault_file 1
[ 1357.304812][T15022] workingset_activate_anon 0
[ 1357.400436][T15022] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15022,uid=0
05:13:13 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfa030000}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:13 executing program 2:
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0xa, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0xe1, &(0x7f00000000c0)=""/225, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000040)={r0, 0xffffffffffffffff, 0xb}, 0x10)

05:13:13 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x14, 0x0, 0x4}, 0x48)

05:13:13 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

[ 1357.415781][T15022] Memory cgroup out of memory: Killed process 15022 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:13 executing program 1:
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0xa, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0xe1, &(0x7f00000000c0)=""/225, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000e00)={r0, 0xe0, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000cc0)=[0x0], 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x0, 0x0}}, 0x10)

[ 1357.505940][T15041] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1357.517065][T15041] CPU: 0 PID: 15041 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1357.529481][T15041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1357.539597][T15041] Call Trace:
[ 1357.542863][T15041]  <TASK>
[ 1357.545791][T15041]  dump_stack_lvl+0xd6/0x122
[ 1357.550389][T15041]  dump_stack+0x11/0x15
[ 1357.554541][T15041]  dump_header+0x98/0x430
[ 1357.558875][T15041]  oom_kill_process+0x100/0x540
[ 1357.563716][T15041]  out_of_memory+0x620/0x880
[ 1357.568340][T15041]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1357.573875][T15041]  mem_cgroup_oom+0x2e7/0x370
[ 1357.578545][T15041]  try_charge_memcg+0x717/0x9c0
[ 1357.583403][T15041]  ? __alloc_pages+0x199/0x340
[ 1357.588158][T15041]  charge_memcg+0x54/0x250
[ 1357.592572][T15041]  __mem_cgroup_charge+0x25/0xa0
[ 1357.597550][T15041]  wp_page_copy+0x209/0x1460
[ 1357.602141][T15041]  ? shrink_zones+0x525/0x5d0
[ 1357.606821][T15041]  ? preempt_count_add+0x5e/0xa0
[ 1357.611933][T15041]  do_wp_page+0x2dd/0x780
[ 1357.616348][T15041]  handle_mm_fault+0x5ef/0xa80
[ 1357.621116][T15041]  do_user_addr_fault+0x4a1/0x980
[ 1357.626219][T15041]  exc_page_fault+0x60/0x160
[ 1357.630884][T15041]  asm_exc_page_fault+0x22/0x30
[ 1357.635762][T15041] RIP: 0033:0x7fa69bfc5970
[ 1357.640205][T15041] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1357.659801][T15041] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1357.665866][T15041] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1357.673824][T15041] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
[ 1357.681868][T15041] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1357.689883][T15041] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1357.697921][T15041] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
[ 1357.705879][T15041]  ? __x64_sys_socket+0xc/0x50
[ 1357.710637][T15041]  </TASK>
[ 1357.713748][T15041] memory: usage 307200kB, limit 307200kB, failcnt 41261
[ 1357.720725][T15041] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1357.727598][T15041] Memory cgroup stats for /syz0:
[ 1357.727939][T15041] anon 393216
[ 1357.727939][T15041] file 10457088
[ 1357.727939][T15041] kernel 303718400
[ 1357.727939][T15041] kernel_stack 81920
[ 1357.727939][T15041] pagetables 229376
[ 1357.727939][T15041] sec_pagetables 0
[ 1357.727939][T15041] percpu 9172448
[ 1357.727939][T15041] sock 0
[ 1357.727939][T15041] vmalloc 8192
[ 1357.727939][T15041] shmem 10457088
[ 1357.727939][T15041] file_mapped 159744
[ 1357.727939][T15041] file_dirty 0
[ 1357.727939][T15041] file_writeback 0
[ 1357.727939][T15041] swapcached 0
[ 1357.727939][T15041] inactive_anon 393216
[ 1357.727939][T15041] active_anon 10457088
[ 1357.727939][T15041] inactive_file 0
[ 1357.727939][T15041] active_file 0
[ 1357.727939][T15041] unevictable 0
[ 1357.727939][T15041] slab_reclaimable 40768
[ 1357.727939][T15041] slab_unreclaimable 294101120
05:13:13 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xb00}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:13 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000fc0)=@base={0x5, 0x3, 0x20, 0xffff}, 0x48)

[ 1357.727939][T15041] slab 294141888
[ 1357.727939][T15041] workingset_refault_anon 0
[ 1357.727939][T15041] workingset_refault_file 1
[ 1357.727939][T15041] workingset_activate_anon 0
[ 1357.823554][T15041] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15041,uid=0
[ 1357.838893][T15041] Memory cgroup out of memory: Killed process 15041 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:13 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfc030000}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:13 executing program 4:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, 0x0, 0x0)

05:13:13 executing program 2:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0xe1, &(0x7f00000000c0)=""/225, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x5, 0x0}, 0x600)

[ 1358.021311][T15060] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1358.033018][T15060] CPU: 1 PID: 15060 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1358.045439][T15060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1358.055537][T15060] Call Trace:
[ 1358.058894][T15060]  <TASK>
[ 1358.061821][T15060]  dump_stack_lvl+0xd6/0x122
[ 1358.066451][T15060]  dump_stack+0x11/0x15
[ 1358.070675][T15060]  dump_header+0x98/0x430
[ 1358.075015][T15060]  oom_kill_process+0x100/0x540
[ 1358.079862][T15060]  out_of_memory+0x620/0x880
[ 1358.084491][T15060]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1358.090053][T15060]  mem_cgroup_oom+0x2e7/0x370
[ 1358.094757][T15060]  try_charge_memcg+0x717/0x9c0
[ 1358.099746][T15060]  ? __alloc_pages+0x199/0x340
[ 1358.104510][T15060]  charge_memcg+0x54/0x250
[ 1358.108972][T15060]  __mem_cgroup_charge+0x25/0xa0
[ 1358.114089][T15060]  wp_page_copy+0x209/0x1460
[ 1358.118721][T15060]  ? shrink_zones+0x525/0x5d0
[ 1358.123402][T15060]  ? preempt_count_add+0x5e/0xa0
[ 1358.128421][T15060]  do_wp_page+0x2dd/0x780
[ 1358.132776][T15060]  handle_mm_fault+0x5ef/0xa80
[ 1358.137574][T15060]  do_user_addr_fault+0x4a1/0x980
[ 1358.142611][T15060]  exc_page_fault+0x60/0x160
[ 1358.147226][T15060]  asm_exc_page_fault+0x22/0x30
[ 1358.152139][T15060] RIP: 0033:0x7fa69bfc5970
[ 1358.156557][T15060] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1358.176540][T15060] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1358.182610][T15060] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1358.190583][T15060] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1358.198556][T15060] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1358.206555][T15060] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
05:13:14 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xc00}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1358.214528][T15060] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1358.222550][T15060]  ? __sock_create+0x24/0x4e0
[ 1358.227243][T15060]  </TASK>
[ 1358.237476][T15060] memory: usage 307200kB, limit 307200kB, failcnt 41336
[ 1358.244519][T15060] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1358.251474][T15060] Memory cgroup stats for /syz0:
[ 1358.251761][T15060] anon 401408
[ 1358.251761][T15060] file 10457088
[ 1358.251761][T15060] kernel 303714304
[ 1358.251761][T15060] kernel_stack 81920
[ 1358.251761][T15060] pagetables 229376
[ 1358.251761][T15060] sec_pagetables 0
[ 1358.251761][T15060] percpu 9172448
[ 1358.251761][T15060] sock 0
[ 1358.251761][T15060] vmalloc 8192
[ 1358.251761][T15060] shmem 10457088
[ 1358.251761][T15060] file_mapped 159744
[ 1358.251761][T15060] file_dirty 0
[ 1358.251761][T15060] file_writeback 0
[ 1358.251761][T15060] swapcached 0
[ 1358.251761][T15060] inactive_anon 389120
[ 1358.251761][T15060] active_anon 10457088
[ 1358.251761][T15060] inactive_file 0
[ 1358.251761][T15060] active_file 0
[ 1358.251761][T15060] unevictable 0
[ 1358.251761][T15060] slab_reclaimable 39392
[ 1358.251761][T15060] slab_unreclaimable 294100856
[ 1358.251761][T15060] slab 294140248
[ 1358.251761][T15060] workingset_refault_anon 0
[ 1358.251761][T15060] workingset_refault_file 1
[ 1358.251761][T15060] workingset_activate_anon 0
[ 1358.347807][T15060] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15060,uid=0
05:13:14 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xd00}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1358.363203][T15060] Memory cgroup out of memory: Killed process 15060 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:14 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:14 executing program 2:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000016c0)=""/4096, 0x1000}], 0x1}, 0x0)
sendmsg$inet(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001380)=[{&(0x7f0000000140)="00ca9168bd98ce71f435be21e9dd79481f4d81ee8499375f2df1d058225695b7c89abcf5728d0b4feacfde2463e022fafe319d8b765da06c951c30a5581815eeec6d28b041c3ecc72b6c6c3b7bc7841d79e17f9b3977e810b2e6f10885181bcb616e75a3ea5ceb8684c053e181df863d9460fd11eaedc5248fbdca18667812d9ca64f3fa0330a11c29ac2e40dc3d3fb778190cbf554bf4d45cbd5159cccbac8bf27b4befd22ca3028abea769c8c4b4bf5698fd8fc1a5708215d31d71f708fd8f", 0xc0}, {&(0x7f0000000380)="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", 0x881}], 0x2}, 0x0)

05:13:14 executing program 4:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000016c0)=""/4096, 0x1000}], 0x1}, 0x0)
sendmsg$inet(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001380)=[{&(0x7f0000000040)="4d2f39ea18654431b42131a31972817e7f8173f51d5ea072f287569ea18948b6d1a12cb1c3bd076d5225e4858ad0930e6b680231ca0bc8d738fa3b5410f48284c4985b80c4e809d94323d5dcc78430f30ca520e7896d7ca3491a92cce724e8411c8192e6039f5a57cb335847580a53cdbb614750bd2fba71a90fbb93826ed5d051695f696b12db7f25e3af4e933cb25cf866909be8a203e00452d69b1de2e81f46d445320df4f4805d19cf400afa340200a19270eae4c9e951443d6499691d081843f3a977cee611f62e303c8b5067e6229fb0dfef8179f9e41f90700d26de429a5904ea10609b972476e289aa0aefecd85bb1c031430d", 0xf7}, {&(0x7f0000000140)="00ca9168bd98ce71f435be21e9dd79481f4d81ee8499375f2df1d058225695b7c89abcf5728d0b4feacfde2463e022fafe319d8b765da06c951c30a5581815eeec6d28b041c3ecc72b6c6c3b7bc7841d79e17f9b3977e810b2e6f10885181bcb616e75a3ea5ceb8684c053e181df863d9460fd11eaedc5248fbdca18667812d9ca64f3fa0330a11c29ac2e40dc3d3fb778190cbf554bf4d45cbd5159cccbac8bf27b4befd22ca3028abea769c8c4b4bf5698fd8fc1a5708215d31d71f708fd8f", 0xc0}, {&(0x7f0000000380)="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", 0xcca}], 0x3}, 0x0)

05:13:14 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfcffffff}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:14 executing program 4:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
recvmsg$unix(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x40000081)

05:13:14 executing program 2:
socketpair$unix(0xa, 0x0, 0x0, &(0x7f00000000c0))

[ 1358.533242][T15076] validate_nla: 30 callbacks suppressed
[ 1358.533258][T15076] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1358.547610][T15076] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1358.556452][T15076] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1358.565307][T15076] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1358.620475][T15089] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1358.631309][T15089] CPU: 1 PID: 15089 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1358.643741][T15089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1358.653796][T15089] Call Trace:
[ 1358.657073][T15089]  <TASK>
[ 1358.660102][T15089]  dump_stack_lvl+0xd6/0x122
[ 1358.664758][T15089]  dump_stack+0x11/0x15
[ 1358.668925][T15089]  dump_header+0x98/0x430
[ 1358.673258][T15089]  oom_kill_process+0x100/0x540
[ 1358.678112][T15089]  out_of_memory+0x620/0x880
[ 1358.682744][T15089]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1358.688362][T15089]  mem_cgroup_oom+0x2e7/0x370
[ 1358.693052][T15089]  try_charge_memcg+0x717/0x9c0
[ 1358.697907][T15089]  ? __alloc_pages+0x199/0x340
[ 1358.702734][T15089]  charge_memcg+0x54/0x250
[ 1358.707158][T15089]  __mem_cgroup_charge+0x25/0xa0
[ 1358.712142][T15089]  wp_page_copy+0x209/0x1460
[ 1358.716743][T15089]  ? preempt_count_add+0x5e/0xa0
[ 1358.721738][T15089]  do_wp_page+0x2dd/0x780
[ 1358.726134][T15089]  handle_mm_fault+0x5ef/0xa80
[ 1358.730952][T15089]  do_user_addr_fault+0x4a1/0x980
[ 1358.735997][T15089]  exc_page_fault+0x60/0x160
[ 1358.740605][T15089]  asm_exc_page_fault+0x22/0x30
[ 1358.745480][T15089] RIP: 0033:0x7fa69bfc5970
[ 1358.749896][T15089] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1358.769587][T15089] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1358.775653][T15089] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1358.783662][T15089] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
[ 1358.791657][T15089] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1358.799632][T15089] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1358.807640][T15089] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
[ 1358.815717][T15089]  ? __x64_sys_socket+0xc/0x50
[ 1358.820498][T15089]  </TASK>
[ 1358.823621][T15089] memory: usage 307200kB, limit 307200kB, failcnt 41405
[ 1358.830556][T15089] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1358.837432][T15089] Memory cgroup stats for /syz0:
[ 1358.837663][T15089] anon 393216
[ 1358.837663][T15089] file 10457088
[ 1358.837663][T15089] kernel 303718400
[ 1358.837663][T15089] kernel_stack 81920
[ 1358.837663][T15089] pagetables 229376
[ 1358.837663][T15089] sec_pagetables 0
[ 1358.837663][T15089] percpu 9172448
[ 1358.837663][T15089] sock 0
[ 1358.837663][T15089] vmalloc 8192
[ 1358.837663][T15089] shmem 10457088
[ 1358.837663][T15089] file_mapped 159744
[ 1358.837663][T15089] file_dirty 0
[ 1358.837663][T15089] file_writeback 0
[ 1358.837663][T15089] swapcached 0
[ 1358.837663][T15089] inactive_anon 364544
[ 1358.837663][T15089] active_anon 10457088
[ 1358.837663][T15089] inactive_file 0
[ 1358.837663][T15089] active_file 0
[ 1358.837663][T15089] unevictable 0
[ 1358.837663][T15089] slab_reclaimable 44896
[ 1358.837663][T15089] slab_unreclaimable 294101120
[ 1358.837663][T15089] slab 294146016
[ 1358.837663][T15089] workingset_refault_anon 0
[ 1358.837663][T15089] workingset_refault_file 1
[ 1358.837663][T15089] workingset_activate_anon 0
[ 1358.933544][T15089] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15089,uid=0
[ 1358.949113][T15089] Memory cgroup out of memory: Killed process 15089 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:14 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
recvmsg$unix(r0, &(0x7f0000002240)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002200)}, 0x40)

05:13:14 executing program 4:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040))
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000100)={'wg1\x00', 0x2})
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup/syz1\x00', 0x200002, 0x0)
ioctl$TUNSETFILTEREBPF(0xffffffffffffffff, 0x800454e1, &(0x7f00000000c0))

05:13:14 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xe00}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:14 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$cgroup_devices(r1, 0x0, 0x0)
recvmsg(r0, &(0x7f00000007c0)={0x0, 0x0, 0x0}, 0x0)

05:13:14 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$kcm(0x2, 0xa, 0x2)
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:14 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfe030000}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:14 executing program 2:
perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

05:13:14 executing program 4:
r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x40086602, 0x0)

05:13:14 executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000001c0)='kfree\x00', r0}, 0x10)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000140)={<r1=>0x0, <r2=>0x0})
close(r1)
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, 0x0, 0x0)
socketpair(0x1e, 0x80005, 0x0, &(0x7f0000000340)={0x0, <r3=>0x0})
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, 0x0, 0x0)

05:13:14 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="9feb010018000000faffff0100df00040063"], 0x0, 0x1a}, 0x20)

05:13:14 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, &(0x7f00000001c0)=""/198, 0x26, 0xc6, 0x1}, 0x20)

[ 1359.143103][   T23] audit: type=1400 audit(1667193194.941:636): avc:  denied  { cpu } for  pid=15109 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
05:13:15 executing program 1:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x200002, 0x0)
openat$cgroup_int(r0, &(0x7f00000000c0)='notify_on_release\x00', 0x2, 0x0)

05:13:15 executing program 4:
r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x2400, 0x0)

05:13:15 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$kcm(0x2, 0xa, 0x2)
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

[ 1359.192569][T15108] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1359.200676][T15108] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1359.210244][T15108] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1359.219043][T15108] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1359.294882][T15116] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1359.305829][T15116] CPU: 0 PID: 15116 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1359.318301][T15116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1359.328356][T15116] Call Trace:
[ 1359.331638][T15116]  <TASK>
[ 1359.334566][T15116]  dump_stack_lvl+0xd6/0x122
[ 1359.339243][T15116]  dump_stack+0x11/0x15
[ 1359.343406][T15116]  dump_header+0x98/0x430
[ 1359.347804][T15116]  oom_kill_process+0x100/0x540
[ 1359.352717][T15116]  out_of_memory+0x620/0x880
[ 1359.357308][T15116]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1359.362997][T15116]  mem_cgroup_oom+0x2e7/0x370
[ 1359.367760][T15116]  try_charge_memcg+0x717/0x9c0
[ 1359.372617][T15116]  ? __alloc_pages+0x199/0x340
[ 1359.377390][T15116]  charge_memcg+0x54/0x250
[ 1359.381882][T15116]  __mem_cgroup_charge+0x25/0xa0
[ 1359.386829][T15116]  wp_page_copy+0x209/0x1460
[ 1359.391469][T15116]  ? shrink_zones+0x525/0x5d0
[ 1359.396192][T15116]  ? preempt_count_add+0x5e/0xa0
[ 1359.401233][T15116]  do_wp_page+0x2dd/0x780
[ 1359.405610][T15116]  handle_mm_fault+0x5ef/0xa80
[ 1359.410408][T15116]  do_user_addr_fault+0x4a1/0x980
[ 1359.415522][T15116]  exc_page_fault+0x60/0x160
[ 1359.420112][T15116]  asm_exc_page_fault+0x22/0x30
[ 1359.424972][T15116] RIP: 0033:0x7fa69bfc5970
[ 1359.429383][T15116] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1359.449006][T15116] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1359.455079][T15116] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1359.463056][T15116] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1359.471029][T15116] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1359.479028][T15116] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1359.486992][T15116] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1359.494953][T15116]  ? __sock_create+0x24/0x4e0
[ 1359.499626][T15116]  </TASK>
[ 1359.509873][T15116] memory: usage 307196kB, limit 307200kB, failcnt 41488
[ 1359.516831][T15116] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1359.523694][T15116] Memory cgroup stats for /syz0:
[ 1359.523946][T15116] anon 401408
[ 1359.523946][T15116] file 10457088
[ 1359.523946][T15116] kernel 303710208
[ 1359.523946][T15116] kernel_stack 81920
[ 1359.523946][T15116] pagetables 229376
[ 1359.523946][T15116] sec_pagetables 0
[ 1359.523946][T15116] percpu 9172448
[ 1359.523946][T15116] sock 0
[ 1359.523946][T15116] vmalloc 8192
[ 1359.523946][T15116] shmem 10457088
[ 1359.523946][T15116] file_mapped 159744
[ 1359.523946][T15116] file_dirty 0
[ 1359.523946][T15116] file_writeback 0
[ 1359.523946][T15116] swapcached 0
[ 1359.523946][T15116] inactive_anon 401408
[ 1359.523946][T15116] active_anon 10457088
[ 1359.523946][T15116] inactive_file 0
[ 1359.523946][T15116] active_file 0
[ 1359.523946][T15116] unevictable 0
[ 1359.523946][T15116] slab_reclaimable 39392
[ 1359.523946][T15116] slab_unreclaimable 294095528
[ 1359.523946][T15116] slab 294134920
[ 1359.523946][T15116] workingset_refault_anon 0
[ 1359.523946][T15116] workingset_refault_file 1
[ 1359.523946][T15116] workingset_activate_anon 0
[ 1359.619929][T15116] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15116,uid=0
05:13:15 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xf00}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:15 executing program 2:
perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
bpf$ITER_CREATE(0x21, 0x0, 0x0)
ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x0)

05:13:15 executing program 1:
r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000000)='\xa0\\)^)\xc6}^[\x00')

05:13:15 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfe0f0000}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:15 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9}, 0x48)

05:13:15 executing program 2:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x78, 0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

05:13:15 executing program 4:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000005c0)='./cgroup/syz0\x00', 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000840)={r0, 0x0, 0x0, 0x0, 0x0}, 0x20)

05:13:15 executing program 1:
syz_clone(0x1001000, 0x0, 0x0, &(0x7f00000003c0), 0x0, 0x0)

[ 1359.635278][T15116] Memory cgroup out of memory: Killed process 15116 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:15 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1a, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x3}, 0x48)

05:13:15 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff})
sendmsg(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[{0x108, 0x0, 0x0, "75e5cda0ff02d6948a032d5eb39dfa48d267e32645281c95fa95309a5de20a6190c9ff25e506d6e2747494a4dad8cf4e3d45d63555141141e2596031d48f09358f7e8bcd2b6f693ce4bf3d952d2777e53b80b666334659df31dd0621be91fb92233a2545a37cb3db80b2525959ca1566ddf6f285940160ef0f61a0ba4f362f8a8d3a8721686b1588a0fe178e607a722b62b2943857e846121836c30eb7663295d866e6583d697773f7525fc839d4312a40f77ec3c680c918661269ae83e7dff8e4710104d51ff070ec2a6d1a888e5e9ee46462bf47db1edb00dd13e334bb6a38d8d861556a48c9079e8f2b15afc582eed0"}, {0x1010, 0x0, 0x0, "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"}, {0x78, 0x0, 0x0, "c5e249928af9a076d048c0d800d754fdedb1cf4dcb25a3688c0648235a7d48887a26e01e2079197e59768fd8bb958afbaf6e70bf833d1fab35299ea2450dd7f0d73df09ada9e933c2395871fa543a191a46a6adac08fbff5a2a9dac7014feef82c"}, {0x90, 0x0, 0x0, "ed0132fd81f07f92213da7ebe051edb07020fa5cf404ba37f3842ec3601b2b623cc5a1b4716bf1a3327c103abab4c4c28ccd42f617a85195124504c8132d4c4457661fe05734f020b57717570029ed3474ef8c81ccec133c94c64a1f51721e39da734882cdec0bf4f78acde632c3691d54c422c2400e29265a"}, {0xde8, 0x0, 0x0, "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"}], 0x2008}, 0x0)

05:13:15 executing program 1:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x78, 0x99, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

05:13:15 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$kcm(0x2, 0xa, 0x2)
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

[ 1359.745685][T15158] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1359.754537][T15158] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1359.805545][T15147] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1359.816425][T15147] CPU: 0 PID: 15147 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1359.828980][T15147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1359.839118][T15147] Call Trace:
[ 1359.842396][T15147]  <TASK>
[ 1359.845337][T15147]  dump_stack_lvl+0xd6/0x122
[ 1359.850215][T15147]  dump_stack+0x11/0x15
[ 1359.854386][T15147]  dump_header+0x98/0x430
[ 1359.858802][T15147]  oom_kill_process+0x100/0x540
[ 1359.863664][T15147]  out_of_memory+0x620/0x880
[ 1359.868259][T15147]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1359.873813][T15147]  mem_cgroup_oom+0x2e7/0x370
[ 1359.878513][T15147]  try_charge_memcg+0x717/0x9c0
[ 1359.883370][T15147]  ? __alloc_pages+0x199/0x340
[ 1359.888236][T15147]  charge_memcg+0x54/0x250
[ 1359.892739][T15147]  __mem_cgroup_charge+0x25/0xa0
[ 1359.897684][T15147]  wp_page_copy+0x209/0x1460
[ 1359.902291][T15147]  ? shrink_zones+0x525/0x5d0
[ 1359.906980][T15147]  ? preempt_count_add+0x5e/0xa0
[ 1359.911929][T15147]  do_wp_page+0x2dd/0x780
[ 1359.916279][T15147]  handle_mm_fault+0x5ef/0xa80
[ 1359.921127][T15147]  do_user_addr_fault+0x4a1/0x980
[ 1359.926170][T15147]  exc_page_fault+0x60/0x160
[ 1359.930762][T15147]  asm_exc_page_fault+0x22/0x30
[ 1359.935623][T15147] RIP: 0033:0x7fa69bfc5970
[ 1359.940077][T15147] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1359.959835][T15147] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1359.965907][T15147] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1359.973876][T15147] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1359.981851][T15147] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1359.989898][T15147] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1359.997886][T15147] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1360.005858][T15147]  ? __sock_create+0x24/0x4e0
[ 1360.010646][T15147]  </TASK>
[ 1360.023763][T15147] memory: usage 307200kB, limit 307200kB, failcnt 41577
[ 1360.030810][T15147] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1360.037772][T15147] Memory cgroup stats for /syz0:
[ 1360.038194][T15147] anon 401408
[ 1360.038194][T15147] file 10457088
[ 1360.038194][T15147] kernel 303710208
05:13:15 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xffe}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:15 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[], &(0x7f00000000c0)=""/203, 0x1a, 0xcb, 0x1}, 0x20)

05:13:15 executing program 4:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
recvmsg(r0, &(0x7f00000024c0)={0x0, 0x0, &(0x7f0000002400)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}, 0x0)

[ 1360.038194][T15147] kernel_stack 81920
[ 1360.038194][T15147] pagetables 229376
[ 1360.038194][T15147] sec_pagetables 0
[ 1360.038194][T15147] percpu 9172448
[ 1360.038194][T15147] sock 0
[ 1360.038194][T15147] vmalloc 8192
[ 1360.038194][T15147] shmem 10457088
[ 1360.038194][T15147] file_mapped 159744
[ 1360.038194][T15147] file_dirty 0
[ 1360.038194][T15147] file_writeback 0
[ 1360.038194][T15147] swapcached 0
[ 1360.038194][T15147] inactive_anon 401408
[ 1360.038194][T15147] active_anon 10457088
[ 1360.038194][T15147] inactive_file 0
[ 1360.038194][T15147] active_file 0
[ 1360.038194][T15147] unevictable 0
[ 1360.038194][T15147] slab_reclaimable 39392
[ 1360.038194][T15147] slab_unreclaimable 294095528
[ 1360.038194][T15147] slab 294134920
[ 1360.038194][T15147] workingset_refault_anon 0
[ 1360.038194][T15147] workingset_refault_file 1
[ 1360.038194][T15147] workingset_activate_anon 0
[ 1360.133897][T15147] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15147,uid=0
05:13:16 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfeff0000}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:16 executing program 1:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x78, 0x48, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

05:13:16 executing program 2:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x6, 0x9, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

05:13:16 executing program 4:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$tipc(r0, &(0x7f00000001c0)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0)

05:13:16 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

[ 1360.149242][T15147] Memory cgroup out of memory: Killed process 15147 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1360.178277][T15173] __nla_validate_parse: 11 callbacks suppressed
[ 1360.178290][T15173] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:16 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1, 0x3}}]}}, 0x0, 0x32}, 0x20)

05:13:16 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x200002, 0x0)
openat$cgroup_freezer_state(r0, &(0x7f0000000040), 0x2, 0x0)
openat$cgroup_freezer_state(r0, &(0x7f00000008c0), 0x2, 0x0)

05:13:16 executing program 2:
r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x80082407, &(0x7f0000000140)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext})

05:13:16 executing program 1:
r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x5452, &(0x7f0000000140)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext})

[ 1360.257948][T15185] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1360.268935][T15185] CPU: 1 PID: 15185 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1360.281411][T15185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1360.291735][T15185] Call Trace:
[ 1360.295025][T15185]  <TASK>
[ 1360.297957][T15185]  dump_stack_lvl+0xd6/0x122
[ 1360.302565][T15185]  dump_stack+0x11/0x15
[ 1360.306743][T15185]  dump_header+0x98/0x430
[ 1360.311090][T15185]  oom_kill_process+0x100/0x540
[ 1360.315961][T15185]  out_of_memory+0x620/0x880
[ 1360.320572][T15185]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1360.326126][T15185]  mem_cgroup_oom+0x2e7/0x370
[ 1360.330814][T15185]  try_charge_memcg+0x717/0x9c0
[ 1360.331354][T15187] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1360.335707][T15185]  ? __alloc_pages+0x199/0x340
[ 1360.335732][T15185]  charge_memcg+0x54/0x250
[ 1360.354253][T15185]  __mem_cgroup_charge+0x25/0xa0
[ 1360.359207][T15185]  wp_page_copy+0x209/0x1460
[ 1360.363907][T15185]  ? shrink_zones+0x525/0x5d0
[ 1360.368594][T15185]  ? preempt_count_add+0x5e/0xa0
[ 1360.373585][T15185]  do_wp_page+0x2dd/0x780
[ 1360.378010][T15185]  handle_mm_fault+0x5ef/0xa80
[ 1360.382856][T15185]  do_user_addr_fault+0x4a1/0x980
[ 1360.387892][T15185]  exc_page_fault+0x60/0x160
[ 1360.392574][T15185]  asm_exc_page_fault+0x22/0x30
[ 1360.397510][T15185] RIP: 0033:0x7fa69bfc5970
05:13:16 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x10d5}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:16 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x11}, 0x48)

05:13:16 executing program 2:
r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r1 = gettid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={r1, r0, 0x0, 0x0, 0x0}, 0x30)

[ 1360.402133][T15185] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1360.421753][T15185] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1360.427824][T15185] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1360.435792][T15185] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
[ 1360.443816][T15185] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1360.451999][T15185] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1360.459975][T15185] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
[ 1360.467949][T15185]  ? __x64_sys_socket+0xc/0x50
[ 1360.472803][T15185]  </TASK>
[ 1360.475855][T15185] memory: usage 307200kB, limit 307200kB, failcnt 41649
[ 1360.482847][T15185] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1360.489746][T15185] Memory cgroup stats for /syz0:
[ 1360.490081][T15185] anon 393216
[ 1360.490081][T15185] file 10457088
[ 1360.490081][T15185] kernel 303718400
[ 1360.490081][T15185] kernel_stack 81920
[ 1360.490081][T15185] pagetables 229376
[ 1360.490081][T15185] sec_pagetables 0
[ 1360.490081][T15185] percpu 9172448
[ 1360.490081][T15185] sock 0
[ 1360.490081][T15185] vmalloc 8192
[ 1360.490081][T15185] shmem 10457088
[ 1360.490081][T15185] file_mapped 159744
[ 1360.490081][T15185] file_dirty 0
[ 1360.490081][T15185] file_writeback 0
[ 1360.490081][T15185] swapcached 0
[ 1360.490081][T15185] inactive_anon 393216
[ 1360.490081][T15185] active_anon 10457088
[ 1360.490081][T15185] inactive_file 0
[ 1360.490081][T15185] active_file 0
[ 1360.490081][T15185] unevictable 0
[ 1360.490081][T15185] slab_reclaimable 44896
[ 1360.490081][T15185] slab_unreclaimable 294101120
[ 1360.490081][T15185] slab 294146016
[ 1360.490081][T15185] workingset_refault_anon 0
[ 1360.490081][T15185] workingset_refault_file 1
[ 1360.490081][T15185] workingset_activate_anon 0
[ 1360.585889][T15185] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15185,uid=0
05:13:16 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfeffffff}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:16 executing program 1:
socketpair(0x10, 0x2, 0xb, &(0x7f00000001c0))

05:13:16 executing program 2:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$tipc(r0, &(0x7f00000001c0)={&(0x7f0000000040)=@id={0x1e, 0x3, 0x0, {0x0, 0x3}}, 0x10, 0x0}, 0x40)

05:13:16 executing program 4:
perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

[ 1360.601215][T15185] Memory cgroup out of memory: Killed process 15185 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:16 executing program 4:
write$cgroup_netprio_ifpriomap(0xffffffffffffffff, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x450c, 0x0, 0x0, 0x0, 0x8000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

05:13:16 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:16 executing program 2:
r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x40082404, &(0x7f0000000140)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext})

05:13:16 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000a00)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018"], &(0x7f0000000900)=""/253, 0x3b, 0xfd, 0x1}, 0x20)

[ 1360.650936][T15207] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:16 executing program 2:
r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0)

[ 1360.763321][T15208] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1360.789013][T15216] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1360.799898][T15216] CPU: 0 PID: 15216 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1360.812377][T15216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1360.822436][T15216] Call Trace:
[ 1360.825714][T15216]  <TASK>
[ 1360.828646][T15216]  dump_stack_lvl+0xd6/0x122
[ 1360.833314][T15216]  dump_stack+0x11/0x15
[ 1360.837555][T15216]  dump_header+0x98/0x430
[ 1360.841887][T15216]  oom_kill_process+0x100/0x540
[ 1360.846742][T15216]  out_of_memory+0x620/0x880
[ 1360.851335][T15216]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1360.856885][T15216]  mem_cgroup_oom+0x2e7/0x370
[ 1360.861633][T15216]  try_charge_memcg+0x717/0x9c0
[ 1360.866530][T15216]  ? __alloc_pages+0x199/0x340
[ 1360.871353][T15216]  charge_memcg+0x54/0x250
[ 1360.876043][T15216]  __mem_cgroup_charge+0x25/0xa0
[ 1360.881077][T15216]  wp_page_copy+0x209/0x1460
[ 1360.885779][T15216]  ? shrink_zones+0x525/0x5d0
[ 1360.890461][T15216]  ? preempt_count_add+0x5e/0xa0
[ 1360.895478][T15216]  do_wp_page+0x2dd/0x780
[ 1360.899828][T15216]  handle_mm_fault+0x5ef/0xa80
[ 1360.904672][T15216]  do_user_addr_fault+0x4a1/0x980
[ 1360.909704][T15216]  exc_page_fault+0x60/0x160
[ 1360.914301][T15216]  asm_exc_page_fault+0x22/0x30
[ 1360.919185][T15216] RIP: 0033:0x7fa69bfc5970
[ 1360.923615][T15216] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1360.943314][T15216] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1360.949460][T15216] RAX: 0000000034c8aabb RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1360.957535][T15216] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a2f7f
[ 1360.965643][T15216] RBP: 0000000034c8aabb R08: 0000000000000abb R09: 0000000034c8aabf
[ 1360.973685][T15216] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1360.981656][T15216] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff83a0d5e7
[ 1360.989654][T15216]  ? __sys_socket+0x27/0x220
[ 1360.994358][T15216]  </TASK>
[ 1361.005209][T15216] memory: usage 307200kB, limit 307200kB, failcnt 41716
05:13:16 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x1100}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:16 executing program 4:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x78, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

05:13:16 executing program 1:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$sock(r0, 0xffffffffffffffff, 0x0)

[ 1361.012170][T15216] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1361.019058][T15216] Memory cgroup stats for /syz0:
[ 1361.019319][T15216] anon 397312
[ 1361.019319][T15216] file 10457088
[ 1361.019319][T15216] kernel 303706112
[ 1361.019319][T15216] kernel_stack 81920
[ 1361.019319][T15216] pagetables 229376
[ 1361.019319][T15216] sec_pagetables 0
[ 1361.019319][T15216] percpu 9172448
[ 1361.019319][T15216] sock 0
[ 1361.019319][T15216] vmalloc 8192
[ 1361.019319][T15216] shmem 10457088
[ 1361.019319][T15216] file_mapped 159744
[ 1361.019319][T15216] file_dirty 0
[ 1361.019319][T15216] file_writeback 0
[ 1361.019319][T15216] swapcached 0
[ 1361.019319][T15216] inactive_anon 352256
[ 1361.019319][T15216] active_anon 10457088
[ 1361.019319][T15216] inactive_file 0
[ 1361.019319][T15216] active_file 0
[ 1361.019319][T15216] unevictable 0
[ 1361.019319][T15216] slab_reclaimable 43120
[ 1361.019319][T15216] slab_unreclaimable 294095528
[ 1361.019319][T15216] slab 294138648
[ 1361.019319][T15216] workingset_refault_anon 0
[ 1361.019319][T15216] workingset_refault_file 1
[ 1361.019319][T15216] workingset_activate_anon 0
[ 1361.115070][T15216] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15216,uid=0
[ 1361.130380][T15216] Memory cgroup out of memory: Killed process 15216 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:16 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xff030000}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:16 executing program 2:
perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

05:13:16 executing program 4:
perf_event_open$cgroup(&(0x7f00000000c0)={0x6, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

05:13:16 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff})
openat$cgroup_ro(r0, &(0x7f0000000000)='pids.events\x00', 0x0, 0x0)

05:13:17 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x15, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)

[ 1361.167669][T15237] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:17 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:17 executing program 1:
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000002c0)={@map, 0xffffffffffffffff, 0x1}, 0x10)

05:13:17 executing program 4:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x200002, 0x0)
perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r0, 0x0, 0xffffffffffffffff, 0x0)

05:13:17 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x1113}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:17 executing program 2:
r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0xc0189436, 0x0)

05:13:17 executing program 1:
socketpair$unix(0x2, 0x1, 0x0, &(0x7f00000023c0))

05:13:17 executing program 4:
perf_event_open$cgroup(&(0x7f00000000c0)={0x3, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

[ 1361.248594][T15252] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1361.278300][T15244] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1361.289185][T15244] CPU: 0 PID: 15244 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1361.301616][T15244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1361.311672][T15244] Call Trace:
[ 1361.315018][T15244]  <TASK>
[ 1361.317963][T15244]  dump_stack_lvl+0xd6/0x122
[ 1361.322602][T15244]  dump_stack+0x11/0x15
[ 1361.326811][T15244]  dump_header+0x98/0x430
[ 1361.331220][T15244]  oom_kill_process+0x100/0x540
[ 1361.336130][T15244]  out_of_memory+0x620/0x880
[ 1361.340723][T15244]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1361.346350][T15244]  mem_cgroup_oom+0x2e7/0x370
[ 1361.351036][T15244]  try_charge_memcg+0x717/0x9c0
[ 1361.355905][T15244]  ? __alloc_pages+0x199/0x340
[ 1361.360669][T15244]  charge_memcg+0x54/0x250
[ 1361.365172][T15244]  __mem_cgroup_charge+0x25/0xa0
[ 1361.370170][T15244]  wp_page_copy+0x209/0x1460
[ 1361.374802][T15244]  ? shrink_zones+0x525/0x5d0
[ 1361.379490][T15244]  ? preempt_count_add+0x5e/0xa0
[ 1361.384446][T15244]  do_wp_page+0x2dd/0x780
[ 1361.388818][T15244]  handle_mm_fault+0x5ef/0xa80
[ 1361.393671][T15244]  do_user_addr_fault+0x4a1/0x980
[ 1361.398708][T15244]  exc_page_fault+0x60/0x160
[ 1361.403304][T15244]  asm_exc_page_fault+0x22/0x30
[ 1361.408319][T15244] RIP: 0033:0x7fa69bfc5970
[ 1361.412794][T15244] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1361.432471][T15244] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1361.438538][T15244] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1361.446943][T15244] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1361.454911][T15244] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1361.462892][T15244] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1361.470863][T15244] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1361.478841][T15244]  ? __sock_create+0x24/0x4e0
[ 1361.483526][T15244]  </TASK>
[ 1361.494219][T15244] memory: usage 307200kB, limit 307200kB, failcnt 41802
[ 1361.501164][T15244] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1361.508143][T15244] Memory cgroup stats for /syz0:
[ 1361.508520][T15244] anon 401408
[ 1361.508520][T15244] file 10457088
[ 1361.508520][T15244] kernel 303714304
[ 1361.508520][T15244] kernel_stack 81920
[ 1361.508520][T15244] pagetables 229376
[ 1361.508520][T15244] sec_pagetables 0
[ 1361.508520][T15244] percpu 9172448
[ 1361.508520][T15244] sock 0
[ 1361.508520][T15244] vmalloc 8192
[ 1361.508520][T15244] shmem 10457088
[ 1361.508520][T15244] file_mapped 159744
[ 1361.508520][T15244] file_dirty 0
[ 1361.508520][T15244] file_writeback 0
[ 1361.508520][T15244] swapcached 0
[ 1361.508520][T15244] inactive_anon 401408
[ 1361.508520][T15244] active_anon 10457088
[ 1361.508520][T15244] inactive_file 0
[ 1361.508520][T15244] active_file 0
[ 1361.508520][T15244] unevictable 0
[ 1361.508520][T15244] slab_reclaimable 39392
[ 1361.508520][T15244] slab_unreclaimable 294100856
[ 1361.508520][T15244] slab 294140248
[ 1361.508520][T15244] workingset_refault_anon 0
[ 1361.508520][T15244] workingset_refault_file 1
[ 1361.508520][T15244] workingset_activate_anon 0
[ 1361.599490][T15252] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1361.604260][T15244] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15244,uid=0
[ 1361.604402][T15244] Memory cgroup out of memory: Killed process 15244 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:17 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xff0f0000}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:17 executing program 1:
ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, 0x0)
r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0xffffffffffffffff, r0, 0x0, 0x2d2, &(0x7f0000000540)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb9\xe16\x9b\xcda\xef~Iy:\xe1\x87\x12\xee\xeb\x1d\xaav\x94\x97\x80\v\x7f\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6`\xd8c\xe4\x9b\x8cO;=\xadH\x90\xdd[-l\xfd\n\xbd7,c\xbc\xf5\xd7\a\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd\x82\xfc45\xbe\xd4\xde\x9a[\xe2(\x88\x06\x1f?\xf5?\x8bk9fx\xe7\xba\x15^\xf9\x15-~C\xb1\xec\xcb#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xb3\xb0\xb9\x996\x1aD\xff,\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4l\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93\xd2\x00\x00\x00\x00\x00\x00\x00\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x832Z\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b&!\x98\x86\"R\x06\x00\x00\x00\x00\x007q\xe9\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xe4\x11(\xb1|\xb0\x1f\xbf[R+\xe0\xfd\x02\x02*\xda7\xfe\xcc\x0e\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\rR\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f.\xa2\xd8\x18`\x1b\xbex\xc9BFK\xc6^\x13\xce68\xe4\x83\xfd?\x87\x94\v\xb4x\xf4|L\x11\x03\x94\xc0\t=\x17\x95P\x89\xf2\xca\x97\xbb\xfeu\x12L\x9b\x85\x96\xe0\b\xbf\n\x02\x8bS\x9c\xecyl\xec\x9b\xf5\x85\xeb\x80\xee>\r&\x014\x01\xf4\xb7\x83\x9a\xfa*\xa6\x06\xb7Pk7N\xc2\xd9\xee\xd0\xb0M\x00\xab\xc3\t\fc\xd8d\x14\xb1\xc0\xd7\x1a\xa0\x16\xa2z\x9e\x93 \xdde\xe8p29\v\x02\xa2b\x13R\xef\xffA\f\xb9.$\xfa\x9f\xde[\x80\xd1=\xce\x1b\xeb\xf6\xf4\xe3z\x1f\x9dz\xa3\xc0\xe2\xa2\xb1\xeeq\xf5\xec0\x8e\xf4\xfb\xd9\x87\xf03\xdb\xae|\x10&V5c\xa6\xce\xcd\x8a\xdf\xe1\x89\"\xea\xde\xe7\xa3\xbe\xe7\xff\xf9 \x11\xfdY\xc6\xa1\xe8\xda\v\\?\xcb\x87\bn\x9b\x01\x1f\xf8\xe8\x1eV\xfaC\xdf\xc3Vv\x9b\x1a\xfc\x14.c\x94\xc9=\xb0\x0f!d\b\x18*@m\x7f\xaal\x17G\xd6?\x81\x16P\x03\x10e\xc3\xcd\xb1B\xeb\x01B\\\x91A\xa1\x8an\xb4#\xadr\x1e\x81v\xa2\x0e6x\xca\x8b\xa6\xd8\x1e\x00_^9\xb1\b\x87\xc6\xb4\xf0\'f\xba\xbd\xfe\x11\xf8\xc8W\x81s^\xd9\x03\x00\x00\x00\x00\x00\x00\x00\x1b\x17E\xb23\x12\xb0\xeb\xef\x8c\xb24h\xd7}\x7f\x92Hgej\x957\xe2\x1fA\x00\xdc\xdd\x11x\x90\x97QJ\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00&\xd8\xb3S\xe0\x1e\xa7\xc3`~U\x91\xfa\x92\x1e\xccdfFz\xa8\t\xe4+\x83\xac\x94'}, 0x30)
r3 = perf_event_open$cgroup(&(0x7f0000000200)={0x4, 0x80, 0x7f, 0x0, 0x0, 0x1, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x59, 0x4, @perf_config_ext={0xdfff, 0x7}, 0x1200, 0x0, 0x0, 0x5, 0x0, 0x1, 0x6, 0x0, 0xbb, 0x0, 0xfffffffffffffffc}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x8)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={0xffffffffffffffff, r3, 0x0, 0x5, &(0x7f0000000000)=':[]$\x00'}, 0x30)
perf_event_open$cgroup(&(0x7f00000004c0)={0x1, 0x80, 0xa1, 0x3, 0x0, 0x8, 0x0, 0x8000000000000000, 0x0, 0x6, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffff, 0x0, @perf_bp={&(0x7f0000000480), 0x4}, 0x0, 0x0, 0x87, 0x5, 0x8234, 0x5, 0xfff, 0x0, 0x0, 0x0, 0x3}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000002c0)=0xffffffffffffffff, 0x4)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x4030582a, &(0x7f0000000040)=0xff8f202d00000000)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000380)={0x3, 0x80, 0x8, 0x0, 0x6, 0x7, 0x0, 0x101, 0x100, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x80000001, 0x1, @perf_config_ext={0x6}, 0x4, 0x65, 0x2, 0x5, 0xfffffffffffffffc, 0x0, 0x40, 0x0, 0x8, 0x0, 0x29d}, 0xffffffffffffffff, 0xd, r2, 0xb)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x1ff)
syz_clone(0x43000000, 0x0, 0x0, &(0x7f0000000040), &(0x7f0000000080), &(0x7f00000001c0))

05:13:17 executing program 4:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg$inet(r0, &(0x7f0000001500)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001380)=[@ip_tos_int={{0x14}}], 0x18}, 0x1)

05:13:17 executing program 2:
socketpair(0x11, 0xa, 0x300, &(0x7f00000001c0))

05:13:17 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x1115}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:17 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:17 executing program 2:
socketpair(0xa, 0x2, 0x1, &(0x7f00000001c0))

05:13:17 executing program 4:
r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x40082406, &(0x7f0000000140)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext})

[ 1361.708188][T15279] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1361.762391][T15272] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1361.773534][T15272] CPU: 1 PID: 15272 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1361.786051][T15272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1361.796176][T15272] Call Trace:
[ 1361.799465][T15272]  <TASK>
[ 1361.802469][T15272]  dump_stack_lvl+0xd6/0x122
[ 1361.807087][T15272]  dump_stack+0x11/0x15
[ 1361.811287][T15272]  dump_header+0x98/0x430
[ 1361.815677][T15272]  oom_kill_process+0x100/0x540
[ 1361.820535][T15272]  out_of_memory+0x620/0x880
[ 1361.825252][T15272]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1361.830808][T15272]  mem_cgroup_oom+0x2e7/0x370
[ 1361.835519][T15272]  try_charge_memcg+0x717/0x9c0
[ 1361.840395][T15272]  ? __alloc_pages+0x199/0x340
[ 1361.845162][T15272]  charge_memcg+0x54/0x250
[ 1361.849667][T15272]  __mem_cgroup_charge+0x25/0xa0
[ 1361.854614][T15272]  wp_page_copy+0x209/0x1460
[ 1361.859290][T15272]  ? shrink_zones+0x525/0x5d0
[ 1361.863974][T15272]  ? preempt_count_add+0x5e/0xa0
[ 1361.868979][T15272]  do_wp_page+0x2dd/0x780
[ 1361.873435][T15272]  handle_mm_fault+0x5ef/0xa80
[ 1361.878219][T15272]  do_user_addr_fault+0x4a1/0x980
[ 1361.883338][T15272]  exc_page_fault+0x60/0x160
[ 1361.888031][T15272]  asm_exc_page_fault+0x22/0x30
[ 1361.892904][T15272] RIP: 0033:0x7fa69bfc5970
[ 1361.897318][T15272] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1361.917030][T15272] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1361.923205][T15272] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1361.931171][T15272] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1361.939138][T15272] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1361.947163][T15272] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1361.955152][T15272] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
05:13:17 executing program 4:
r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext})

05:13:17 executing program 4:
perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x20000138, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

05:13:17 executing program 2:
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x12)
r0 = perf_event_open(&(0x7f0000000440)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0xfffffffe, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open$cgroup(&(0x7f00000004c0)={0x5, 0x80, 0x20, 0x5, 0x0, 0x5d, 0x0, 0x85, 0x0, 0x9, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0xfffffffb, 0x4, @perf_config_ext={0x0, 0xc000000000000000}, 0xc, 0x43, 0xffff, 0x1, 0xfffffffffffffffe, 0x6, 0x8000, 0x0, 0x90, 0x0, 0x8}, 0xffffffffffffffff, 0xa, r0, 0x8)
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x5, 0x4, 0x81, 0x9, 0x0, 0x3509f369, 0x16005, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x9, 0x0, @perf_config_ext={0x3}, 0x8a, 0x80000001, 0x400, 0x2, 0x20000000000000, 0xfffffc00, 0x2, 0x0, 0x7fff, 0x0, 0xab}, 0x0, 0xe, r1, 0x8)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000004000000000000000000850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002a00)=ANY=[@ANYRES64=0x0], &(0x7f0000000340)='syzkaller\x00', 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x3}, 0x8, 0x10, &(0x7f0000000100)={0x0, 0x6}, 0x10}, 0x80)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x8914, &(0x7f00000005c0)='lo\x00\x96o\xd6Q\xb4Y\xa9\xc87,%\x81\xfe\x00\xd2\xd1|C\b\x00\x00\x00\x00\x00\x00\x00\xe3\xd8Yk\xdd\x16\x17\xd6\x85\xaac{\x8c\x8ffp`-\xcd\xf6jh\xbf\x9c\xd9\xd5\xf4\xe68\xe6O\xc2\xf1V0\x8b\xdd\xcc\xeeR\xf2/\xba\fE>k\a\xe7>t7\x8e(\xf0\x87d\xaf\x93\xfa`\xa6,o\x81.\x1cR\xa5\t\x00\x00\x00\x00\x00\x00\x00|pT\x15\xbc\f*d\x8b\xc2\xcd\x8f\x98\xdf\x00\x00\x1cM\x9c\xa5\xe0\xa8\x00\x00\x00\x00')
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x8923, &(0x7f0000000680)='lo:\x96o8\x14d\xa1\xe3\xd7\\b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\xff\xe6\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\xb7l\xed}\xe5\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x02\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x01\x00\x00\x00\xd3\r7\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xd5s2\x9cVF\xd5\x18\xfe\x0f\x8f \x01\x00\x00\xb1\x88\xebW_\xa5\xe1\xf6\x8aj\xca\xf8m\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xbaUn\x04\'%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x1f\x9c,\x113\x7f\x03\x93\xe1\xcc\xe7f\r\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\r\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1\xa8\xd4\xe6K0\xe1\xa3TS\x18\xe6x\x1f%P\x9fU)\x83E\n\x90M\r.\x85gn_\xb2\xe9\x8a\x1c\xe3\x93\xd8\xbc\xb6N\xc3\xe1\xafh\xa0iF\xdcq\xf9\x17\xd9i\x844E\x1a\x13\x9a\xe6\xd3\xab:PM\xfbe\xfe9\xd9\x94\x1dx\xd6\x03b\xf7\x10N\xd1\x93\rU\x7fy\x18tE\xf1*\x9a0Z\x9f\xdc{\x13\xf6\xb7\xf7\xe6=\x9cD\x108\x8eS\xa0\xd0\xa7\tn\xd9\xae\xc0\x18~x[\x85Y\xb2\x82w\x150\x97\xba\xe6\xca\xb1\xa3\x02\x14^\xbdZ\xae\xf5/\xcf\xb8\xea8Uw\x92`\"2\x81j\xbb\x87+\x89\xc5<J\x1f\xba\xfc\x90(\x985\x93\xa8\xd4\xf0\xbdTy\x18\xc8\xa0\xbb\x99\x8c\xe0Q\xffCl\xbdX~3\xa1\xa2\xf4\xd9\xf7\xc7\xfb\xce\x959x\xfeW\r\xf0{\xcaT\xecp)=\x9d\xdfG8\xa1\xe3=\xa6\x00\x98\xc1\xb3\x91-\xab\'W\x8al?d<JN\xcb\xd4H\xb0_jO\xf3\x90\xe8/l\xdfg)\x8d#\xfdo\xa9L\xdeA*\xec\xa1\x14,\xe8\x8d^\xb9r=\xc0\x18\xd4\x11dU[Ry\xed\xd6\x97\x8a\xe8\xca\x99\x10\x8e\xc8P\xa3\xae/\xdaof\x06\x7f\xf7\x80$f\b\x92\xae\xeb\xdd\"\x89\xb8\xf0\xc3\b\x00\x00\x00\x00')
perf_event_open(&(0x7f0000001a80)={0x4, 0x80, 0xc, 0xff, 0x0, 0x6, 0x0, 0xafe0000000000000, 0x2000, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfffeffff, 0x4, @perf_config_ext={0x100000001, 0x5}, 0x8, 0x0, 0x6, 0x4, 0x80, 0x1000, 0x1f, 0x0, 0x20, 0x0, 0x100}, 0xffffffffffffffff, 0x10, r3, 0xb)
recvmsg(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f0000000540)=""/219, 0xdb}, {&(0x7f0000000640)=""/221, 0xdd}, {&(0x7f0000000740)=""/248, 0xf8}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000001840)=""/149, 0x95}, {&(0x7f0000001900)=""/67, 0x43}, {&(0x7f0000001980)=""/103, 0x67}], 0x7}, 0x40000000)

[ 1361.963126][T15272]  ? __sock_create+0x24/0x4e0
[ 1361.967817][T15272]  </TASK>
[ 1361.970921][T15272] memory: usage 307200kB, limit 307200kB, failcnt 41875
[ 1361.977924][T15272] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1361.984801][T15272] Memory cgroup stats for /syz0:
[ 1361.985077][T15272] anon 401408
[ 1361.985077][T15272] file 10457088
[ 1361.985077][T15272] kernel 303714304
[ 1361.985077][T15272] kernel_stack 81920
[ 1361.985077][T15272] pagetables 229376
[ 1361.985077][T15272] sec_pagetables 0
[ 1361.985077][T15272] percpu 9172448
[ 1361.985077][T15272] sock 0
[ 1361.985077][T15272] vmalloc 8192
[ 1361.985077][T15272] shmem 10457088
[ 1361.985077][T15272] file_mapped 159744
[ 1361.985077][T15272] file_dirty 0
[ 1361.985077][T15272] file_writeback 0
[ 1361.985077][T15272] swapcached 0
[ 1361.985077][T15272] inactive_anon 401408
[ 1361.985077][T15272] active_anon 10457088
[ 1361.985077][T15272] inactive_file 0
[ 1361.985077][T15272] active_file 0
[ 1361.985077][T15272] unevictable 0
[ 1361.985077][T15272] slab_reclaimable 39392
[ 1361.985077][T15272] slab_unreclaimable 294100856
05:13:17 executing program 4:
socketpair(0xa, 0x0, 0x7fffffff, &(0x7f0000000040))

[ 1361.985077][T15272] slab 294140248
[ 1361.985077][T15272] workingset_refault_anon 0
[ 1361.985077][T15272] workingset_refault_file 1
[ 1361.985077][T15272] workingset_activate_anon 0
[ 1362.080674][T15272] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15272,uid=0
[ 1362.095956][T15272] Memory cgroup out of memory: Killed process 15272 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:17 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xff7f0000}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1362.264376][T15301] Y­4��`Ò˜: renamed from lo
[ 1362.277677][T15310] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1362.288693][T15310] CPU: 1 PID: 15310 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1362.301166][T15310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1362.311223][T15310] Call Trace:
[ 1362.314499][T15310]  <TASK>
[ 1362.317506][T15310]  dump_stack_lvl+0xd6/0x122
[ 1362.322247][T15310]  dump_stack+0x11/0x15
[ 1362.326495][T15310]  dump_header+0x98/0x430
[ 1362.330851][T15310]  oom_kill_process+0x100/0x540
[ 1362.335837][T15310]  out_of_memory+0x620/0x880
[ 1362.340450][T15310]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1362.346041][T15310]  mem_cgroup_oom+0x2e7/0x370
[ 1362.350729][T15310]  try_charge_memcg+0x717/0x9c0
[ 1362.355590][T15310]  ? debug_smp_processor_id+0x13/0x20
05:13:18 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@const]}}, &(0x7f0000000040)=""/128, 0x26, 0x80, 0x1}, 0x20)

05:13:18 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x1200}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:18 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:18 executing program 4:
r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x3)

05:13:18 executing program 4:
perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b90a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10002}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

[ 1362.361001][T15310]  __memcg_kmem_charge_page+0x2e4/0x480
[ 1362.366577][T15310]  alloc_thread_stack_node+0x292/0x360
[ 1362.372125][T15310]  dup_task_struct+0x96/0x2a0
[ 1362.376865][T15310]  copy_process+0x3ca/0x2100
[ 1362.381465][T15310]  ? _raw_spin_unlock+0x2d/0x50
[ 1362.386328][T15310]  kernel_clone+0x166/0x550
[ 1362.390937][T15310]  __x64_sys_clone+0xc3/0xf0
[ 1362.395649][T15310]  do_syscall_64+0x2b/0x70
[ 1362.400084][T15310]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1362.405996][T15310] RIP: 0033:0x7fa69c0199d1
05:13:18 executing program 4:
bpf$LINK_GET_FD_BY_ID(0x1e, 0xfffffffffffffffd, 0x0)

[ 1362.410467][T15310] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1362.430080][T15310] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1362.438520][T15310] RAX: ffffffffffffffda RBX: 00007fa69b36b700 RCX: 00007fa69c0199d1
[ 1362.446539][T15310] RDX: 00007fa69b36b9d0 RSI: 00007fa69b36b2f0 RDI: 00000000003d0f00
[ 1362.454587][T15310] RBP: 00007ffd8ac50010 R08: 00007fa69b36b700 R09: 00007fa69b36b700
05:13:18 executing program 4:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

05:13:18 executing program 4:
r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000140)={0x0, 0xffffffffffffff0f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext})

[ 1362.462564][T15310] R10: 00007fa69b36b9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1362.470576][T15310] R13: 00007ffd8ac4fe7f R14: 00007fa69b36b300 R15: 0000000000022000
[ 1362.478550][T15310]  </TASK>
[ 1362.488457][T15310] memory: usage 307200kB, limit 307200kB, failcnt 41966
[ 1362.495424][T15310] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1362.502319][T15310] Memory cgroup stats for /syz0:
[ 1362.502748][T15310] anon 393216
[ 1362.502748][T15310] file 10457088
05:13:18 executing program 4:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x6, 0x4, &(0x7f0000000100)=@framed={{}, [@call={0x85, 0x0, 0x0, 0xc}]}, &(0x7f00000000c0)='syzkaller\x00', 0x3, 0xc3, &(0x7f00000001c0)=""/195, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

[ 1362.502748][T15310] kernel 303722496
[ 1362.502748][T15310] kernel_stack 81920
[ 1362.502748][T15310] pagetables 229376
[ 1362.502748][T15310] sec_pagetables 0
[ 1362.502748][T15310] percpu 9172448
[ 1362.502748][T15310] sock 0
[ 1362.502748][T15310] vmalloc 8192
[ 1362.502748][T15310] shmem 10457088
[ 1362.502748][T15310] file_mapped 159744
[ 1362.502748][T15310] file_dirty 0
[ 1362.502748][T15310] file_writeback 0
[ 1362.502748][T15310] swapcached 0
[ 1362.502748][T15310] inactive_anon 393216
[ 1362.502748][T15310] active_anon 10457088
[ 1362.502748][T15310] inactive_file 0
[ 1362.502748][T15310] active_file 0
[ 1362.502748][T15310] unevictable 0
[ 1362.502748][T15310] slab_reclaimable 38416
[ 1362.502748][T15310] slab_unreclaimable 294105240
[ 1362.502748][T15310] slab 294143656
[ 1362.502748][T15310] workingset_refault_anon 0
[ 1362.502748][T15310] workingset_refault_file 1
[ 1362.502748][T15310] workingset_activate_anon 0
[ 1362.577678][T15319] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1362.598351][T15310] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15310,uid=0
[ 1362.598446][T15310] Memory cgroup out of memory: Killed process 15310 (syz-executor.0) total-vm:46468kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:18 executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000003c0)={'veth1_to_team\x00'})

05:13:18 executing program 4:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff})
sendmsg(r0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffec6}, 0x0)

[ 1362.688038][T15325] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:18 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xffff0300}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:18 executing program 1:
r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4020940d, &(0x7f0000000140)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext})

05:13:18 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x1311}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:18 executing program 4:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000000)={'bond_slave_0\x00', 0x600})

05:13:18 executing program 1:
socketpair(0x2, 0x1, 0xfffffffe, &(0x7f0000000000))

05:13:18 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:18 executing program 2:
perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9402000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

05:13:18 executing program 1:
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
close(r0)

05:13:18 executing program 4:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
ioctl$TUNGETFEATURES(r0, 0x800454cf, 0x0)

05:13:18 executing program 2:
r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x40049409, 0x0)

05:13:18 executing program 4:
syz_open_procfs$namespace(0x0, &(0x7f0000001480)='ns/user\x00')

05:13:18 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000004000000000000000020000fe"], 0x0, 0x1a}, 0x20)

[ 1362.933306][T15347] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1362.944205][T15347] CPU: 1 PID: 15347 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1362.956654][T15347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1362.966704][T15347] Call Trace:
[ 1362.969982][T15347]  <TASK>
[ 1362.972917][T15347]  dump_stack_lvl+0xd6/0x122
[ 1362.977578][T15347]  dump_stack+0x11/0x15
[ 1362.981763][T15347]  dump_header+0x98/0x430
[ 1362.986113][T15347]  oom_kill_process+0x100/0x540
[ 1362.991017][T15347]  out_of_memory+0x620/0x880
[ 1362.995611][T15347]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1363.001171][T15347]  mem_cgroup_oom+0x2e7/0x370
[ 1363.005897][T15347]  try_charge_memcg+0x717/0x9c0
[ 1363.010801][T15347]  ? __alloc_pages+0x199/0x340
[ 1363.015573][T15347]  charge_memcg+0x54/0x250
[ 1363.019999][T15347]  __mem_cgroup_charge+0x25/0xa0
[ 1363.024971][T15347]  wp_page_copy+0x209/0x1460
[ 1363.029616][T15347]  ? shrink_zones+0x525/0x5d0
[ 1363.034314][T15347]  ? preempt_count_add+0x5e/0xa0
[ 1363.039279][T15347]  do_wp_page+0x2dd/0x780
[ 1363.043618][T15347]  handle_mm_fault+0x5ef/0xa80
[ 1363.048432][T15347]  do_user_addr_fault+0x4a1/0x980
[ 1363.053486][T15347]  exc_page_fault+0x60/0x160
[ 1363.058081][T15347]  asm_exc_page_fault+0x22/0x30
[ 1363.062943][T15347] RIP: 0033:0x7fa69bfc5970
[ 1363.067452][T15347] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1363.087111][T15347] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1363.093244][T15347] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1363.101260][T15347] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1363.109264][T15347] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1363.117230][T15347] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1363.125205][T15347] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1363.133200][T15347]  ? __sock_create+0x24/0x4e0
[ 1363.137895][T15347]  </TASK>
[ 1363.148000][T15347] memory: usage 307200kB, limit 307200kB, failcnt 42098
[ 1363.154968][T15347] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1363.161838][T15347] Memory cgroup stats for /syz0:
[ 1363.162151][T15347] anon 401408
[ 1363.162151][T15347] file 10457088
[ 1363.162151][T15347] kernel 303714304
[ 1363.162151][T15347] kernel_stack 81920
[ 1363.162151][T15347] pagetables 229376
[ 1363.162151][T15347] sec_pagetables 0
[ 1363.162151][T15347] percpu 9172448
[ 1363.162151][T15347] sock 0
[ 1363.162151][T15347] vmalloc 8192
[ 1363.162151][T15347] shmem 10457088
[ 1363.162151][T15347] file_mapped 159744
[ 1363.162151][T15347] file_dirty 0
[ 1363.162151][T15347] file_writeback 0
[ 1363.162151][T15347] swapcached 0
[ 1363.162151][T15347] inactive_anon 401408
[ 1363.162151][T15347] active_anon 10457088
[ 1363.162151][T15347] inactive_file 0
[ 1363.162151][T15347] active_file 0
[ 1363.162151][T15347] unevictable 0
[ 1363.162151][T15347] slab_reclaimable 39392
[ 1363.162151][T15347] slab_unreclaimable 294100856
[ 1363.162151][T15347] slab 294140248
[ 1363.162151][T15347] workingset_refault_anon 0
[ 1363.162151][T15347] workingset_refault_file 1
[ 1363.162151][T15347] workingset_activate_anon 0
[ 1363.257865][T15347] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15347,uid=0
05:13:19 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xffffa888}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:19 executing program 2:
socketpair(0xa, 0x2, 0x11, &(0x7f00000001c0))

05:13:19 executing program 1:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x78, 0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

05:13:19 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x1400}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:19 executing program 4:
bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$ITER_CREATE(0x21, &(0x7f00000003c0), 0x8)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000140))

05:13:19 executing program 5:
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r0 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:19 executing program 2:
perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x53, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

[ 1363.273283][T15347] Memory cgroup out of memory: Killed process 15347 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:19 executing program 2:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg$tipc(r0, &(0x7f0000000480)={&(0x7f0000000040)=@name, 0x10, 0x0}, 0x0)

05:13:19 executing program 4:
prctl$PR_SET_VMA(0x34, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)

05:13:19 executing program 1:
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f0000000080)='/dev/vcsa\x00')
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f0000000000)='/dev/vcsa\x00')

05:13:19 executing program 4:
mlock2(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f0000000080)='/dev/vcsa\x00')
mlock2(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0)

05:13:19 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
bind$packet(r0, &(0x7f0000000040)={0x11, 0x1c, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
bind$packet(r0, &(0x7f0000000100)={0x11, 0x5, 0x0, 0x1, 0x0, 0x6, @dev}, 0x14)

[ 1363.475837][T15395] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1363.486871][T15395] CPU: 1 PID: 15395 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1363.499280][T15395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1363.509555][T15395] Call Trace:
[ 1363.512826][T15395]  <TASK>
[ 1363.515751][T15395]  dump_stack_lvl+0xd6/0x122
[ 1363.520476][T15395]  dump_stack+0x11/0x15
[ 1363.524735][T15395]  dump_header+0x98/0x430
[ 1363.529070][T15395]  oom_kill_process+0x100/0x540
[ 1363.533918][T15395]  out_of_memory+0x620/0x880
[ 1363.538509][T15395]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1363.544068][T15395]  mem_cgroup_oom+0x2e7/0x370
[ 1363.548771][T15395]  try_charge_memcg+0x717/0x9c0
[ 1363.553657][T15395]  ? __alloc_pages+0x199/0x340
[ 1363.558443][T15395]  charge_memcg+0x54/0x250
[ 1363.562861][T15395]  __mem_cgroup_charge+0x25/0xa0
[ 1363.567864][T15395]  wp_page_copy+0x209/0x1460
[ 1363.572461][T15395]  ? shrink_zones+0x525/0x5d0
[ 1363.577138][T15395]  ? preempt_count_add+0x5e/0xa0
[ 1363.582140][T15395]  do_wp_page+0x2dd/0x780
[ 1363.586480][T15395]  handle_mm_fault+0x5ef/0xa80
[ 1363.591248][T15395]  do_user_addr_fault+0x4a1/0x980
[ 1363.596396][T15395]  exc_page_fault+0x60/0x160
[ 1363.601005][T15395]  asm_exc_page_fault+0x22/0x30
[ 1363.606022][T15395] RIP: 0033:0x7fa69bfc5970
[ 1363.610446][T15395] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1363.630205][T15395] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1363.636355][T15395] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1363.644373][T15395] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1363.652337][T15395] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1363.660302][T15395] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1363.668353][T15395] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1363.676362][T15395]  ? __sock_create+0x24/0x4e0
[ 1363.681111][T15395]  </TASK>
[ 1363.691338][T15395] memory: usage 307200kB, limit 307200kB, failcnt 42184
[ 1363.698331][T15395] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1363.705211][T15395] Memory cgroup stats for /syz0:
[ 1363.705503][T15395] anon 401408
[ 1363.705503][T15395] file 10457088
[ 1363.705503][T15395] kernel 303706112
[ 1363.705503][T15395] kernel_stack 81920
[ 1363.705503][T15395] pagetables 229376
[ 1363.705503][T15395] sec_pagetables 0
[ 1363.705503][T15395] percpu 9172448
[ 1363.705503][T15395] sock 0
[ 1363.705503][T15395] vmalloc 8192
[ 1363.705503][T15395] shmem 10457088
[ 1363.705503][T15395] file_mapped 159744
[ 1363.705503][T15395] file_dirty 0
[ 1363.705503][T15395] file_writeback 0
[ 1363.705503][T15395] swapcached 0
[ 1363.705503][T15395] inactive_anon 401408
[ 1363.705503][T15395] active_anon 10457088
[ 1363.705503][T15395] inactive_file 0
[ 1363.705503][T15395] active_file 0
[ 1363.705503][T15395] unevictable 0
[ 1363.705503][T15395] slab_reclaimable 39392
[ 1363.705503][T15395] slab_unreclaimable 294094496
[ 1363.705503][T15395] slab 294133888
[ 1363.705503][T15395] workingset_refault_anon 0
[ 1363.705503][T15395] workingset_refault_file 1
[ 1363.705503][T15395] workingset_activate_anon 0
[ 1363.801146][T15395] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15395,uid=0
05:13:19 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xffffff7f}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:19 executing program 5:
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r0 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:19 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0x7)
ioctl$sock_inet6_udp_SIOCINQ(r0, 0x5411, &(0x7f0000000040))

05:13:19 executing program 4:
clock_gettime(0x8, &(0x7f0000001080))

05:13:19 executing program 1:
mlock2(&(0x7f0000ff4000/0x2000)=nil, 0x2000, 0x0)
munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000)

05:13:19 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x1511}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:19 executing program 2:
request_key(&(0x7f0000000000)='logon\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)='\x00', 0x0)

[ 1363.816488][T15395] Memory cgroup out of memory: Killed process 15395 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:19 executing program 4:
add_key$keyring(&(0x7f00000004c0), 0x0, 0x0, 0x0, 0xfffffffffffffffb)

05:13:19 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x2}, 0x0)

05:13:19 executing program 4:
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffb000/0x4000)=nil)

05:13:19 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvfrom(r0, 0x0, 0x0, 0x40002040, 0x0, 0x0)

05:13:19 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_ADD_TX_TS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x28, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x28}}, 0x0)

[ 1363.924035][   T23] audit: type=1400 audit(1667193199.721:637): avc:  denied  { read } for  pid=15438 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1363.958287][T15433] validate_nla: 26 callbacks suppressed
[ 1363.958300][T15433] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1363.972754][T15433] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1363.980811][T15433] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1363.988889][T15433] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1364.022894][T15427] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1364.034514][T15427] CPU: 0 PID: 15427 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1364.047050][T15427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1364.057111][T15427] Call Trace:
[ 1364.060464][T15427]  <TASK>
[ 1364.063739][T15427]  dump_stack_lvl+0xd6/0x122
[ 1364.068502][T15427]  dump_stack+0x11/0x15
[ 1364.072721][T15427]  dump_header+0x98/0x430
[ 1364.077053][T15427]  oom_kill_process+0x100/0x540
[ 1364.081995][T15427]  out_of_memory+0x620/0x880
[ 1364.086585][T15427]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1364.092193][T15427]  mem_cgroup_oom+0x2e7/0x370
[ 1364.096952][T15427]  try_charge_memcg+0x717/0x9c0
[ 1364.101851][T15427]  ? __alloc_pages+0x199/0x340
[ 1364.106633][T15427]  charge_memcg+0x54/0x250
[ 1364.111063][T15427]  __mem_cgroup_charge+0x25/0xa0
[ 1364.116025][T15427]  wp_page_copy+0x209/0x1460
[ 1364.120698][T15427]  ? preempt_count_add+0x5e/0xa0
[ 1364.125645][T15427]  do_wp_page+0x2dd/0x780
[ 1364.129986][T15427]  handle_mm_fault+0x5ef/0xa80
[ 1364.134762][T15427]  do_user_addr_fault+0x4a1/0x980
[ 1364.139926][T15427]  exc_page_fault+0x60/0x160
[ 1364.144518][T15427]  asm_exc_page_fault+0x22/0x30
[ 1364.149406][T15427] RIP: 0033:0x7fa69bfc5970
[ 1364.153824][T15427] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1364.173493][T15427] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1364.179557][T15427] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1364.187670][T15427] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
[ 1364.195818][T15427] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1364.203786][T15427] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1364.211802][T15427] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
[ 1364.219772][T15427]  ? __x64_sys_socket+0xc/0x50
[ 1364.224547][T15427]  </TASK>
[ 1364.227600][T15427] memory: usage 307200kB, limit 307200kB, failcnt 42256
[ 1364.234542][T15427] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1364.241385][T15427] Memory cgroup stats for /syz0:
[ 1364.241625][T15427] anon 393216
[ 1364.241625][T15427] file 10461184
[ 1364.241625][T15427] kernel 303706112
[ 1364.241625][T15427] kernel_stack 81920
[ 1364.241625][T15427] pagetables 229376
[ 1364.241625][T15427] sec_pagetables 0
[ 1364.241625][T15427] percpu 9172448
[ 1364.241625][T15427] sock 0
[ 1364.241625][T15427] vmalloc 8192
[ 1364.241625][T15427] shmem 10457088
[ 1364.241625][T15427] file_mapped 159744
[ 1364.241625][T15427] file_dirty 0
[ 1364.241625][T15427] file_writeback 0
[ 1364.241625][T15427] swapcached 0
[ 1364.241625][T15427] inactive_anon 393216
[ 1364.241625][T15427] active_anon 10457088
[ 1364.241625][T15427] inactive_file 0
[ 1364.241625][T15427] active_file 4096
[ 1364.241625][T15427] unevictable 0
[ 1364.241625][T15427] slab_reclaimable 39504
[ 1364.241625][T15427] slab_unreclaimable 294094496
05:13:20 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000280)={'sit0\x00', &(0x7f0000000200)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @private}}}})

05:13:20 executing program 2:
r0 = socket$unix(0x1, 0x1, 0x0)
getsockopt$sock_timeval(r0, 0x1, 0x39, 0x0, &(0x7f0000000200)=0x18)

05:13:20 executing program 5:
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r0 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:20 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, 0x0, 0x0)

05:13:20 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xffffff81}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:20 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x1a02}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1364.241625][T15427] slab 294134000
[ 1364.241625][T15427] workingset_refault_anon 0
[ 1364.241625][T15427] workingset_refault_file 2
[ 1364.241625][T15427] workingset_activate_anon 0
[ 1364.337750][T15427] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15427,uid=0
[ 1364.353024][T15427] Memory cgroup out of memory: Killed process 15427 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:20 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, 0x0, 0x0)

05:13:20 executing program 2:
setgroups(0x5, &(0x7f0000000200)=[0x0, 0xee01, 0xee01, 0x0, 0x0])

05:13:20 executing program 1:
mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0)
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
munmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000)

[ 1364.415182][   T23] audit: type=1400 audit(1667193200.201:638): avc:  denied  { getopt } for  pid=15448 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
05:13:20 executing program 2:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
recvfrom(r0, 0x0, 0x0, 0x400001c2, 0x0, 0x0)

05:13:20 executing program 4:
syz_open_dev$vcsn(&(0x7f0000000000), 0x0, 0x0)
munmap(&(0x7f0000ff5000/0x1000)=nil, 0x1000)
munmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000)

05:13:20 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:20 executing program 1:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x581, 0x0)
write$tun(r0, 0x0, 0x0)

[ 1364.499263][T15466] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1364.508140][T15466] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1364.516221][T15466] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1364.524388][T15466] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:13:20 executing program 4:
sendmsg$NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000009800)={0x0, 0x0, 0x0}, 0x0)
mlock2(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0)
mlock2(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0)

[ 1364.596744][T15464] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1364.607482][T15464] CPU: 0 PID: 15464 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1364.619975][T15464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1364.630028][T15464] Call Trace:
[ 1364.633301][T15464]  <TASK>
[ 1364.636269][T15464]  dump_stack_lvl+0xd6/0x122
[ 1364.640943][T15464]  dump_stack+0x11/0x15
[ 1364.645108][T15464]  dump_header+0x98/0x430
[ 1364.649435][T15464]  oom_kill_process+0x100/0x540
[ 1364.654346][T15464]  out_of_memory+0x620/0x880
[ 1364.658990][T15464]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1364.664602][T15464]  mem_cgroup_oom+0x2e7/0x370
[ 1364.669284][T15464]  try_charge_memcg+0x717/0x9c0
[ 1364.674204][T15464]  ? __alloc_pages+0x199/0x340
[ 1364.678988][T15464]  charge_memcg+0x54/0x250
[ 1364.683394][T15464]  __mem_cgroup_charge+0x25/0xa0
[ 1364.688330][T15464]  wp_page_copy+0x209/0x1460
[ 1364.693042][T15464]  ? shrink_zones+0x525/0x5d0
[ 1364.697783][T15464]  ? preempt_count_add+0x5e/0xa0
[ 1364.702717][T15464]  do_wp_page+0x2dd/0x780
[ 1364.707040][T15464]  handle_mm_fault+0x5ef/0xa80
[ 1364.711800][T15464]  do_user_addr_fault+0x4a1/0x980
[ 1364.716848][T15464]  exc_page_fault+0x60/0x160
[ 1364.721482][T15464]  asm_exc_page_fault+0x22/0x30
[ 1364.726330][T15464] RIP: 0033:0x7fa69bfc5970
[ 1364.730733][T15464] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1364.750475][T15464] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1364.756527][T15464] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1364.764738][T15464] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1364.772789][T15464] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1364.780748][T15464] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1364.788709][T15464] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1364.796698][T15464]  ? __sock_create+0x24/0x4e0
[ 1364.801382][T15464]  </TASK>
[ 1364.804477][T15464] memory: usage 307192kB, limit 307200kB, failcnt 42332
[ 1364.811567][T15464] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1364.818485][T15464] Memory cgroup stats for /syz0:
[ 1364.818818][T15464] anon 401408
[ 1364.818818][T15464] file 10457088
[ 1364.818818][T15464] kernel 303706112
[ 1364.818818][T15464] kernel_stack 81920
[ 1364.818818][T15464] pagetables 229376
[ 1364.818818][T15464] sec_pagetables 0
[ 1364.818818][T15464] percpu 9172448
[ 1364.818818][T15464] sock 0
[ 1364.818818][T15464] vmalloc 8192
[ 1364.818818][T15464] shmem 10457088
[ 1364.818818][T15464] file_mapped 159744
[ 1364.818818][T15464] file_dirty 0
[ 1364.818818][T15464] file_writeback 0
[ 1364.818818][T15464] swapcached 0
[ 1364.818818][T15464] inactive_anon 401408
[ 1364.818818][T15464] active_anon 10457088
[ 1364.818818][T15464] inactive_file 0
[ 1364.818818][T15464] active_file 0
[ 1364.818818][T15464] unevictable 0
[ 1364.818818][T15464] slab_reclaimable 39392
[ 1364.818818][T15464] slab_unreclaimable 294094496
05:13:20 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x2000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:20 executing program 2:
statx(0xffffffffffffffff, &(0x7f0000002100)='\x00', 0x0, 0x0, 0x0)

[ 1364.818818][T15464] slab 294133888
[ 1364.818818][T15464] workingset_refault_anon 0
[ 1364.818818][T15464] workingset_refault_file 2
[ 1364.818818][T15464] workingset_activate_anon 0
[ 1364.914394][T15464] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15464,uid=0
[ 1364.929716][T15464] Memory cgroup out of memory: Killed process 15464 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:20 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xffffff9e}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:20 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:20 executing program 2:
r0 = syz_open_dev$usbmon(&(0x7f0000000580), 0x0, 0x0)
ioctl$MON_IOCX_GET(r0, 0x40189206, &(0x7f0000000140)={0x0, 0x0})
ioctl$MON_IOCX_GET(r0, 0xc0109207, &(0x7f0000000180)={0x0, 0x0})

05:13:20 executing program 1:
r0 = socket$inet6(0xa, 0x3, 0x7)
ioctl$sock_inet6_udp_SIOCINQ(r0, 0x8901, &(0x7f0000000040))

05:13:20 executing program 4:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000001700), 0x0, 0x0)
accept$inet6(r0, 0x0, 0x0)

[ 1364.988905][T15493] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1364.997859][T15493] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:13:20 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x2400}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:20 executing program 1:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0xa, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

05:13:20 executing program 4:
munmap(&(0x7f0000ff5000/0x1000)=nil, 0x1000)
mlock2(&(0x7f0000ff6000/0xa000)=nil, 0xa000, 0x0)

[ 1365.037643][   T23] audit: type=1400 audit(1667193200.831:639): avc:  denied  { ioctl } for  pid=15497 comm="syz-executor.2" path="/dev/usbmon0" dev="devtmpfs" ino=117 ioctlcmd=0x9206 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
05:13:20 executing program 1:
r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_pts(0xffffffffffffffff, 0x42140)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0x1a)
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r0}, 0x8)
pipe2(&(0x7f0000000000)={<r2=>0xffffffffffffffff}, 0x0)
syz_open_pts(r2, 0x0)
pipe2(&(0x7f0000000000), 0x0)
syz_open_pts(0xffffffffffffffff, 0x0)
syz_clone(0x52000000, 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000200)="db3009136ada8e196b1058908fcef30dc4f23cd47e50f2a6089d8ad9cce309bbc81f903495a7c6f0539d1401f2bf60f97b8f5c9e39628359fc983a55536a8b92a67b72d32eed6642f652d46819e6997724c53396eb501ea400b2c37b351b2e9babcbb3717763785aed0d0c76e2050e9c6f8bf8e0e1cf86b5d8f3f5")
ioctl$KDGKBMETA(r2, 0x4b62, 0x0)
ioctl$TIOCGRS485(r1, 0x542e, 0x0)

05:13:20 executing program 4:
request_key(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)='.request_key_auth\x00', 0x0)

05:13:20 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:20 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0xffffffff, 0x0, 0x64ca}, 0x48)

[ 1365.299759][T15511] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1365.310635][T15511] CPU: 1 PID: 15511 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1365.323040][T15511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1365.333089][T15511] Call Trace:
[ 1365.336401][T15511]  <TASK>
[ 1365.339327][T15511]  dump_stack_lvl+0xd6/0x122
[ 1365.344004][T15511]  dump_stack+0x11/0x15
[ 1365.348238][T15511]  dump_header+0x98/0x430
[ 1365.352570][T15511]  oom_kill_process+0x100/0x540
[ 1365.357417][T15511]  out_of_memory+0x620/0x880
[ 1365.362068][T15511]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1365.367619][T15511]  mem_cgroup_oom+0x2e7/0x370
[ 1365.372353][T15511]  try_charge_memcg+0x717/0x9c0
[ 1365.377227][T15511]  ? __alloc_pages+0x199/0x340
[ 1365.382017][T15511]  charge_memcg+0x54/0x250
[ 1365.386471][T15511]  __mem_cgroup_charge+0x25/0xa0
[ 1365.391412][T15511]  wp_page_copy+0x209/0x1460
[ 1365.396013][T15511]  ? preempt_count_add+0x5e/0xa0
[ 1365.400984][T15511]  do_wp_page+0x2dd/0x780
[ 1365.405320][T15511]  handle_mm_fault+0x5ef/0xa80
[ 1365.410196][T15511]  do_user_addr_fault+0x4a1/0x980
[ 1365.415228][T15511]  exc_page_fault+0x60/0x160
[ 1365.419853][T15511]  asm_exc_page_fault+0x22/0x30
[ 1365.424712][T15511] RIP: 0033:0x7fa69bfc5970
[ 1365.429149][T15511] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1365.448754][T15511] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1365.454884][T15511] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1365.462858][T15511] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
[ 1365.470832][T15511] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1365.478848][T15511] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1365.486937][T15511] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
[ 1365.494910][T15511]  ? __x64_sys_socket+0xc/0x50
[ 1365.499727][T15511]  </TASK>
[ 1365.502783][T15511] memory: usage 307200kB, limit 307200kB, failcnt 42400
[ 1365.509710][T15511] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1365.516605][T15511] Memory cgroup stats for /syz0:
[ 1365.516919][T15511] anon 393216
[ 1365.516919][T15511] file 10457088
[ 1365.516919][T15511] kernel 303718400
[ 1365.516919][T15511] kernel_stack 81920
[ 1365.516919][T15511] pagetables 229376
[ 1365.516919][T15511] sec_pagetables 0
[ 1365.516919][T15511] percpu 9172448
[ 1365.516919][T15511] sock 0
[ 1365.516919][T15511] vmalloc 8192
[ 1365.516919][T15511] shmem 10457088
[ 1365.516919][T15511] file_mapped 159744
[ 1365.516919][T15511] file_dirty 0
[ 1365.516919][T15511] file_writeback 0
[ 1365.516919][T15511] swapcached 0
[ 1365.516919][T15511] inactive_anon 389120
[ 1365.516919][T15511] active_anon 10457088
[ 1365.516919][T15511] inactive_file 0
[ 1365.516919][T15511] active_file 0
[ 1365.516919][T15511] unevictable 0
[ 1365.516919][T15511] slab_reclaimable 44896
[ 1365.516919][T15511] slab_unreclaimable 294101120
[ 1365.516919][T15511] slab 294146016
05:13:21 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xffffffc3}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:21 executing program 4:
munmap(&(0x7f0000ff5000/0x1000)=nil, 0x1000)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff5000/0x3000)=nil, 0x3000, 0x0, 0x335d5016292020f2, 0xffffffffffffffff, 0x8000000)

[ 1365.516919][T15511] workingset_refault_anon 0
[ 1365.516919][T15511] workingset_refault_file 2
[ 1365.516919][T15511] workingset_activate_anon 0
[ 1365.612482][T15511] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15511,uid=0
[ 1365.627838][T15511] Memory cgroup out of memory: Killed process 15511 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1365.700034][T15536] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1365.712384][T15536] CPU: 0 PID: 15536 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1365.724798][T15536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1365.734852][T15536] Call Trace:
[ 1365.738181][T15536]  <TASK>
[ 1365.741105][T15536]  dump_stack_lvl+0xd6/0x122
[ 1365.745741][T15536]  dump_stack+0x11/0x15
[ 1365.749943][T15536]  dump_header+0x98/0x430
[ 1365.754314][T15536]  oom_kill_process+0x100/0x540
[ 1365.759167][T15536]  out_of_memory+0x620/0x880
[ 1365.763759][T15536]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1365.769334][T15536]  mem_cgroup_oom+0x2e7/0x370
[ 1365.774023][T15536]  try_charge_memcg+0x717/0x9c0
[ 1365.778922][T15536]  ? debug_smp_processor_id+0x13/0x20
[ 1365.784380][T15536]  ? mod_objcg_state+0x474/0x580
[ 1365.789411][T15536]  __memcg_kmem_charge_page+0x2e4/0x480
[ 1365.795168][T15536]  alloc_thread_stack_node+0x101/0x360
[ 1365.800741][T15536]  dup_task_struct+0x96/0x2a0
[ 1365.805435][T15536]  copy_process+0x3ca/0x2100
[ 1365.810036][T15536]  kernel_clone+0x166/0x550
[ 1365.814555][T15536]  __x64_sys_clone+0xc3/0xf0
[ 1365.819252][T15536]  do_syscall_64+0x2b/0x70
[ 1365.823683][T15536]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1365.829652][T15536] RIP: 0033:0x7fa69c0199d1
05:13:21 executing program 2:
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000280)={0x0, 0x0, 0x28}, 0x10)

05:13:21 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x2500}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:21 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:21 executing program 1:
socket(0x10, 0x3, 0x2)

05:13:21 executing program 4:
r0 = add_key$keyring(&(0x7f0000000640), &(0x7f0000000680)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$keyring(&(0x7f00000005c0), &(0x7f0000000600)={'syz', 0x0}, 0x0, 0x0, r0)

[ 1365.834112][T15536] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1365.853792][T15536] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1365.862329][T15536] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1365.870304][T15536] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1365.878277][T15536] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1365.886279][T15536] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1365.894344][T15536] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1365.902318][T15536]  </TASK>
[ 1365.905417][T15536] memory: usage 307184kB, limit 307200kB, failcnt 42466
[ 1365.909763][T15546] __nla_validate_parse: 11 callbacks suppressed
[ 1365.909775][T15546] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1365.912347][T15536] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1365.912389][T15536] Memory cgroup stats for /syz0:
[ 1365.912664][T15536] anon 380928
[ 1365.912664][T15536] file 10457088
[ 1365.912664][T15536] kernel 303718400
[ 1365.912664][T15536] kernel_stack 65536
[ 1365.912664][T15536] pagetables 229376
[ 1365.912664][T15536] sec_pagetables 0
[ 1365.912664][T15536] percpu 9172448
[ 1365.912664][T15536] sock 0
[ 1365.912664][T15536] vmalloc 8192
[ 1365.912664][T15536] shmem 10457088
[ 1365.912664][T15536] file_mapped 159744
[ 1365.912664][T15536] file_dirty 0
[ 1365.912664][T15536] file_writeback 0
[ 1365.912664][T15536] swapcached 0
[ 1365.912664][T15536] inactive_anon 335872
[ 1365.912664][T15536] active_anon 10457088
[ 1365.912664][T15536] inactive_file 0
[ 1365.912664][T15536] active_file 0
[ 1365.912664][T15536] unevictable 0
[ 1365.912664][T15536] slab_reclaimable 58648
[ 1365.912664][T15536] slab_unreclaimable 294096040
[ 1365.912664][T15536] slab 294154688
[ 1365.912664][T15536] workingset_refault_anon 0
[ 1365.912664][T15536] workingset_refault_file 2
[ 1365.912664][T15536] workingset_activate_anon 0
05:13:21 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000100)={'tunl0\x00', &(0x7f0000000040)={'erspan0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}}}}})

05:13:21 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_RINGS_GET(r0, &(0x7f00000018c0)={&(0x7f00000015c0), 0xc, &(0x7f0000001880)={&(0x7f0000001700)={0x14}, 0x14}}, 0x0)

05:13:21 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xffffffea}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:21 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14}, 0x14}}, 0x0)
sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000300)={0x14, 0x0, 0x1}, 0x14}}, 0x0)

05:13:21 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000003340)={0x0, 0x0, &(0x7f0000003300)={&(0x7f0000000080)={0xe84, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x78, 0x3, 0x0, 0x1, [{0x74, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0x6d, 0x1, "7455a1adefc11b4df569289ebc846099e7f58bcdead4188bed73024d37dd8c10dfc0438ca8e5f7a9c275bac98cbf8b203ae36207b0498103facbf94ea9416127729122f9e9d0caa1b4d9e861674297b3025ea40f2eb0993db7b3cc2fe2cb5486a8d5f6b912d5b63379"}}]}, @NL80211_ATTR_COALESCE_RULE_DELAY={0x8}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x4}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0xac, 0x3, 0x0, 0x1, [{0x9c, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0x95, 0x1, "4695be4bab7dfa55ad9d0674838c1f436c93859f2199f0bced03def08a1c0ae0023f5e699eeaf76176c1e4ae1277a4b3752f3a2e41d5989f9796626fa59a13ffcdf864ec2177052ff85680833a97d14539e9a1abbd231d93c74bdfdeda2ea0df7ee81bb1644f818b7f8f0461dbedd4afb55adceb1d9889318e38215649cd3a7206bceeb08ab44de326030a9402f48df197"}}, {0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8}}]}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0xd30, 0x3, 0x0, 0x1, [{0xc8, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0xc1, 0x2, "f1291a71f65e37fb26c5f5f0c662515cf70c53d2f0a9c7959b726b9d422bef7aa704bd9f62ae68adc037a2b3e0bad55040bc28ae845ece8bf7d994110fc22d5cb7c6c65680b9d6ef896f3362614b07753cac3c5dd77173bec01216f9e535a64edac0da79fa3903e60c8c091f89d2fcfbe1b09c558f592a1948d34ceddad982915306315ebe94cac5890a9e16ff39765a0d06e68662455b8e290abd539e2ddcb856fce085b2e9295a9735a7550485e35c6d70995557cbe54333e00b5131"}}, {0xc64, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0xc5d, 0x2, "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"}}]}]}, 0xe84}}, 0x0)

[ 1365.912809][T15536] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15536,uid=0
[ 1365.912912][T15536] Memory cgroup out of memory: Killed process 15536 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1366.127021][T15558] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1366.137916][T15558] CPU: 1 PID: 15558 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1366.150489][T15558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1366.160542][T15558] Call Trace:
[ 1366.163819][T15558]  <TASK>
[ 1366.166750][T15558]  dump_stack_lvl+0xd6/0x122
[ 1366.171368][T15558]  dump_stack+0x11/0x15
[ 1366.175547][T15558]  dump_header+0x98/0x430
[ 1366.179879][T15558]  oom_kill_process+0x100/0x540
[ 1366.184749][T15558]  out_of_memory+0x620/0x880
[ 1366.189422][T15558]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1366.194983][T15558]  mem_cgroup_oom+0x2e7/0x370
[ 1366.199733][T15558]  try_charge_memcg+0x717/0x9c0
[ 1366.204593][T15558]  ? __alloc_pages+0x199/0x340
[ 1366.209361][T15558]  charge_memcg+0x54/0x250
[ 1366.213781][T15558]  __mem_cgroup_charge+0x25/0xa0
[ 1366.218781][T15558]  wp_page_copy+0x209/0x1460
[ 1366.223376][T15558]  ? shrink_zones+0x525/0x5d0
[ 1366.228086][T15558]  ? preempt_count_add+0x5e/0xa0
[ 1366.233032][T15558]  do_wp_page+0x2dd/0x780
[ 1366.237475][T15558]  handle_mm_fault+0x5ef/0xa80
[ 1366.242250][T15558]  do_user_addr_fault+0x4a1/0x980
[ 1366.247348][T15558]  exc_page_fault+0x60/0x160
[ 1366.251988][T15558]  asm_exc_page_fault+0x22/0x30
[ 1366.256933][T15558] RIP: 0033:0x7fa69bfc5970
05:13:21 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f00000000c0)={'syztnl1\x00', &(0x7f0000000000)={'tunl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2, @private}}}})

05:13:22 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x2f00}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1366.261517][T15558] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1366.281440][T15558] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1366.287570][T15558] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1366.295543][T15558] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1366.303748][T15558] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1366.311726][T15558] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1366.319705][T15558] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
05:13:22 executing program 4:
modify_ldt$read_default(0x2, &(0x7f0000000000)=""/43, 0x2b)

05:13:22 executing program 4:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x78, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4f6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

[ 1366.327718][T15558]  ? __sock_create+0x24/0x4e0
[ 1366.332406][T15558]  </TASK>
[ 1366.342890][T15558] memory: usage 307200kB, limit 307200kB, failcnt 42552
[ 1366.349847][T15558] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1366.356766][T15558] Memory cgroup stats for /syz0:
[ 1366.357057][T15558] anon 401408
[ 1366.357057][T15558] file 10457088
[ 1366.357057][T15558] kernel 303714304
[ 1366.357057][T15558] kernel_stack 81920
[ 1366.357057][T15558] pagetables 229376
[ 1366.357057][T15558] sec_pagetables 0
[ 1366.357057][T15558] percpu 9172448
[ 1366.357057][T15558] sock 0
[ 1366.357057][T15558] vmalloc 8192
[ 1366.357057][T15558] shmem 10457088
[ 1366.357057][T15558] file_mapped 159744
[ 1366.357057][T15558] file_dirty 0
[ 1366.357057][T15558] file_writeback 0
[ 1366.357057][T15558] swapcached 0
[ 1366.357057][T15558] inactive_anon 401408
[ 1366.357057][T15558] active_anon 10457088
[ 1366.357057][T15558] inactive_file 0
[ 1366.357057][T15558] active_file 0
[ 1366.357057][T15558] unevictable 0
[ 1366.357057][T15558] slab_reclaimable 39392
[ 1366.357057][T15558] slab_unreclaimable 294100856
[ 1366.357057][T15558] slab 294140248
[ 1366.357057][T15558] workingset_refault_anon 0
[ 1366.357057][T15558] workingset_refault_file 2
[ 1366.357057][T15558] workingset_activate_anon 0
[ 1366.426584][   T23] audit: type=1400 audit(1667193202.161:640): avc:  denied  { tracepoint } for  pid=15578 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[ 1366.452909][T15558] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15558,uid=0
[ 1366.488344][T15558] Memory cgroup out of memory: Killed process 15558 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1366.537271][T15581] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:22 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:22 executing program 4:
prctl$PR_SET_VMA(0x2c, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)

05:13:22 executing program 1:
socket$inet(0x2, 0x8080b, 0x0)

05:13:22 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r0, &(0x7f0000009800)={0x0, 0x0, &(0x7f00000097c0)={&(0x7f0000009740)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000003340)={&(0x7f0000000040), 0xc, &(0x7f0000003300)={&(0x7f0000000080)={0x2e58, r1, 0x1, 0x9, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x88, 0x3, 0x0, 0x1, [{0x84, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0x7d, 0x1, "7455a1adefc11b4df569289ebc846099e7f58bcdead4188bed73024d37dd8c10dfc0438ca8e5f7a9c275bac98cbf8b203ae36207b0498103facbf94ea9416127729122f9e9d0caa1b4d9e861674297b3025ea40f2eb0993db7b3cc2fe2cb5486a8d5f6b912d5b63379096e450a27dfa154803277371961ebd7"}}]}, @NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x1}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x4}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0xac, 0x3, 0x0, 0x1, [{0x9c, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0x98, 0x1, "4695be4bab7dfa55ad9d0674838c1f436c93859f2199f0bced03def08a1c0ae0023f5e699eeaf76176c1e4ae1277a4b3752f3a2e41d5989f9796626fa59a13ffcdf864ec2177052ff85680833a97d14539e9a1abbd231d93c74bdfdeda2ea0df7ee81bb1644f818b7f8f0461dbedd4afb55adceb1d9889318e38215649cd3a7206bceeb08ab44de326030a9402f48df19794926f"}}, {0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x7fffffff}}]}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x10d4, 0x3, 0x0, 0x1, [{0xc8, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0xc2, 0x2, "f1291a71f65e37fb26c5f5f0c662515cf70c53d2f0a9c7959b726b9d422bef7aa704bd9f62ae68adc037a2b3e0bad55040bc28ae845ece8bf7d994110fc22d5cb7c6c65680b9d6ef896f3362614b07753cac3c5dd77173bec01216f9e535a64edac0da79fa3903e60c8c091f89d2fcfbe1b09c558f592a1948d34ceddad982915306315ebe94cac5890a9e16ff39765a0d06e68662455b8e290abd539e2ddcb856fce085b2e9295a9735a7550485e35c6d70995557cbe54333e00b5131f0"}}, {0x1008, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0x1004, 0x2, "7f8de727e17fbdfa29f3ddeec568453a79d7427729395c7b3f22a3fd9b0b1d882f07477a617a3fef9383e9b83463054a40dcf62da31e173730a79c2e27a55e8e397d4a3218c219bf181e8b110ffcc4480c14b2b369f2149a2fe908eb13167d52ac8d4535e1580bb7ae05c73ea1016a5fb12fc4326dad2e6417b2682fb9d07d479f55988d6df9712a6ff46ac825fb90e78688c727e72e902ed3cac355115391834974f38b20682b40cd2e7c155aac72711d48f763ca62d1adddd21a30dfd0122dd4aabb049616c9254bdb2755b14df998380b4826da291dcc478453bf7bcdf803a63aa70412013c34503ce21c24f2456ec97b302564430863d3e6897b7a5797294fe21ed76cc7f3d47e9a296ed7391cfc25c06380c679152069ce8df0ed9261a9269b4e48a72190ddff79b97442d4f5be34ed2b650d29c61fcd6db18998b24c20fba42b77b823ad1b990b9570dddd003a795716d463a6fa3b1661ebc58316b9b2f996c800978ff61e2e32dd95dcabab0fc2ffddc8119d318df44dbf67779701b4715eb4fcebf717d987d1856ce05748e044db053207708d2f1b980edbbf83328b0e4c7eb7ed4a80ed26df1d9546ba1b261ebbe091ce4b57a6e7d2ec1b7809141f3154eaab43853822ee9afac8b43e9f9e24ae3ecc14594326dd11a17dd56a23e922a73faa8726309309f3c1b096ec41b6c3b950a1ea48a78b0e11165c165df62c7b55854faf363f03448483df0ad381b072232e0bb1454a852785cc872d6c04e286305f7980fff0702d6fb5145332eeefd33058a2e7d5fd4933fb5a3f272bfe4f556a95806a920c228c3d0706e163978f53dcaf7da8a8f235cd6330585da0d47fc8607ef75420a1242ef34fb12ec95033893c0ef23af30a3541d12f78a1fa33db170a793f43518cc410dd06f3cb7ce14291678b581b032f488023ffac113fe5825e8f0e1ef42130a54da7a91ed883cb3e9fc1ffe7aa02e4afd62ecb30acc30dc7b463f1c2e9da0306abaf108d1ce268c64ff687575972e94fd557c9b39932863ef3bd3babc68583b21a47dac7796652aa71eacf26d91855035dcc49d204286f8a2bb7447109158875b98b26710888ce137473b850b281e41cd55fb463b01d01565b2d27c5217b6b95604fda7dd527053cedce563aa29dcc37f5802f30e24c3694297a356aa323094e8516177e316c9ac7cb868ffac472f5e00916b8815e788de77272b31c449c7d71cff7d20892799dfa402be044716a400bf3bce33d448f7277ced884b613cbd009affa46724d96b868c9436f866809705932c1679fa5179cdde6bddf447bc81ec8541594dc89127a5fda746371c5ef5c4607396d2d359136c4d568c19677a02012e1b4c4a8db58d3cfc7922c035f1b67f8546b1788241e97da2403f3734f704b70205ac3aa0be212ca1af9ef431c54b59f4a2923994aabf160f6f0a2bc7159067be37b628f8d1f4e8e460b4812bc61bb7047a5a69e7a1ca800685e1efbd5eaa3d2b6d02868a14fbb260499f93c1e65a148a602cdb0e8f91028e42d79de61d330d52bb631c61d2403fa4d7a1c1fb34bae185f9c722ddc2798151c51d53f3103763a648df5c355e029000aa07e65628e21a4f69b7fff75965b232b9fa5604461da6e7aa8d13770327f45a7267a6b8b1114040509396d9d4be60dd25ec3d919742cfc9739c849033da7f0b9953a87ec6efeec2c846ef17c5e9242c0586cb79266138b3957eb9bf685c4bf01e35afb8a82d661e3112d65a20f33ead940d17055ebe078d65a5fe20405602842af5c0e767eb9cb941f07d5e9f165705a2817e4644df90346f348fb1d16e99121f6d84dbf5509dda9afab0f529be703f138ce32edc06767205832c381e3e2f7f6efb6776ebf3a78298083c19b278eafe44045c0c2a217bc9081c946163aa48112b35352f6b6d78ea1748936ee8caf2eb192eb25353bc067a3860d7bb6ab3a0d88d5a188c0151f4c9918f1a5e05637842d3266a0e0cd2381f3d11954277ad249f182d948fe1098d0eeaad9b483a6c7a8c0dd911e8f945f9a1a1c886bd93713b1936258874c0f5535134fbb26c2912519626cb27e236ae0cee3fe8d006b1959d26ea19ddd22d27106481d94302a68fc929885996ec65a8b855c29837bfc5a78fc2d49c6397ac645123a3df905faa0e347e521f3d7d795470de128fc91e763503fe5be9adcd3c193013db3217d8c53dbbefae38d4fede068eb916d578767256aae951e3c2d4d55b8bbd337e057e119bd06fbe96205e8b92f5ad3ed2a8fa4aef2a8a8d4836214774262e6b31a14f1089b9b72b470c5abfd31bb09030316553d1af53afaa5a887f1ac080d4a2588975eaba26ba7d1777363e8d51cc18192f59c7d3b1e276e85058216ca84c182014e37a2b6766b603a1b2fe5c3862070f6d886a11523dcfd446a3dadbf368d4a6493724d300269a1898bc249b9c308131006eb912fbae0d2140d450ed66962fe0297c73d84721401e13ffc41ecaf1a550563aaada4b913f12480db5e918f969721c7e2684b5bf123dfaea6c3dc4c0287fd43a1909cdd1fa8e046d58273924f1979ef7aa6109751762c42e74dcd58284f17035113dca255df17d1c4424cfcbfd3fa979b1044ee668f91182ecd8e16321ae55d4241ffb657f7d984a185c37adac21480091f4dd1bfb8e8af0e7b88562eaf372bdb9abc914a022f1ab5dada6ab51355b13d400c2e082d9268ee59cc61400da76b7a55a192211f3f36addc1255a0831cba834b617c64e731271c3fa74b4d07983cf3b9b56acabd57f1f3bd87370f565e8387b453a70e0232802ba551454408000fcd7fd505a4f2619faa0fe3d2b4aef3673d70be612080b3e231c702a882b7257d69112f074c5c00f1d7cd309689ced8ac2a526e814b3280b9df7579ad17027059da94fcadb4796fef03dcd62b0729498e68bbf3098f9ecc4a26a366721f508593494c14b1352f98ffb4ed95ebed587a7fffe4ab623bc3a6725d4a9f76803acf550f983e8eb5a009575d4107cc10371485408a2621aa2fce6eccaf66ec776baa77d148040b6b9b8ca9430fb83c77ac3c8a069a94a01f99ef0f82a06b47c23c7a7b1cecd52b6a357be721aa2c044297efc02981518bf42708f96608afff802f28caad2cf335ffc6fca9697f255b6662f8a1d78e2b6ada8f695422aec68b3b26ac9b9d7def4e4db789242d33b29b6bcca05ebb70eb7dd71b65c587802ba45347a390e4798fe6d0a58536f9fb4bc32a84065c2020879a6887782fd79b53500780a65f4d40764a7f909cbe679fab07f77c95e3a60b97664f3e043238bd9fde3e172f351f9775d3dba3ab1259fd0dc97022e74dd0cebf28b3166e9540a09db040f2bb242da49dbf53604381d1eed9350da101b2be5bf32fb1954faf1a3a8d0a530d7bb616dc6746c98b76a4f03f41b606f05a241de1e0558198de73f61167e08c8eaf8d9de33ce97f376ab452cf9d2a1bbdd4168c61db3cbafb4ea9b5b0c15f1f27f432012938a882cdaca97e298389c294af31e9fafeb3ede7760a24f2d5540a9e8dd43c9420756c0aaa1e2ffc197c9e91d7eadcaaabf77bdf20787dfa95f3a912381bb45c020d9c165113a29ad6cb28700226db45f5f3ce02cca275a04799cbc3c0f915d58a5257c0786ced5ed363a765032d14a0e8854cb210c763b8e5f010f78c63627c113b59b1ddaf411b8f538c327e6da6def995548f86dcd95ca69080969f515effd50b85b40845627037267e199ee6779b26e9f1d41a23f64b9bf1387dfadc46bb09a8a92184538bf16594339d9ce37109e5f6e496d69c4857b160078b84a37132931684199792618cfc5439060eaf71494578ad25a9c7fef1451e65ea12e4aecaef91dcc353acebbd7cd19733ac34bc284ae2d8513c7859e515faf46c0b807aee056a4f7991b91adc2f4c004629946ed0343f0f5c1a2dbf9a44dcb8180cf4d6b1d5152cf6c74123aafed78a99d2629c05e8f734a40fb71c529956fa503aaf53cf7af5bacaab36219afbaefbc3649787414065e2c1159a1ab4e90e8a5301a1ab03ee353cd6d63efb165350bcb05647d34ef9e857be77652f6cc0e39a30c263e735c4c93adac57fd8241fd01487f3bf72e69a3d92fee3dfe1b5c13ea62578ec26ede6a5798d9281c2a252936ecd61a0e7dd2158e6ae53bd102acfa4ac63d2bb7ae6dcc19a90a92f9a55202283efd85472305b472df2aed832fe3d3d47f52b3b530f0899d9f1a67bb6d82752bf669cd03fa2faa0262c736ee678c7d0df12eac311246e146e4ef62db79a9c1beb4f9129625b4487022ded88ca81bdbcdab0d3c678abbab47679106cfc5dc560998d2f9955b2ee90117ba07df1e4091efe7ecbd48bd5ad6bc5e04e8ee19fdc5ceaaa8124aa518268dc30d5d029f7ee064c8998a02ba7b6ac6f8ce04497343087a0623edd4b56fa6a155d4e54389009fd62f5cc0aa4d55b95ffa9d21aff0638e8539c569ea8dd2992cc077c3a2020beeb93d4810895fd38f2fd0a6ad13db51968a4aa538c8d0e7232578a54f639a892628bfa30c31df8197a0ac45d95d8a07e5cd62bd0789a747c3150206c828b40e5a1b822413754473ce1fb353810486925bb56e6dba2d779f8f96df4149dc652c95fd0ba43e38b484aa4c1ab7ffe5f4b0dfb6d7bf55bccf61a52ab44eb3e8469fba3a76ff3025cf671c9a19abf4e14c7d6f7c2e85f4510be2468d920410f5d417b2b4aab71dd634443ca5365278b3a6eb5a051abb388fcd6b886bd0159a773f799d1c8f62bfc12b0bbd1e26deaefad5943ef4c751e077160e7c50989ba9fdfdc10e9a0ac56158f216c2761dd9e71fe376794963557680f8ccd903a0e61ee6d995c33388e4caa6d23d2e45d783e9ed51bcebaaef86c0849d5621ab313a5848526c3a4bca64bfe907c44af082ec84f0d8df84f13e141031116e1703982298d029983188c998eb8ae5e3eb70b16a045a7ab11fa28abe2b31dee85cedfdf151ac60aa8cbe0cfd30290bd1f72870075d73f19e5372c315b2ac1ada1315215688f292ff0b95e3f367042a9b8b5e354748594a48b7e9380c46533b83d9ebc4f72f24d51041eecee24b3541957fd59809bf7e784933a91e77cb0805ee469f6c7d30d04023e95b23c6ec4ac6beb26d4b32e1041101385215a208e575637beffd0f5b5706b151d9f203c96b22c145d3f1af5b6fca43ca976cf46abc77db17ea2015a905607556612610ae33ebdf79271889d428d49f547ddbab2f6fbf08caf1432486895c4221a44479997b00082d2a793573cb9b5ae6306fa8396548ae6590c578201df178a5b44dfece6d96dace0190b9d29933a81d7b5e3373795d7f10abe8750c0656596a5cfa9b478b056e182d949b053cfe0724c75335c601102ef77fcdbf7af80d27c70325df57823da28acf5b0aa4130a78bc7e42fb8d1e4beda09d650d700c67a4544a1d4b719ad6f9939d4f460bb5c720d5b04c890fb2d4d12c5f16e1e624ab1e464f4d4ca08f8cb02a61575c5325911fdac10a8973bbbc7be966ac0f2b37a3cb4bbf5155c7c84c920d858be1f0a7c4762d806ff654c54d794ee7e812953f877cf8755e7ada9ef0a4805e3c98d95ff0ba8a712c6ea06b9f643b494ca30113a271bbe3e09b6c5a7b7c26f1cff21f6c1d9b36e8f624e0bf897c68b5b61333619c99e4e105c0f13b7c1b24736abc8803947ab20919b48fb72a7fde6ef7afa0ac2f06dba65028da45b67bc4e82fd2626dc3320459e3bb2fe4e137194957fce357a93842ef2c132ecdc55b2f8a5c52b043d782290527461078f044b"}}]}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x1c20, 0x3, 0x0, 0x1, [{0x1008, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0x1002, 0x1, "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"}}, {0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x3818d30d}}, {0xc08, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0xc04, 0x1, "6416334cf4a5d2379684c54a8394129ef14b79db84f350e4f715b5e1b427aeddedb69c9877153eb0c0bd90ec81845df7f81b1dfd08d08ea62459517e435ff84324171f52b81fce0afe25ceed14cd92a110a4ba1d40f7f50975b582b6196430b148bfc2097698e7e98e8f228e4f45788f1b0c0b7f7a91197ae1fb2565a5b027c5f1965c81c725f4c23a7a63fdedeb9e6dcd25e674005c1442330e8776805e6b7ae537d67bd54c07b5004a847db968d6220e40644c1d44f55891ea7241d26949a572d3f775c19a04f415b27f7359d03b33e7aa51c71fcf516099a67d129ce07c05d00b936721660c8ec8af267a458563f61093d074e36c913eddc2a1080b4bb443899708af5e6dd525b6c37bcdfd313033aa89e99500057fa12fd85690225f58eedc46171a8c8e60368afe53a371ecb0d5c567e789555d0925453166bcf70a17119ff9670d00f6f25e53fc50c5dd56dd14be800584b187ccae55eee01858b83fa40462e85d51ac7459ee4d620157ec8e9bf78182f78fe1a1d5f4bce536a6f532f98924d9f658f64bdbd8a1c20fcda6392fbded1e81d7f00ddb9c18498b6179e1664f77c74efcbb0f2c25e8e4ff1a448ed3d7692fd3ab194d76ab72267bcdaaf092b2c074f007f73c85d89d75ee46c252fac752081e5b703a043b6ea50275281afb9f7b3f3eeb35855ac289e63b3407673d5cccd6f129335a2c98a2f0c1e11f5a67000e8953b2af27048a4946605c15a817e44a06fa185aa524c8d6e736ad70cc37bf456c9426c4482ebcd782919aff70c792d7018756bf6f26952fade7829a9d519c414a42626d0642bc6fe0c2abf6268018aaa3d5b7c66dc8d966386dcae0eb412bf2ccfa2a84bf63331a3863ad6b5630ef7e3d6c50a1906c6ea32f162806c97c52941afa0dce92619385a866bb04ec2a15a622e2c6e69d7034291f056fc6ea5d47dc3fd7a1a6fb0c016b055e58f31af10a09950745f2c485e1a89efe644bf5d6929973a56b9203db06cd0176c145390c9fbe3fef8120721d80fd021a9e6e88439024d3cf434f33757f9e6b93ee1396e82086ef3f9b0077b8684aff6799a0824c743248ab3e30e85b761d1faa29b74168a7655ba698a708b8effd8b19c9a6ba1beadbc0c7951d4ebad647494106e8a3b4e1100c8c647824e2d539ea1f71160541d3253e23ed624e37d5bcaaf36de691ade46cb52daef3ace4045e77eb0d5f39af17205a01428deb238c5533359ffb1495cb1587cdffaa25ef3b89ab5bc2055932760798cafbb1d81b6ac247a003d8db8fe33a1e6f5816f4d792fa41a071d3158c237db323d9b944f06c84effc5c4cdba9de4d61f15f6d5451fae2835e1698981f54f366e7b4b94bb3d244a9f6eaf3e7ed58149103870c68f898eb04a76bf33fc23178b497e6ccfb4abf430dcfc1d89d4530afa5aac0502bcf8dc92acc0ccf7ae560e8d4ebfaab2c9da14d491aab277359b6a305f3c58ba694ce9d99ec541a4af4281c55629ed42de05664ebd1dc1ca1826df3f91b38d02289297c4abf6921e4422f214ff8c1ead2e76bbc741f26d853610da9176757488ee6dac67d8b12c74d92bb6ec068ddd5f8362d4bbed401b6771ef91e1b735be8b2b4f9748be0a56c32d4db37aaae9148d8e2c6be1a455a33cdec0a788eee896ad76d4b17aaca3ba02a77d02d7c81dd5e58b14673bced9797532e37c7536be946811d56a4f2b9dd488e069bab478b751ed0876c324530c96dc8889d9260b7894425ba57015bd1fcb36f3981720e9ed1196efb7e4152c0ab581e5469535b7b7e833d3074de487c96ab36e52170864750bc5c2d3b922783c027c185eff5f01addbf300e45404bae66a0fe06f329497186c967ad62d0145a328d26e9b2680cd68310f2aede587f8a3f645f32a640c33d6b6b45a128951038d3ff0905c91f60eaf838a33b316b240ebfa825c8935555569740a40504f970a743542ff4f716155810e58ee733b865877bbcd161f9bae5b190a9a388fb43b591c8482114e5e7c30f26b62aae1bb1dd8c5c6074a012489b7c50d8a2ad2af50b17b0cd4e0ee4865b2b7589435d0fbe5eca4cd1466b4f91c996f8d5690e728ada92b4f2de591c237847369b0d0c11178e083523a03f8f355c5b696160907c9fa25faad7435373a0e267b4c6f000f5c0e1c493c1e442d21d763435c273a9b563dba4c9715414328362e5b5a50d570fbef03d1b5846157855dca4d429720252ee3636a14e8e561b842cd17eeec1ff9966777f4d715057626700f2a37f5bb1f1eb284063dda990e14ceb848e963bd26b52611c084de56aed9d0a5b9525d544887b86cf363302db6b99491be13ed472a39de6c4c18e4858114d78b32d3dc6e44c1f8941a41c3e3e55f2d61e81b233cd0545031fb2ad8b503534e084f9f89e966b90d00465b0c1814a2ab0f2c5dfbe7c73a8811ddffe5f097ca5ee39016dc070a9cd936081c3ef40896a04247faa896382fd6a80ffe6c6b991c6d20a900e7ed4cb2c5de93b020faab71e24e5c640ceaba82769dd00d44f1381f021bfc50d773774b2ad785be6ef1c092588607ab7dfca4ea81cb8ec5778f0c07a0fd804862d798954efbaaae3e0e4a7d80d65e9f9e3ca04aec033e9108710c82a22feeaecea3f40eb2623d76cc6baabbde37e75e1afcf903a67beeb99c3cb0168943c40eac4766592d52243c9d3d45fdeb7e81bc5331b85d429ed70343af505b50acfe449eb3642b7f71952e777fbc11d24fcc420eca43dcba9c9a5034ee57f1830418ac6545c62157dd61fbcb25470961ed9bd9d34cf028f9f8fad8a7855d79f8047326ae4c376e44fc5720ff3572091feff1f9054f3280e550e1c5225e8fb6f1b94ce233385a7378e33c920fbaba155d5f8c0bbbd9985a9b8ba49afa322f2539b74be69eef9a1b33f1aaa4ee3339adc1c9648086b86f6d37df949a2523eadd2bb8135e4c55254283bd0abcab0941438c2457312923e91185d25dd4a22701a043476c649896069a60d6b0a2d64fbb0aa91d7c4dbeddfff21afbae5bcae98d721f21840e98b65326bde303040aef54e634d49e14d42d33556d0f07a8adf4b2a3c828b128ec88609bb0aca3bfe8a557a328688bea548849dba36458aa33fd963c10fc87b1fd1dd90650b0da64f9430326a9cbed8c599bfaec43286240426a0f27af2b3fe93e2bc4b885ed5c3af66e4ef21bb628607dd88605da91053bb6804a499452b3ce575a013b250f92b5a917adbd18d9d4702f039cbaa5741e0557131df81dacef15e51282a56ae1d6a0a31ee4da24661547ce562a123d01e1809585fd889161d03087915538933febd38e3dba9b2f73a2cbf484750bfa93ab77284425ae6425254f1e75e6aee019828edf5da8f3eeafab795f53188d2830d3f5940e5ecd16a57e43c136192ac9a0ba0d5d8b7be60826dcf20b3d90e4f24cb88a8306e705d3b51cf0fc7cb2824107bd45b6e872437a26c85f658cc34caeef4dbc20e537f9c307175a8e48970c3de0eb1515dea97464084a92bee6217f724f7a66a1a9698c6a6dda99d3cfe5284e6764ff7d8867eaa630d7932ae67907475cf09fda56c9af9f19fab713d1f3f5776fcf8cbb62922c995094c288ab26cbd7cf5fd7a4010930b1317649b5e524f498076fd93aae1c7fe5a976c252e54b7c9e65ba8e360088ecdea79cb39405c46f0e9432e0b6178f1d68835ad58fca223a9984f51e220de4bc547c65e6045ef7edff2725ab31d259730de030d118b6c0822a94a47cb10e82e2ab3a864a68f96e5c7ed2e5b238ddbc20868b26050c2093410a5e3aef214868a7ae1b851947308024920cf96383d44a632a2af64624d58e4854aeec6f7cc888b58ae69b50f56c1734235f92140bebffe1073f54c6288e4ab207dc3cb5fea340c8a5e816d349021cdf6285437545f68f9e60f882beb707255227561002f4202c20136769c41b8b8229b3fb0ce94521f9e2082af44f4f6dada769d019f37a519eb319110281e061a1877ca234492ab727a30c9ecddfd5b0d1681cfa47b23339c5bbab1592a4ee279dc169ea90b0ec84f2949307080a8c1a0b9f0013cfe961006123602c41b22f90f5573a2c3aae25cfcb0d8628ec84e991099d620d3c7cbe4fda771fed0615e3ab5c3b640135579ba5d8a758b0725490830b9b6e60538b3826564d8256cbbd9651692680e621b91cebd3881b50e779adbc3c8ab83d8411a7b972ae984f7a14bc1b847e51e72dcbbd25bc7755365ffab41df94f74f75536225aa916867583160c41b90452c1e98a417a8948ef72da2210d9e71f1c2b0fd67c3d0c63538df97f2b79997659d4abd6fb6673a656dbc6cf40ded82118f1b73dde8d2"}}]}]}, 0x2e58}, 0x1, 0x0, 0x0, 0x8c0}, 0x8800)

05:13:22 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xffffffef}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1366.588604][T15581] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:22 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x3a00}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:22 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000140)={'batadv_slave_1\x00', <r2=>0x0})
bind$packet(r1, &(0x7f0000000180)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @random="18109310b2bf"}, 0x14)

05:13:22 executing program 4:
socketpair(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg$BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14}, 0x14}}, 0x0)

05:13:22 executing program 2:
r0 = add_key$keyring(&(0x7f0000000080), &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
add_key$fscrypt_v1(&(0x7f00000000c0), &(0x7f0000000100)={'fscrypt:', @desc4}, &(0x7f0000000140)={0x0, "827c405c50588a65229db62c86e6d42829953505f3a2cc0f2d7ddd6ad8f562b7b1f7e9fd1a33a9eb740e28f6f9956000"}, 0x48, r0)

05:13:22 executing program 1:
r0 = add_key$fscrypt_v1(&(0x7f00000000c0), &(0x7f0000000100)={'fscrypt:', @desc2}, &(0x7f0000000140)={0x0, "827c405c50588a650ac8349ce3597a5c73953505f3a2cc0f2d7ddd6ad8f562b7b162affd1a33925ef956b16bd7d6c9abbb190bea3ef359a9eb740e68f6f99560"}, 0x48, 0xfffffffffffffffd)
request_key(&(0x7f0000000000)='blacklist\x00', &(0x7f0000000040)={'syz', 0x1}, 0x0, r0)

05:13:22 executing program 2:
sendmsg$ETHTOOL_MSG_WOL_GET(0xffffffffffffffff, 0x0, 0x0)

05:13:22 executing program 4:
munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000)
mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0)

[ 1366.738417][T15593] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1366.774358][T15588] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1366.785334][T15588] CPU: 0 PID: 15588 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1366.797837][T15588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1366.807969][T15588] Call Trace:
[ 1366.811247][T15588]  <TASK>
[ 1366.814197][T15588]  dump_stack_lvl+0xd6/0x122
[ 1366.818815][T15588]  dump_stack+0x11/0x15
[ 1366.823004][T15588]  dump_header+0x98/0x430
[ 1366.827331][T15588]  oom_kill_process+0x100/0x540
[ 1366.832196][T15588]  out_of_memory+0x620/0x880
[ 1366.836786][T15588]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1366.842339][T15588]  mem_cgroup_oom+0x2e7/0x370
[ 1366.847064][T15588]  try_charge_memcg+0x717/0x9c0
[ 1366.851940][T15588]  ? __alloc_pages+0x199/0x340
[ 1366.856763][T15588]  charge_memcg+0x54/0x250
[ 1366.861256][T15588]  __mem_cgroup_charge+0x25/0xa0
[ 1366.866219][T15588]  wp_page_copy+0x209/0x1460
[ 1366.870840][T15588]  ? shrink_zones+0x525/0x5d0
[ 1366.875547][T15588]  ? preempt_count_add+0x5e/0xa0
[ 1366.880562][T15588]  do_wp_page+0x2dd/0x780
[ 1366.884933][T15588]  handle_mm_fault+0x5ef/0xa80
[ 1366.889707][T15588]  do_user_addr_fault+0x4a1/0x980
[ 1366.894797][T15588]  exc_page_fault+0x60/0x160
[ 1366.899527][T15588]  asm_exc_page_fault+0x22/0x30
[ 1366.904496][T15588] RIP: 0033:0x7fa69bfc5970
[ 1366.908909][T15588] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1366.928521][T15588] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1366.934709][T15588] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1366.942677][T15588] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1366.950729][T15588] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1366.958927][T15588] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1366.966953][T15588] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1366.974922][T15588]  ? __sock_create+0x24/0x4e0
[ 1366.979642][T15588]  </TASK>
[ 1366.990113][T15588] memory: usage 307200kB, limit 307200kB, failcnt 42627
[ 1366.997510][T15588] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1367.004806][T15588] Memory cgroup stats for /syz0:
[ 1367.005135][T15588] anon 401408
[ 1367.005135][T15588] file 10457088
[ 1367.005135][T15588] kernel 303710208
[ 1367.005135][T15588] kernel_stack 81920
[ 1367.005135][T15588] pagetables 229376
[ 1367.005135][T15588] sec_pagetables 0
[ 1367.005135][T15588] percpu 9172448
[ 1367.005135][T15588] sock 0
[ 1367.005135][T15588] vmalloc 8192
[ 1367.005135][T15588] shmem 10457088
[ 1367.005135][T15588] file_mapped 159744
[ 1367.005135][T15588] file_dirty 0
[ 1367.005135][T15588] file_writeback 0
[ 1367.005135][T15588] swapcached 0
[ 1367.005135][T15588] inactive_anon 401408
[ 1367.005135][T15588] active_anon 10457088
[ 1367.005135][T15588] inactive_file 0
[ 1367.005135][T15588] active_file 0
[ 1367.005135][T15588] unevictable 0
[ 1367.005135][T15588] slab_reclaimable 39392
[ 1367.005135][T15588] slab_unreclaimable 294095528
[ 1367.005135][T15588] slab 294134920
[ 1367.005135][T15588] workingset_refault_anon 0
[ 1367.005135][T15588] workingset_refault_file 2
[ 1367.005135][T15588] workingset_activate_anon 0
[ 1367.105169][T15588] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15588,uid=0
[ 1367.120466][T15588] Memory cgroup out of memory: Killed process 15588 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1367.157222][T15613] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:23 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:23 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x17, 0x7fffffff, 0x0, 0xfffffffe, 0x0, 0x1}, 0x48)

05:13:23 executing program 4:
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)

05:13:23 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14}, 0x14}}, 0x0)
sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f0000000440)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000400)={&(0x7f0000000300)={0x14, 0x0, 0x1}, 0x14}}, 0x0)

05:13:23 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfffffff0}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:23 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x3a03}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:23 executing program 4:
r0 = syz_clone(0x52000000, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)="db3009136ada8e196b1058908fcef30dc4f23cd47e50f2a6089d8ad9cce309bbc81f903495a7c6f0539d1401f2bf60f97b8f5c9e39628359fc983a55536a8b92a67b72d32eed6642f652d46819e6997724c53396eb501ea400b2c37b351b2e9babcbb3717763785aed0d0c76")
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000280)=r0, 0x12)

05:13:23 executing program 1:
pipe2(0x0, 0x0)
syz_clone(0x52000000, 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000200)="db3009136ada8e196b1058908fcef30dc4f23cd47e50f2a6089d8ad9cce309bbc8")

05:13:23 executing program 2:
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x8901, 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000200)={'syztnl2\x00', 0x0})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000440)={'ip6gre0\x00', &(0x7f00000003c0)={'syztnl2\x00', 0x0, 0x4, 0x3f, 0x6, 0xef8, 0x18, @mcast1, @local, 0x80, 0x700, 0x8000, 0x495}})

[ 1367.272477][T15621] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1367.313476][T15619] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1367.324993][T15619] CPU: 0 PID: 15619 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1367.337420][T15619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1367.347507][T15619] Call Trace:
[ 1367.350866][T15619]  <TASK>
[ 1367.353797][T15619]  dump_stack_lvl+0xd6/0x122
[ 1367.358406][T15619]  dump_stack+0x11/0x15
[ 1367.362623][T15619]  dump_header+0x98/0x430
[ 1367.366957][T15619]  oom_kill_process+0x100/0x540
[ 1367.371861][T15619]  out_of_memory+0x620/0x880
[ 1367.376448][T15619]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1367.382001][T15619]  mem_cgroup_oom+0x2e7/0x370
[ 1367.386703][T15619]  try_charge_memcg+0x717/0x9c0
[ 1367.391571][T15619]  ? __alloc_pages+0x199/0x340
[ 1367.396452][T15619]  charge_memcg+0x54/0x250
[ 1367.401007][T15619]  __mem_cgroup_charge+0x25/0xa0
[ 1367.405955][T15619]  wp_page_copy+0x209/0x1460
[ 1367.410620][T15619]  ? preempt_count_add+0x5e/0xa0
[ 1367.415581][T15619]  do_wp_page+0x2dd/0x780
[ 1367.419934][T15619]  handle_mm_fault+0x5ef/0xa80
[ 1367.424711][T15619]  do_user_addr_fault+0x4a1/0x980
[ 1367.429830][T15619]  exc_page_fault+0x60/0x160
[ 1367.434424][T15619]  asm_exc_page_fault+0x22/0x30
[ 1367.439401][T15619] RIP: 0033:0x7fa69bfc5970
[ 1367.443811][T15619] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1367.463545][T15619] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1367.469609][T15619] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1367.477586][T15619] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1367.485619][T15619] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1367.493698][T15619] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1367.501884][T15619] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1367.509893][T15619]  ? __sock_create+0x24/0x4e0
[ 1367.514582][T15619]  </TASK>
[ 1367.524882][T15619] memory: usage 307200kB, limit 307200kB, failcnt 42712
[ 1367.531863][T15619] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1367.538728][T15619] Memory cgroup stats for /syz0:
[ 1367.539097][T15619] anon 401408
[ 1367.539097][T15619] file 10457088
[ 1367.539097][T15619] kernel 303714304
[ 1367.539097][T15619] kernel_stack 81920
[ 1367.539097][T15619] pagetables 229376
[ 1367.539097][T15619] sec_pagetables 0
[ 1367.539097][T15619] percpu 9172448
[ 1367.539097][T15619] sock 0
[ 1367.539097][T15619] vmalloc 8192
[ 1367.539097][T15619] shmem 10457088
[ 1367.539097][T15619] file_mapped 159744
[ 1367.539097][T15619] file_dirty 0
[ 1367.539097][T15619] file_writeback 0
[ 1367.539097][T15619] swapcached 0
[ 1367.539097][T15619] inactive_anon 393216
[ 1367.539097][T15619] active_anon 10457088
[ 1367.539097][T15619] inactive_file 0
[ 1367.539097][T15619] active_file 0
[ 1367.539097][T15619] unevictable 0
[ 1367.539097][T15619] slab_reclaimable 39392
05:13:23 executing program 2:
r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x600000, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x1a)
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r0}, 0x8)
pipe2(&(0x7f0000000000)={<r2=>0xffffffffffffffff}, 0x0)
syz_open_pts(r2, 0x0)
syz_open_pts(0xffffffffffffffff, 0x0)
r3 = syz_clone(0x52000000, &(0x7f0000000100)="6f59b1918986c4a52b569654f18da67caef2b50a363047a24b67e8ffb305647329d061e8861909266f40676d93198ea523884d1b05b5981d75e1dff5", 0x3c, &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200)="db3009136ada8e196b1058908fcef30dc4f23cd47e50f2a6089d8ad9cce309bbc81f903495a7c6f0539d1401f2bf60f97b8f5c9e39628359fc983a55536a8b92a67b72d32eed6642f652d46819e6997724c53396eb501ea400b2c37b351b2e9babcbb3717763785aed0d0c76e2050e9c6f8bf8e0e1cf86b5d8f3f5")
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000280)=r3, 0x12)
ioctl$TIOCGRS485(r1, 0x542e, 0x0)

[ 1367.539097][T15619] slab_unreclaimable 294100856
[ 1367.539097][T15619] slab 294140248
[ 1367.539097][T15619] workingset_refault_anon 0
[ 1367.539097][T15619] workingset_refault_file 2
[ 1367.539097][T15619] workingset_activate_anon 0
[ 1367.634659][T15619] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15619,uid=0
05:13:23 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfffffffc}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1367.649924][T15619] Memory cgroup out of memory: Killed process 15619 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1367.677090][T15634] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:23 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x3f00}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1367.762858][T15648] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1367.774060][T15648] CPU: 0 PID: 15648 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1367.786534][T15648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1367.796589][T15648] Call Trace:
[ 1367.799920][T15648]  <TASK>
[ 1367.802853][T15648]  dump_stack_lvl+0xd6/0x122
[ 1367.807505][T15648]  dump_stack+0x11/0x15
[ 1367.811664][T15648]  dump_header+0x98/0x430
[ 1367.816000][T15648]  oom_kill_process+0x100/0x540
[ 1367.820854][T15648]  out_of_memory+0x620/0x880
[ 1367.825675][T15648]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1367.831254][T15648]  mem_cgroup_oom+0x2e7/0x370
[ 1367.835948][T15648]  try_charge_memcg+0x717/0x9c0
[ 1367.840810][T15648]  ? __alloc_pages+0x199/0x340
[ 1367.845591][T15648]  charge_memcg+0x54/0x250
[ 1367.850017][T15648]  __mem_cgroup_charge+0x25/0xa0
[ 1367.854968][T15648]  wp_page_copy+0x209/0x1460
[ 1367.859575][T15648]  ? shrink_zones+0x525/0x5d0
[ 1367.864258][T15648]  ? preempt_count_add+0x5e/0xa0
[ 1367.869224][T15648]  do_wp_page+0x2dd/0x780
[ 1367.873641][T15648]  handle_mm_fault+0x5ef/0xa80
[ 1367.878418][T15648]  do_user_addr_fault+0x4a1/0x980
[ 1367.883491][T15648]  exc_page_fault+0x60/0x160
[ 1367.888124][T15648]  asm_exc_page_fault+0x22/0x30
[ 1367.893061][T15648] RIP: 0033:0x7fa69bfc5970
[ 1367.897608][T15648] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1367.917225][T15648] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1367.923356][T15648] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1367.931348][T15648] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1367.939373][T15648] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1367.947344][T15648] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1367.955406][T15648] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1367.963376][T15648]  ? __sock_create+0x24/0x4e0
[ 1367.968090][T15648]  </TASK>
[ 1367.971182][T15648] memory: usage 307200kB, limit 307200kB, failcnt 42814
[ 1367.978225][T15648] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1367.985089][T15648] Memory cgroup stats for /syz0:
[ 1367.985457][T15648] anon 401408
[ 1367.985457][T15648] file 10457088
[ 1367.985457][T15648] kernel 303714304
[ 1367.985457][T15648] kernel_stack 81920
[ 1367.985457][T15648] pagetables 229376
[ 1367.985457][T15648] sec_pagetables 0
[ 1367.985457][T15648] percpu 9172448
[ 1367.985457][T15648] sock 0
[ 1367.985457][T15648] vmalloc 8192
[ 1367.985457][T15648] shmem 10457088
[ 1367.985457][T15648] file_mapped 159744
[ 1367.985457][T15648] file_dirty 0
[ 1367.985457][T15648] file_writeback 0
[ 1367.985457][T15648] swapcached 0
[ 1367.985457][T15648] inactive_anon 380928
[ 1367.985457][T15648] active_anon 10457088
[ 1367.985457][T15648] inactive_file 0
[ 1367.985457][T15648] active_file 0
[ 1367.985457][T15648] unevictable 0
[ 1367.985457][T15648] slab_reclaimable 39392
[ 1367.985457][T15648] slab_unreclaimable 294100856
[ 1367.985457][T15648] slab 294140248
[ 1367.985457][T15648] workingset_refault_anon 0
[ 1367.985457][T15648] workingset_refault_file 2
[ 1367.985457][T15648] workingset_activate_anon 0
[ 1368.081111][T15648] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15648,uid=0
[ 1368.096412][T15648] Memory cgroup out of memory: Killed process 15648 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:23 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:23 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xfffffffe}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1368.167617][T15653] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:24 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x4000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1368.283894][T15657] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1368.294819][T15657] CPU: 1 PID: 15657 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1368.307314][T15657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1368.317408][T15657] Call Trace:
[ 1368.320684][T15657]  <TASK>
[ 1368.323665][T15657]  dump_stack_lvl+0xd6/0x122
[ 1368.328378][T15657]  dump_stack+0x11/0x15
[ 1368.332535][T15657]  dump_header+0x98/0x430
[ 1368.336872][T15657]  oom_kill_process+0x100/0x540
[ 1368.341723][T15657]  out_of_memory+0x620/0x880
[ 1368.346327][T15657]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1368.351879][T15657]  mem_cgroup_oom+0x2e7/0x370
[ 1368.356558][T15657]  try_charge_memcg+0x717/0x9c0
[ 1368.361475][T15657]  ? __alloc_pages+0x199/0x340
[ 1368.366238][T15657]  charge_memcg+0x54/0x250
[ 1368.370674][T15657]  __mem_cgroup_charge+0x25/0xa0
[ 1368.375611][T15657]  wp_page_copy+0x209/0x1460
[ 1368.380222][T15657]  ? shrink_zones+0x525/0x5d0
[ 1368.384897][T15657]  ? preempt_count_add+0x5e/0xa0
[ 1368.389846][T15657]  do_wp_page+0x2dd/0x780
[ 1368.394212][T15657]  handle_mm_fault+0x5ef/0xa80
[ 1368.399058][T15657]  do_user_addr_fault+0x4a1/0x980
[ 1368.404088][T15657]  exc_page_fault+0x60/0x160
[ 1368.408697][T15657]  asm_exc_page_fault+0x22/0x30
[ 1368.413578][T15657] RIP: 0033:0x7fa69bfc5970
[ 1368.418105][T15657] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1368.437710][T15657] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1368.443768][T15657] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1368.451735][T15657] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1368.459709][T15657] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1368.467675][T15657] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1368.475648][T15657] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1368.483753][T15657]  ? __sock_create+0x24/0x4e0
[ 1368.488435][T15657]  </TASK>
[ 1368.498489][T15657] memory: usage 307200kB, limit 307200kB, failcnt 42896
[ 1368.505452][T15657] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1368.512377][T15657] Memory cgroup stats for /syz0:
[ 1368.512666][T15657] anon 401408
[ 1368.512666][T15657] file 10457088
[ 1368.512666][T15657] kernel 303714304
[ 1368.512666][T15657] kernel_stack 81920
[ 1368.512666][T15657] pagetables 229376
[ 1368.512666][T15657] sec_pagetables 0
[ 1368.512666][T15657] percpu 9172448
[ 1368.512666][T15657] sock 0
[ 1368.512666][T15657] vmalloc 8192
[ 1368.512666][T15657] shmem 10457088
[ 1368.512666][T15657] file_mapped 159744
[ 1368.512666][T15657] file_dirty 0
[ 1368.512666][T15657] file_writeback 0
[ 1368.512666][T15657] swapcached 0
[ 1368.512666][T15657] inactive_anon 401408
[ 1368.512666][T15657] active_anon 10457088
[ 1368.512666][T15657] inactive_file 0
[ 1368.512666][T15657] active_file 0
[ 1368.512666][T15657] unevictable 0
[ 1368.512666][T15657] slab_reclaimable 39392
[ 1368.512666][T15657] slab_unreclaimable 294100856
[ 1368.512666][T15657] slab 294140248
[ 1368.512666][T15657] workingset_refault_anon 0
[ 1368.512666][T15657] workingset_refault_file 2
[ 1368.512666][T15657] workingset_activate_anon 0
[ 1368.608213][T15657] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15657,uid=0
05:13:24 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000100)=0x80001, 0x4)

05:13:24 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
connect$pppl2tp(r0, &(0x7f00000001c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private1}}}, 0x3a)

05:13:24 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:24 executing program 4:
r0 = socket(0x18, 0x0, 0x1)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000300), r0)

[ 1368.623635][T15657] Memory cgroup out of memory: Killed process 15657 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1368.675441][T15668] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1368.750358][T15681] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:25 executing program 1:
pipe2(0x0, 0x0)
syz_clone(0x52000000, 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000200)="db3009136ada8e196b1058908fcef30dc4f23cd47e50f2a6089d8ad9cce309bbc8")

05:13:25 executing program 4:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PPPIOCGMRU(r0, 0x8907, 0x0)

05:13:25 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x4788}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:25 executing program 2:
mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[], [{@defcontext={'defcontext', 0x3d, 'root'}}]}})

05:13:25 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:25 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:25 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), r0)

05:13:25 executing program 1:
pipe2(0x0, 0x0)
syz_clone(0x52000000, 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000200)="db3009136ada8e196b1058908fcef30dc4f23cd47e50f2a6089d8ad9cce309bbc8")

05:13:25 executing program 4:
mount$9p_fd(0x20000000, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x0, 0x0)

05:13:25 executing program 2:
prctl$PR_SET_VMA(0x27, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)

[ 1369.497484][T15704] 9pnet_virtio: no channels available for device 
[ 1369.504562][T15706] SELinux: security_context_str_to_sid (root) failed with errno=-22
[ 1369.526717][T15691] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
05:13:25 executing program 4:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x7d697fbe2cf61839, 0xffffffffffffffff, 0x10000000)

05:13:25 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$inet_udp_int(r0, 0x88, 0xb, 0x0, &(0x7f0000000040))

[ 1369.537648][T15691] CPU: 0 PID: 15691 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1369.550284][T15691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1369.560349][T15691] Call Trace:
[ 1369.563636][T15691]  <TASK>
[ 1369.566563][T15691]  dump_stack_lvl+0xd6/0x122
[ 1369.571242][T15691]  dump_stack+0x11/0x15
[ 1369.575531][T15691]  dump_header+0x98/0x430
[ 1369.579868][T15691]  oom_kill_process+0x100/0x540
[ 1369.584793][T15691]  out_of_memory+0x620/0x880
[ 1369.589389][T15691]  mem_cgroup_out_of_memory+0x13a/0x180
05:13:25 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x2, 0x0, 0x0)

[ 1369.594971][T15691]  mem_cgroup_oom+0x2e7/0x370
[ 1369.599654][T15691]  try_charge_memcg+0x717/0x9c0
[ 1369.604540][T15691]  ? __alloc_pages+0x199/0x340
[ 1369.609305][T15691]  charge_memcg+0x54/0x250
[ 1369.613830][T15691]  __mem_cgroup_charge+0x25/0xa0
[ 1369.618845][T15691]  wp_page_copy+0x209/0x1460
[ 1369.623496][T15691]  ? shrink_zones+0x525/0x5d0
[ 1369.628192][T15691]  ? preempt_count_add+0x5e/0xa0
[ 1369.633163][T15691]  do_wp_page+0x2dd/0x780
[ 1369.637554][T15691]  handle_mm_fault+0x5ef/0xa80
[ 1369.642332][T15691]  do_user_addr_fault+0x4a1/0x980
[ 1369.644605][T15697] validate_nla: 24 callbacks suppressed
[ 1369.644651][T15697] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1369.647354][T15691]  exc_page_fault+0x60/0x160
[ 1369.653652][T15697] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1369.660926][T15691]  asm_exc_page_fault+0x22/0x30
[ 1369.666214][T15697] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1369.673583][T15691] RIP: 0033:0x7fa69bfc5970
05:13:25 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$inet6_udp_int(r0, 0x11, 0x1, 0x0, &(0x7f0000000040))

[ 1369.673599][T15691] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1369.673616][T15691] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1369.673666][T15691] RAX: 00000000db29429d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1369.673743][T15691] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a2b5e
[ 1369.673755][T15691] RBP: 00000000db29429d R08: 000000000000029d R09: 00000000db2942a1
05:13:25 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x4800}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1369.673767][T15691] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1369.673779][T15691] R13: 0000000000000001 R14: 0000000000000003 R15: ffffffff83a0cf1c
[ 1369.673792][T15691]  ? __sock_create+0xbc/0x4e0
[ 1369.673817][T15691]  </TASK>
[ 1369.680461][T15691] memory: usage 307200kB, limit 307200kB, failcnt 42971
[ 1369.687769][T15697] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1369.691498][T15691] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1369.786912][T15691] Memory cgroup stats for /syz0:
[ 1369.787154][T15691] anon 405504
[ 1369.787154][T15691] file 10457088
[ 1369.787154][T15691] kernel 303710208
[ 1369.787154][T15691] kernel_stack 81920
[ 1369.787154][T15691] pagetables 229376
[ 1369.787154][T15691] sec_pagetables 0
[ 1369.787154][T15691] percpu 9172448
[ 1369.787154][T15691] sock 0
[ 1369.787154][T15691] vmalloc 8192
[ 1369.787154][T15691] shmem 10457088
[ 1369.787154][T15691] file_mapped 159744
[ 1369.787154][T15691] file_dirty 0
[ 1369.787154][T15691] file_writeback 0
[ 1369.787154][T15691] swapcached 0
[ 1369.787154][T15691] inactive_anon 405504
[ 1369.787154][T15691] active_anon 10457088
[ 1369.787154][T15691] inactive_file 0
[ 1369.787154][T15691] active_file 0
[ 1369.787154][T15691] unevictable 0
[ 1369.787154][T15691] slab_reclaimable 44896
[ 1369.787154][T15691] slab_unreclaimable 294094520
[ 1369.787154][T15691] slab 294139416
[ 1369.787154][T15691] workingset_refault_anon 0
[ 1369.787154][T15691] workingset_refault_file 2
[ 1369.787154][T15691] workingset_activate_anon 0
[ 1369.882836][T15691] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15691,uid=0
05:13:25 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x2}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:25 executing program 4:
prctl$PR_SET_VMA(0x29, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)

[ 1369.898180][T15691] Memory cgroup out of memory: Killed process 15691 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1369.976065][T15725] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1369.984895][T15725] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1369.992979][T15725] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1369.996202][T15733] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1370.001034][T15725] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1370.020778][T15733] CPU: 0 PID: 15733 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1370.033191][T15733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1370.043246][T15733] Call Trace:
[ 1370.046654][T15733]  <TASK>
[ 1370.049583][T15733]  dump_stack_lvl+0xd6/0x122
[ 1370.054201][T15733]  dump_stack+0x11/0x15
[ 1370.058364][T15733]  dump_header+0x98/0x430
[ 1370.062721][T15733]  oom_kill_process+0x100/0x540
[ 1370.067651][T15733]  out_of_memory+0x620/0x880
[ 1370.072244][T15733]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1370.077873][T15733]  mem_cgroup_oom+0x2e7/0x370
[ 1370.082552][T15733]  try_charge_memcg+0x717/0x9c0
[ 1370.087487][T15733]  ? avc_has_perm_noaudit+0x1c0/0x270
[ 1370.092872][T15733]  obj_cgroup_charge+0x171/0x2b0
[ 1370.097872][T15733]  memcg_slab_pre_alloc_hook+0xf7/0x170
[ 1370.103426][T15733]  ? sock_alloc_inode+0x2d/0xa0
[ 1370.108316][T15733]  kmem_cache_alloc_lru+0x75/0x2a0
[ 1370.113464][T15733]  sock_alloc_inode+0x2d/0xa0
[ 1370.118159][T15733]  ? sockfs_init_fs_context+0x70/0x70
[ 1370.123691][T15733]  alloc_inode+0x38/0x150
[ 1370.128022][T15733]  new_inode_pseudo+0x13/0x60
[ 1370.132716][T15733]  __sock_create+0x122/0x4e0
[ 1370.137381][T15733]  __sys_socket+0x9c/0x220
[ 1370.141815][T15733]  __x64_sys_socket+0x3b/0x50
[ 1370.146500][T15733]  do_syscall_64+0x2b/0x70
[ 1370.150929][T15733]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1370.156877][T15733] RIP: 0033:0x7fa69c0185a9
[ 1370.161292][T15733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1370.180948][T15733] RSP: 002b:00007fa69b38c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1370.189364][T15733] RAX: ffffffffffffffda RBX: 00007fa69c138f80 RCX: 00007fa69c0185a9
[ 1370.197341][T15733] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000010
[ 1370.205318][T15733] RBP: 00007fa69c0737b0 R08: 0000000000000000 R09: 0000000000000000
[ 1370.213294][T15733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1370.221336][T15733] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1370.229315][T15733]  </TASK>
[ 1370.232358][T15733] memory: usage 307188kB, limit 307200kB, failcnt 43041
[ 1370.239296][T15733] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1370.246157][T15733] Memory cgroup stats for /syz0:
[ 1370.246419][T15733] anon 389120
[ 1370.246419][T15733] file 10457088
[ 1370.246419][T15733] kernel 303714304
[ 1370.246419][T15733] kernel_stack 81920
[ 1370.246419][T15733] pagetables 229376
[ 1370.246419][T15733] sec_pagetables 0
[ 1370.246419][T15733] percpu 9172448
[ 1370.246419][T15733] sock 0
[ 1370.246419][T15733] vmalloc 8192
[ 1370.246419][T15733] shmem 10457088
[ 1370.246419][T15733] file_mapped 159744
[ 1370.246419][T15733] file_dirty 0
[ 1370.246419][T15733] file_writeback 0
[ 1370.246419][T15733] swapcached 0
[ 1370.246419][T15733] inactive_anon 385024
[ 1370.246419][T15733] active_anon 10457088
[ 1370.246419][T15733] inactive_file 0
[ 1370.246419][T15733] active_file 0
[ 1370.246419][T15733] unevictable 0
[ 1370.246419][T15733] slab_reclaimable 48600
[ 1370.246419][T15733] slab_unreclaimable 294095576
05:13:26 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:26 executing program 4:
syz_clone(0xe69503aa6f464c9, 0x0, 0x0, 0x0, 0x0, 0x0)

[ 1370.246419][T15733] slab 294144176
[ 1370.246419][T15733] workingset_refault_anon 0
[ 1370.246419][T15733] workingset_refault_file 2
[ 1370.246419][T15733] workingset_activate_anon 0
[ 1370.342309][T15733] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15731,uid=0
[ 1370.357650][T15733] Memory cgroup out of memory: Killed process 15731 (syz-executor.0) total-vm:46468kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:26 executing program 1:
pipe2(0x0, 0x0)
syz_clone(0x52000000, 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000200)="db3009136ada8e196b1058908fcef30dc4f23cd47e50f2a6089d8ad9cce309bbc8")

05:13:26 executing program 2:
syz_genetlink_get_family_id$wireguard(&(0x7f0000000000), 0xffffffffffffffff)
accept4$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)

05:13:26 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x4888}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:26 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x3}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:26 executing program 2:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
recvfrom(r0, 0x0, 0x0, 0x42, 0x0, 0x0)

[ 1370.488681][T15745] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1370.499536][T15745] CPU: 0 PID: 15745 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1370.511970][T15745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1370.522097][T15745] Call Trace:
[ 1370.525491][T15745]  <TASK>
[ 1370.528419][T15745]  dump_stack_lvl+0xd6/0x122
[ 1370.533029][T15745]  dump_stack+0x11/0x15
[ 1370.537250][T15745]  dump_header+0x98/0x430
[ 1370.541579][T15745]  oom_kill_process+0x100/0x540
[ 1370.546495][T15745]  out_of_memory+0x620/0x880
[ 1370.551147][T15745]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1370.556699][T15745]  mem_cgroup_oom+0x2e7/0x370
[ 1370.561525][T15745]  try_charge_memcg+0x717/0x9c0
[ 1370.566602][T15745]  ? __alloc_pages+0x199/0x340
[ 1370.571422][T15745]  charge_memcg+0x54/0x250
[ 1370.575903][T15745]  __mem_cgroup_charge+0x25/0xa0
[ 1370.580849][T15745]  wp_page_copy+0x209/0x1460
[ 1370.585507][T15745]  ? preempt_count_add+0x5e/0xa0
[ 1370.590462][T15745]  do_wp_page+0x2dd/0x780
[ 1370.594808][T15745]  handle_mm_fault+0x5ef/0xa80
[ 1370.599582][T15745]  do_user_addr_fault+0x4a1/0x980
[ 1370.604619][T15745]  exc_page_fault+0x60/0x160
[ 1370.609290][T15745]  asm_exc_page_fault+0x22/0x30
[ 1370.614216][T15745] RIP: 0033:0x7fa69bfc5970
[ 1370.618649][T15745] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1370.638350][T15745] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1370.644425][T15745] RAX: 000000004310b93c RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1370.652402][T15745] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000008e03449
[ 1370.660437][T15745] RBP: 000000004310b93c R08: 000000000000193c R09: 000000004310b940
[ 1370.668501][T15745] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1370.676589][T15745] R13: 0000000000000001 R14: 0000000000000005 R15: ffffffff818f93bc
[ 1370.684560][T15745]  ? selinux_socket_create+0x2c/0x180
[ 1370.689940][T15745]  </TASK>
[ 1370.700556][T15745] memory: usage 307200kB, limit 307200kB, failcnt 43167
[ 1370.707519][T15745] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1370.711121][T15744] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1370.714376][T15745] Memory cgroup stats for /syz0:
[ 1370.714749][T15745] anon 409600
[ 1370.714749][T15745] file 10457088
05:13:26 executing program 4:
add_key$fscrypt_v1(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0xffffffffffffffff)
add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440), &(0x7f0000000480)={0x0, "b77982f3f1ea3d781698e1563188d54d0a2665598535a8cfc8905a7b4ad66a82e16b792563df864d09b9bedb3228a675d547279b10f224fc5d042435b8d604bc"}, 0x48, 0xfffffffffffffffd)

[ 1370.714749][T15745] kernel 303693824
[ 1370.714749][T15745] kernel_stack 81920
[ 1370.714749][T15745] pagetables 229376
[ 1370.714749][T15745] sec_pagetables 0
[ 1370.714749][T15745] percpu 9172448
[ 1370.714749][T15745] sock 0
[ 1370.714749][T15745] vmalloc 8192
[ 1370.714749][T15745] shmem 10457088
[ 1370.714749][T15745] file_mapped 159744
[ 1370.714749][T15745] file_dirty 0
[ 1370.714749][T15745] file_writeback 0
[ 1370.714749][T15745] swapcached 0
[ 1370.714749][T15745] inactive_anon 409600
[ 1370.714749][T15745] active_anon 10457088
[ 1370.714749][T15745] inactive_file 0
05:13:26 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x4}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:26 executing program 2:
add_key$fscrypt_v1(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0xffffffffffffffff)
request_key(&(0x7f0000000240)='user\x00', &(0x7f0000000280)={'syz', 0x2}, 0x0, 0xfffffffffffffffc)

[ 1370.714749][T15745] active_file 0
[ 1370.714749][T15745] unevictable 0
[ 1370.714749][T15745] slab_reclaimable 39392
[ 1370.714749][T15745] slab_unreclaimable 294087896
[ 1370.714749][T15745] slab 294127288
[ 1370.714749][T15745] workingset_refault_anon 0
[ 1370.714749][T15745] workingset_refault_file 2
[ 1370.714749][T15745] workingset_activate_anon 0
[ 1370.714799][T15745] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15745,uid=0
[ 1370.714930][T15745] Memory cgroup out of memory: Killed process 15745 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1370.859550][T15744] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:13:26 executing program 4:
mmap$IORING_OFF_SQES(&(0x7f0000fef000/0x11000)=nil, 0x11000, 0x0, 0x1072, 0xffffffffffffffff, 0x10000000)

[ 1370.888188][T15758] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1370.900259][T15758] CPU: 1 PID: 15758 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1370.912747][T15758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1370.922841][T15758] Call Trace:
[ 1370.926117][T15758]  <TASK>
[ 1370.929037][T15758]  dump_stack_lvl+0xd6/0x122
[ 1370.933671][T15758]  dump_stack+0x11/0x15
[ 1370.937823][T15758]  dump_header+0x98/0x430
[ 1370.942185][T15758]  oom_kill_process+0x100/0x540
[ 1370.947050][T15758]  out_of_memory+0x620/0x880
[ 1370.951635][T15758]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1370.957181][T15758]  mem_cgroup_oom+0x2e7/0x370
[ 1370.961930][T15758]  try_charge_memcg+0x717/0x9c0
[ 1370.966773][T15758]  ? __alloc_pages+0x199/0x340
[ 1370.971533][T15758]  charge_memcg+0x54/0x250
[ 1370.975988][T15758]  __mem_cgroup_charge+0x25/0xa0
[ 1370.980920][T15758]  wp_page_copy+0x209/0x1460
[ 1370.985570][T15758]  do_wp_page+0x2dd/0x780
[ 1370.989918][T15758]  handle_mm_fault+0x5ef/0xa80
[ 1370.994706][T15758]  do_user_addr_fault+0x4a1/0x980
[ 1370.999726][T15758]  exc_page_fault+0x60/0x160
[ 1371.004305][T15758]  asm_exc_page_fault+0x22/0x30
[ 1371.009245][T15758] RIP: 0033:0x7fa69bfc333d
[ 1371.013648][T15758] Code: e0 04 8b 44 02 08 85 c0 0f 85 3e 0a 00 00 31 c0 b9 40 42 0f 00 ba 81 00 00 00 c7 06 01 00 00 00 bf ca 00 00 00 e8 53 52 05 00 <83> 05 44 76 17 00 01 80 bc 24 d8 00 00 00 00 0f b6 05 57 f0 c9 00
[ 1371.033252][T15758] RSP: 002b:00007ffd8ac4ff00 EFLAGS: 00010207
[ 1371.039307][T15758] RAX: 0000000000000001 RBX: 00007fa69c138f8c RCX: 00007fa69c0185a9
[ 1371.047269][T15758] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa69c138f88
[ 1371.055254][T15758] RBP: 00007fa69c138f80 R08: 00007fa69b38c700 R09: 0000000000000000
[ 1371.063263][T15758] R10: 00007fa69b38c700 R11: 0000000000000246 R12: 00007fa69c138f8c
[ 1371.071222][T15758] R13: 00007fa69bb8d060 R14: 00007fa69c138f80 R15: 0000000000000000
[ 1371.079187][T15758]  </TASK>
[ 1371.089373][T15758] memory: usage 307180kB, limit 307200kB, failcnt 43254
[ 1371.096359][T15758] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1371.103232][T15758] Memory cgroup stats for /syz0:
[ 1371.103526][T15758] anon 385024
[ 1371.103526][T15758] file 10457088
[ 1371.103526][T15758] kernel 303710208
[ 1371.103526][T15758] kernel_stack 81920
[ 1371.103526][T15758] pagetables 229376
[ 1371.103526][T15758] sec_pagetables 0
[ 1371.103526][T15758] percpu 9172448
[ 1371.103526][T15758] sock 0
[ 1371.103526][T15758] vmalloc 8192
05:13:26 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x4a00}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1371.103526][T15758] shmem 10457088
[ 1371.103526][T15758] file_mapped 159744
[ 1371.103526][T15758] file_dirty 0
[ 1371.103526][T15758] file_writeback 0
[ 1371.103526][T15758] swapcached 0
[ 1371.103526][T15758] inactive_anon 385024
[ 1371.103526][T15758] active_anon 10457088
[ 1371.103526][T15758] inactive_file 0
[ 1371.103526][T15758] active_file 0
[ 1371.103526][T15758] unevictable 0
[ 1371.103526][T15758] slab_reclaimable 44896
[ 1371.103526][T15758] slab_unreclaimable 294094520
[ 1371.103526][T15758] slab 294139416
[ 1371.103526][T15758] workingset_refault_anon 0
[ 1371.103526][T15758] workingset_refault_file 2
[ 1371.103526][T15758] workingset_activate_anon 0
[ 1371.191620][T15764] __nla_validate_parse: 6 callbacks suppressed
[ 1371.191634][T15764] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1371.199038][T15758] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15758,uid=0
05:13:27 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:27 executing program 2:
add_key$fscrypt_v1(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f00000001c0)={'fscrypt:', @desc3}, &(0x7f0000000240)={0x0, "b47ade12fbcf393bdfa0fa8f939ddd93f82ebaafd13a879fe1cc333dbad3d2eda0ed5b10434c3c01ca76ba5c9e548ade46617f09b8a23ab6374bc8b838daf574"}, 0x48, 0xfffffffffffffffc)
add_key(&(0x7f0000000080)='big_key\x00', 0x0, 0x0, 0x0, r0)

05:13:27 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x5}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1371.229779][T15758] Memory cgroup out of memory: Killed process 15758 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:27 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
recvfrom$packet(r0, &(0x7f0000000080)=""/32, 0x5e, 0x0, 0x0, 0x0)

05:13:27 executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x8901, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000000)={'ip6gre0\x00', 0x0, 0x4, 0x8, 0x20, 0x99, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x41}, 0x7, 0x10, 0x7, 0x9}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000300)={'ip6tnl0\x00', &(0x7f0000000280)={'syztnl0\x00', 0x0, 0x29, 0x0, 0x0, 0x0, 0x0, @empty, @empty}})
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0}, &(0x7f0000000140)=0x14)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000200)={'syztnl2\x00', &(0x7f0000000180)={'syztnl0\x00', r2, 0x2f, 0x6, 0x0, 0x0, 0x10, @remote, @dev={0xfe, 0x80, '\x00', 0x31}, 0x80, 0x28, 0x7, 0x10001}})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000440)={'ip6gre0\x00', &(0x7f00000003c0)={'syztnl2\x00', 0x0, 0x4, 0x3f, 0x6, 0xef8, 0x18, @mcast1, @local, 0x80, 0x700, 0x8000, 0x495}})

05:13:27 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, 0x0)

05:13:27 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x0, 0x4}, 0x14}}, 0x0)

05:13:27 executing program 1:
prctl$PR_SET_MM(0x23, 0xd, &(0x7f0000ffd000/0x3000)=nil)

05:13:27 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x10, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

[ 1371.328850][T15765] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1371.364682][T15779] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
05:13:27 executing program 1:
mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4)
munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000)

[ 1371.375564][T15779] CPU: 0 PID: 15779 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1371.388027][T15779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1371.398132][T15779] Call Trace:
[ 1371.401462][T15779]  <TASK>
[ 1371.404439][T15779]  dump_stack_lvl+0xd6/0x122
[ 1371.409076][T15779]  dump_stack+0x11/0x15
[ 1371.413266][T15779]  dump_header+0x98/0x430
[ 1371.417658][T15779]  oom_kill_process+0x100/0x540
[ 1371.422512][T15779]  out_of_memory+0x620/0x880
[ 1371.427206][T15779]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1371.432805][T15779]  mem_cgroup_oom+0x2e7/0x370
[ 1371.437583][T15779]  try_charge_memcg+0x717/0x9c0
[ 1371.442447][T15779]  ? __alloc_pages+0x199/0x340
[ 1371.447271][T15779]  charge_memcg+0x54/0x250
[ 1371.451801][T15779]  __mem_cgroup_charge+0x25/0xa0
[ 1371.456748][T15779]  wp_page_copy+0x209/0x1460
[ 1371.461349][T15779]  ? shrink_zones+0x525/0x5d0
[ 1371.466038][T15779]  ? preempt_count_add+0x5e/0xa0
[ 1371.471023][T15779]  do_wp_page+0x2dd/0x780
05:13:27 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0xc0189436, &(0x7f0000000100)={'tunl0\x00', &(0x7f0000000040)={'erspan0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}}}}})

[ 1371.475359][T15779]  handle_mm_fault+0x5ef/0xa80
[ 1371.480169][T15779]  do_user_addr_fault+0x4a1/0x980
[ 1371.485217][T15779]  exc_page_fault+0x60/0x160
[ 1371.489816][T15779]  asm_exc_page_fault+0x22/0x30
[ 1371.494818][T15779] RIP: 0033:0x7fa69bfc5970
[ 1371.499277][T15779] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1371.518941][T15779] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1371.525077][T15779] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1371.533049][T15779] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1371.541124][T15779] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1371.549099][T15779] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1371.557076][T15779] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1371.565090][T15779]  ? __sock_create+0x24/0x4e0
[ 1371.569795][T15779]  </TASK>
[ 1371.580220][T15779] memory: usage 307200kB, limit 307200kB, failcnt 43340
[ 1371.587643][T15779] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1371.594593][T15779] Memory cgroup stats for /syz0:
[ 1371.594878][T15779] anon 401408
[ 1371.594878][T15779] file 10457088
[ 1371.594878][T15779] kernel 303714304
[ 1371.594878][T15779] kernel_stack 81920
[ 1371.594878][T15779] pagetables 229376
[ 1371.594878][T15779] sec_pagetables 0
[ 1371.594878][T15779] percpu 9172448
[ 1371.594878][T15779] sock 0
[ 1371.594878][T15779] vmalloc 8192
05:13:27 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x4c00}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:27 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

[ 1371.594878][T15779] shmem 10457088
[ 1371.594878][T15779] file_mapped 159744
[ 1371.594878][T15779] file_dirty 0
[ 1371.594878][T15779] file_writeback 0
[ 1371.594878][T15779] swapcached 0
[ 1371.594878][T15779] inactive_anon 401408
[ 1371.594878][T15779] active_anon 10457088
[ 1371.594878][T15779] inactive_file 0
[ 1371.594878][T15779] active_file 0
[ 1371.594878][T15779] unevictable 0
[ 1371.594878][T15779] slab_reclaimable 39392
[ 1371.594878][T15779] slab_unreclaimable 294100856
[ 1371.594878][T15779] slab 294140248
05:13:27 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r0, &(0x7f0000009800)={&(0x7f0000009700)={0x10, 0x0, 0x2}, 0xffdf, &(0x7f00000097c0)={&(0x7f0000009740)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)

[ 1371.594878][T15779] workingset_refault_anon 0
[ 1371.594878][T15779] workingset_refault_file 2
[ 1371.594878][T15779] workingset_activate_anon 0
[ 1371.690507][T15779] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15779,uid=0
[ 1371.705962][T15779] Memory cgroup out of memory: Killed process 15779 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:27 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x6}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:27 executing program 4:
mlock2(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ff3000/0x4000)=nil, 0x4000, &(0x7f0000000040)='#($-%\\\\\x00')
munmap(&(0x7f0000ff5000/0x1000)=nil, 0x1000)

05:13:27 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:27 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x588a}, 0x0)

05:13:27 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89b0, &(0x7f0000000100)={'tunl0\x00', &(0x7f0000002200)=ANY=[]})

05:13:27 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x5865}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1371.743433][T15815] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1371.775895][T15815] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:27 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
recvfrom(r0, 0x0, 0x0, 0x40000040, 0x0, 0x0)

05:13:27 executing program 1:
clock_gettime(0x0, &(0x7f00000000c0))
clock_gettime(0x6, &(0x7f00000001c0))

05:13:27 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x2}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x14}, 0x14}, 0x8}, 0x0)

[ 1371.831081][T15827] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:27 executing program 4:
bpf$MAP_CREATE(0xa, &(0x7f0000000000), 0x48)

05:13:27 executing program 2:
getpgrp(0x0)
syz_clone(0x49800000, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)="ba36cf47b1518fe22f39")

05:13:27 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000080)={'erspan0\x00', 0x0})

[ 1371.967430][T15830] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1371.978291][T15830] CPU: 1 PID: 15830 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1371.991929][T15830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1372.002037][T15830] Call Trace:
[ 1372.005372][T15830]  <TASK>
[ 1372.008319][T15830]  dump_stack_lvl+0xd6/0x122
[ 1372.012937][T15830]  dump_stack+0x11/0x15
[ 1372.017096][T15830]  dump_header+0x98/0x430
[ 1372.021528][T15830]  oom_kill_process+0x100/0x540
[ 1372.026419][T15830]  out_of_memory+0x620/0x880
[ 1372.031009][T15830]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1372.036633][T15830]  mem_cgroup_oom+0x2e7/0x370
[ 1372.041320][T15830]  try_charge_memcg+0x717/0x9c0
[ 1372.046228][T15830]  ? __alloc_pages+0x199/0x340
[ 1372.051010][T15830]  charge_memcg+0x54/0x250
[ 1372.055427][T15830]  __mem_cgroup_charge+0x25/0xa0
[ 1372.060400][T15830]  wp_page_copy+0x209/0x1460
[ 1372.065091][T15830]  ? shrink_zones+0x525/0x5d0
[ 1372.069860][T15830]  ? preempt_count_add+0x5e/0xa0
[ 1372.074928][T15830]  do_wp_page+0x2dd/0x780
[ 1372.079305][T15830]  handle_mm_fault+0x5ef/0xa80
[ 1372.084096][T15830]  do_user_addr_fault+0x4a1/0x980
[ 1372.089157][T15830]  exc_page_fault+0x60/0x160
[ 1372.093761][T15830]  asm_exc_page_fault+0x22/0x30
[ 1372.098676][T15830] RIP: 0033:0x7fa69bfc5970
[ 1372.103090][T15830] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1372.122818][T15830] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1372.128884][T15830] RAX: 0000000034c8aabb RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1372.136877][T15830] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a2f7f
[ 1372.144913][T15830] RBP: 0000000034c8aabb R08: 0000000000000abb R09: 0000000034c8aabf
[ 1372.152886][T15830] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1372.160915][T15830] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff83a0d5e7
[ 1372.168883][T15830]  ? __sys_socket+0x27/0x220
[ 1372.173483][T15830]  </TASK>
[ 1372.176621][T15830] memory: usage 307196kB, limit 307200kB, failcnt 43426
[ 1372.183669][T15830] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1372.190508][T15830] Memory cgroup stats for /syz0:
[ 1372.190894][T15830] anon 397312
[ 1372.190894][T15830] file 10457088
[ 1372.190894][T15830] kernel 303714304
[ 1372.190894][T15830] kernel_stack 81920
[ 1372.190894][T15830] pagetables 229376
[ 1372.190894][T15830] sec_pagetables 0
[ 1372.190894][T15830] percpu 9172448
[ 1372.190894][T15830] sock 0
[ 1372.190894][T15830] vmalloc 8192
[ 1372.190894][T15830] shmem 10457088
[ 1372.190894][T15830] file_mapped 159744
[ 1372.190894][T15830] file_dirty 0
[ 1372.190894][T15830] file_writeback 0
[ 1372.190894][T15830] swapcached 0
[ 1372.190894][T15830] inactive_anon 397312
[ 1372.190894][T15830] active_anon 10457088
[ 1372.190894][T15830] inactive_file 0
[ 1372.190894][T15830] active_file 0
[ 1372.190894][T15830] unevictable 0
[ 1372.190894][T15830] slab_reclaimable 39392
[ 1372.190894][T15830] slab_unreclaimable 294100856
[ 1372.190894][T15830] slab 294140248
[ 1372.190894][T15830] workingset_refault_anon 0
[ 1372.190894][T15830] workingset_refault_file 2
[ 1372.190894][T15830] workingset_activate_anon 0
[ 1372.286690][T15830] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15830,uid=0
[ 1372.301989][T15830] Memory cgroup out of memory: Killed process 15830 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:28 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x7}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:28 executing program 4:
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000200), &(0x7f0000000240)={0x0, "b47ade12fbcf393bdfa0fa8f939ddd93f82ebaafd13a879fe1cc333dbad3d2eda0ed5b10434c3c01ca76ba5c9e548ade46617f09b8a23ab6374bc8b838daf574"}, 0x44, 0xfffffffffffffffc)

05:13:28 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:28 executing program 4:
syz_clone(0x52000000, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200))

[ 1372.355375][T15839] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1372.407382][T15861] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1372.418137][T15861] CPU: 1 PID: 15861 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1372.430648][T15861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1372.440708][T15861] Call Trace:
[ 1372.444030][T15861]  <TASK>
[ 1372.446960][T15861]  dump_stack_lvl+0xd6/0x122
[ 1372.451652][T15861]  dump_stack+0x11/0x15
[ 1372.455839][T15861]  dump_header+0x98/0x430
[ 1372.460174][T15861]  oom_kill_process+0x100/0x540
[ 1372.465040][T15861]  out_of_memory+0x620/0x880
[ 1372.465509][T15865] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1372.469627][T15861]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1372.469657][T15861]  mem_cgroup_oom+0x2e7/0x370
[ 1372.489118][T15861]  try_charge_memcg+0x717/0x9c0
[ 1372.494023][T15861]  ? avc_has_perm_noaudit+0x1c0/0x270
[ 1372.499405][T15861]  obj_cgroup_charge+0x171/0x2b0
[ 1372.504480][T15861]  memcg_slab_pre_alloc_hook+0xf7/0x170
[ 1372.510042][T15861]  ? sock_alloc_inode+0x2d/0xa0
[ 1372.514905][T15861]  kmem_cache_alloc_lru+0x75/0x2a0
[ 1372.520033][T15861]  sock_alloc_inode+0x2d/0xa0
[ 1372.524737][T15861]  ? sockfs_init_fs_context+0x70/0x70
[ 1372.530180][T15861]  alloc_inode+0x38/0x150
[ 1372.534510][T15861]  new_inode_pseudo+0x13/0x60
[ 1372.539184][T15861]  __sock_create+0x122/0x4e0
[ 1372.543866][T15861]  __sys_socket+0x9c/0x220
[ 1372.548316][T15861]  __x64_sys_socket+0x3b/0x50
[ 1372.553075][T15861]  do_syscall_64+0x2b/0x70
05:13:28 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x5e00}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:28 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x14, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x2)

[ 1372.557522][T15861]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1372.563543][T15861] RIP: 0033:0x7fa69c0185a9
[ 1372.567958][T15861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1372.587574][T15861] RSP: 002b:00007fa69b38c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1372.596035][T15861] RAX: ffffffffffffffda RBX: 00007fa69c138f80 RCX: 00007fa69c0185a9
[ 1372.604008][T15861] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000010
[ 1372.612018][T15861] RBP: 00007fa69c0737b0 R08: 0000000000000000 R09: 0000000000000000
[ 1372.620093][T15861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1372.628092][T15861] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1372.636074][T15861]  </TASK>
[ 1372.639129][T15861] memory: usage 307196kB, limit 307200kB, failcnt 43533
[ 1372.646081][T15861] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1372.652983][T15861] Memory cgroup stats for /syz0:
05:13:28 executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000011c0)={0x11, 0xc, &(0x7f0000000000)=@framed={{}, [@map_idx, @ldst, @cb_func, @initr0, @kfunc, @kfunc]}, &(0x7f0000000080)='GPL\x00', 0x5, 0x1000, &(0x7f0000000180)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

05:13:28 executing program 2:
mlock2(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0)
munmap(&(0x7f0000ff5000/0x1000)=nil, 0x1ffff000)

[ 1372.653289][T15861] anon 393216
[ 1372.653289][T15861] file 10457088
[ 1372.653289][T15861] kernel 303718400
[ 1372.653289][T15861] kernel_stack 81920
[ 1372.653289][T15861] pagetables 229376
[ 1372.653289][T15861] sec_pagetables 0
[ 1372.653289][T15861] percpu 9172448
[ 1372.653289][T15861] sock 0
[ 1372.653289][T15861] vmalloc 8192
[ 1372.653289][T15861] shmem 10457088
[ 1372.653289][T15861] file_mapped 159744
[ 1372.653289][T15861] file_dirty 0
[ 1372.653289][T15861] file_writeback 0
[ 1372.653289][T15861] swapcached 0
05:13:28 executing program 2:
add_key$fscrypt_v1(&(0x7f00000000c0), &(0x7f0000000100)={'fscrypt:', @desc2}, &(0x7f0000000140)={0x0, "827c405c50588a650ac8349ce3597a5c73953505f3a2cc0f2d7ddd6ad8f562b7b1f7e9fd1a33925ef956b16bd7d6c9abbb190bea3ef359a9eb740e68f6f99560"}, 0x48, 0xffffffffffffffff)
request_key(&(0x7f0000000300)='asymmetric\x00', &(0x7f0000000340)={'syz', 0x2}, &(0x7f0000000380)='logon\x00', 0x0)

[ 1372.653289][T15861] inactive_anon 393216
[ 1372.653289][T15861] active_anon 10457088
[ 1372.653289][T15861] inactive_file 0
[ 1372.653289][T15861] active_file 0
[ 1372.653289][T15861] unevictable 0
[ 1372.653289][T15861] slab_reclaimable 41168
[ 1372.653289][T15861] slab_unreclaimable 294101576
[ 1372.653289][T15861] slab 294142744
[ 1372.653289][T15861] workingset_refault_anon 0
[ 1372.653289][T15861] workingset_refault_file 2
[ 1372.653289][T15861] workingset_activate_anon 0
05:13:28 executing program 2:
perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe2020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x8000000000, 0x0, 0x9}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

05:13:28 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={0x0}}, 0x4000801)

[ 1372.750335][T15861] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15860,uid=0
[ 1372.765771][T15861] Memory cgroup out of memory: Killed process 15860 (syz-executor.0) total-vm:46468kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:28 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x8}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:28 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f00000000c0)={'syztnl1\x00', &(0x7f0000000000)={'tunl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0xa, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2, @private, {[@rr={0x7, 0xf, 0x0, [@remote, @empty, @loopback]}, @rr={0x7, 0x3}]}}}}})

05:13:28 executing program 1:
prctl$PR_SET_VMA(0x24, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)

[ 1372.816576][T15867] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:28 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

[ 1372.910204][T15887] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1372.921131][T15887] CPU: 1 PID: 15887 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1372.933551][T15887] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1372.943608][T15887] Call Trace:
[ 1372.946886][T15887]  <TASK>
[ 1372.949816][T15887]  dump_stack_lvl+0xd6/0x122
[ 1372.954423][T15887]  dump_stack+0x11/0x15
[ 1372.958644][T15887]  dump_header+0x98/0x430
[ 1372.962984][T15887]  oom_kill_process+0x100/0x540
[ 1372.967931][T15887]  out_of_memory+0x620/0x880
[ 1372.972626][T15887]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1372.978179][T15887]  mem_cgroup_oom+0x2e7/0x370
[ 1372.982955][T15887]  try_charge_memcg+0x717/0x9c0
[ 1372.987898][T15887]  ? __alloc_pages+0x199/0x340
[ 1372.992664][T15887]  charge_memcg+0x54/0x250
[ 1372.997102][T15887]  __mem_cgroup_charge+0x25/0xa0
[ 1373.002123][T15887]  wp_page_copy+0x209/0x1460
[ 1373.006792][T15887]  ? delay_tsc+0xc1/0xe0
[ 1373.011074][T15887]  do_wp_page+0x2dd/0x780
[ 1373.015412][T15887]  handle_mm_fault+0x5ef/0xa80
[ 1373.020209][T15887]  do_user_addr_fault+0x4a1/0x980
[ 1373.025245][T15887]  exc_page_fault+0x60/0x160
[ 1373.029897][T15887]  asm_exc_page_fault+0x22/0x30
[ 1373.034780][T15887] RIP: 0033:0x7fa69bfc5970
[ 1373.039200][T15887] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
05:13:28 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
recvfrom(r0, 0x0, 0x0, 0x2000, 0x0, 0x0)

05:13:28 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r0)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000880)={0x14}, 0x14}}, 0x0)

05:13:28 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x6000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:28 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x0, 0x0, 0x64ca}, 0x48)

[ 1373.058814][T15887] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1373.064947][T15887] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1373.072983][T15887] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1373.080960][T15887] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1373.088948][T15887] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1373.096933][T15887] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1373.104905][T15887]  ? __sock_create+0x24/0x4e0
05:13:28 executing program 1:
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
mlock2(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)
mlock2(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0)

05:13:28 executing program 4:
keyctl$read(0x13, 0x0, 0x0, 0x0)

[ 1373.109687][T15887]  </TASK>
[ 1373.112835][T15887] memory: usage 307200kB, limit 307200kB, failcnt 43665
[ 1373.119771][T15887] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1373.126645][T15887] Memory cgroup stats for /syz0:
[ 1373.127002][T15887] anon 401408
[ 1373.127002][T15887] file 10457088
[ 1373.127002][T15887] kernel 303714304
[ 1373.127002][T15887] kernel_stack 81920
[ 1373.127002][T15887] pagetables 229376
[ 1373.127002][T15887] sec_pagetables 0
[ 1373.127002][T15887] percpu 9172448
[ 1373.127002][T15887] sock 0
05:13:28 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f00000002c0)={&(0x7f00000001c0), 0x300, &(0x7f0000000280)={&(0x7f0000000200)={0x74, 0x0, 0x0, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_ADDR={0x28, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS]}, 0xfffffdef}}, 0x0)

05:13:28 executing program 4:
r0 = add_key$user(&(0x7f0000000000), &(0x7f00000002c0)={'syz', 0x2}, &(0x7f0000000080)="8d", 0x1, 0xfffffffffffffffb)
keyctl$read(0xb, r0, 0x0, 0x0)

[ 1373.127002][T15887] vmalloc 8192
[ 1373.127002][T15887] shmem 10457088
[ 1373.127002][T15887] file_mapped 159744
[ 1373.127002][T15887] file_dirty 0
[ 1373.127002][T15887] file_writeback 0
[ 1373.127002][T15887] swapcached 0
[ 1373.127002][T15887] inactive_anon 401408
[ 1373.127002][T15887] active_anon 10457088
[ 1373.127002][T15887] inactive_file 0
[ 1373.127002][T15887] active_file 0
[ 1373.127002][T15887] unevictable 0
[ 1373.127002][T15887] slab_reclaimable 39392
[ 1373.127002][T15887] slab_unreclaimable 294100856
[ 1373.127002][T15887] slab 294140248
[ 1373.127002][T15887] workingset_refault_anon 0
[ 1373.127002][T15887] workingset_refault_file 2
[ 1373.127002][T15887] workingset_activate_anon 0
[ 1373.222588][T15887] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15887,uid=0
[ 1373.237924][T15887] Memory cgroup out of memory: Killed process 15887 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:29 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x9}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1373.268238][T15922] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1373.309298][T15923] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1373.320612][T15923] CPU: 0 PID: 15923 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1373.333039][T15923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1373.343140][T15923] Call Trace:
[ 1373.346417][T15923]  <TASK>
[ 1373.349378][T15923]  dump_stack_lvl+0xd6/0x122
[ 1373.354069][T15923]  dump_stack+0x11/0x15
[ 1373.358284][T15923]  dump_header+0x98/0x430
[ 1373.362633][T15923]  oom_kill_process+0x100/0x540
[ 1373.367485][T15923]  out_of_memory+0x620/0x880
[ 1373.372085][T15923]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1373.377647][T15923]  mem_cgroup_oom+0x2e7/0x370
[ 1373.382334][T15923]  try_charge_memcg+0x717/0x9c0
[ 1373.387219][T15923]  ? __alloc_pages+0x199/0x340
[ 1373.392003][T15923]  charge_memcg+0x54/0x250
[ 1373.396507][T15923]  __mem_cgroup_charge+0x25/0xa0
[ 1373.401523][T15923]  wp_page_copy+0x209/0x1460
[ 1373.406223][T15923]  ? shrink_zones+0x525/0x5d0
[ 1373.410945][T15923]  ? preempt_count_add+0x5e/0xa0
[ 1373.416037][T15923]  do_wp_page+0x2dd/0x780
[ 1373.420415][T15923]  handle_mm_fault+0x5ef/0xa80
[ 1373.425239][T15923]  do_user_addr_fault+0x4a1/0x980
[ 1373.430335][T15923]  exc_page_fault+0x60/0x160
[ 1373.434953][T15923]  asm_exc_page_fault+0x22/0x30
[ 1373.439816][T15923] RIP: 0033:0x7fa69bfc5970
[ 1373.444236][T15923] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1373.463844][T15923] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1373.469912][T15923] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1373.477881][T15923] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
[ 1373.485853][T15923] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1373.493820][T15923] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1373.501791][T15923] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
[ 1373.509775][T15923]  ? __x64_sys_socket+0xc/0x50
[ 1373.514551][T15923]  </TASK>
[ 1373.525073][T15923] memory: usage 307200kB, limit 307200kB, failcnt 43730
[ 1373.532054][T15923] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1373.538910][T15923] Memory cgroup stats for /syz0:
[ 1373.539242][T15923] anon 393216
[ 1373.539242][T15923] file 10457088
[ 1373.539242][T15923] kernel 303722496
[ 1373.539242][T15923] kernel_stack 81920
[ 1373.539242][T15923] pagetables 229376
[ 1373.539242][T15923] sec_pagetables 0
[ 1373.539242][T15923] percpu 9172448
[ 1373.539242][T15923] sock 0
[ 1373.539242][T15923] vmalloc 8192
[ 1373.539242][T15923] shmem 10457088
[ 1373.539242][T15923] file_mapped 159744
[ 1373.539242][T15923] file_dirty 0
[ 1373.539242][T15923] file_writeback 0
[ 1373.539242][T15923] swapcached 0
[ 1373.539242][T15923] inactive_anon 368640
[ 1373.539242][T15923] active_anon 10457088
[ 1373.539242][T15923] inactive_file 0
[ 1373.539242][T15923] active_file 0
[ 1373.539242][T15923] unevictable 0
[ 1373.539242][T15923] slab_reclaimable 44896
[ 1373.539242][T15923] slab_unreclaimable 294101120
[ 1373.539242][T15923] slab 294146016
[ 1373.539242][T15923] workingset_refault_anon 0
[ 1373.539242][T15923] workingset_refault_file 2
[ 1373.539242][T15923] workingset_activate_anon 0
[ 1373.634925][T15923] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15923,uid=0
05:13:29 executing program 2:
prctl$PR_SET_VMA(0x22, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)

05:13:29 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0x0, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:29 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x6558}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:29 executing program 4:
add_key$fscrypt_v1(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f00000001c0)={'fscrypt:', @desc3}, &(0x7f0000000240)={0x0, "b47ade12fbcf393bdfa0fa8f939ddd93f82ebaafd13a879fe1cc333dbad3d2eda0ed5b10434c3c01ca76ba5c9e548ade46617f09b8a23ab6374bc8b838daf574"}, 0x48, 0xfffffffffffffffc)
keyctl$read(0xb, r0, 0x0, 0x0)

05:13:29 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xa}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:29 executing program 1:
prctl$PR_SET_VMA(0x2, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)

05:13:29 executing program 1:
r0 = socket$inet6(0xa, 0x3, 0x7)
ioctl$sock_inet6_udp_SIOCINQ(r0, 0x8902, &(0x7f0000000040))

[ 1373.650218][T15923] Memory cgroup out of memory: Killed process 15923 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:29 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$nl_route(r0, &(0x7f0000000280)={&(0x7f0000000180), 0xc, &(0x7f0000000240)={0x0}}, 0x0)

05:13:29 executing program 4:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000040)={0x11, 0x1c, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)

05:13:29 executing program 1:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000002300), 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, 0x0)

05:13:29 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000100)={'tunl0\x00', &(0x7f0000000040)={'erspan0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x6, 0x4, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@noop]}}}}})

[ 1373.710495][T15935] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:29 executing program 1:
prctl$PR_SET_MM(0x21, 0xa, &(0x7f0000ffd000/0x3000)=nil)

05:13:29 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x8901, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000000)={'ip6gre0\x00', 0x0, 0x4, 0x8, 0x20, 0x99, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x41}, 0x7, 0x10, 0x7, 0x9}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000300)={'ip6tnl0\x00', &(0x7f0000000280)={'syztnl0\x00', 0x0, 0x29, 0x0, 0x0, 0x0, 0x0, @empty, @empty}})
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0}, &(0x7f0000000140)=0x14)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000200)={'syztnl2\x00', &(0x7f0000000180)={'syztnl0\x00', r2, 0x2f, 0x6, 0x0, 0x0, 0x10, @remote, @dev={0xfe, 0x80, '\x00', 0x31}, 0x0, 0x28, 0x7, 0x10001}})

05:13:29 executing program 1:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000100), 0x4)

05:13:29 executing program 2:
add_key(&(0x7f0000000000)='keyring\x00', 0x0, &(0x7f0000000140)="a7", 0x1, 0xfffffffffffffffc)

[ 1373.832300][T15934] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1373.843305][T15934] CPU: 1 PID: 15934 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1373.855736][T15934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1373.865883][T15934] Call Trace:
[ 1373.869169][T15934]  <TASK>
[ 1373.872183][T15934]  dump_stack_lvl+0xd6/0x122
[ 1373.876903][T15934]  dump_stack+0x11/0x15
[ 1373.881154][T15934]  dump_header+0x98/0x430
[ 1373.885583][T15934]  oom_kill_process+0x100/0x540
[ 1373.890441][T15934]  out_of_memory+0x620/0x880
[ 1373.895037][T15934]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1373.900621][T15934]  mem_cgroup_oom+0x2e7/0x370
[ 1373.905323][T15934]  try_charge_memcg+0x717/0x9c0
[ 1373.910274][T15934]  ? __alloc_pages+0x199/0x340
[ 1373.915047][T15934]  charge_memcg+0x54/0x250
[ 1373.919520][T15934]  __mem_cgroup_charge+0x25/0xa0
[ 1373.924470][T15934]  wp_page_copy+0x209/0x1460
[ 1373.929076][T15934]  ? delay_tsc+0xc1/0xe0
[ 1373.933332][T15934]  ? preempt_count_add+0x5e/0xa0
[ 1373.938298][T15934]  do_wp_page+0x2dd/0x780
[ 1373.942645][T15934]  handle_mm_fault+0x5ef/0xa80
[ 1373.947422][T15934]  do_user_addr_fault+0x4a1/0x980
[ 1373.952457][T15934]  exc_page_fault+0x60/0x160
[ 1373.957062][T15934]  asm_exc_page_fault+0x22/0x30
[ 1373.961933][T15934] RIP: 0033:0x7fa69bfc5970
[ 1373.966385][T15934] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1373.986080][T15934] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1373.992138][T15934] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1374.000109][T15934] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
[ 1374.008078][T15934] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1374.016089][T15934] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1374.024049][T15934] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
[ 1374.032010][T15934]  ? __x64_sys_socket+0xc/0x50
[ 1374.036787][T15934]  </TASK>
[ 1374.048098][T15934] memory: usage 307200kB, limit 307200kB, failcnt 43797
[ 1374.055082][T15934] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1374.061948][T15934] Memory cgroup stats for /syz0:
[ 1374.062215][T15934] anon 393216
[ 1374.062215][T15934] file 10457088
[ 1374.062215][T15934] kernel 303722496
[ 1374.062215][T15934] kernel_stack 81920
[ 1374.062215][T15934] pagetables 229376
[ 1374.062215][T15934] sec_pagetables 0
[ 1374.062215][T15934] percpu 9172448
[ 1374.062215][T15934] sock 0
[ 1374.062215][T15934] vmalloc 8192
[ 1374.062215][T15934] shmem 10457088
[ 1374.062215][T15934] file_mapped 159744
[ 1374.062215][T15934] file_dirty 0
[ 1374.062215][T15934] file_writeback 0
[ 1374.062215][T15934] swapcached 0
[ 1374.062215][T15934] inactive_anon 393216
[ 1374.062215][T15934] active_anon 10457088
[ 1374.062215][T15934] inactive_file 0
[ 1374.062215][T15934] active_file 0
[ 1374.062215][T15934] unevictable 0
[ 1374.062215][T15934] slab_reclaimable 44896
[ 1374.062215][T15934] slab_unreclaimable 294101120
[ 1374.062215][T15934] slab 294146016
[ 1374.062215][T15934] workingset_refault_anon 0
[ 1374.062215][T15934] workingset_refault_file 2
[ 1374.062215][T15934] workingset_activate_anon 0
[ 1374.157940][T15934] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=15934,uid=0
[ 1374.173310][T15934] Memory cgroup out of memory: Killed process 15934 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:30 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0x0, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:30 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x6800}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:30 executing program 4:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000000)={0x2, 0x0, 0x0, @host}, 0x10)

05:13:30 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_TP_METER_CANCEL(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x0, 0x6c787193b810856f}, 0x14}}, 0x0)

05:13:30 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xb}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:30 executing program 2:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000040)={0x11, 0x1c, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
bind$packet(r0, &(0x7f0000000100)={0x11, 0x5, r1, 0x1, 0x0, 0x6, @dev}, 0x14)

05:13:30 executing program 1:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PPPIOCGMRU(r0, 0x80047437, 0x0)

05:13:30 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_udp_int(r0, 0x11, 0xa, &(0x7f0000000100), 0x4)

05:13:30 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_ADD_TX_TS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_USER_PRIO={0x5}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x30}}, 0x0)

05:13:30 executing program 4:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000001700), 0x0, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, 0x0, 0x0)

05:13:30 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x6c00}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:30 executing program 4:
prctl$PR_SET_VMA(0x2f, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)

[ 1374.398389][T15984] Memory cgroup out of memory: Killed process 15984 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:30 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0x0, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:30 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
getsockname$packet(r0, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0xfffffde5)

05:13:30 executing program 4:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:13:30 executing program 2:
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffd000/0x3000)=nil, 0x3000, &(0x7f0000000000)='\x8e&$@\x00')

05:13:30 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xc}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:30 executing program 1:
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
setsockopt$MRT6_DEL_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd3, &(0x7f0000000000)={{0xa, 0x0, 0x0, @private0}, {0xa, 0x0, 0x0, @local}}, 0x5c)
mlock2(&(0x7f0000ff8000/0x7000)=nil, 0x7000, 0x0)

05:13:30 executing program 2:
munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000)
munmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000)

05:13:30 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x7400}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:30 executing program 1:
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffd000/0x3000)=nil)

05:13:30 executing program 2:
keyctl$read(0xa, 0x0, 0x0, 0x0)

05:13:30 executing program 2:
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f0000000080)='/dev/vcsa\x00')
mprotect(&(0x7f0000ff9000/0x1000)=nil, 0x1000, 0x0)
munmap(&(0x7f0000ff5000/0x1000)=nil, 0x1000)

05:13:30 executing program 1:
keyctl$read(0x1a, 0x0, 0x0, 0x0)

[ 1374.613756][T16031] oom_kill_process: 1 callbacks suppressed
[ 1374.613772][T16031] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1374.630654][T16031] CPU: 0 PID: 16031 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1374.643088][T16031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1374.653232][T16031] Call Trace:
[ 1374.656525][T16031]  <TASK>
[ 1374.659463][T16031]  dump_stack_lvl+0xd6/0x122
[ 1374.664074][T16031]  dump_stack+0x11/0x15
[ 1374.668262][T16031]  dump_header+0x98/0x430
[ 1374.672697][T16031]  oom_kill_process+0x100/0x540
[ 1374.677575][T16031]  out_of_memory+0x620/0x880
[ 1374.682167][T16031]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1374.687800][T16031]  mem_cgroup_oom+0x2e7/0x370
[ 1374.692506][T16031]  try_charge_memcg+0x717/0x9c0
[ 1374.697499][T16031]  ? avc_has_perm_noaudit+0x1c0/0x270
[ 1374.702890][T16031]  obj_cgroup_charge+0x171/0x2b0
[ 1374.707902][T16031]  memcg_slab_pre_alloc_hook+0xf7/0x170
[ 1374.713492][T16031]  ? sock_alloc_inode+0x2d/0xa0
[ 1374.718389][T16031]  kmem_cache_alloc_lru+0x75/0x2a0
[ 1374.723516][T16031]  sock_alloc_inode+0x2d/0xa0
[ 1374.728244][T16031]  ? sockfs_init_fs_context+0x70/0x70
[ 1374.733633][T16031]  alloc_inode+0x38/0x150
[ 1374.737968][T16031]  new_inode_pseudo+0x13/0x60
[ 1374.742698][T16031]  __sock_create+0x122/0x4e0
[ 1374.747301][T16031]  __sys_socket+0x9c/0x220
[ 1374.751792][T16031]  __x64_sys_socket+0x3b/0x50
[ 1374.756552][T16031]  do_syscall_64+0x2b/0x70
[ 1374.761005][T16031]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1374.766917][T16031] RIP: 0033:0x7fa69c0185a9
[ 1374.771401][T16031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1374.791076][T16031] RSP: 002b:00007fa69b38c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1374.799500][T16031] RAX: ffffffffffffffda RBX: 00007fa69c138f80 RCX: 00007fa69c0185a9
[ 1374.807505][T16031] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000010
[ 1374.815531][T16031] RBP: 00007fa69c0737b0 R08: 0000000000000000 R09: 0000000000000000
[ 1374.823519][T16031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1374.831494][T16031] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1374.839508][T16031]  </TASK>
[ 1374.850263][T16031] memory: usage 307200kB, limit 307200kB, failcnt 43951
[ 1374.857477][T16031] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1374.864342][T16031] Memory cgroup stats for /syz0:
[ 1374.864526][T16031] anon 393216
[ 1374.864526][T16031] file 10457088
[ 1374.864526][T16031] kernel 303722496
[ 1374.864526][T16031] kernel_stack 81920
[ 1374.864526][T16031] pagetables 229376
[ 1374.864526][T16031] sec_pagetables 0
[ 1374.864526][T16031] percpu 9172448
[ 1374.864526][T16031] sock 0
[ 1374.864526][T16031] vmalloc 8192
[ 1374.864526][T16031] shmem 10457088
[ 1374.864526][T16031] file_mapped 159744
[ 1374.864526][T16031] file_dirty 0
[ 1374.864526][T16031] file_writeback 0
[ 1374.864526][T16031] swapcached 0
[ 1374.864526][T16031] inactive_anon 389120
[ 1374.864526][T16031] active_anon 10457088
[ 1374.864526][T16031] inactive_file 0
[ 1374.864526][T16031] active_file 0
[ 1374.864526][T16031] unevictable 0
[ 1374.864526][T16031] slab_reclaimable 38416
[ 1374.864526][T16031] slab_unreclaimable 294105480
[ 1374.864526][T16031] slab 294143896
[ 1374.864526][T16031] workingset_refault_anon 0
[ 1374.864526][T16031] workingset_refault_file 2
[ 1374.864526][T16031] workingset_activate_anon 0
[ 1374.960167][T16031] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16023,uid=0
[ 1374.975565][T16031] Memory cgroup out of memory: Killed process 16023 (syz-executor.0) total-vm:46468kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1375.005861][T16035] validate_nla: 30 callbacks suppressed
05:13:30 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:30 executing program 1:
syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$gtp(&(0x7f00000002c0), 0xffffffffffffffff)

[ 1375.005875][T16035] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1375.020247][T16035] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1375.029090][T16035] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1375.037787][T16035] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:13:31 executing program 4:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x891c, &(0x7f0000000100)={'tunl0\x00', 0x0})

05:13:31 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14}, 0x14}}, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), r0)

05:13:31 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xd}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:31 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x7a00}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:31 executing program 1:
mlock2(&(0x7f0000ff4000/0x2000)=nil, 0x2000, 0x0)
mprotect(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0)

05:13:31 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:31 executing program 1:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000011c0)={0x11, 0xa, &(0x7f0000000000)=@framed={{}, [@map_idx, @ldst, @cb_func, @initr0]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

05:13:31 executing program 2:
socket$inet6_udplite(0xa, 0x2, 0x88)
select(0x40, &(0x7f0000000080), &(0x7f00000000c0)={0x8}, 0x0, 0x0)

05:13:31 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r0, &(0x7f0000009800)={&(0x7f0000009700), 0xffdf, &(0x7f00000097c0)={&(0x7f0000009740)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)

05:13:31 executing program 4:
munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)

[ 1375.416305][T16053] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1375.425121][T16053] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1375.433235][T16053] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1375.441295][T16053] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1375.460813][   T23] audit: type=1400 audit(1667193211.251:641): avc:  denied  { map } for  pid=16062 comm="syz-executor.4" path="socket:[682026]" dev="sockfs" ino=682026 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1375.465785][T16044] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1375.497755][T16044] CPU: 1 PID: 16044 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1375.510169][T16044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1375.520286][T16044] Call Trace:
[ 1375.523560][T16044]  <TASK>
[ 1375.526493][T16044]  dump_stack_lvl+0xd6/0x122
[ 1375.531162][T16044]  dump_stack+0x11/0x15
[ 1375.535343][T16044]  dump_header+0x98/0x430
[ 1375.539675][T16044]  oom_kill_process+0x100/0x540
[ 1375.544524][T16044]  out_of_memory+0x620/0x880
[ 1375.549145][T16044]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1375.554748][T16044]  mem_cgroup_oom+0x2e7/0x370
[ 1375.559504][T16044]  try_charge_memcg+0x717/0x9c0
[ 1375.564363][T16044]  ? __alloc_pages+0x199/0x340
[ 1375.569139][T16044]  charge_memcg+0x54/0x250
[ 1375.573646][T16044]  __mem_cgroup_charge+0x25/0xa0
[ 1375.578584][T16044]  wp_page_copy+0x209/0x1460
[ 1375.583200][T16044]  ? shrink_zones+0x525/0x5d0
[ 1375.587985][T16044]  ? debug_smp_processor_id+0x13/0x20
[ 1375.593362][T16044]  do_wp_page+0x2dd/0x780
[ 1375.597805][T16044]  ? handle_mm_fault+0x305/0xa80
[ 1375.602839][T16044]  handle_mm_fault+0x5ef/0xa80
[ 1375.607612][T16044]  do_user_addr_fault+0x4a1/0x980
[ 1375.612670][T16044]  exc_page_fault+0x60/0x160
05:13:31 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x8100}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:31 executing program 2:
socketpair(0x11, 0x2, 0x45, &(0x7f0000000040))

05:13:31 executing program 1:
syz_clone(0x19023000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:13:31 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x1, &(0x7f0000000080)=@raw=[@alu={0x4}], &(0x7f00000000c0)='GPL\x00', 0x3, 0xf1, &(0x7f0000000100)=""/241, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

[ 1375.617328][T16044]  asm_exc_page_fault+0x22/0x30
[ 1375.622195][T16044] RIP: 0033:0x7fa69bfc5970
[ 1375.626663][T16044] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1375.646275][T16044] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1375.652338][T16044] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1375.660311][T16044] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1375.668286][T16044] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1375.676291][T16044] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1375.684433][T16044] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1375.692501][T16044]  ? __sock_create+0x24/0x4e0
[ 1375.697195][T16044]  </TASK>
[ 1375.707749][T16044] memory: usage 307192kB, limit 307200kB, failcnt 44069
[ 1375.714773][T16044] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1375.721706][T16044] Memory cgroup stats for /syz0:
[ 1375.721970][T16044] anon 401408
[ 1375.721970][T16044] file 10457088
[ 1375.721970][T16044] kernel 303706112
[ 1375.721970][T16044] kernel_stack 81920
[ 1375.721970][T16044] pagetables 229376
[ 1375.721970][T16044] sec_pagetables 0
[ 1375.721970][T16044] percpu 9172448
[ 1375.721970][T16044] sock 0
[ 1375.721970][T16044] vmalloc 8192
[ 1375.721970][T16044] shmem 10457088
[ 1375.721970][T16044] file_mapped 159744
[ 1375.721970][T16044] file_dirty 0
[ 1375.721970][T16044] file_writeback 0
[ 1375.721970][T16044] swapcached 0
[ 1375.721970][T16044] inactive_anon 401408
[ 1375.721970][T16044] active_anon 10457088
[ 1375.721970][T16044] inactive_file 0
[ 1375.721970][T16044] active_file 0
[ 1375.721970][T16044] unevictable 0
[ 1375.721970][T16044] slab_reclaimable 39392
[ 1375.721970][T16044] slab_unreclaimable 294094496
[ 1375.721970][T16044] slab 294133888
[ 1375.721970][T16044] workingset_refault_anon 0
[ 1375.721970][T16044] workingset_refault_file 2
[ 1375.721970][T16044] workingset_activate_anon 0
[ 1375.822308][T16044] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16044,uid=0
[ 1375.837644][T16044] Memory cgroup out of memory: Killed process 16044 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:31 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xe}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:31 executing program 4:
prctl$PR_SET_VMA(0x16, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)

05:13:31 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f00000002c0)={&(0x7f00000001c0), 0x1, &(0x7f0000000280)={&(0x7f0000000200)={0x74, 0x0, 0x0, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_ADDR={0x28, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS]}, 0x74}}, 0x0)

05:13:31 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:31 executing program 1:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

05:13:31 executing program 4:
prctl$PR_SET_VMA(0x4, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs$namespace(r0, 0x0)

[ 1375.869215][T16074] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1375.877985][T16074] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:13:31 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MESH_CONFIG(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x14, r1, 0x597fabcace263bdb, 0x0, 0x0, {{}, {@void, @void}}}, 0x14}}, 0x0)

05:13:31 executing program 1:
mlock2(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0)
prctl$PR_SET_MM(0x23, 0xb, &(0x7f0000fff000/0x1000)=nil)

05:13:31 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x8802}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:31 executing program 2:
request_key(&(0x7f0000000000)='logon\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000080)='!%\'!+\x00', 0xfffffffffffffffb)

05:13:31 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r0, &(0x7f0000009800)={&(0x7f0000009700), 0xc, &(0x7f00000097c0)={0x0}, 0x300}, 0x0)

05:13:31 executing program 1:
prctl$PR_SET_MM(0x35, 0xa, &(0x7f0000ffd000/0x3000)=nil)

[ 1375.988597][T16081] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1375.999437][T16081] CPU: 1 PID: 16081 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1376.011876][T16081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1376.021921][T16081] Call Trace:
[ 1376.025188][T16081]  <TASK>
[ 1376.028216][T16081]  dump_stack_lvl+0xd6/0x122
[ 1376.032810][T16081]  dump_stack+0x11/0x15
[ 1376.036966][T16081]  dump_header+0x98/0x430
[ 1376.041285][T16081]  oom_kill_process+0x100/0x540
[ 1376.046136][T16081]  out_of_memory+0x620/0x880
[ 1376.050750][T16081]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1376.056343][T16081]  mem_cgroup_oom+0x2e7/0x370
[ 1376.061014][T16081]  try_charge_memcg+0x717/0x9c0
[ 1376.065893][T16081]  ? __alloc_pages+0x199/0x340
[ 1376.070647][T16081]  charge_memcg+0x54/0x250
[ 1376.075057][T16081]  __mem_cgroup_charge+0x25/0xa0
[ 1376.079990][T16081]  wp_page_copy+0x209/0x1460
[ 1376.084625][T16081]  ? shrink_zones+0x525/0x5d0
[ 1376.089337][T16081]  ? preempt_count_add+0x5e/0xa0
[ 1376.094269][T16081]  do_wp_page+0x2dd/0x780
[ 1376.098594][T16081]  handle_mm_fault+0x5ef/0xa80
[ 1376.103504][T16081]  do_user_addr_fault+0x4a1/0x980
[ 1376.108679][T16081]  exc_page_fault+0x60/0x160
[ 1376.113289][T16081]  asm_exc_page_fault+0x22/0x30
[ 1376.118170][T16081] RIP: 0033:0x7fa69bfc5970
[ 1376.122635][T16081] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1376.142374][T16081] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1376.148430][T16081] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1376.156422][T16081] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1376.164381][T16081] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1376.172542][T16081] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1376.180502][T16081] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1376.188461][T16081]  ? __sock_create+0x24/0x4e0
[ 1376.193199][T16081]  </TASK>
[ 1376.196248][T16081] memory: usage 307200kB, limit 307200kB, failcnt 44148
[ 1376.203236][T16081] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1376.210082][T16081] Memory cgroup stats for /syz0:
[ 1376.210341][T16081] anon 401408
[ 1376.210341][T16081] file 10457088
[ 1376.210341][T16081] kernel 303714304
[ 1376.210341][T16081] kernel_stack 81920
[ 1376.210341][T16081] pagetables 229376
[ 1376.210341][T16081] sec_pagetables 0
[ 1376.210341][T16081] percpu 9172448
[ 1376.210341][T16081] sock 0
[ 1376.210341][T16081] vmalloc 8192
[ 1376.210341][T16081] shmem 10457088
[ 1376.210341][T16081] file_mapped 159744
[ 1376.210341][T16081] file_dirty 0
[ 1376.210341][T16081] file_writeback 0
[ 1376.210341][T16081] swapcached 0
[ 1376.210341][T16081] inactive_anon 401408
[ 1376.210341][T16081] active_anon 10457088
[ 1376.210341][T16081] inactive_file 0
[ 1376.210341][T16081] active_file 0
[ 1376.210341][T16081] unevictable 0
[ 1376.210341][T16081] slab_reclaimable 39392
[ 1376.210341][T16081] slab_unreclaimable 294100856
05:13:32 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xf}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:32 executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x3, 0x0, 0x10)

05:13:32 executing program 1:
prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ffb000/0x2000)=nil)
prctl$PR_SET_MM(0x23, 0x1, &(0x7f0000ff2000/0xb000)=nil)

[ 1376.210341][T16081] slab 294140248
[ 1376.210341][T16081] workingset_refault_anon 0
[ 1376.210341][T16081] workingset_refault_file 2
[ 1376.210341][T16081] workingset_activate_anon 0
[ 1376.306080][T16081] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16081,uid=0
[ 1376.321413][T16081] Memory cgroup out of memory: Killed process 16081 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:32 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, 0x0)
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:32 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000011c0)={0x0, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

05:13:32 executing program 2:
mprotect(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2000004)

05:13:32 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x8847}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:32 executing program 1:
munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0xffffffff00000000)

05:13:32 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r0, &(0x7f0000009800)={0x0, 0x0, &(0x7f00000097c0)={0x0}, 0x1, 0x0, 0x1000000}, 0x0)

05:13:32 executing program 2:
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x890c, 0x0)

05:13:32 executing program 1:
munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000)
mincore(&(0x7f0000ff7000/0x2000)=nil, 0x2000, &(0x7f0000000000)=""/131)

05:13:32 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000380)='net/ipv6_route\x00')
sendmsg$nl_route(r0, 0x0, 0x0)

[ 1376.416749][T16120] __nla_validate_parse: 11 callbacks suppressed
[ 1376.416764][T16120] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1376.492415][T16136] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1376.545861][T16122] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1376.556851][T16122] CPU: 0 PID: 16122 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1376.569347][T16122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1376.579410][T16122] Call Trace:
[ 1376.582774][T16122]  <TASK>
[ 1376.585751][T16122]  dump_stack_lvl+0xd6/0x122
[ 1376.590370][T16122]  dump_stack+0x11/0x15
[ 1376.594535][T16122]  dump_header+0x98/0x430
[ 1376.598882][T16122]  oom_kill_process+0x100/0x540
[ 1376.603758][T16122]  out_of_memory+0x620/0x880
[ 1376.608440][T16122]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1376.613991][T16122]  mem_cgroup_oom+0x2e7/0x370
[ 1376.618714][T16122]  try_charge_memcg+0x717/0x9c0
[ 1376.623585][T16122]  ? __alloc_pages+0x199/0x340
[ 1376.628406][T16122]  charge_memcg+0x54/0x250
[ 1376.632826][T16122]  __mem_cgroup_charge+0x25/0xa0
[ 1376.637773][T16122]  wp_page_copy+0x209/0x1460
[ 1376.642374][T16122]  ? shrink_zones+0x525/0x5d0
[ 1376.647053][T16122]  ? preempt_count_add+0x5e/0xa0
[ 1376.652095][T16122]  do_wp_page+0x2dd/0x780
[ 1376.656496][T16122]  handle_mm_fault+0x5ef/0xa80
[ 1376.661302][T16122]  do_user_addr_fault+0x4a1/0x980
[ 1376.666334][T16122]  exc_page_fault+0x60/0x160
[ 1376.670925][T16122]  asm_exc_page_fault+0x22/0x30
[ 1376.675857][T16122] RIP: 0033:0x7fa69bfc5970
[ 1376.680274][T16122] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1376.699891][T16122] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1376.706137][T16122] RAX: 00000000db29429d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1376.714143][T16122] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a2b5e
[ 1376.722115][T16122] RBP: 00000000db29429d R08: 000000000000029d R09: 00000000db2942a1
[ 1376.730085][T16122] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1376.738050][T16122] R13: 0000000000000001 R14: 0000000000000003 R15: ffffffff83a0cf1c
[ 1376.746018][T16122]  ? __sock_create+0xbc/0x4e0
[ 1376.750758][T16122]  </TASK>
[ 1376.761341][T16122] memory: usage 307200kB, limit 307200kB, failcnt 44225
[ 1376.768787][T16122] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1376.775644][T16122] Memory cgroup stats for /syz0:
[ 1376.775868][T16122] anon 405504
[ 1376.775868][T16122] file 10457088
[ 1376.775868][T16122] kernel 303710208
[ 1376.775868][T16122] kernel_stack 81920
[ 1376.775868][T16122] pagetables 229376
[ 1376.775868][T16122] sec_pagetables 0
[ 1376.775868][T16122] percpu 9172448
[ 1376.775868][T16122] sock 0
[ 1376.775868][T16122] vmalloc 8192
[ 1376.775868][T16122] shmem 10457088
[ 1376.775868][T16122] file_mapped 159744
[ 1376.775868][T16122] file_dirty 0
[ 1376.775868][T16122] file_writeback 0
[ 1376.775868][T16122] swapcached 0
[ 1376.775868][T16122] inactive_anon 364544
[ 1376.775868][T16122] active_anon 10457088
[ 1376.775868][T16122] inactive_file 0
[ 1376.775868][T16122] active_file 0
[ 1376.775868][T16122] unevictable 0
[ 1376.775868][T16122] slab_reclaimable 44896
[ 1376.775868][T16122] slab_unreclaimable 294094520
[ 1376.775868][T16122] slab 294139416
[ 1376.775868][T16122] workingset_refault_anon 0
[ 1376.775868][T16122] workingset_refault_file 2
[ 1376.775868][T16122] workingset_activate_anon 0
[ 1376.871708][T16122] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16122,uid=0
05:13:32 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x10}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:32 executing program 2:
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x891c, 0x0)

05:13:32 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x17, 0x0, 0x800, 0xfffffffe, 0x0, 0x1}, 0x48)

05:13:32 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, 0x0)
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:32 executing program 1:
pipe2(0x0, 0x0)
syz_clone(0x52000000, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200))
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000280), 0x12)
ioctl$TIOCGRS485(0xffffffffffffffff, 0x542e, 0x0)

05:13:32 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x8848}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1376.887051][T16122] Memory cgroup out of memory: Killed process 16122 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:32 executing program 4:
openat$vcsu(0xffffffffffffff9c, &(0x7f0000002300), 0x80000, 0x0)

05:13:32 executing program 2:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000780), 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000140), 0x0, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

05:13:32 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x9, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

05:13:32 executing program 2:
r0 = socket(0x18, 0x0, 0x2)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0)

[ 1376.984733][T16150] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:32 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@can_newroute={0x14}, 0x14}}, 0x0)

05:13:32 executing program 2:
prctl$PR_SET_MM(0x35, 0x0, &(0x7f0000ffd000/0x3000)=nil)

[ 1377.071280][T16164] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1377.100075][T16160] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1377.111137][T16160] CPU: 1 PID: 16160 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1377.123558][T16160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1377.133694][T16160] Call Trace:
[ 1377.137047][T16160]  <TASK>
[ 1377.139975][T16160]  dump_stack_lvl+0xd6/0x122
[ 1377.144663][T16160]  dump_stack+0x11/0x15
[ 1377.148898][T16160]  dump_header+0x98/0x430
[ 1377.153457][T16160]  oom_kill_process+0x100/0x540
[ 1377.158398][T16160]  out_of_memory+0x620/0x880
[ 1377.162996][T16160]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1377.168637][T16160]  mem_cgroup_oom+0x2e7/0x370
[ 1377.173459][T16160]  try_charge_memcg+0x717/0x9c0
[ 1377.178393][T16160]  ? avc_has_perm_noaudit+0x1c0/0x270
[ 1377.183784][T16160]  obj_cgroup_charge+0x171/0x2b0
[ 1377.188770][T16160]  memcg_slab_pre_alloc_hook+0xf7/0x170
[ 1377.194334][T16160]  ? sock_alloc_inode+0x2d/0xa0
[ 1377.199290][T16160]  kmem_cache_alloc_lru+0x75/0x2a0
[ 1377.204447][T16160]  sock_alloc_inode+0x2d/0xa0
[ 1377.209137][T16160]  ? sockfs_init_fs_context+0x70/0x70
[ 1377.214540][T16160]  alloc_inode+0x38/0x150
[ 1377.218886][T16160]  new_inode_pseudo+0x13/0x60
[ 1377.223557][T16160]  __sock_create+0x122/0x4e0
[ 1377.228178][T16160]  __sys_socket+0x9c/0x220
[ 1377.232675][T16160]  __x64_sys_socket+0x3b/0x50
[ 1377.237449][T16160]  do_syscall_64+0x2b/0x70
[ 1377.241879][T16160]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1377.247865][T16160] RIP: 0033:0x7fa69c0185a9
[ 1377.252281][T16160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1377.271899][T16160] RSP: 002b:00007fa69b38c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1377.280364][T16160] RAX: ffffffffffffffda RBX: 00007fa69c138f80 RCX: 00007fa69c0185a9
[ 1377.288376][T16160] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000010
[ 1377.296361][T16160] RBP: 00007fa69c0737b0 R08: 0000000000000000 R09: 0000000000000000
[ 1377.304332][T16160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1377.312305][T16160] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1377.320279][T16160]  </TASK>
[ 1377.330584][T16160] memory: usage 307200kB, limit 307200kB, failcnt 44310
[ 1377.337987][T16160] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1377.345256][T16160] Memory cgroup stats for /syz0:
[ 1377.345660][T16160] anon 393216
[ 1377.345660][T16160] file 10461184
[ 1377.345660][T16160] kernel 303718400
[ 1377.345660][T16160] kernel_stack 81920
[ 1377.345660][T16160] pagetables 229376
[ 1377.345660][T16160] sec_pagetables 0
[ 1377.345660][T16160] percpu 9172448
[ 1377.345660][T16160] sock 0
[ 1377.345660][T16160] vmalloc 8192
[ 1377.345660][T16160] shmem 10457088
[ 1377.345660][T16160] file_mapped 159744
[ 1377.345660][T16160] file_dirty 0
[ 1377.345660][T16160] file_writeback 0
[ 1377.345660][T16160] swapcached 0
[ 1377.345660][T16160] inactive_anon 393216
[ 1377.345660][T16160] active_anon 10457088
[ 1377.345660][T16160] inactive_file 4096
[ 1377.345660][T16160] active_file 0
[ 1377.345660][T16160] unevictable 0
[ 1377.345660][T16160] slab_reclaimable 38528
[ 1377.345660][T16160] slab_unreclaimable 294098640
[ 1377.345660][T16160] slab 294137168
[ 1377.345660][T16160] workingset_refault_anon 0
[ 1377.345660][T16160] workingset_refault_file 3
[ 1377.345660][T16160] workingset_activate_anon 0
[ 1377.446756][T16160] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16156,uid=0
05:13:33 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x11}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:33 executing program 4:
request_key(&(0x7f0000000000)='logon\x00', &(0x7f0000000040)={'syz', 0x3}, 0x0, 0xfffffffffffffffb)

05:13:33 executing program 2:
syz_clone(0x49800000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:13:33 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x9603}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:33 executing program 1:
sendmsg$ETHTOOL_MSG_WOL_GET(0xffffffffffffffff, 0x0, 0xf115ac76f10a9741)

05:13:33 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, 0x0)
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

[ 1377.464635][T16160] Memory cgroup out of memory: Killed process 16156 (syz-executor.0) total-vm:46468kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1377.496395][T16160] socket: no more sockets
05:13:33 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x14}, 0x14}, 0xc}, 0x0)

05:13:33 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r0, &(0x7f0000009800)={&(0x7f0000009700), 0xffdf, &(0x7f00000097c0)={&(0x7f0000009740)={0x14, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}}, 0xf}}, 0x0)

[ 1377.515747][T16182] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:33 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000340), 0x4)

05:13:33 executing program 4:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f0000000080)='/dev/vcsa\x00')
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffb000/0x3000)=nil, 0x3000, &(0x7f0000000000)='nl80211\x00')

05:13:33 executing program 1:
keyctl$read(0x2, 0x0, 0x0, 0x0)

[ 1377.575125][T16190] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1377.632379][T16188] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1377.644397][T16188] CPU: 0 PID: 16188 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1377.656811][T16188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1377.666862][T16188] Call Trace:
[ 1377.670142][T16188]  <TASK>
[ 1377.673068][T16188]  dump_stack_lvl+0xd6/0x122
[ 1377.677671][T16188]  dump_stack+0x11/0x15
[ 1377.681860][T16188]  dump_header+0x98/0x430
[ 1377.686195][T16188]  oom_kill_process+0x100/0x540
[ 1377.691081][T16188]  out_of_memory+0x620/0x880
[ 1377.695683][T16188]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1377.701235][T16188]  mem_cgroup_oom+0x2e7/0x370
[ 1377.705918][T16188]  try_charge_memcg+0x717/0x9c0
[ 1377.710852][T16188]  ? __alloc_pages+0x199/0x340
[ 1377.715696][T16188]  charge_memcg+0x54/0x250
[ 1377.720210][T16188]  __mem_cgroup_charge+0x25/0xa0
[ 1377.725263][T16188]  wp_page_copy+0x209/0x1460
[ 1377.729998][T16188]  ? shrink_zones+0x525/0x5d0
[ 1377.734700][T16188]  ? preempt_count_add+0x5e/0xa0
[ 1377.739778][T16188]  do_wp_page+0x2dd/0x780
[ 1377.744212][T16188]  handle_mm_fault+0x5ef/0xa80
[ 1377.748995][T16188]  do_user_addr_fault+0x4a1/0x980
[ 1377.754106][T16188]  exc_page_fault+0x60/0x160
[ 1377.758811][T16188]  asm_exc_page_fault+0x22/0x30
[ 1377.763669][T16188] RIP: 0033:0x7fa69bfc5970
[ 1377.768086][T16188] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1377.787789][T16188] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1377.793862][T16188] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1377.801909][T16188] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
[ 1377.810011][T16188] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1377.817989][T16188] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1377.825963][T16188] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
[ 1377.834371][T16188]  ? __x64_sys_socket+0xc/0x50
[ 1377.839189][T16188]  </TASK>
[ 1377.849578][T16188] memory: usage 307196kB, limit 307200kB, failcnt 44418
[ 1377.857003][T16188] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1377.864191][T16188] Memory cgroup stats for /syz0:
[ 1377.864525][T16188] anon 393216
[ 1377.864525][T16188] file 10461184
[ 1377.864525][T16188] kernel 303714304
[ 1377.864525][T16188] kernel_stack 81920
[ 1377.864525][T16188] pagetables 229376
[ 1377.864525][T16188] sec_pagetables 0
[ 1377.864525][T16188] percpu 9172448
[ 1377.864525][T16188] sock 0
[ 1377.864525][T16188] vmalloc 8192
[ 1377.864525][T16188] shmem 10457088
[ 1377.864525][T16188] file_mapped 159744
[ 1377.864525][T16188] file_dirty 0
[ 1377.864525][T16188] file_writeback 0
[ 1377.864525][T16188] swapcached 0
[ 1377.864525][T16188] inactive_anon 393216
[ 1377.864525][T16188] active_anon 10457088
[ 1377.864525][T16188] inactive_file 4096
[ 1377.864525][T16188] active_file 0
05:13:33 executing program 4:
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140), 0x1e7042, 0x0)

[ 1377.864525][T16188] unevictable 0
[ 1377.864525][T16188] slab_reclaimable 39504
[ 1377.864525][T16188] slab_unreclaimable 294100856
[ 1377.864525][T16188] slab 294140360
[ 1377.864525][T16188] workingset_refault_anon 0
[ 1377.864525][T16188] workingset_refault_file 3
[ 1377.864525][T16188] workingset_activate_anon 0
[ 1377.964482][T16188] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16188,uid=0
05:13:33 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x12}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:33 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x9a05}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1377.979781][T16188] Memory cgroup out of memory: Killed process 16188 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1378.033083][T16207] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1378.066098][T16209] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1378.077085][T16209] CPU: 1 PID: 16209 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1378.089558][T16209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1378.099619][T16209] Call Trace:
[ 1378.102895][T16209]  <TASK>
[ 1378.105892][T16209]  dump_stack_lvl+0xd6/0x122
[ 1378.110499][T16209]  dump_stack+0x11/0x15
[ 1378.114723][T16209]  dump_header+0x98/0x430
[ 1378.119058][T16209]  oom_kill_process+0x100/0x540
[ 1378.123950][T16209]  out_of_memory+0x620/0x880
[ 1378.128561][T16209]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1378.134225][T16209]  mem_cgroup_oom+0x2e7/0x370
[ 1378.138908][T16209]  try_charge_memcg+0x717/0x9c0
[ 1378.143771][T16209]  ? avc_has_perm_noaudit+0x1c0/0x270
[ 1378.149203][T16209]  obj_cgroup_charge+0x171/0x2b0
[ 1378.154157][T16209]  memcg_slab_pre_alloc_hook+0xf7/0x170
[ 1378.159731][T16209]  ? sock_alloc_inode+0x2d/0xa0
[ 1378.164660][T16209]  kmem_cache_alloc_lru+0x75/0x2a0
[ 1378.169877][T16209]  sock_alloc_inode+0x2d/0xa0
[ 1378.174594][T16209]  ? sockfs_init_fs_context+0x70/0x70
[ 1378.179981][T16209]  alloc_inode+0x38/0x150
[ 1378.184310][T16209]  new_inode_pseudo+0x13/0x60
[ 1378.188994][T16209]  __sock_create+0x122/0x4e0
[ 1378.193594][T16209]  __sys_socket+0x9c/0x220
[ 1378.198050][T16209]  __x64_sys_socket+0x3b/0x50
[ 1378.202734][T16209]  do_syscall_64+0x2b/0x70
[ 1378.207260][T16209]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1378.213167][T16209] RIP: 0033:0x7fa69c0185a9
[ 1378.217584][T16209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1378.237316][T16209] RSP: 002b:00007fa69b38c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1378.245732][T16209] RAX: ffffffffffffffda RBX: 00007fa69c138f80 RCX: 00007fa69c0185a9
[ 1378.253767][T16209] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000010
[ 1378.261788][T16209] RBP: 00007fa69c0737b0 R08: 0000000000000000 R09: 0000000000000000
[ 1378.269761][T16209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1378.277761][T16209] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1378.285739][T16209]  </TASK>
[ 1378.288804][T16209] memory: usage 307200kB, limit 307200kB, failcnt 44485
[ 1378.295756][T16209] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1378.302693][T16209] Memory cgroup stats for /syz0:
[ 1378.302920][T16209] anon 389120
[ 1378.302920][T16209] file 10461184
[ 1378.302920][T16209] kernel 303722496
[ 1378.302920][T16209] kernel_stack 81920
[ 1378.302920][T16209] pagetables 229376
[ 1378.302920][T16209] sec_pagetables 0
[ 1378.302920][T16209] percpu 9172448
[ 1378.302920][T16209] sock 0
[ 1378.302920][T16209] vmalloc 8192
[ 1378.302920][T16209] shmem 10457088
[ 1378.302920][T16209] file_mapped 159744
[ 1378.302920][T16209] file_dirty 0
[ 1378.302920][T16209] file_writeback 0
[ 1378.302920][T16209] swapcached 0
[ 1378.302920][T16209] inactive_anon 389120
[ 1378.302920][T16209] active_anon 10457088
[ 1378.302920][T16209] inactive_file 0
[ 1378.302920][T16209] active_file 4096
[ 1378.302920][T16209] unevictable 0
[ 1378.302920][T16209] slab_reclaimable 44032
[ 1378.302920][T16209] slab_unreclaimable 294100856
[ 1378.302920][T16209] slab 294144888
[ 1378.302920][T16209] workingset_refault_anon 0
[ 1378.302920][T16209] workingset_refault_file 3
[ 1378.302920][T16209] workingset_activate_anon 0
[ 1378.369264][T16211] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1378.398824][T16209] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16208,uid=0
[ 1378.398966][T16209] Memory cgroup out of memory: Killed process 16208 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:35 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x8917, &(0x7f0000000100)={'tunl0\x00', 0x0})

05:13:35 executing program 4:
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ffd000/0x3000)=nil)

05:13:35 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:35 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$GTP_CMD_DELPDP(r0, &(0x7f0000001980)={0x0, 0x0, &(0x7f0000001940)={0x0}}, 0x885)

05:13:35 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xa203}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:35 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x24}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:35 executing program 4:
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
mlock2(&(0x7f0000ff8000/0x7000)=nil, 0x7000, 0x0)

05:13:35 executing program 4:
r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000200), &(0x7f0000000240)={0x0, "b47ade12fbcf393bdfa0fa8f939ddd93f82ebaafd13a879fe1cc333dbad3d2eda0ed5b10434c3c01ca76ba5c9e548ade46617f09b8a23ab6374bc8b838daf574"}, 0x44, 0xfffffffffffffffc)
add_key(&(0x7f0000000080)='big_key\x00', 0x0, 0x0, 0x0, r0)

[ 1379.356970][T16218] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:35 executing program 2:
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000140), 0xc2000, 0x0)

05:13:35 executing program 4:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

05:13:35 executing program 4:
mprotect(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x3000000)

05:13:35 executing program 2:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x8000000)

[ 1379.404892][T16231] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1379.436727][T16214] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1379.448303][T16214] CPU: 0 PID: 16214 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1379.460729][T16214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1379.470851][T16214] Call Trace:
[ 1379.474127][T16214]  <TASK>
[ 1379.477055][T16214]  dump_stack_lvl+0xd6/0x122
[ 1379.481709][T16214]  dump_stack+0x11/0x15
[ 1379.486016][T16214]  dump_header+0x98/0x430
[ 1379.490359][T16214]  oom_kill_process+0x100/0x540
[ 1379.495321][T16214]  out_of_memory+0x620/0x880
[ 1379.499912][T16214]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1379.505514][T16214]  mem_cgroup_oom+0x2e7/0x370
[ 1379.510196][T16214]  try_charge_memcg+0x717/0x9c0
[ 1379.515058][T16214]  ? __alloc_pages+0x199/0x340
[ 1379.519825][T16214]  charge_memcg+0x54/0x250
[ 1379.524253][T16214]  __mem_cgroup_charge+0x25/0xa0
[ 1379.529260][T16214]  wp_page_copy+0x209/0x1460
[ 1379.533860][T16214]  ? shrink_zones+0x525/0x5d0
[ 1379.538540][T16214]  ? preempt_count_add+0x5e/0xa0
[ 1379.543514][T16214]  do_wp_page+0x2dd/0x780
[ 1379.548004][T16214]  handle_mm_fault+0x5ef/0xa80
[ 1379.552779][T16214]  do_user_addr_fault+0x4a1/0x980
[ 1379.557959][T16214]  exc_page_fault+0x60/0x160
[ 1379.562552][T16214]  asm_exc_page_fault+0x22/0x30
[ 1379.567467][T16214] RIP: 0033:0x7fa69bfc5970
[ 1379.571893][T16214] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1379.591510][T16214] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1379.597683][T16214] RAX: 00000000db29429d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1379.605675][T16214] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a2b5e
[ 1379.613645][T16214] RBP: 00000000db29429d R08: 000000000000029d R09: 00000000db2942a1
[ 1379.621698][T16214] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1379.629713][T16214] R13: 0000000000000001 R14: 0000000000000003 R15: ffffffff83a0cf1c
[ 1379.637694][T16214]  ? __sock_create+0xbc/0x4e0
[ 1379.642418][T16214]  </TASK>
[ 1379.645457][T16214] memory: usage 307188kB, limit 307200kB, failcnt 44556
05:13:35 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
recvfrom(r0, 0x0, 0x0, 0x2, 0x0, 0x0)

05:13:35 executing program 4:
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESDEC])

[ 1379.652398][T16214] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1379.659239][T16214] Memory cgroup stats for /syz0:
[ 1379.659560][T16214] anon 405504
[ 1379.659560][T16214] file 10461184
[ 1379.659560][T16214] kernel 303693824
[ 1379.659560][T16214] kernel_stack 81920
[ 1379.659560][T16214] pagetables 229376
[ 1379.659560][T16214] sec_pagetables 0
[ 1379.659560][T16214] percpu 9172448
[ 1379.659560][T16214] sock 0
[ 1379.659560][T16214] vmalloc 8192
[ 1379.659560][T16214] shmem 10457088
[ 1379.659560][T16214] file_mapped 159744
[ 1379.659560][T16214] file_dirty 0
[ 1379.659560][T16214] file_writeback 0
[ 1379.659560][T16214] swapcached 0
[ 1379.659560][T16214] inactive_anon 405504
[ 1379.659560][T16214] active_anon 10457088
[ 1379.659560][T16214] inactive_file 4096
[ 1379.659560][T16214] active_file 0
[ 1379.659560][T16214] unevictable 0
[ 1379.659560][T16214] slab_reclaimable 39504
[ 1379.659560][T16214] slab_unreclaimable 294087896
[ 1379.659560][T16214] slab 294127400
[ 1379.659560][T16214] workingset_refault_anon 0
[ 1379.659560][T16214] workingset_refault_file 3
[ 1379.659560][T16214] workingset_activate_anon 0
[ 1379.755559][T16214] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16214,uid=0
[ 1379.770919][T16214] Memory cgroup out of memory: Killed process 16214 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1379.804269][T16244] 9pnet_fd: Insufficient options for proto=fd
05:13:35 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:35 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xbf05}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:35 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x25}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:35 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0x7)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000140)={'ip6tnl0\x00', &(0x7f00000000c0)={'ip6gre0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}, @empty}})

05:13:35 executing program 4:
request_key(&(0x7f0000000f40)='keyring\x00', &(0x7f0000000f80)={'syz', 0x0}, 0x0, 0xfffffffffffffffe)

05:13:35 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x8901, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000000)={'ip6gre0\x00', 0x0, 0x4, 0x8, 0x20, 0x99, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x41}, 0x7, 0x10, 0x7, 0x9}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000300)={'ip6tnl0\x00', &(0x7f0000000280)={'syztnl0\x00', <r3=>0x0, 0x29, 0x0, 0x0, 0x0, 0x0, @empty, @empty}})
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0}, &(0x7f0000000140)=0x14)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000200)={'syztnl2\x00', &(0x7f0000000180)={'syztnl0\x00', <r5=>r4, 0x2f, 0x6, 0x0, 0x0, 0x10, @remote, @dev={0xfe, 0x80, '\x00', 0x31}, 0x80, 0x28, 0x7, 0x10001}})
sendmsg$FOU_CMD_DEL(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x3c, 0x0, 0x800, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_IFINDEX={0x8, 0xb, r4}, @FOU_ATTR_IPPROTO={0x5, 0x3, 0x88}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e20}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_TYPE={0x5, 0x4, 0x3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040000}, 0x40090)
r6 = socket(0x5, 0x6, 0x1)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r6, 0x89f3, &(0x7f0000000640)={'tunl0\x00', &(0x7f0000000600)={'gretap0\x00', r5, 0x8000, 0x48, 0x101, 0x1, {{0x8, 0x4, 0x1, 0x39, 0x20, 0x66, 0x0, 0x9, 0x29, 0x0, @remote, @rand_addr=0x64010100, {[@timestamp_prespec={0x44, 0xc, 0xcc, 0x3, 0xe, [{@remote, 0x20}]}]}}}}})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000240)={'ip6tnl0\x00', &(0x7f0000000340)={'ip6_vti0\x00', r3, 0x2f, 0x1, 0x5, 0x4, 0x45, @private2, @mcast2, 0x8000, 0x700, 0x80000001, 0x8}})
rt_sigpending(&(0x7f00000005c0), 0x8)
r7 = syz_open_dev$vcsu(&(0x7f0000000040), 0x2, 0x0)
getsockopt$sock_timeval(r7, 0x1, 0x0, 0x0, 0x0)
sendmsg$FOU_CMD_GET(r7, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x38, 0x0, 0x200, 0x70bd26, 0x25dfdbfc, {}, [@FOU_ATTR_PORT={0x6, 0x1, 0x4e20}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e21}, @FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e24}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x40040a0}, 0x801)

[ 1379.910966][T16250] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1379.922393][T16250] CPU: 0 PID: 16250 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1379.934863][T16250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1379.944929][T16250] Call Trace:
[ 1379.948216][T16250]  <TASK>
[ 1379.951144][T16250]  dump_stack_lvl+0xd6/0x122
[ 1379.955815][T16250]  dump_stack+0x11/0x15
05:13:35 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xc005}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1379.959987][T16250]  dump_header+0x98/0x430
[ 1379.964325][T16250]  oom_kill_process+0x100/0x540
[ 1379.969181][T16250]  out_of_memory+0x620/0x880
[ 1379.973895][T16250]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1379.979514][T16250]  mem_cgroup_oom+0x2e7/0x370
[ 1379.984270][T16250]  try_charge_memcg+0x717/0x9c0
[ 1379.989162][T16250]  ? __alloc_pages+0x199/0x340
[ 1379.993931][T16250]  charge_memcg+0x54/0x250
[ 1379.998422][T16250]  __mem_cgroup_charge+0x25/0xa0
[ 1380.003365][T16250]  wp_page_copy+0x209/0x1460
[ 1380.008022][T16250]  ? shrink_zones+0x525/0x5d0
[ 1380.012749][T16250]  ? preempt_count_add+0x5e/0xa0
[ 1380.017767][T16250]  do_wp_page+0x2dd/0x780
[ 1380.022166][T16250]  handle_mm_fault+0x5ef/0xa80
[ 1380.026941][T16250]  do_user_addr_fault+0x4a1/0x980
[ 1380.031987][T16250]  exc_page_fault+0x60/0x160
[ 1380.036576][T16250]  asm_exc_page_fault+0x22/0x30
[ 1380.041504][T16250] RIP: 0033:0x7fa69bfc5970
[ 1380.045958][T16250] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1380.065570][T16250] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1380.071694][T16250] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1380.079725][T16250] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1380.087704][T16250] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1380.095716][T16250] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1380.103686][T16250] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
05:13:35 executing program 2:
fchownat(0xffffffffffffffff, &(0x7f0000000040)='\x00', 0x0, 0x0, 0x1000)

[ 1380.111695][T16250]  ? __sock_create+0x24/0x4e0
[ 1380.116385][T16250]  </TASK>
[ 1380.119439][T16250] memory: usage 307200kB, limit 307200kB, failcnt 44629
[ 1380.126437][T16250] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1380.133302][T16250] Memory cgroup stats for /syz0:
[ 1380.133723][T16250] anon 401408
[ 1380.133723][T16250] file 10461184
[ 1380.133723][T16250] kernel 303710208
[ 1380.133723][T16250] kernel_stack 81920
[ 1380.133723][T16250] pagetables 229376
[ 1380.133723][T16250] sec_pagetables 0
[ 1380.133723][T16250] percpu 9172448
[ 1380.133723][T16250] sock 0
[ 1380.133723][T16250] vmalloc 8192
[ 1380.133723][T16250] shmem 10457088
[ 1380.133723][T16250] file_mapped 159744
[ 1380.133723][T16250] file_dirty 0
[ 1380.133723][T16250] file_writeback 0
[ 1380.133723][T16250] swapcached 0
[ 1380.133723][T16250] inactive_anon 401408
[ 1380.133723][T16250] active_anon 10457088
[ 1380.133723][T16250] inactive_file 4096
[ 1380.133723][T16250] active_file 0
[ 1380.133723][T16250] unevictable 0
[ 1380.133723][T16250] slab_reclaimable 45008
05:13:36 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x2f}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:36 executing program 2:
r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f00000001c0)={'fscrypt:', @desc3}, &(0x7f0000000240)={0x0, "b47ade12fbcf393bdfa0fa8f939ddd93f82ebaafd13a879fe1cc333dbad3d2eda0ed5b10434c3c01ca76ba5c9e548ade46617f09b8a23ab6374bc8b838daf574"}, 0x48, 0xfffffffffffffffc)
add_key(&(0x7f0000000080)='logon\x00', 0x0, 0x0, 0x0, 0xffffffffffffffff)
add_key$fscrypt_v1(&(0x7f0000000180), 0x0, 0x0, 0x0, r0)

[ 1380.133723][T16250] slab_unreclaimable 294094520
[ 1380.133723][T16250] slab 294139528
[ 1380.133723][T16250] workingset_refault_anon 0
[ 1380.133723][T16250] workingset_refault_file 3
[ 1380.133723][T16250] workingset_activate_anon 0
[ 1380.229525][T16250] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16250,uid=0
[ 1380.244840][T16250] Memory cgroup out of memory: Killed process 16250 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1380.293335][T16271] validate_nla: 26 callbacks suppressed
[ 1380.293349][T16271] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1380.307893][T16271] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1380.315980][T16271] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1380.324082][T16271] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1380.399759][T16276] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1380.410668][T16276] CPU: 1 PID: 16276 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1380.423085][T16276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1380.433171][T16276] Call Trace:
[ 1380.436452][T16276]  <TASK>
[ 1380.439379][T16276]  dump_stack_lvl+0xd6/0x122
[ 1380.444035][T16276]  dump_stack+0x11/0x15
[ 1380.448255][T16276]  dump_header+0x98/0x430
[ 1380.452588][T16276]  oom_kill_process+0x100/0x540
[ 1380.457483][T16276]  out_of_memory+0x620/0x880
[ 1380.462084][T16276]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1380.467674][T16276]  mem_cgroup_oom+0x2e7/0x370
[ 1380.472431][T16276]  try_charge_memcg+0x717/0x9c0
[ 1380.477339][T16276]  ? __alloc_pages+0x199/0x340
[ 1380.482115][T16276]  charge_memcg+0x54/0x250
[ 1380.486646][T16276]  __mem_cgroup_charge+0x25/0xa0
[ 1380.491585][T16276]  wp_page_copy+0x209/0x1460
[ 1380.496249][T16276]  ? shrink_zones+0x525/0x5d0
[ 1380.500931][T16276]  ? preempt_count_add+0x5e/0xa0
[ 1380.505942][T16276]  do_wp_page+0x2dd/0x780
[ 1380.510280][T16276]  handle_mm_fault+0x5ef/0xa80
[ 1380.515062][T16276]  do_user_addr_fault+0x4a1/0x980
[ 1380.520225][T16276]  exc_page_fault+0x60/0x160
[ 1380.524836][T16276]  asm_exc_page_fault+0x22/0x30
[ 1380.529705][T16276] RIP: 0033:0x7fa69bfc5970
[ 1380.534132][T16276] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1380.553755][T16276] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1380.559821][T16276] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1380.567869][T16276] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1380.575855][T16276] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1380.583872][T16276] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1380.591845][T16276] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1380.599816][T16276]  ? __sock_create+0x24/0x4e0
[ 1380.604504][T16276]  </TASK>
[ 1380.607552][T16276] memory: usage 307200kB, limit 307200kB, failcnt 44702
[ 1380.614508][T16276] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1380.621348][T16276] Memory cgroup stats for /syz0:
[ 1380.621681][T16276] anon 401408
[ 1380.621681][T16276] file 10461184
[ 1380.621681][T16276] kernel 303710208
[ 1380.621681][T16276] kernel_stack 81920
[ 1380.621681][T16276] pagetables 229376
[ 1380.621681][T16276] sec_pagetables 0
[ 1380.621681][T16276] percpu 9172448
[ 1380.621681][T16276] sock 0
[ 1380.621681][T16276] vmalloc 8192
[ 1380.621681][T16276] shmem 10457088
[ 1380.621681][T16276] file_mapped 159744
[ 1380.621681][T16276] file_dirty 0
[ 1380.621681][T16276] file_writeback 0
[ 1380.621681][T16276] swapcached 0
[ 1380.621681][T16276] inactive_anon 401408
[ 1380.621681][T16276] active_anon 10457088
[ 1380.621681][T16276] inactive_file 0
[ 1380.621681][T16276] active_file 4096
[ 1380.621681][T16276] unevictable 0
[ 1380.621681][T16276] slab_reclaimable 45008
[ 1380.621681][T16276] slab_unreclaimable 294094520
05:13:36 executing program 1:
syz_open_dev$vcsu(0xffffffffffffffff, 0x0, 0x0)

05:13:36 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x600}}}}}}}, 0x6e)

05:13:36 executing program 2:
openat$zero(0xffffffffffffff9c, 0x0, 0x600000, 0x0)
syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
syz_clone(0x52000000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:13:36 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xd510}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:36 executing program 4:
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
mincore(&(0x7f0000400000/0xc00000)=nil, 0xc00000, &(0x7f00000000c0)=""/164)
munmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000)

05:13:36 executing program 1:
mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}, 0x22}, {@defcontext={'defcontext', 0x3d, 'root'}}]}})

[ 1380.621681][T16276] slab 294139528
[ 1380.621681][T16276] workingset_refault_anon 0
[ 1380.621681][T16276] workingset_refault_file 3
[ 1380.621681][T16276] workingset_activate_anon 0
[ 1380.638692][T16288] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1380.717528][T16276] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16276,uid=0
05:13:36 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x3a}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:36 executing program 4:
prctl$PR_SET_MM(0x23, 0x3, &(0x7f0000ff8000/0x1000)=nil)

05:13:36 executing program 1:
add_key$fscrypt_v1(&(0x7f00000000c0), &(0x7f0000000100)={'fscrypt:', @desc2}, &(0x7f0000000140)={0x0, "827c405c5058650ac8349ce3597a5c73953505f3a2cc0f2d7dddb1f7e9fd1a33925ef956b16bd7d6c9abbb190bea3ef359a9eb740e68f6f9956000"}, 0x48, 0xfffffffffffffffd)

05:13:36 executing program 4:
r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f00000000c0)={'fscrypt:', @desc4}, &(0x7f00000005c0)={0x0, "cecd9142362f8012ce186e09517eba7f176b93769b10ebb296f22371396db5129d1d0c9eaee3dd7cddddb4e75572b7195de96ca3b78ccafe26f6238f0430ea55"}, 0x48, r0)

[ 1380.717602][T16276] Memory cgroup out of memory: Killed process 16276 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1380.758637][T16299] SELinux: security_context_str_to_sid (sysadm_udefcontext=root,) failed with errno=-22
[ 1380.763043][T16288] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1380.763058][T16288] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1380.763068][T16288] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:13:36 executing program 4:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PPPIOCGMRU(r0, 0x80108906, 0x0)

05:13:36 executing program 1:
prctl$PR_SET_MM(0x23, 0x9, &(0x7f0000ffc000/0x3000)=nil)

05:13:36 executing program 4:
mlock2(&(0x7f0000ff5000/0x7000)=nil, 0x7000, 0x1)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
munmap(&(0x7f0000ff5000/0x1000)=nil, 0x1000)

[ 1380.904343][T16302] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1380.916117][T16302] CPU: 0 PID: 16302 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1380.928584][T16302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1380.938657][T16302] Call Trace:
[ 1380.941933][T16302]  <TASK>
[ 1380.944858][T16302]  dump_stack_lvl+0xd6/0x122
[ 1380.949494][T16302]  dump_stack+0x11/0x15
[ 1380.953726][T16302]  dump_header+0x98/0x430
[ 1380.958059][T16302]  oom_kill_process+0x100/0x540
[ 1380.962924][T16302]  out_of_memory+0x620/0x880
[ 1380.967514][T16302]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1380.974861][T16302]  mem_cgroup_oom+0x2e7/0x370
[ 1380.979601][T16302]  try_charge_memcg+0x717/0x9c0
[ 1380.984498][T16302]  ? __alloc_pages+0x199/0x340
[ 1380.989268][T16302]  charge_memcg+0x54/0x250
[ 1380.993688][T16302]  __mem_cgroup_charge+0x25/0xa0
[ 1380.998670][T16302]  wp_page_copy+0x209/0x1460
[ 1381.003266][T16302]  ? shrink_zones+0x525/0x5d0
[ 1381.008013][T16302]  ? preempt_count_add+0x5e/0xa0
[ 1381.013021][T16302]  do_wp_page+0x2dd/0x780
[ 1381.017359][T16302]  handle_mm_fault+0x5ef/0xa80
[ 1381.022142][T16302]  do_user_addr_fault+0x4a1/0x980
[ 1381.027335][T16302]  exc_page_fault+0x60/0x160
[ 1381.031937][T16302]  asm_exc_page_fault+0x22/0x30
[ 1381.036964][T16302] RIP: 0033:0x7fa69bfc5970
[ 1381.041374][T16302] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1381.061037][T16302] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1381.067106][T16302] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1381.075082][T16302] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1381.083105][T16302] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1381.091128][T16302] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1381.099144][T16302] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1381.107168][T16302]  ? __sock_create+0x24/0x4e0
[ 1381.111860][T16302]  </TASK>
[ 1381.114899][T16302] memory: usage 307200kB, limit 307200kB, failcnt 44770
[ 1381.121934][T16302] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1381.128787][T16302] Memory cgroup stats for /syz0:
[ 1381.129146][T16302] anon 401408
[ 1381.129146][T16302] file 10465280
[ 1381.129146][T16302] kernel 303706112
[ 1381.129146][T16302] kernel_stack 81920
[ 1381.129146][T16302] pagetables 229376
[ 1381.129146][T16302] sec_pagetables 0
[ 1381.129146][T16302] percpu 9172448
[ 1381.129146][T16302] sock 0
[ 1381.129146][T16302] vmalloc 8192
[ 1381.129146][T16302] shmem 10457088
[ 1381.129146][T16302] file_mapped 159744
[ 1381.129146][T16302] file_dirty 0
[ 1381.129146][T16302] file_writeback 0
[ 1381.129146][T16302] swapcached 0
[ 1381.129146][T16302] inactive_anon 401408
[ 1381.129146][T16302] active_anon 10457088
[ 1381.129146][T16302] inactive_file 4096
[ 1381.129146][T16302] active_file 4096
[ 1381.129146][T16302] unevictable 0
[ 1381.129146][T16302] slab_reclaimable 39616
[ 1381.129146][T16302] slab_unreclaimable 294094256
[ 1381.129146][T16302] slab 294133872
[ 1381.129146][T16302] workingset_refault_anon 0
[ 1381.129146][T16302] workingset_refault_file 4
[ 1381.129146][T16302] workingset_activate_anon 0
[ 1381.225368][T16302] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16302,uid=0
[ 1381.240642][T16302] Memory cgroup out of memory: Killed process 16302 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:37 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, 0x0, 0x0)

05:13:37 executing program 1:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000380)='net/ipv6_route\x00')

05:13:37 executing program 4:
mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)={'trans=fd,', {}, 0x22})

05:13:37 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xe4e7}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:37 executing program 2:
sendmsg$NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000009800)={0x0, 0x0, 0x0}, 0x0)
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffb000/0x2000)=nil, 0x2000, &(0x7f0000000000)='\'{-[^(\x00')

05:13:37 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x48}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:37 executing program 1:
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000c00), 0x201041, 0x0)

05:13:37 executing program 2:
syz_clone(0x48a3000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:13:37 executing program 4:
sendmsg$NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000009800)={0x0, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)="a1")

[ 1381.340249][T16332] 9pnet_fd: Insufficient options for proto=fd
05:13:37 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0xfffffffffffffffd}}, 0x0)

[ 1381.391475][T16329] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1381.400312][T16329] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:13:37 executing program 4:
prctl$PR_SET_MM(0x23, 0xc, &(0x7f0000ffd000/0x3000)=nil)

05:13:37 executing program 1:
socketpair(0x1, 0x0, 0x0, &(0x7f00000001c0))

[ 1381.504801][T16355] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1381.515793][T16355] CPU: 0 PID: 16355 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1381.528218][T16355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1381.538355][T16355] Call Trace:
[ 1381.541636][T16355]  <TASK>
[ 1381.544617][T16355]  dump_stack_lvl+0xd6/0x122
[ 1381.549229][T16355]  dump_stack+0x11/0x15
[ 1381.553394][T16355]  dump_header+0x98/0x430
[ 1381.557795][T16355]  oom_kill_process+0x100/0x540
[ 1381.562661][T16355]  out_of_memory+0x620/0x880
[ 1381.567325][T16355]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1381.572880][T16355]  mem_cgroup_oom+0x2e7/0x370
[ 1381.577560][T16355]  try_charge_memcg+0x717/0x9c0
[ 1381.582489][T16355]  ? avc_has_perm_noaudit+0x1c0/0x270
[ 1381.587875][T16355]  obj_cgroup_charge+0x171/0x2b0
[ 1381.592927][T16355]  memcg_slab_pre_alloc_hook+0xf7/0x170
[ 1381.598578][T16355]  ? sock_alloc_inode+0x2d/0xa0
[ 1381.603476][T16355]  kmem_cache_alloc_lru+0x75/0x2a0
[ 1381.608635][T16355]  sock_alloc_inode+0x2d/0xa0
[ 1381.613385][T16355]  ? sockfs_init_fs_context+0x70/0x70
[ 1381.618793][T16355]  alloc_inode+0x38/0x150
[ 1381.623182][T16355]  new_inode_pseudo+0x13/0x60
[ 1381.627863][T16355]  __sock_create+0x122/0x4e0
[ 1381.632481][T16355]  __sys_socket+0x9c/0x220
[ 1381.636932][T16355]  __x64_sys_socket+0x3b/0x50
[ 1381.641635][T16355]  do_syscall_64+0x2b/0x70
[ 1381.646144][T16355]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1381.652174][T16355] RIP: 0033:0x7fa69c0185a9
[ 1381.656598][T16355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1381.676274][T16355] RSP: 002b:00007fa69b38c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1381.684756][T16355] RAX: ffffffffffffffda RBX: 00007fa69c138f80 RCX: 00007fa69c0185a9
[ 1381.692802][T16355] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000010
[ 1381.700776][T16355] RBP: 00007fa69c0737b0 R08: 0000000000000000 R09: 0000000000000000
[ 1381.708750][T16355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1381.716811][T16355] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1381.724889][T16355]  </TASK>
[ 1381.735774][T16355] memory: usage 307200kB, limit 307200kB, failcnt 44837
[ 1381.742748][T16355] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1381.749590][T16355] Memory cgroup stats for /syz0:
[ 1381.749797][T16355] anon 389120
[ 1381.749797][T16355] file 10461184
[ 1381.749797][T16355] kernel 303722496
[ 1381.749797][T16355] kernel_stack 81920
[ 1381.749797][T16355] pagetables 229376
[ 1381.749797][T16355] sec_pagetables 0
[ 1381.749797][T16355] percpu 9172448
[ 1381.749797][T16355] sock 0
[ 1381.749797][T16355] vmalloc 8192
[ 1381.749797][T16355] shmem 10457088
[ 1381.749797][T16355] file_mapped 159744
[ 1381.749797][T16355] file_dirty 0
[ 1381.749797][T16355] file_writeback 0
[ 1381.749797][T16355] swapcached 0
[ 1381.749797][T16355] inactive_anon 389120
[ 1381.749797][T16355] active_anon 10457088
[ 1381.749797][T16355] inactive_file 4096
[ 1381.749797][T16355] active_file 0
[ 1381.749797][T16355] unevictable 0
[ 1381.749797][T16355] slab_reclaimable 44032
[ 1381.749797][T16355] slab_unreclaimable 294100856
[ 1381.749797][T16355] slab 294144888
[ 1381.749797][T16355] workingset_refault_anon 0
[ 1381.749797][T16355] workingset_refault_file 4
[ 1381.749797][T16355] workingset_activate_anon 0
[ 1381.845745][T16355] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16351,uid=0
[ 1381.861070][T16355] Memory cgroup out of memory: Killed process 16351 (syz-executor.0) total-vm:46468kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:37 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, 0x0, 0x0)

05:13:37 executing program 2:
get_robust_list(0x0, 0x0, &(0x7f0000000180))
socketpair(0x1, 0x0, 0x0, &(0x7f00000001c0))

05:13:37 executing program 1:
syz_open_procfs(0x0, &(0x7f0000000040)='map_files\x00')

05:13:37 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xe5e7}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:37 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x0, 0x0, 0x0, 0x180}, 0x48)

05:13:37 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x4a}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:37 executing program 2:
r0 = socket$inet6(0xa, 0x3, 0x7)
ioctl$sock_inet6_udp_SIOCINQ(r0, 0xc0189436, &(0x7f0000000040))

05:13:37 executing program 1:
keyctl$read(0x5, 0x0, 0x0, 0x0)

05:13:37 executing program 4:
prctl$PR_SET_VMA(0x1d, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)

05:13:37 executing program 2:
mlock2(&(0x7f0000ff4000/0x2000)=nil, 0x2000, 0x0)
munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000)
munmap(&(0x7f0000ff5000/0x1000)=nil, 0x1000)

05:13:37 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000003340)={0x0, 0x0, &(0x7f0000003300)={&(0x7f0000000080)={0xe84, r1, 0x1, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x88, 0x3, 0x0, 0x1, [{0x84, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0x7d, 0x1, "7455a1adefc11b4df569289ebc846099e7f58bcdead4188bed73024d37dd8c10dfc0438ca8e5f7a9c275bac98cbf8b203ae36207b0498103facbf94ea9416127729122f9e9d0caa1b4d9e861674297b3025ea40f2eb0993db7b3cc2fe2cb5486a8d5f6b912d5b63379096e450a27dfa154803277371961ebd7"}}]}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x4}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0xac, 0x3, 0x0, 0x1, [{0x9c, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0x95, 0x1, "4695be4bab7dfa55ad9d0674838c1f436c93859f2199f0bced03def08a1c0ae0023f5e699eeaf76176c1e4ae1277a4b3752f3a2e41d5989f9796626fa59a13ffcdf864ec2177052ff85680833a97d14539e9a1abbd231d93c74bdfdeda2ea0df7ee81bb1644f818b7f8f0461dbedd4afb55adceb1d9889318e38215649cd3a7206bceeb08ab44de326030a9402f48df197"}}, {0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8}}]}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0xd28, 0x3, 0x0, 0x1, [{0xc8, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0xc1, 0x2, "f1291a71f65e37fb26c5f5f0c662515cf70c53d2f0a9c7959b726b9d422bef7aa704bd9f62ae68adc037a2b3e0bad55040bc28ae845ece8bf7d994110fc22d5cb7c6c65680b9d6ef896f3362614b07753cac3c5dd77173bec01216f9e535a64edac0da79fa3903e60c8c091f89d2fcfbe1b09c558f592a1948d34ceddad982915306315ebe94cac5890a9e16ff39765a0d06e68662455b8e290abd539e2ddcb856fce085b2e9295a9735a7550485e35c6d70995557cbe54333e00b5131"}}, {0xc5c, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0xc55, 0x2, "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"}}]}]}, 0xe84}}, 0x0)

[ 1381.990874][T16365] __nla_validate_parse: 7 callbacks suppressed
[ 1381.990889][T16365] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:37 executing program 2:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PPPIOCGMRU(r0, 0x80487436, 0x0)

[ 1382.102708][T16363] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1382.113768][T16363] CPU: 1 PID: 16363 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1382.126193][T16363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1382.136244][T16363] Call Trace:
[ 1382.139589][T16363]  <TASK>
[ 1382.142558][T16363]  dump_stack_lvl+0xd6/0x122
[ 1382.147158][T16363]  dump_stack+0x11/0x15
[ 1382.151356][T16363]  dump_header+0x98/0x430
[ 1382.155683][T16363]  oom_kill_process+0x100/0x540
[ 1382.160537][T16363]  out_of_memory+0x620/0x880
[ 1382.165126][T16363]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1382.170671][T16363]  mem_cgroup_oom+0x2e7/0x370
[ 1382.175351][T16363]  try_charge_memcg+0x717/0x9c0
[ 1382.180212][T16363]  ? __alloc_pages+0x199/0x340
[ 1382.185047][T16363]  charge_memcg+0x54/0x250
[ 1382.189464][T16363]  __mem_cgroup_charge+0x25/0xa0
[ 1382.194414][T16363]  wp_page_copy+0x209/0x1460
[ 1382.199080][T16363]  ? shrink_zones+0x525/0x5d0
[ 1382.203836][T16363]  ? preempt_count_add+0x5e/0xa0
[ 1382.208782][T16363]  do_wp_page+0x2dd/0x780
[ 1382.213124][T16363]  handle_mm_fault+0x5ef/0xa80
[ 1382.217967][T16363]  do_user_addr_fault+0x4a1/0x980
[ 1382.223142][T16363]  exc_page_fault+0x60/0x160
[ 1382.227826][T16363]  asm_exc_page_fault+0x22/0x30
[ 1382.232689][T16363] RIP: 0033:0x7fa69bfc5970
[ 1382.237159][T16363] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1382.256822][T16363] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1382.262889][T16363] RAX: 0000000034c8aabb RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1382.270932][T16363] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a2f7f
[ 1382.278990][T16363] RBP: 0000000034c8aabb R08: 0000000000000abb R09: 0000000034c8aabf
[ 1382.287010][T16363] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1382.294978][T16363] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff83a0d5e7
[ 1382.302954][T16363]  ? __sys_socket+0x27/0x220
[ 1382.307554][T16363]  </TASK>
[ 1382.317596][T16363] memory: usage 307200kB, limit 307200kB, failcnt 44960
[ 1382.324588][T16363] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1382.331430][T16363] Memory cgroup stats for /syz0:
[ 1382.331866][T16363] anon 397312
[ 1382.331866][T16363] file 10461184
[ 1382.331866][T16363] kernel 303714304
[ 1382.331866][T16363] kernel_stack 81920
[ 1382.331866][T16363] pagetables 229376
[ 1382.331866][T16363] sec_pagetables 0
[ 1382.331866][T16363] percpu 9172448
[ 1382.331866][T16363] sock 0
[ 1382.331866][T16363] vmalloc 8192
[ 1382.331866][T16363] shmem 10457088
[ 1382.331866][T16363] file_mapped 159744
[ 1382.331866][T16363] file_dirty 0
[ 1382.331866][T16363] file_writeback 0
[ 1382.331866][T16363] swapcached 0
[ 1382.331866][T16363] inactive_anon 397312
[ 1382.331866][T16363] active_anon 10457088
[ 1382.331866][T16363] inactive_file 0
[ 1382.331866][T16363] active_file 4096
[ 1382.331866][T16363] unevictable 0
[ 1382.331866][T16363] slab_reclaimable 39504
[ 1382.331866][T16363] slab_unreclaimable 294100856
[ 1382.331866][T16363] slab 294140360
[ 1382.331866][T16363] workingset_refault_anon 0
[ 1382.331866][T16363] workingset_refault_file 4
[ 1382.331866][T16363] workingset_activate_anon 0
[ 1382.427759][T16363] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16363,uid=0
[ 1382.443218][T16363] Memory cgroup out of memory: Killed process 16363 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1382.470703][T16380] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:38 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, 0x0, 0x0)

05:13:38 executing program 4:
syz_clone(0x52000000, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)="db3009136ada8e196b1058908fcef30dc4f23cd47e50f2a6089d8ad9cce309bbc81f903495a7c6f0539d1401f2bf60f97b8f5c")

05:13:38 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000440)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x5, [@typedef={0x2}, @enum]}, {0x0, [0x0, 0x61, 0x5f]}}, &(0x7f0000000380)=""/192, 0x35, 0xc0, 0x1}, 0x20)

05:13:38 executing program 1:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000020c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0x40a85323, &(0x7f0000002100))

05:13:38 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x4c}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:38 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xe7e4}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:38 executing program 2:
r0 = openat$incfs(0xffffffffffffff9c, &(0x7f00000001c0)='.pending_reads\x00', 0x41, 0x0)
getdents(r0, 0x0, 0x0)

05:13:38 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89b0, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000004400)={'gretap0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @broadcast}}}})

05:13:38 executing program 2:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8947, &(0x7f0000000000)={'batadv_slave_1\x00'})

[ 1382.605367][T16402] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1382.658821][T16410] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1382.669949][T16410] CPU: 1 PID: 16410 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1382.682453][T16410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1382.692506][T16410] Call Trace:
[ 1382.695781][T16410]  <TASK>
[ 1382.698710][T16410]  dump_stack_lvl+0xd6/0x122
[ 1382.703375][T16410]  dump_stack+0x11/0x15
[ 1382.707660][T16410]  dump_header+0x98/0x430
[ 1382.712042][T16410]  oom_kill_process+0x100/0x540
[ 1382.716895][T16410]  out_of_memory+0x620/0x880
[ 1382.721485][T16410]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1382.727038][T16410]  mem_cgroup_oom+0x2e7/0x370
[ 1382.731793][T16410]  try_charge_memcg+0x717/0x9c0
[ 1382.736660][T16410]  ? avc_has_perm_noaudit+0x1c0/0x270
[ 1382.742045][T16410]  obj_cgroup_charge+0x171/0x2b0
[ 1382.747073][T16410]  memcg_slab_pre_alloc_hook+0xf7/0x170
[ 1382.752716][T16410]  ? sock_alloc_inode+0x2d/0xa0
[ 1382.757651][T16410]  kmem_cache_alloc_lru+0x75/0x2a0
[ 1382.762773][T16410]  sock_alloc_inode+0x2d/0xa0
[ 1382.767487][T16410]  ? sockfs_init_fs_context+0x70/0x70
[ 1382.772937][T16410]  alloc_inode+0x38/0x150
[ 1382.777358][T16410]  new_inode_pseudo+0x13/0x60
[ 1382.782054][T16410]  __sock_create+0x122/0x4e0
[ 1382.786658][T16410]  __sys_socket+0x9c/0x220
[ 1382.791080][T16410]  __x64_sys_socket+0x3b/0x50
[ 1382.795805][T16410]  do_syscall_64+0x2b/0x70
[ 1382.800231][T16410]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1382.806205][T16410] RIP: 0033:0x7fa69c0185a9
[ 1382.810616][T16410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1382.830283][T16410] RSP: 002b:00007fa69b38c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1382.838740][T16410] RAX: ffffffffffffffda RBX: 00007fa69c138f80 RCX: 00007fa69c0185a9
[ 1382.846729][T16410] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000010
[ 1382.854699][T16410] RBP: 00007fa69c0737b0 R08: 0000000000000000 R09: 0000000000000000
[ 1382.862666][T16410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1382.870639][T16410] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1382.878621][T16410]  </TASK>
[ 1382.890887][T16410] memory: usage 307184kB, limit 307200kB, failcnt 45026
[ 1382.897949][T16410] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1382.904827][T16410] Memory cgroup stats for /syz0:
[ 1382.905169][T16410] anon 389120
[ 1382.905169][T16410] file 10457088
[ 1382.905169][T16410] kernel 303710208
[ 1382.905169][T16410] kernel_stack 81920
[ 1382.905169][T16410] pagetables 229376
[ 1382.905169][T16410] sec_pagetables 0
[ 1382.905169][T16410] percpu 9172448
[ 1382.905169][T16410] sock 0
[ 1382.905169][T16410] vmalloc 8192
[ 1382.905169][T16410] shmem 10457088
[ 1382.905169][T16410] file_mapped 159744
[ 1382.905169][T16410] file_dirty 0
[ 1382.905169][T16410] file_writeback 0
[ 1382.905169][T16410] swapcached 0
[ 1382.905169][T16410] inactive_anon 385024
[ 1382.905169][T16410] active_anon 10457088
[ 1382.905169][T16410] inactive_file 0
[ 1382.905169][T16410] active_file 0
[ 1382.905169][T16410] unevictable 0
[ 1382.905169][T16410] slab_reclaimable 38416
[ 1382.905169][T16410] slab_unreclaimable 294095264
[ 1382.905169][T16410] slab 294133680
[ 1382.905169][T16410] workingset_refault_anon 0
[ 1382.905169][T16410] workingset_refault_file 4
[ 1382.905169][T16410] workingset_activate_anon 0
[ 1383.000693][T16410] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16408,uid=0
[ 1383.016009][T16410] Memory cgroup out of memory: Killed process 16408 (syz-executor.0) total-vm:46468kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:38 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x60}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:38 executing program 1:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000020c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0x40505331, &(0x7f0000002100)={{}, {0x0, 0x7}})

05:13:38 executing program 1:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000020c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0x40505330, &(0x7f0000002100)={{0x0, 0x7}})

[ 1383.055953][T16412] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1383.155340][T16420] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1383.167005][T16420] CPU: 0 PID: 16420 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1383.179516][T16420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1383.189569][T16420] Call Trace:
[ 1383.192844][T16420]  <TASK>
[ 1383.195772][T16420]  dump_stack_lvl+0xd6/0x122
[ 1383.200373][T16420]  dump_stack+0x11/0x15
[ 1383.204566][T16420]  dump_header+0x98/0x430
[ 1383.208915][T16420]  oom_kill_process+0x100/0x540
[ 1383.213818][T16420]  out_of_memory+0x620/0x880
[ 1383.218430][T16420]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1383.223985][T16420]  mem_cgroup_oom+0x2e7/0x370
[ 1383.228670][T16420]  try_charge_memcg+0x717/0x9c0
[ 1383.233585][T16420]  ? __alloc_pages+0x199/0x340
[ 1383.238425][T16420]  charge_memcg+0x54/0x250
[ 1383.242901][T16420]  __mem_cgroup_charge+0x25/0xa0
[ 1383.247840][T16420]  wp_page_copy+0x209/0x1460
[ 1383.252525][T16420]  ? preempt_count_add+0x5e/0xa0
[ 1383.257532][T16420]  do_wp_page+0x2dd/0x780
[ 1383.261900][T16420]  handle_mm_fault+0x5ef/0xa80
[ 1383.266672][T16420]  do_user_addr_fault+0x4a1/0x980
[ 1383.271722][T16420]  exc_page_fault+0x60/0x160
[ 1383.276315][T16420]  asm_exc_page_fault+0x22/0x30
[ 1383.281170][T16420] RIP: 0033:0x7fa69bfc5970
[ 1383.285600][T16420] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1383.305213][T16420] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1383.311285][T16420] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1383.319256][T16420] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1383.327294][T16420] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1383.335265][T16420] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1383.343234][T16420] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1383.351203][T16420]  ? __sock_create+0x24/0x4e0
[ 1383.355884][T16420]  </TASK>
[ 1383.366577][T16420] memory: usage 307196kB, limit 307200kB, failcnt 45144
[ 1383.373533][T16420] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1383.380408][T16420] Memory cgroup stats for /syz0:
[ 1383.380735][T16420] anon 401408
[ 1383.380735][T16420] file 10457088
[ 1383.380735][T16420] kernel 303710208
[ 1383.380735][T16420] kernel_stack 81920
[ 1383.380735][T16420] pagetables 229376
[ 1383.380735][T16420] sec_pagetables 0
[ 1383.380735][T16420] percpu 9172448
[ 1383.380735][T16420] sock 0
[ 1383.380735][T16420] vmalloc 8192
[ 1383.380735][T16420] shmem 10457088
[ 1383.380735][T16420] file_mapped 159744
[ 1383.380735][T16420] file_dirty 0
[ 1383.380735][T16420] file_writeback 0
[ 1383.380735][T16420] swapcached 0
[ 1383.380735][T16420] inactive_anon 401408
[ 1383.380735][T16420] active_anon 10457088
[ 1383.380735][T16420] inactive_file 0
[ 1383.380735][T16420] active_file 0
[ 1383.380735][T16420] unevictable 0
[ 1383.380735][T16420] slab_reclaimable 39392
[ 1383.380735][T16420] slab_unreclaimable 294095528
[ 1383.380735][T16420] slab 294134920
[ 1383.380735][T16420] workingset_refault_anon 0
[ 1383.380735][T16420] workingset_refault_file 4
[ 1383.380735][T16420] workingset_activate_anon 0
[ 1383.476420][T16420] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16420,uid=0
05:13:39 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}}}}}}, 0x6e)

05:13:39 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0)
ioctl$BLKDISCARD(r0, 0x1277, 0x0)

05:13:39 executing program 2:
bpf$BPF_BTF_LOAD(0xa, 0x0, 0x0)

05:13:39 executing program 4:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
getsockopt$MRT6(r0, 0x29, 0x0, 0x0, 0x0)

05:13:39 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xe7e5}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:39 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x68}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:39 executing program 1:
r0 = syz_open_dev$vcsa(&(0x7f0000000080), 0x0, 0x2001)
write$tun(r0, &(0x7f00000000c0)={@void, @val, @mpls={[], @ipv4=@igmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @dev, @multicast1}, {0x0, 0x0, 0x0, @loopback}}}}, 0x26)

05:13:39 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8922, &(0x7f0000000000)={'syztnl0\x00', 0x0})

[ 1383.491716][T16420] Memory cgroup out of memory: Killed process 16420 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:39 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$SO_TIMESTAMP(r0, 0x1, 0x3f, 0x0, &(0x7f0000000040))

05:13:39 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, &(0x7f00000001c0)=""/153, 0x1000000, 0x99, 0x1}, 0x20)

05:13:39 executing program 4:
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x1c, 0x1c, 0x6, [@enum={0x0, 0x2, 0x0, 0x6, 0x4, [{0x3}, {0x5}]}]}, {0x0, [0x0, 0x0, 0x5f, 0x0]}}, &(0x7f00000000c0)=""/246, 0x3a, 0xf6, 0x1}, 0x20)

[ 1383.543276][   T23] audit: type=1400 audit(1667193219.341:642): avc:  denied  { getopt } for  pid=16429 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1383.568152][T16432] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:39 executing program 4:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000020c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0x40505331, &(0x7f0000002100))

[ 1383.651462][T16435] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1383.663036][T16435] CPU: 1 PID: 16435 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1383.672785][T16441] syztnl0: mtu less than device minimum
[ 1383.675442][T16435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1383.675456][T16435] Call Trace:
[ 1383.675461][T16435]  <TASK>
[ 1383.697249][T16435]  dump_stack_lvl+0xd6/0x122
[ 1383.701860][T16435]  dump_stack+0x11/0x15
[ 1383.706038][T16435]  dump_header+0x98/0x430
[ 1383.710536][T16435]  oom_kill_process+0x100/0x540
[ 1383.715435][T16435]  out_of_memory+0x620/0x880
[ 1383.720098][T16435]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1383.725652][T16435]  mem_cgroup_oom+0x2e7/0x370
[ 1383.730372][T16435]  try_charge_memcg+0x717/0x9c0
[ 1383.735298][T16435]  ? __alloc_pages+0x199/0x340
[ 1383.740065][T16435]  charge_memcg+0x54/0x250
[ 1383.744491][T16435]  __mem_cgroup_charge+0x25/0xa0
[ 1383.749502][T16435]  wp_page_copy+0x209/0x1460
[ 1383.754107][T16435]  ? shrink_zones+0x525/0x5d0
[ 1383.758847][T16435]  ? preempt_count_add+0x5e/0xa0
[ 1383.763802][T16435]  do_wp_page+0x2dd/0x780
[ 1383.768200][T16435]  handle_mm_fault+0x5ef/0xa80
[ 1383.772980][T16435]  do_user_addr_fault+0x4a1/0x980
[ 1383.778074][T16435]  exc_page_fault+0x60/0x160
[ 1383.782667][T16435]  asm_exc_page_fault+0x22/0x30
[ 1383.787533][T16435] RIP: 0033:0x7fa69bfc5970
[ 1383.791970][T16435] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1383.811587][T16435] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1383.817657][T16435] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1383.825645][T16435] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1383.833656][T16435] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1383.841654][T16435] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1383.849625][T16435] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1383.857600][T16435]  ? __sock_create+0x24/0x4e0
[ 1383.862326][T16435]  </TASK>
[ 1383.865386][T16435] memory: usage 307200kB, limit 307200kB, failcnt 45218
[ 1383.872341][T16435] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1383.879189][T16435] Memory cgroup stats for /syz0:
[ 1383.879544][T16435] anon 401408
[ 1383.879544][T16435] file 10457088
[ 1383.879544][T16435] kernel 303714304
[ 1383.879544][T16435] kernel_stack 81920
[ 1383.879544][T16435] pagetables 229376
[ 1383.879544][T16435] sec_pagetables 0
[ 1383.879544][T16435] percpu 9172448
[ 1383.879544][T16435] sock 0
[ 1383.879544][T16435] vmalloc 8192
[ 1383.879544][T16435] shmem 10457088
[ 1383.879544][T16435] file_mapped 159744
[ 1383.879544][T16435] file_dirty 0
[ 1383.879544][T16435] file_writeback 0
[ 1383.879544][T16435] swapcached 0
[ 1383.879544][T16435] inactive_anon 401408
[ 1383.879544][T16435] active_anon 10457088
[ 1383.879544][T16435] inactive_file 0
[ 1383.879544][T16435] active_file 0
[ 1383.879544][T16435] unevictable 0
[ 1383.879544][T16435] slab_reclaimable 39392
[ 1383.879544][T16435] slab_unreclaimable 294100856
[ 1383.879544][T16435] slab 294140248
[ 1383.879544][T16435] workingset_refault_anon 0
[ 1383.879544][T16435] workingset_refault_file 4
[ 1383.879544][T16435] workingset_activate_anon 0
[ 1383.975211][T16435] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16435,uid=0
[ 1383.990574][T16435] Memory cgroup out of memory: Killed process 16435 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1384.019352][T16451] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:39 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}}}}}}, 0x6e)

05:13:39 executing program 1:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x0, 0x1, &(0x7f0000000000)=@raw=[@call], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

05:13:39 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x42, &(0x7f0000000200), 0x4)

05:13:39 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x19, 0x0, 0x0)

05:13:39 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x6c}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:39 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xec03}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:39 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f00000004c0))

05:13:39 executing program 1:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, &(0x7f0000000040)={0x0, 0x0, 0xfffffffe})

[ 1384.176416][T16463] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1384.187491][T16463] CPU: 1 PID: 16463 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1384.199968][T16463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1384.210022][T16463] Call Trace:
[ 1384.213301][T16463]  <TASK>
[ 1384.216266][T16463]  dump_stack_lvl+0xd6/0x122
[ 1384.220901][T16463]  dump_stack+0x11/0x15
05:13:39 executing program 2:
r0 = socket$igmp(0x2, 0x3, 0x2)
bind$unix(r0, &(0x7f00000054c0)=@abs={0x1}, 0x6e)

05:13:40 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0xf, &(0x7f0000000200), 0x4)

05:13:40 executing program 2:
bpf$BPF_BTF_LOAD(0x11, 0x0, 0x0)

05:13:40 executing program 2:
capset(&(0x7f00000000c0)={0x20071026}, &(0x7f0000000140))
syz_open_dev$vcsu(&(0x7f0000000080), 0x0, 0x0)

[ 1384.225094][T16463]  dump_header+0x98/0x430
[ 1384.229433][T16463]  oom_kill_process+0x100/0x540
[ 1384.234364][T16463]  out_of_memory+0x620/0x880
[ 1384.238961][T16463]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1384.244619][T16463]  mem_cgroup_oom+0x2e7/0x370
[ 1384.245252][T16467] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1384.249296][T16463]  try_charge_memcg+0x717/0x9c0
[ 1384.263420][T16463]  ? __alloc_pages+0x199/0x340
[ 1384.268227][T16463]  charge_memcg+0x54/0x250
[ 1384.272653][T16463]  __mem_cgroup_charge+0x25/0xa0
[ 1384.277693][T16463]  wp_page_copy+0x209/0x1460
[ 1384.282358][T16463]  ? shrink_zones+0x525/0x5d0
[ 1384.287040][T16463]  ? preempt_count_add+0x5e/0xa0
[ 1384.292077][T16463]  do_wp_page+0x2dd/0x780
[ 1384.296418][T16463]  handle_mm_fault+0x5ef/0xa80
[ 1384.301198][T16463]  do_user_addr_fault+0x4a1/0x980
[ 1384.306293][T16463]  exc_page_fault+0x60/0x160
[ 1384.310884][T16463]  asm_exc_page_fault+0x22/0x30
[ 1384.315774][T16463] RIP: 0033:0x7fa69bfc5970
[ 1384.320189][T16463] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1384.339866][T16463] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1384.345938][T16463] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1384.353910][T16463] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
[ 1384.361922][T16463] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1384.369892][T16463] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1384.377913][T16463] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
[ 1384.385883][T16463]  ? __x64_sys_socket+0xc/0x50
[ 1384.390679][T16463]  </TASK>
[ 1384.400609][T16463] memory: usage 307200kB, limit 307200kB, failcnt 45284
[ 1384.407600][T16463] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1384.414470][T16463] Memory cgroup stats for /syz0:
[ 1384.414823][T16463] anon 393216
[ 1384.414823][T16463] file 10457088
[ 1384.414823][T16463] kernel 303718400
[ 1384.414823][T16463] kernel_stack 81920
[ 1384.414823][T16463] pagetables 229376
[ 1384.414823][T16463] sec_pagetables 0
[ 1384.414823][T16463] percpu 9172448
[ 1384.414823][T16463] sock 0
[ 1384.414823][T16463] vmalloc 8192
[ 1384.414823][T16463] shmem 10457088
[ 1384.414823][T16463] file_mapped 159744
[ 1384.414823][T16463] file_dirty 0
[ 1384.414823][T16463] file_writeback 0
[ 1384.414823][T16463] swapcached 0
[ 1384.414823][T16463] inactive_anon 368640
[ 1384.414823][T16463] active_anon 10457088
[ 1384.414823][T16463] inactive_file 0
[ 1384.414823][T16463] active_file 0
[ 1384.414823][T16463] unevictable 0
[ 1384.414823][T16463] slab_reclaimable 44896
[ 1384.414823][T16463] slab_unreclaimable 294101120
[ 1384.414823][T16463] slab 294146016
[ 1384.414823][T16463] workingset_refault_anon 0
[ 1384.414823][T16463] workingset_refault_file 4
[ 1384.414823][T16463] workingset_activate_anon 0
[ 1384.510489][T16463] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16463,uid=0
[ 1384.525768][T16463] Memory cgroup out of memory: Killed process 16463 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1384.550980][T16491] capability: warning: `syz-executor.2' uses deprecated v2 capabilities in a way that may be insecure
05:13:40 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8946, &(0x7f00000000c0)={'sit0\x00', 0x0})

05:13:40 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xf603}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:40 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x41841, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000000)={@void, @void, @eth={@broadcast, @remote, @val, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @private}}}}}}, 0x6e)

05:13:40 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
ioctl$MON_IOCQ_URB_LEN(r0, 0x4b47)

05:13:40 executing program 2:
socketpair(0xf, 0x3, 0x0, &(0x7f0000000140))

05:13:40 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x74}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:40 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000020c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0105303, &(0x7f0000002100)={{0x7f}})

05:13:40 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8922, &(0x7f00000000c0)={'sit0\x00', 0x0})

05:13:40 executing program 4:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, &(0x7f0000000040)={0x0, 0x0, 'client0\x00', 0x0, "b8d0a36e92119f69", "cc438afb38426aa1442c0f33889554723ec8346749e08431f66e83bc3a92c90f"})

[ 1384.671445][T16500] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1384.736171][T16499] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1384.747160][T16499] CPU: 0 PID: 16499 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1384.759706][T16499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1384.769795][T16499] Call Trace:
[ 1384.773072][T16499]  <TASK>
[ 1384.776001][T16499]  dump_stack_lvl+0xd6/0x122
[ 1384.780628][T16499]  dump_stack+0x11/0x15
[ 1384.784923][T16499]  dump_header+0x98/0x430
[ 1384.789259][T16499]  oom_kill_process+0x100/0x540
[ 1384.794180][T16499]  out_of_memory+0x620/0x880
[ 1384.798807][T16499]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1384.804382][T16499]  mem_cgroup_oom+0x2e7/0x370
[ 1384.809112][T16499]  try_charge_memcg+0x717/0x9c0
[ 1384.813996][T16499]  ? __alloc_pages+0x199/0x340
[ 1384.818761][T16499]  charge_memcg+0x54/0x250
[ 1384.823236][T16499]  __mem_cgroup_charge+0x25/0xa0
[ 1384.828186][T16499]  wp_page_copy+0x209/0x1460
[ 1384.832893][T16499]  ? shrink_zones+0x525/0x5d0
[ 1384.837628][T16499]  ? preempt_count_add+0x5e/0xa0
[ 1384.842581][T16499]  do_wp_page+0x2dd/0x780
[ 1384.846969][T16499]  handle_mm_fault+0x5ef/0xa80
[ 1384.851756][T16499]  do_user_addr_fault+0x4a1/0x980
[ 1384.856788][T16499]  exc_page_fault+0x60/0x160
[ 1384.861382][T16499]  asm_exc_page_fault+0x22/0x30
[ 1384.866253][T16499] RIP: 0033:0x7fa69bfc5970
[ 1384.870666][T16499] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1384.890348][T16499] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1384.896413][T16499] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1384.904385][T16499] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1384.912354][T16499] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1384.920458][T16499] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1384.928430][T16499] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1384.936408][T16499]  ? __sock_create+0x24/0x4e0
[ 1384.941099][T16499]  </TASK>
[ 1384.944144][T16499] memory: usage 307200kB, limit 307200kB, failcnt 45351
[ 1384.944799][T16511] sit0: mtu less than device minimum
[ 1384.951143][T16499] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1384.951157][T16499] Memory cgroup stats for /syz0:
[ 1384.951375][T16499] anon 401408
[ 1384.951375][T16499] file 10457088
[ 1384.951375][T16499] kernel 303714304
[ 1384.951375][T16499] kernel_stack 81920
[ 1384.951375][T16499] pagetables 229376
05:13:40 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1a, 0x0, &(0x7f0000000040))

05:13:40 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$sock(r0, &(0x7f0000000700)=[{{&(0x7f0000000000)=@in={0x2, 0x4e23, @local}, 0x80, 0x0}}], 0x1, 0x0)

[ 1384.951375][T16499] sec_pagetables 0
[ 1384.951375][T16499] percpu 9172448
[ 1384.951375][T16499] sock 0
[ 1384.951375][T16499] vmalloc 8192
[ 1384.951375][T16499] shmem 10457088
[ 1384.951375][T16499] file_mapped 159744
[ 1384.951375][T16499] file_dirty 0
[ 1384.951375][T16499] file_writeback 0
[ 1384.951375][T16499] swapcached 0
[ 1384.951375][T16499] inactive_anon 401408
[ 1384.951375][T16499] active_anon 10457088
[ 1384.951375][T16499] inactive_file 0
[ 1384.951375][T16499] active_file 0
[ 1384.951375][T16499] unevictable 0
[ 1384.951375][T16499] slab_reclaimable 39392
[ 1384.951375][T16499] slab_unreclaimable 294100856
[ 1384.951375][T16499] slab 294140248
[ 1384.951375][T16499] workingset_refault_anon 0
[ 1384.951375][T16499] workingset_refault_file 4
[ 1384.951375][T16499] workingset_activate_anon 0
[ 1384.957235][T16514] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:40 executing program 2:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000440)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x5, [@typedef={0x2}]}, {0x0, [0x0, 0x61, 0x5f]}}, &(0x7f0000000380)=""/192, 0x29, 0xc0, 0x1}, 0x20)

05:13:40 executing program 4:
syz_emit_ethernet(0x52, &(0x7f0000000000)={@broadcast, @dev, @val, {@mpls_uc={0x8847, {[], @ipv6=@tcp={0x0, 0x6, "62ab86", 0x14, 0x6, 0x0, @remote, @private1, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}}, 0x0)

[ 1384.963317][T16499] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16499,uid=0
[ 1384.963455][T16499] Memory cgroup out of memory: Killed process 16499 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:40 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xf803}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1385.171283][T16532] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:41 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xfa03}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:41 executing program 1:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000020c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0x4058534c, &(0x7f0000002100))

05:13:41 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x7a}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:41 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89a1, &(0x7f00000000c0)={'sit0\x00', 0x0})

05:13:41 executing program 4:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000020c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0a85322, &(0x7f0000002100))

05:13:41 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x10, &(0x7f0000000200), 0x4)

05:13:41 executing program 2:
r0 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
ioctl$MON_IOCQ_URB_LEN(r0, 0x5451)

05:13:41 executing program 1:
syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x541c3)

05:13:41 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000580)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000000bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}}], 0x2, 0x0)

05:13:41 executing program 5:
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x1a, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x4}, 0x48)

05:13:41 executing program 1:
socketpair(0x0, 0x303f9b01ae786de7, 0x0, 0x0)

[ 1385.374012][T16552] validate_nla: 24 callbacks suppressed
[ 1385.374081][T16552] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1385.379909][T16535] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1385.387843][T16552] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1385.387859][T16552] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1385.387869][T16552] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:13:41 executing program 1:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_DONE(r0, 0x29, 0x48, 0x0, 0x0)

[ 1385.423172][T16535] CPU: 1 PID: 16535 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1385.435686][T16535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1385.445747][T16535] Call Trace:
[ 1385.449028][T16535]  <TASK>
[ 1385.452018][T16535]  dump_stack_lvl+0xd6/0x122
[ 1385.456657][T16535]  dump_stack+0x11/0x15
[ 1385.460903][T16535]  dump_header+0x98/0x430
[ 1385.465242][T16535]  oom_kill_process+0x100/0x540
[ 1385.470097][T16535]  out_of_memory+0x620/0x880
05:13:41 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xfc03}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:41 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000380)={'ip6tnl0\x00', &(0x7f0000000300)={'ip6_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @empty}})

[ 1385.474709][T16535]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1385.480338][T16535]  mem_cgroup_oom+0x2e7/0x370
[ 1385.485146][T16535]  try_charge_memcg+0x717/0x9c0
[ 1385.490008][T16535]  ? __alloc_pages+0x199/0x340
[ 1385.494772][T16535]  charge_memcg+0x54/0x250
[ 1385.499209][T16535]  __mem_cgroup_charge+0x25/0xa0
[ 1385.504183][T16535]  wp_page_copy+0x209/0x1460
[ 1385.508790][T16535]  ? shrink_zones+0x525/0x5d0
[ 1385.513581][T16535]  ? preempt_count_add+0x5e/0xa0
[ 1385.518616][T16535]  do_wp_page+0x2dd/0x780
[ 1385.523046][T16535]  handle_mm_fault+0x5ef/0xa80
[ 1385.527848][T16535]  do_user_addr_fault+0x4a1/0x980
[ 1385.532883][T16535]  exc_page_fault+0x60/0x160
[ 1385.537505][T16535]  asm_exc_page_fault+0x22/0x30
[ 1385.542374][T16535] RIP: 0033:0x7fa69bfc5970
[ 1385.546792][T16535] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1385.566551][T16535] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1385.572621][T16535] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1385.580595][T16535] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1385.588633][T16535] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1385.596690][T16535] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1385.604669][T16535] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1385.612642][T16535]  ? __sock_create+0x24/0x4e0
[ 1385.617331][T16535]  </TASK>
[ 1385.620404][T16535] memory: usage 307192kB, limit 307200kB, failcnt 45431
[ 1385.627691][T16535] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1385.634664][T16535] Memory cgroup stats for /syz0:
[ 1385.635048][T16535] anon 401408
[ 1385.635048][T16535] file 10457088
[ 1385.635048][T16535] kernel 303706112
[ 1385.635048][T16535] kernel_stack 81920
[ 1385.635048][T16535] pagetables 229376
[ 1385.635048][T16535] sec_pagetables 0
[ 1385.635048][T16535] percpu 9172448
[ 1385.635048][T16535] sock 0
[ 1385.635048][T16535] vmalloc 8192
[ 1385.635048][T16535] shmem 10457088
[ 1385.635048][T16535] file_mapped 159744
[ 1385.635048][T16535] file_dirty 0
[ 1385.635048][T16535] file_writeback 0
[ 1385.635048][T16535] swapcached 0
[ 1385.635048][T16535] inactive_anon 401408
[ 1385.635048][T16535] active_anon 10457088
[ 1385.635048][T16535] inactive_file 0
[ 1385.635048][T16535] active_file 0
[ 1385.635048][T16535] unevictable 0
[ 1385.635048][T16535] slab_reclaimable 39392
[ 1385.635048][T16535] slab_unreclaimable 294094496
[ 1385.635048][T16535] slab 294133888
[ 1385.635048][T16535] workingset_refault_anon 0
05:13:41 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xd2}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:41 executing program 5:
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000540)={0x10, 0x1418, 0x419}, 0x10}}, 0x0)

05:13:41 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000001640)=@base={0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)

05:13:41 executing program 1:
syz_emit_ethernet(0x1e, &(0x7f00000000c0)={@multicast, @broadcast, @void, {@can={0xc, {{}, 0x0, 0x0, 0x0, 0x0, "71435b55411d9c9c"}}}}, 0x0)

05:13:41 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001680)=ANY=[], 0xb8}, 0x0)

[ 1385.635048][T16535] workingset_refault_file 4
[ 1385.635048][T16535] workingset_activate_anon 0
[ 1385.730589][T16535] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16535,uid=0
[ 1385.745942][T16535] Memory cgroup out of memory: Killed process 16535 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:41 executing program 1:
keyctl$unlink(0x18, 0x0, 0xfffffffffffffffe)

05:13:41 executing program 5:
keyctl$unlink(0xc, 0x0, 0xfffffffffffffffe)

05:13:41 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000100)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote, @loopback}})

05:13:41 executing program 4:
msgctl$IPC_STAT(0x0, 0xc, &(0x7f0000000000)=""/10)

05:13:41 executing program 5:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_DONE(r0, 0x29, 0x2f, 0x0, 0x0)

05:13:41 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xfe03}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:41 executing program 1:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0xf, 0x1}]}]}}, &(0x7f0000000140)=""/218, 0x2e, 0xda, 0x1}, 0x20)

[ 1385.970733][T16585] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1385.982299][T16585] CPU: 0 PID: 16585 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1385.994716][T16585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1386.004774][T16585] Call Trace:
[ 1386.008057][T16585]  <TASK>
[ 1386.011024][T16585]  dump_stack_lvl+0xd6/0x122
[ 1386.015749][T16585]  dump_stack+0x11/0x15
[ 1386.020006][T16585]  dump_header+0x98/0x430
[ 1386.024448][T16585]  oom_kill_process+0x100/0x540
[ 1386.029325][T16585]  out_of_memory+0x620/0x880
[ 1386.033912][T16585]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1386.039466][T16585]  mem_cgroup_oom+0x2e7/0x370
[ 1386.044167][T16585]  try_charge_memcg+0x717/0x9c0
[ 1386.049037][T16585]  ? __alloc_pages+0x199/0x340
[ 1386.053810][T16585]  charge_memcg+0x54/0x250
[ 1386.058234][T16585]  __mem_cgroup_charge+0x25/0xa0
[ 1386.063195][T16585]  wp_page_copy+0x209/0x1460
[ 1386.067870][T16585]  ? shrink_zones+0x525/0x5d0
[ 1386.072562][T16585]  ? preempt_count_add+0x5e/0xa0
[ 1386.077563][T16585]  do_wp_page+0x2dd/0x780
[ 1386.081943][T16585]  handle_mm_fault+0x5ef/0xa80
[ 1386.086789][T16585]  do_user_addr_fault+0x4a1/0x980
[ 1386.091854][T16585]  exc_page_fault+0x60/0x160
[ 1386.096473][T16585]  asm_exc_page_fault+0x22/0x30
[ 1386.101333][T16585] RIP: 0033:0x7fa69bfc5970
[ 1386.105745][T16585] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1386.125351][T16585] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1386.131560][T16585] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1386.139655][T16585] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1386.147624][T16585] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1386.155649][T16585] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1386.163624][T16585] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1386.171750][T16585]  ? __sock_create+0x24/0x4e0
[ 1386.176438][T16585]  </TASK>
[ 1386.179546][T16585] memory: usage 307192kB, limit 307200kB, failcnt 45524
[ 1386.186495][T16585] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1386.193361][T16585] Memory cgroup stats for /syz0:
[ 1386.193642][T16585] anon 401408
[ 1386.193642][T16585] file 10457088
[ 1386.193642][T16585] kernel 303706112
[ 1386.193642][T16585] kernel_stack 81920
[ 1386.193642][T16585] pagetables 229376
[ 1386.193642][T16585] sec_pagetables 0
[ 1386.193642][T16585] percpu 9172448
[ 1386.193642][T16585] sock 0
[ 1386.193642][T16585] vmalloc 8192
[ 1386.193642][T16585] shmem 10457088
[ 1386.193642][T16585] file_mapped 159744
[ 1386.193642][T16585] file_dirty 0
[ 1386.193642][T16585] file_writeback 0
[ 1386.193642][T16585] swapcached 0
[ 1386.193642][T16585] inactive_anon 397312
[ 1386.193642][T16585] active_anon 10457088
[ 1386.193642][T16585] inactive_file 0
[ 1386.193642][T16585] active_file 0
[ 1386.193642][T16585] unevictable 0
[ 1386.193642][T16585] slab_reclaimable 39392
05:13:42 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xda}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:42 executing program 2:
syz_open_dev$rtc(&(0x7f0000000040), 0xfff, 0xa01)

05:13:42 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000000100), 0x4)

05:13:42 executing program 4:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_DONE(r0, 0x29, 0x21, 0x0, 0x0)

05:13:42 executing program 5:
bpf$MAP_CREATE(0x0, &(0x7f00000020c0)=@base={0x7, 0x0, 0x0, 0x0, 0x900}, 0x48)

05:13:42 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xfe0f}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1386.193642][T16585] slab_unreclaimable 294094496
[ 1386.193642][T16585] slab 294133888
[ 1386.193642][T16585] workingset_refault_anon 0
[ 1386.193642][T16585] workingset_refault_file 4
[ 1386.193642][T16585] workingset_activate_anon 0
[ 1386.289304][T16585] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16585,uid=0
[ 1386.304615][T16585] Memory cgroup out of memory: Killed process 16585 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:42 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000580)={<r1=>0xffffffffffffffff})
r2 = getpgid(0x0)
sendmmsg$unix(r1, &(0x7f0000000bc0)=[{{&(0x7f00000005c0)=@abs, 0x6e, &(0x7f00000008c0)=[{&(0x7f0000000640)="eb", 0x1}, {&(0x7f0000000680)='D', 0x1}, {0x0}], 0x3}}, {{&(0x7f0000000940)=@abs, 0x6e, 0x0, 0x0, &(0x7f0000000b00)=[@cred={{0x1c, 0x1, 0x2, {r2}}}, @rights={{0x14, 0x1, 0x1, [r0]}}], 0x38}}], 0x2, 0x840)

05:13:42 executing program 4:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_DONE(r0, 0x29, 0x12, 0x0, 0x0)

05:13:42 executing program 1:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_DONE(r0, 0x29, 0x7, 0x0, 0x4)

05:13:42 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f0000000200)={&(0x7f0000000000), 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x20, r1, 0x1, 0x0, 0x0, {}, [{{0x8}, {0x4}}]}, 0x20}}, 0x0)

05:13:42 executing program 4:
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="00000000a611761844a2e447"], 0x64}}, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x890c, &(0x7f00000001c0)={'ip6tnl0\x00', 0x0})

05:13:42 executing program 2:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_DONE(r0, 0x29, 0x16, 0x0, 0x0)

[ 1386.437444][T16629] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1386.437517][T16615] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1386.446212][T16629] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1386.455688][T16615] CPU: 0 PID: 16615 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1386.455713][T16615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1386.455724][T16615] Call Trace:
[ 1386.455768][T16615]  <TASK>
[ 1386.455774][T16615]  dump_stack_lvl+0xd6/0x122
[ 1386.455804][T16615]  dump_stack+0x11/0x15
[ 1386.455828][T16615]  dump_header+0x98/0x430
[ 1386.455900][T16615]  oom_kill_process+0x100/0x540
[ 1386.455918][T16615]  out_of_memory+0x620/0x880
[ 1386.455936][T16615]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1386.455994][T16615]  mem_cgroup_oom+0x2e7/0x370
[ 1386.456016][T16615]  try_charge_memcg+0x717/0x9c0
[ 1386.456057][T16615]  ? __alloc_pages+0x199/0x340
[ 1386.456077][T16615]  charge_memcg+0x54/0x250
[ 1386.456099][T16615]  __mem_cgroup_charge+0x25/0xa0
[ 1386.456135][T16615]  wp_page_copy+0x209/0x1460
[ 1386.456162][T16615]  ? shrink_zones+0x525/0x5d0
[ 1386.456229][T16615]  ? preempt_count_add+0x5e/0xa0
[ 1386.456256][T16615]  do_wp_page+0x2dd/0x780
[ 1386.456280][T16615]  handle_mm_fault+0x5ef/0xa80
[ 1386.456318][T16615]  do_user_addr_fault+0x4a1/0x980
[ 1386.465085][T16629] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1386.476787][T16615]  exc_page_fault+0x60/0x160
[ 1386.476877][T16615]  asm_exc_page_fault+0x22/0x30
[ 1386.476905][T16615] RIP: 0033:0x7fa69bfc5970
[ 1386.476920][T16615] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1386.476937][T16615] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1386.476953][T16615] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1386.476965][T16615] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1386.476996][T16615] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1386.477008][T16615] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1386.477020][T16615] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1386.477032][T16615]  ? __sock_create+0x24/0x4e0
[ 1386.477057][T16615]  </TASK>
[ 1386.477078][T16615] memory: usage 307200kB, limit 307200kB, failcnt 45608
[ 1386.477090][T16615] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1386.477101][T16615] Memory cgroup stats for /syz0:
[ 1386.477376][T16615] anon 401408
[ 1386.477376][T16615] file 10457088
[ 1386.477376][T16615] kernel 303714304
[ 1386.477376][T16615] kernel_stack 81920
[ 1386.477376][T16615] pagetables 229376
[ 1386.477376][T16615] sec_pagetables 0
[ 1386.477376][T16615] percpu 9172448
[ 1386.477376][T16615] sock 0
[ 1386.477376][T16615] vmalloc 8192
[ 1386.477376][T16615] shmem 10457088
[ 1386.477376][T16615] file_mapped 159744
[ 1386.477376][T16615] file_dirty 0
[ 1386.477376][T16615] file_writeback 0
[ 1386.477376][T16615] swapcached 0
[ 1386.477376][T16615] inactive_anon 401408
[ 1386.477376][T16615] active_anon 10457088
[ 1386.477376][T16615] inactive_file 0
[ 1386.477376][T16615] active_file 0
[ 1386.477376][T16615] unevictable 0
[ 1386.477376][T16615] slab_reclaimable 39392
[ 1386.477376][T16615] slab_unreclaimable 294100856
[ 1386.477376][T16615] slab 294140248
[ 1386.477376][T16615] workingset_refault_anon 0
[ 1386.477376][T16615] workingset_refault_file 4
[ 1386.477376][T16615] workingset_activate_anon 0
[ 1386.477429][T16615] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0
05:13:42 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x11c}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:42 executing program 5:
keyctl$unlink(0xb, 0x0, 0xfffffffffffffffe)

05:13:42 executing program 1:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000000)={0x3, {0x7}})

05:13:42 executing program 2:
bpf$MAP_CREATE(0x22, &(0x7f0000000040), 0x48)

05:13:42 executing program 4:
bpf$MAP_CREATE(0x13, &(0x7f0000000040), 0x48)

05:13:42 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xfeff}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1386.488192][T16629] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1386.490743][T16615] ,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16615,uid=0
[ 1386.804184][T16615] Memory cgroup out of memory: Killed process 16615 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:42 executing program 5:
r0 = socket$netlink(0x10, 0x3, 0xa)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000022c0)={&(0x7f0000002480)={0x34, 0x0, 0x0, 0x0, 0x0, {}, [@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0xff54}}, 0x0)

05:13:42 executing program 2:
utimensat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0)

05:13:42 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0xa)
sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x28, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_COOKIE={0xc}]}, 0x28}}, 0x0)

05:13:42 executing program 1:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_DONE(r0, 0x29, 0x2, 0x0, 0x0)

05:13:42 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000001800)=@base={0x10}, 0x48)

[ 1386.900896][T16641] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1386.912358][T16641] CPU: 0 PID: 16641 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1386.924851][T16641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1386.934906][T16641] Call Trace:
[ 1386.938247][T16641]  <TASK>
[ 1386.941176][T16641]  dump_stack_lvl+0xd6/0x122
[ 1386.945783][T16641]  dump_stack+0x11/0x15
[ 1386.950003][T16641]  dump_header+0x98/0x430
[ 1386.954337][T16641]  oom_kill_process+0x100/0x540
[ 1386.959188][T16641]  out_of_memory+0x620/0x880
[ 1386.963838][T16641]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1386.969405][T16641]  mem_cgroup_oom+0x2e7/0x370
[ 1386.974095][T16641]  try_charge_memcg+0x717/0x9c0
[ 1386.978961][T16641]  ? __alloc_pages+0x199/0x340
[ 1386.983725][T16641]  charge_memcg+0x54/0x250
[ 1386.988190][T16641]  __mem_cgroup_charge+0x25/0xa0
[ 1386.993134][T16641]  wp_page_copy+0x209/0x1460
[ 1386.997795][T16641]  ? hrtimer_cancel+0x26/0x50
[ 1387.002511][T16641]  do_wp_page+0x2dd/0x780
[ 1387.006843][T16641]  handle_mm_fault+0x5ef/0xa80
[ 1387.011673][T16641]  do_user_addr_fault+0x4a1/0x980
[ 1387.016772][T16641]  ? __this_cpu_preempt_check+0xf/0x10
[ 1387.022299][T16641]  exc_page_fault+0x60/0x160
[ 1387.026931][T16641]  asm_exc_page_fault+0x22/0x30
[ 1387.031795][T16641] RIP: 0033:0x7fa69bfc2a45
[ 1387.036204][T16641] Code: 0f 1f 44 00 00 48 8b 57 18 48 83 fa ff 74 22 48 81 fa e7 03 00 00 0f 87 ee 00 00 00 48 c1 e2 04 48 8d 0d 7e 26 17 00 48 01 ca <c6> 02 01 48 89 42 08 48 8b 0d 2d 7f 17 00 48 8b 53 10 4c 8d 81 00
[ 1387.055817][T16641] RSP: 002b:00007ffd8ac4fed0 EFLAGS: 00010206
[ 1387.061949][T16641] RAX: 0000000000000003 RBX: 00007fa69c138f80 RCX: 00007fa69c1350c0
[ 1387.069970][T16641] RDX: 00007fa69c1350c0 RSI: 0000000000000080 RDI: 00007fa69c138f80
[ 1387.077937][T16641] RBP: 00007fa69c138f80 R08: 0000000000000010 R09: 0000000000000000
[ 1387.085952][T16641] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 000000000015297e
[ 1387.094010][T16641] R13: 00007ffd8ac4ffe0 R14: 00007fa69c138f80 R15: 0000000000000032
05:13:42 executing program 2:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_DONE(r0, 0x29, 0x18, 0x0, 0x0)

[ 1387.102030][T16641]  </TASK>
[ 1387.105074][T16641] memory: usage 307200kB, limit 307200kB, failcnt 45674
[ 1387.112072][T16641] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1387.118927][T16641] Memory cgroup stats for /syz0:
[ 1387.119209][T16641] anon 389120
[ 1387.119209][T16641] file 10461184
[ 1387.119209][T16641] kernel 303714304
[ 1387.119209][T16641] kernel_stack 81920
[ 1387.119209][T16641] pagetables 229376
[ 1387.119209][T16641] sec_pagetables 0
[ 1387.119209][T16641] percpu 9172448
[ 1387.119209][T16641] sock 0
[ 1387.119209][T16641] vmalloc 8192
[ 1387.119209][T16641] shmem 10457088
[ 1387.119209][T16641] file_mapped 159744
[ 1387.119209][T16641] file_dirty 0
[ 1387.119209][T16641] file_writeback 0
[ 1387.119209][T16641] swapcached 0
[ 1387.119209][T16641] inactive_anon 389120
[ 1387.119209][T16641] active_anon 10457088
[ 1387.119209][T16641] inactive_file 4096
[ 1387.119209][T16641] active_file 0
[ 1387.119209][T16641] unevictable 0
[ 1387.119209][T16641] slab_reclaimable 39504
[ 1387.119209][T16641] slab_unreclaimable 294101120
[ 1387.119209][T16641] slab 294140624
05:13:43 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x12e}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:43 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xff0f}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:43 executing program 2:
msgctl$IPC_STAT(0x0, 0xd, &(0x7f0000000000)=""/10)

05:13:43 executing program 5:
socket$inet6_udp(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000580)={<r0=>0xffffffffffffffff})
getpgid(0x0)
sendmmsg$unix(r0, &(0x7f0000000bc0)=[{{0x0, 0x0, &(0x7f00000008c0)=[{0x0}, {&(0x7f0000000680)='D', 0x1}], 0x2}}, {{0x0, 0x0, 0x0}}], 0x2, 0x840)

05:13:43 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f00000002c0)={'ip6_vti0\x00', &(0x7f0000000240)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private1, @mcast1}})

05:13:43 executing program 1:
keyctl$unlink(0x5, 0x0, 0xfffffffffffffffe)

[ 1387.119209][T16641] workingset_refault_anon 0
[ 1387.119209][T16641] workingset_refault_file 5
[ 1387.119209][T16641] workingset_activate_anon 0
[ 1387.215101][T16641] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16641,uid=0
[ 1387.230531][T16641] Memory cgroup out of memory: Killed process 16641 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:43 executing program 4:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_DONE(r0, 0x29, 0x22, 0x0, 0x0)

05:13:43 executing program 5:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_DONE(r0, 0x29, 0x7, 0x0, 0x0)

05:13:43 executing program 2:
r0 = socket(0x11, 0x2, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000021c0), r0)

05:13:43 executing program 4:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_DONE(r0, 0x29, 0xb, 0x0, 0x0)

[ 1387.289241][T16674] __nla_validate_parse: 8 callbacks suppressed
[ 1387.289256][T16674] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:43 executing program 1:
bpf$MAP_CREATE(0x9, &(0x7f0000000040), 0x48)

05:13:43 executing program 2:
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SYS_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x1406, 0x1}, 0x10}}, 0x0)

[ 1387.382538][T16672] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1387.394182][T16672] CPU: 0 PID: 16672 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1387.406747][T16672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1387.416898][T16672] Call Trace:
[ 1387.420176][T16672]  <TASK>
[ 1387.423101][T16672]  dump_stack_lvl+0xd6/0x122
[ 1387.427702][T16672]  dump_stack+0x11/0x15
[ 1387.431913][T16672]  dump_header+0x98/0x430
[ 1387.436250][T16672]  oom_kill_process+0x100/0x540
[ 1387.441104][T16672]  out_of_memory+0x620/0x880
[ 1387.445769][T16672]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1387.451341][T16672]  mem_cgroup_oom+0x2e7/0x370
[ 1387.456028][T16672]  try_charge_memcg+0x717/0x9c0
[ 1387.460882][T16672]  ? __alloc_pages+0x199/0x340
[ 1387.465650][T16672]  charge_memcg+0x54/0x250
[ 1387.470237][T16672]  __mem_cgroup_charge+0x25/0xa0
[ 1387.475189][T16672]  wp_page_copy+0x209/0x1460
[ 1387.479785][T16672]  ? delay_tsc+0xc1/0xe0
[ 1387.484057][T16672]  ? preempt_count_add+0x5e/0xa0
[ 1387.489074][T16672]  do_wp_page+0x2dd/0x780
[ 1387.493562][T16672]  handle_mm_fault+0x5ef/0xa80
[ 1387.498408][T16672]  do_user_addr_fault+0x4a1/0x980
[ 1387.503437][T16672]  exc_page_fault+0x60/0x160
[ 1387.508025][T16672]  asm_exc_page_fault+0x22/0x30
[ 1387.512951][T16672] RIP: 0033:0x7fa69bfc5970
[ 1387.517415][T16672] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1387.537093][T16672] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1387.543281][T16672] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1387.551261][T16672] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1387.559354][T16672] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1387.567326][T16672] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1387.575340][T16672] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1387.583345][T16672]  ? __sock_create+0x24/0x4e0
[ 1387.588074][T16672]  </TASK>
[ 1387.591169][T16672] memory: usage 307200kB, limit 307200kB, failcnt 45767
[ 1387.598118][T16672] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1387.604995][T16672] Memory cgroup stats for /syz0:
[ 1387.605252][T16672] anon 401408
[ 1387.605252][T16672] file 10457088
[ 1387.605252][T16672] kernel 303714304
[ 1387.605252][T16672] kernel_stack 81920
[ 1387.605252][T16672] pagetables 229376
[ 1387.605252][T16672] sec_pagetables 0
[ 1387.605252][T16672] percpu 9172448
[ 1387.605252][T16672] sock 0
[ 1387.605252][T16672] vmalloc 8192
[ 1387.605252][T16672] shmem 10457088
[ 1387.605252][T16672] file_mapped 159744
[ 1387.605252][T16672] file_dirty 0
[ 1387.605252][T16672] file_writeback 0
[ 1387.605252][T16672] swapcached 0
[ 1387.605252][T16672] inactive_anon 401408
[ 1387.605252][T16672] active_anon 10457088
[ 1387.605252][T16672] inactive_file 0
[ 1387.605252][T16672] active_file 0
[ 1387.605252][T16672] unevictable 0
[ 1387.605252][T16672] slab_reclaimable 39392
[ 1387.605252][T16672] slab_unreclaimable 294100856
[ 1387.605252][T16672] slab 294140248
[ 1387.605252][T16672] workingset_refault_anon 0
[ 1387.605252][T16672] workingset_refault_file 5
[ 1387.605252][T16672] workingset_activate_anon 0
[ 1387.700968][T16672] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16672,uid=0
[ 1387.716321][T16672] Memory cgroup out of memory: Killed process 16672 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:43 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x155}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1387.747260][T16689] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1387.756219][T16689] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1387.764993][T16689] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1387.820099][T16694] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1387.831003][T16694] CPU: 1 PID: 16694 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1387.843455][T16694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1387.853548][T16694] Call Trace:
[ 1387.856931][T16694]  <TASK>
[ 1387.859869][T16694]  dump_stack_lvl+0xd6/0x122
[ 1387.864498][T16694]  dump_stack+0x11/0x15
[ 1387.868672][T16694]  dump_header+0x98/0x430
[ 1387.873031][T16694]  oom_kill_process+0x100/0x540
[ 1387.877878][T16694]  out_of_memory+0x620/0x880
[ 1387.882514][T16694]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1387.888067][T16694]  mem_cgroup_oom+0x2e7/0x370
[ 1387.892806][T16694]  try_charge_memcg+0x717/0x9c0
[ 1387.897654][T16694]  ? debug_smp_processor_id+0x13/0x20
[ 1387.903087][T16694]  ? mod_objcg_state+0x474/0x580
[ 1387.908020][T16694]  __memcg_kmem_charge_page+0x2e4/0x480
[ 1387.913612][T16694]  alloc_thread_stack_node+0x101/0x360
[ 1387.919118][T16694]  dup_task_struct+0x96/0x2a0
[ 1387.923830][T16694]  copy_process+0x3ca/0x2100
[ 1387.928491][T16694]  kernel_clone+0x166/0x550
[ 1387.933015][T16694]  __x64_sys_clone+0xc3/0xf0
[ 1387.937598][T16694]  do_syscall_64+0x2b/0x70
[ 1387.942019][T16694]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1387.947975][T16694] RIP: 0033:0x7fa69c0199d1
[ 1387.952375][T16694] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1387.971976][T16694] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1387.980439][T16694] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1387.988530][T16694] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1387.996490][T16694] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1388.004448][T16694] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1388.012413][T16694] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1388.020388][T16694]  </TASK>
[ 1388.030727][T16694] memory: usage 307192kB, limit 307200kB, failcnt 45840
[ 1388.037724][T16694] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1388.044580][T16694] Memory cgroup stats for /syz0:
[ 1388.044907][T16694] anon 380928
[ 1388.044907][T16694] file 10457088
[ 1388.044907][T16694] kernel 303718400
[ 1388.044907][T16694] kernel_stack 65536
[ 1388.044907][T16694] pagetables 229376
[ 1388.044907][T16694] sec_pagetables 0
[ 1388.044907][T16694] percpu 9172448
[ 1388.044907][T16694] sock 0
[ 1388.044907][T16694] vmalloc 8192
[ 1388.044907][T16694] shmem 10457088
[ 1388.044907][T16694] file_mapped 159744
[ 1388.044907][T16694] file_dirty 0
[ 1388.044907][T16694] file_writeback 0
[ 1388.044907][T16694] swapcached 0
[ 1388.044907][T16694] inactive_anon 335872
[ 1388.044907][T16694] active_anon 10457088
[ 1388.044907][T16694] inactive_file 0
[ 1388.044907][T16694] active_file 0
[ 1388.044907][T16694] unevictable 0
[ 1388.044907][T16694] slab_reclaimable 53144
05:13:43 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xff7f}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:43 executing program 1:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_DONE(r0, 0x29, 0x1600bd81, 0x0, 0x0)

05:13:43 executing program 4:
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="00000000a611761844a2e447"], 0x64}}, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x890b, &(0x7f00000001c0)={'ip6tnl0\x00', 0x0})

05:13:43 executing program 5:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000040)={0x700}, 0x4)

05:13:43 executing program 2:
prlimit64(0x0, 0x7, &(0x7f00000000c0), 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

[ 1388.044907][T16694] slab_unreclaimable 294102136
[ 1388.044907][T16694] slab 294155280
[ 1388.044907][T16694] workingset_refault_anon 0
[ 1388.044907][T16694] workingset_refault_file 5
[ 1388.044907][T16694] workingset_activate_anon 0
[ 1388.140425][T16694] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16694,uid=0
05:13:44 executing program 2:
add_key(&(0x7f0000000300)='cifs.idmap\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe)
add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)

05:13:44 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89b0, &(0x7f0000000480)={'syztnl1\x00', &(0x7f0000000400)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}, @rand_addr=' \x01\x00'}})

05:13:44 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0xc0189436, &(0x7f00000002c0)={'ip6_vti0\x00', &(0x7f0000000240)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @private1, @mcast1}})

[ 1388.155715][T16694] Memory cgroup out of memory: Killed process 16694 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:44 executing program 4:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000580)={<r0=>0xffffffffffffffff})
r1 = getpgid(0x0)
sendmmsg$unix(r0, &(0x7f0000000bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)=[@cred={{0x1c, 0x1, 0x2, {r1}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x38}}], 0x2, 0x0)

05:13:44 executing program 4:
r0 = socket(0x25, 0x3, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), r0)

05:13:44 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETFLOWTABLE(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x20, 0x17, 0xa, 0x101, 0x0, 0x0, {}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x20}}, 0x0)

[ 1388.210606][T16705] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:44 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x169}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1388.263667][T16717] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1388.307807][T16720] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1388.318698][T16720] CPU: 1 PID: 16720 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1388.331115][T16720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1388.341263][T16720] Call Trace:
[ 1388.344538][T16720]  <TASK>
[ 1388.347499][T16720]  dump_stack_lvl+0xd6/0x122
[ 1388.352133][T16720]  dump_stack+0x11/0x15
[ 1388.356378][T16720]  dump_header+0x98/0x430
[ 1388.360731][T16720]  oom_kill_process+0x100/0x540
[ 1388.365585][T16720]  out_of_memory+0x620/0x880
[ 1388.370256][T16720]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1388.375804][T16720]  mem_cgroup_oom+0x2e7/0x370
[ 1388.380534][T16720]  try_charge_memcg+0x717/0x9c0
[ 1388.385394][T16720]  ? __alloc_pages+0x199/0x340
[ 1388.390298][T16720]  charge_memcg+0x54/0x250
[ 1388.394762][T16720]  __mem_cgroup_charge+0x25/0xa0
[ 1388.399701][T16720]  wp_page_copy+0x209/0x1460
05:13:44 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xfffe}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:44 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89a0, 0x0)

05:13:44 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000001000)={{0x14}, [@NFT_MSG_DELFLOWTABLE={0x28, 0x18, 0xa, 0x5, 0x0, 0x0, {0x5, 0x0, 0x8}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8}]}, @NFT_MSG_DELTABLE={0x20, 0x2, 0xa, 0x5, 0x0, 0x0, {0x2}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}]}, @NFT_MSG_DELSET={0x4a8, 0xb, 0xa, 0x801, 0x0, 0x0, {0x1, 0x0, 0xa}, [@NFTA_SET_KEY_TYPE={0x8, 0x4, 0x1, 0x0, 0x8}, @NFTA_SET_DESC={0x318, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x7958}, @NFTA_SET_DESC_CONCAT={0x128, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7c}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffff8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xa4d}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7451}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x80000001}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xd55}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x40}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xd87}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8001}]}, {0x4}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7fffffff}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4e}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}]}]}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x7f}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_DESC_CONCAT={0x4c, 0x2, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x65ba}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x19e}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}]}]}, @NFTA_SET_DESC_CONCAT={0x54, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x80000000}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffff9}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x44, 0x2, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfff}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x160}]}]}, @NFTA_SET_DESC_CONCAT={0xe8, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7f}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xb311}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x20}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7ff}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x76}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xd1d}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xffff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}]}]}]}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_DESC={0x150, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0xd4, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x101}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9000000}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1000}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xe000}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xa85}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8001}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x78, 0x2, 0x0, 0x1, [{0x4}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x76c}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x10001}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xf80000}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x10000}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3f}]}]}]}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x35}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1d}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x3}]}, @NFT_MSG_DELRULE={0xe0, 0x8, 0xa, 0x301, 0x0, 0x0, {0x0, 0x0, 0x4}, [@NFTA_RULE_USERDATA={0x13, 0x7, 0x1, 0x0, "2143c7cdc4fc6601343dd3ffa0501b"}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x4}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_RULE_EXPRESSIONS={0x84, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @payload={{0xc}, @void}}, {0x38, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_SIZE={0x8, 0x5, 0x1, 0x0, 0x76}, @NFTA_BYTEORDER_OP={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_BYTEORDER_SIZE={0x8, 0x5, 0x1, 0x0, 0x1e}, @NFTA_BYTEORDER_LEN={0x8, 0x4, 0x1, 0x0, 0x24}]}}}, {0x24, 0x1, 0x0, 0x1, @queue={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_QUEUE_TOTAL={0x6, 0x2, 0x1, 0x0, 0x5}, @NFTA_QUEUE_SREG_QNUM={0x8, 0x4, 0x1, 0x0, 0xa}]}}}, {0x14, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x4}}}]}, @NFTA_RULE_COMPAT={0x14, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV6={0x8}, @NFTA_RULE_COMPAT_FLAGS={0x8}]}]}, @NFT_MSG_NEWOBJ={0x28, 0x12, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x3}, @NFT_OBJECT_CONNLIMIT=@NFTA_OBJ_DATA={0x14, 0x4, 0x0, 0x1, [@NFTA_CONNLIMIT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_CONNLIMIT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}}, @NFT_MSG_DELSETELEM={0x70, 0xe, 0xa, 0x401, 0x0, 0x0, {0x5}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}]}, @NFT_MSG_DELSET={0x88, 0xb, 0xa, 0x5, 0x0, 0x0, {}, [@NFTA_SET_KEY_LEN={0x8}, @NFTA_SET_POLICY={0x8, 0x8, 0x1, 0x0, 0x1}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x34}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_EXPRESSIONS={0x54, 0x12, 0x0, 0x1, [{0x44, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x7fff}, @NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x6}]}}}, {0xc, 0x1, 0x0, 0x1, @nat={{0x8}, @void}}]}]}], {0x14}}, 0x718}, 0x1, 0x0, 0x0, 0x1}, 0x4004854)

05:13:44 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)={0x20, 0x1, 0x8, 0x801, 0x0, 0x0, {}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x20}}, 0x0)

05:13:44 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r0, &(0x7f00000025c0)={0x0, 0x0, &(0x7f0000002580)={&(0x7f0000000080)={0x14, 0x0, 0x8, 0x5}, 0x14}}, 0x0)

[ 1388.404332][T16720]  ? shrink_zones+0x525/0x5d0
[ 1388.409009][T16720]  do_wp_page+0x2dd/0x780
[ 1388.413346][T16720]  handle_mm_fault+0x5ef/0xa80
[ 1388.418204][T16720]  do_user_addr_fault+0x4a1/0x980
[ 1388.423241][T16720]  exc_page_fault+0x60/0x160
[ 1388.427837][T16720]  asm_exc_page_fault+0x22/0x30
[ 1388.432771][T16720] RIP: 0033:0x7fa69bfc32de
[ 1388.437184][T16720] Code: 10 4c 89 35 b4 5c 17 00 89 78 28 8b 7c 24 18 89 78 2c 8b 7c 24 54 89 78 78 48 8b 3c 24 88 4c 3a 04 8b 7c 24 4c 48 8b 54 24 40 <89> b8 80 00 00 00 0f 1f 40 00 48 8b 8c 14 50 01 00 00 48 83 c2 08
[ 1388.456823][T16720] RSP: 002b:00007ffd8ac4ff00 EFLAGS: 00010246
[ 1388.462893][T16720] RAX: 00007fa69c138f80 RBX: 00007fa69c138f8c RCX: 0000000000000000
[ 1388.462905][T16737] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1388.470858][T16720] RDX: 0000000000000000 RSI: 00007fa69c138f88 RDI: 0000000000000000
[ 1388.470882][T16720] RBP: 00007fa69c138f80 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1388.470894][T16720] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007fa69c138f8c
[ 1388.504018][T16720] R13: 00007fa69bb8d060 R14: 00007fa69c138f80 R15: 0000000000000000
[ 1388.512060][T16720]  </TASK>
[ 1388.515127][T16720] memory: usage 307188kB, limit 307200kB, failcnt 45919
[ 1388.522160][T16720] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1388.529003][T16720] Memory cgroup stats for /syz0:
[ 1388.529239][T16720] anon 380928
[ 1388.529239][T16720] file 10457088
[ 1388.529239][T16720] kernel 303722496
[ 1388.529239][T16720] kernel_stack 81920
[ 1388.529239][T16720] pagetables 229376
[ 1388.529239][T16720] sec_pagetables 0
[ 1388.529239][T16720] percpu 9172448
05:13:44 executing program 5:
unshare(0x60000000)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000002c80), 0x4)
getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000002c80), 0x4)
getsockopt$inet_sctp6_SCTP_STATUS(r2, 0x84, 0xe, &(0x7f0000000080)={0x0, 0x6, 0x8, 0x101, 0x8, 0xffff, 0x1f, 0x6, {0x0, @in={{0x2, 0x4e24, @local}}, 0xf2e4, 0x1, 0x2, 0x1, 0x1}}, &(0x7f0000000140)=0xb0)
setsockopt$inet6_opts(r0, 0x29, 0x5, 0x0, 0x54)

[ 1388.529239][T16720] sock 0
[ 1388.529239][T16720] vmalloc 8192
[ 1388.529239][T16720] shmem 10457088
[ 1388.529239][T16720] file_mapped 159744
[ 1388.529239][T16720] file_dirty 0
[ 1388.529239][T16720] file_writeback 0
[ 1388.529239][T16720] swapcached 0
[ 1388.529239][T16720] inactive_anon 380928
[ 1388.529239][T16720] active_anon 10457088
[ 1388.529239][T16720] inactive_file 0
[ 1388.529239][T16720] active_file 0
[ 1388.529239][T16720] unevictable 0
[ 1388.529239][T16720] slab_reclaimable 43920
[ 1388.529239][T16720] slab_unreclaimable 294102128
[ 1388.529239][T16720] slab 294146048
[ 1388.529239][T16720] workingset_refault_anon 0
[ 1388.529239][T16720] workingset_refault_file 5
[ 1388.529239][T16720] workingset_activate_anon 0
[ 1388.588407][T16740] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1388.624870][T16720] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16720,uid=0
05:13:44 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000001c0)={0x20, 0x2, 0x8, 0x201, 0x0, 0x0, {}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x20}}, 0x0)

05:13:44 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$netlink(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000001fc0)=[{&(0x7f0000000940)={0x7ffff000, 0x0, 0x0, 0x0, 0x0, "", [@typed={0x4}, @typed={0xc, 0x0, 0x0, 0x0, @u64}, @generic="163414b92a05b122d00f01798fdb2e97be7b7a7222b177ecb4c2d7"]}, 0x3c}, {&(0x7f0000001980)={0x20, 0x0, 0x0, 0x0, 0x0, "", [@nested={0x10, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}]}, 0x20}], 0x2}, 0x0)

05:13:44 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x19c}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:44 executing program 2:
unshare(0x60000000)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, 0x0, 0x0)

[ 1388.625008][T16720] Memory cgroup out of memory: Killed process 16720 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:44 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmmsg$inet6(r0, &(0x7f0000001b40)=[{{&(0x7f0000000340)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x1c, &(0x7f0000001980)=[{&(0x7f0000000400)='Z', 0x1}], 0x1}}], 0x1, 0x40)

05:13:44 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SWAP(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)={0x34, 0x6, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x34}}, 0x0)

05:13:44 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x3ffff}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:44 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x891d, &(0x7f0000000080)={'ip6_vti0\x00', 0x0})

05:13:44 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)={0x24, 0x4, 0x8, 0x401, 0x0, 0x0, {}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x21}, @CTA_TIMEOUT_L3PROTO={0x6}]}, 0x24}}, 0x0)

05:13:44 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@remote, 0x0, 0x0, 0x0, 0xc}, 0x20)

05:13:44 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000001000)={{0x14}, [@NFT_MSG_DELSET={0x14}], {0x14}}, 0x3c}}, 0x0)

[ 1388.818465][T16769] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[ 1388.867005][T16770] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1388.878023][T16770] CPU: 1 PID: 16770 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1388.890439][T16770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1388.900497][T16770] Call Trace:
[ 1388.903778][T16770]  <TASK>
[ 1388.906707][T16770]  dump_stack_lvl+0xd6/0x122
[ 1388.911305][T16770]  dump_stack+0x11/0x15
[ 1388.915626][T16770]  dump_header+0x98/0x430
[ 1388.919962][T16770]  oom_kill_process+0x100/0x540
[ 1388.924828][T16770]  out_of_memory+0x620/0x880
[ 1388.929418][T16770]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1388.935018][T16770]  mem_cgroup_oom+0x2e7/0x370
[ 1388.939755][T16770]  try_charge_memcg+0x717/0x9c0
[ 1388.944700][T16770]  ? __alloc_pages+0x199/0x340
[ 1388.949511][T16770]  charge_memcg+0x54/0x250
[ 1388.954051][T16770]  __mem_cgroup_charge+0x25/0xa0
[ 1388.959045][T16770]  wp_page_copy+0x209/0x1460
[ 1388.963644][T16770]  ? shrink_zones+0x525/0x5d0
[ 1388.968338][T16770]  ? should_fail+0x2a/0x240
[ 1388.972858][T16770]  do_wp_page+0x2dd/0x780
[ 1388.973863][T16772] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1388.977239][T16770]  handle_mm_fault+0x5ef/0xa80
[ 1388.991364][T16770]  do_user_addr_fault+0x4a1/0x980
[ 1388.996409][T16770]  exc_page_fault+0x60/0x160
[ 1389.001108][T16770]  asm_exc_page_fault+0x22/0x30
[ 1389.005986][T16770] RIP: 0033:0x7fa69bfc333d
[ 1389.010472][T16770] Code: e0 04 8b 44 02 08 85 c0 0f 85 3e 0a 00 00 31 c0 b9 40 42 0f 00 ba 81 00 00 00 c7 06 01 00 00 00 bf ca 00 00 00 e8 53 52 05 00 <83> 05 44 76 17 00 01 80 bc 24 d8 00 00 00 00 0f b6 05 57 f0 c9 00
[ 1389.030573][T16770] RSP: 002b:00007ffd8ac4ff00 EFLAGS: 00010217
[ 1389.036648][T16770] RAX: 0000000000000000 RBX: 00007fa69c138f8c RCX: 00007fa69c0185a9
[ 1389.044667][T16770] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa69c138f88
[ 1389.052662][T16770] RBP: 00007fa69c138f80 R08: 00007fa69b38c700 R09: 0000000000000000
[ 1389.060666][T16770] R10: 00007fa69b38c700 R11: 0000000000000246 R12: 00007fa69c138f8c
[ 1389.068640][T16770] R13: 00007fa69bb8d060 R14: 00007fa69c138f80 R15: 0000000000000000
[ 1389.076660][T16770]  </TASK>
[ 1389.079705][T16770] memory: usage 307192kB, limit 307200kB, failcnt 45988
[ 1389.086714][T16770] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1389.092718][T16772] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1389.093626][T16770] Memory cgroup stats for /syz0:
[ 1389.103134][T16770] anon 385024
[ 1389.103134][T16770] file 10457088
[ 1389.103134][T16770] kernel 303722496
[ 1389.103134][T16770] kernel_stack 81920
[ 1389.103134][T16770] pagetables 229376
[ 1389.103134][T16770] sec_pagetables 0
[ 1389.103134][T16770] percpu 9172448
[ 1389.103134][T16770] sock 0
[ 1389.103134][T16770] vmalloc 8192
[ 1389.103134][T16770] shmem 10457088
[ 1389.103134][T16770] file_mapped 159744
[ 1389.103134][T16770] file_dirty 0
[ 1389.103134][T16770] file_writeback 0
[ 1389.103134][T16770] swapcached 0
[ 1389.103134][T16770] inactive_anon 335872
[ 1389.103134][T16770] active_anon 10457088
[ 1389.103134][T16770] inactive_file 0
05:13:44 executing program 5:
unshare(0x60000000)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000002c80), 0x4)
getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000002c80), 0x4)
getsockopt$inet_sctp6_SCTP_STATUS(r2, 0x84, 0xe, &(0x7f0000000080)={0x0, 0x6, 0x8, 0x101, 0x8, 0xffff, 0x1f, 0x6, {0x0, @in={{0x2, 0x4e24, @local}}, 0xf2e4, 0x1, 0x2, 0x1, 0x1}}, &(0x7f0000000140)=0xb0)
setsockopt$inet6_opts(r0, 0x29, 0x5, 0x0, 0x54)

05:13:44 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f00000000c0)='1', 0x1)

05:13:44 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x36, &(0x7f0000000bc0)={@empty}, 0x14)

[ 1389.103134][T16770] active_file 0
[ 1389.103134][T16770] unevictable 0
[ 1389.103134][T16770] slab_reclaimable 44896
[ 1389.103134][T16770] slab_unreclaimable 294101360
[ 1389.103134][T16770] slab 294146256
[ 1389.103134][T16770] workingset_refault_anon 0
[ 1389.103134][T16770] workingset_refault_file 5
[ 1389.103134][T16770] workingset_activate_anon 0
[ 1389.198762][T16770] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16770,uid=0
[ 1389.214109][T16770] Memory cgroup out of memory: Killed process 16770 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:45 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x1a2}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:45 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f00000000c0)="31584533cd17a6b8ea2eece598871448", 0x10)

05:13:45 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x40000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:45 executing program 4:
unshare(0x60000000)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000002c80), 0x4)
getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000002c80), 0x4)
getsockopt$inet_sctp6_SCTP_STATUS(r2, 0x84, 0xe, &(0x7f0000000080)={0x0, 0x6, 0x8, 0x101, 0x8, 0xffff, 0x1f, 0x6, {0x0, @in={{0x2, 0x4e24, @local}}, 0xf2e4, 0x1, 0x2, 0x1, 0x1}}, &(0x7f0000000140)=0xb0)
setsockopt$inet6_opts(r0, 0x29, 0x5, 0x0, 0x54)

05:13:45 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000000c0)=@raw={'raw\x00', 0x9, 0x3, 0x278, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1f8, 0xffffffff, 0xffffffff, 0x1f8, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28}}, {{@ipv6={@dev, @private2, [], [], 'hsr0\x00', 'macvlan1\x00'}, 0x0, 0xa8, 0xd8}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2d8)

05:13:45 executing program 1:
unshare(0x60000000)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x0, 0x84)
getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(0xffffffffffffffff, 0x84, 0x12, &(0x7f0000000000), 0x0)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000002c80), 0x4)
getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000080)={0x0, 0x6, 0x8, 0x0, 0x8, 0x0, 0x1f, 0x6, {0x0, @in={{0x2, 0x4e24, @local}}, 0xf2e4, 0x0, 0x2, 0x0, 0x1}}, &(0x7f0000000140)=0xb0)

05:13:45 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x541b, &(0x7f0000000080)={'ip6_vti0\x00', 0x0})

05:13:45 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0xa, 0xffff0001, 0x0, 0x1, 0x0, 0x1}, 0x48)

[ 1389.318360][T16791] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:45 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x3, &(0x7f0000000000)=@raw=[@ldst={0x1}, @cb_func], &(0x7f0000000080)='syzkaller\x00', 0x2, 0x97, &(0x7f00000000c0)=""/151, 0x0, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
sendmmsg$inet6(r0, &(0x7f0000001b40), 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000002c80), 0x4)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000010c0)={'batadv_slave_1\x00', <r3=>0x0})
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000001100)={@remote, @remote, @remote, 0x9, 0x4, 0x5, 0x100, 0xf4e, 0x100, r3})
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000000000)={{<r4=>0x0, 0x6, 0x4, 0x1, 0x1000, 0x10001, 0x3, 0x0, 0x1f, 0x6, 0x3ff, 0x3, 0xc6, 0x2}})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f0000001000)={{r4, 0x20, 0x4, 0x0, 0x401, 0x4, 0x5, 0x7fff, 0x6, 0x1, 0x8, 0x0, 0x7, 0x4, 0x5}, 0x20, [0x0, 0x0, 0x0, 0x0]})

[ 1389.369315][T16793] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1389.380243][T16793] CPU: 1 PID: 16793 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1389.392660][T16793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1389.402717][T16793] Call Trace:
[ 1389.405997][T16793]  <TASK>
[ 1389.408927][T16793]  dump_stack_lvl+0xd6/0x122
[ 1389.413554][T16793]  dump_stack+0x11/0x15
[ 1389.417756][T16793]  dump_header+0x98/0x430
[ 1389.422153][T16793]  oom_kill_process+0x100/0x540
[ 1389.427010][T16793]  out_of_memory+0x620/0x880
[ 1389.431637][T16793]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1389.437266][T16793]  mem_cgroup_oom+0x2e7/0x370
[ 1389.442030][T16793]  try_charge_memcg+0x717/0x9c0
[ 1389.446994][T16793]  ? __alloc_pages+0x199/0x340
[ 1389.451947][T16793]  charge_memcg+0x54/0x250
[ 1389.456418][T16793]  __mem_cgroup_charge+0x25/0xa0
[ 1389.461396][T16793]  wp_page_copy+0x209/0x1460
[ 1389.466009][T16793]  ? shrink_zones+0x525/0x5d0
[ 1389.470790][T16793]  ? preempt_count_add+0x5e/0xa0
[ 1389.475923][T16793]  do_wp_page+0x2dd/0x780
[ 1389.480258][T16793]  handle_mm_fault+0x5ef/0xa80
[ 1389.485037][T16793]  do_user_addr_fault+0x4a1/0x980
[ 1389.490136][T16793]  exc_page_fault+0x60/0x160
[ 1389.494736][T16793]  asm_exc_page_fault+0x22/0x30
[ 1389.499659][T16793] RIP: 0033:0x7fa69bfc5970
[ 1389.504134][T16793] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1389.523822][T16793] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1389.529901][T16793] RAX: 0000000034c8aabb RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1389.537927][T16793] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a2f7f
[ 1389.545924][T16793] RBP: 0000000034c8aabb R08: 0000000000000abb R09: 0000000034c8aabf
[ 1389.553894][T16793] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1389.561925][T16793] R13: 0000000000000001 R14: 0000000000000001 R15: ffffffff83a0d5e7
[ 1389.569899][T16793]  ? __sys_socket+0x27/0x220
[ 1389.574549][T16793]  </TASK>
[ 1389.585140][T16793] memory: usage 307196kB, limit 307200kB, failcnt 46062
[ 1389.592333][T16793] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1389.599173][T16793] Memory cgroup stats for /syz0:
[ 1389.599473][T16793] anon 397312
[ 1389.599473][T16793] file 10457088
[ 1389.599473][T16793] kernel 303714304
[ 1389.599473][T16793] kernel_stack 81920
[ 1389.599473][T16793] pagetables 229376
[ 1389.599473][T16793] sec_pagetables 0
[ 1389.599473][T16793] percpu 9172448
[ 1389.599473][T16793] sock 0
[ 1389.599473][T16793] vmalloc 8192
[ 1389.599473][T16793] shmem 10457088
[ 1389.599473][T16793] file_mapped 159744
[ 1389.599473][T16793] file_dirty 0
[ 1389.599473][T16793] file_writeback 0
[ 1389.599473][T16793] swapcached 0
[ 1389.599473][T16793] inactive_anon 397312
[ 1389.599473][T16793] active_anon 10457088
[ 1389.599473][T16793] inactive_file 0
[ 1389.599473][T16793] active_file 0
[ 1389.599473][T16793] unevictable 0
[ 1389.599473][T16793] slab_reclaimable 39392
[ 1389.599473][T16793] slab_unreclaimable 294100856
[ 1389.599473][T16793] slab 294140248
[ 1389.599473][T16793] workingset_refault_anon 0
[ 1389.599473][T16793] workingset_refault_file 5
[ 1389.599473][T16793] workingset_activate_anon 0
[ 1389.695267][T16793] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16793,uid=0
[ 1389.710659][T16793] Memory cgroup out of memory: Killed process 16793 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1389.745069][T16804] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:45 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000001700)={0x24, 0x0, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_TUPLE={0x4}]}, 0x24}}, 0x0)

05:13:45 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x1ac}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:45 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000001000)={{0x14}, [@NFT_MSG_DELFLOWTABLE={0x34, 0x18, 0xa, 0x5, 0x0, 0x0, {}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc}, @NFTA_FLOWTABLE_FLAGS={0x8}]}, @NFT_MSG_DELTABLE={0x20, 0x2, 0xa, 0x5, 0x0, 0x0, {0x2}, [@NFTA_TABLE_HANDLE={0xc}]}, @NFT_MSG_DELSET={0x7a8, 0xb, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_DESC={0x508, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0x90, 0x2, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0x178, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xa4d}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x4}, {0x54, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0x64, 0x2, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0xa0, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0xa0, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x138, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x54, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}]}, @NFTA_SET_DATA_LEN={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_DESC={0x258, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x1c4, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x90, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}]}, @NFTA_SET_KEY_LEN={0x8}, @NFTA_SET_KEY_LEN={0x8}, @NFTA_SET_ID={0x8}]}, @NFT_MSG_DELRULE={0x120, 0x8, 0xa, 0x301, 0x0, 0x0, {}, [@NFTA_RULE_USERDATA={0xd, 0x7, 0x1, 0x0, "2143c7cdc4fc660134"}, @NFTA_RULE_POSITION={0xc}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0xa8, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @payload={{0xc}, @void}}, {0x38, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_SIZE={0x8}, @NFTA_BYTEORDER_OP={0x8}, @NFTA_BYTEORDER_SIZE={0x8}, @NFTA_BYTEORDER_LEN={0x8}]}}}, {0x2c, 0x1, 0x0, 0x1, @queue={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_QUEUE_NUM={0x6}, @NFTA_QUEUE_TOTAL={0x6}, @NFTA_QUEUE_SREG_QNUM={0x8}]}}}, {0x1c, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_XFRM_KEY={0x8}]}}}, {0x14, 0x1, 0x0, 0x1, @byteorder={{0xe}, @void}}]}, @NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_COMPAT={0x2c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8}, @NFTA_RULE_COMPAT_FLAGS={0x8}]}]}, @NFT_MSG_NEWOBJ={0x30, 0x12, 0xa, 0x201, 0x0, 0x0, {}, @NFT_OBJECT_CONNLIMIT=@NFTA_OBJ_DATA={0x1c, 0x4, 0x0, 0x1, [@NFTA_CONNLIMIT_FLAGS={0x8}, @NFTA_CONNLIMIT_FLAGS={0x8}, @NFTA_CONNLIMIT_COUNT={0x8}]}}, @NFT_MSG_DELSETELEM={0x70, 0xe, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}]}, @NFT_MSG_DELSET={0x4e0, 0xb, 0xa, 0x5, 0x0, 0x0, {}, [@NFTA_SET_KEY_LEN={0x8}, @NFTA_SET_POLICY={0x8}, @NFTA_SET_KEY_LEN={0x8}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_EXPRESSIONS={0xe4, 0x12, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_HASH_TYPE={0x8}, @NFTA_HASH_OFFSET={0x8}, @NFTA_HASH_DREG={0x8}, @NFTA_HASH_SEED={0x8}]}}}, {0x5c, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4c, 0x2, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_PACKETS={0xc}, @NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_PACKETS={0xc}]}}}, {0xc, 0x1, 0x0, 0x1, @nat={{0x8}, @void}}, {0x30, 0x1, 0x0, 0x1, @rt={{0x7}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_RT_KEY={0x8}, @NFTA_RT_KEY={0x8}, @NFTA_RT_KEY={0x8}, @NFTA_RT_DREG={0x8}]}}}, {0x14, 0x1, 0x0, 0x1, @notrack={{0xc}, @val={0x4}}}]}, @NFTA_SET_DESC={0x3bc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x140, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0x44, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0xcc, 0x2, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0xb4, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x1c, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x70, 0x2, 0x0, 0x1, [{0x54, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}]}]}]}], {0x14}}, 0xec4}}, 0x0)

05:13:45 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x80000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:45 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, 0x0, 0x0)

05:13:45 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x24044894, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x6}, 0x1c)

05:13:45 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000001000)={{0x14}, [@NFT_MSG_DELFLOWTABLE={0x34, 0x18, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_FLAGS={0x8}]}, @NFT_MSG_DELTABLE={0x20, 0x2, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_TABLE_HANDLE={0xc}]}, @NFT_MSG_DELSET={0x7a8, 0xb, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_DESC={0x508, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0x90, 0x2, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0x178, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x4}, {0x54, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0x64, 0x2, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0xa0, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x80000000}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0xa0, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfff}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xa2}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x138, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x54, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x76}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}]}, @NFTA_SET_DATA_LEN={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_DESC={0x258, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x1c4, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x90, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}]}, @NFTA_SET_KEY_LEN={0x8}, @NFTA_SET_KEY_LEN={0x8}, @NFTA_SET_ID={0x8}]}, @NFT_MSG_DELRULE={0x124, 0x8, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_RULE_USERDATA={0x11, 0x7, 0x1, 0x0, "2143c7cdc4fc6601343dd3ffa0"}, @NFTA_RULE_POSITION={0xc}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0xa8, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @payload={{0xc}, @void}}, {0x38, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_SIZE={0x8}, @NFTA_BYTEORDER_OP={0x8}, @NFTA_BYTEORDER_SIZE={0x8}, @NFTA_BYTEORDER_LEN={0x8}]}}}, {0x2c, 0x1, 0x0, 0x1, @queue={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_QUEUE_NUM={0x6}, @NFTA_QUEUE_TOTAL={0x6}, @NFTA_QUEUE_SREG_QNUM={0x8}]}}}, {0x1c, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_XFRM_KEY={0x8}]}}}, {0x14, 0x1, 0x0, 0x1, @byteorder={{0xe}, @void}}]}, @NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_COMPAT={0x2c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8}, @NFTA_RULE_COMPAT_FLAGS={0x8}]}]}, @NFT_MSG_NEWOBJ={0x30, 0x12, 0xa, 0x0, 0x0, 0x0, {}, @NFT_OBJECT_CONNLIMIT=@NFTA_OBJ_DATA={0x1c, 0x4, 0x0, 0x1, [@NFTA_CONNLIMIT_FLAGS={0x8}, @NFTA_CONNLIMIT_FLAGS={0x8}, @NFTA_CONNLIMIT_COUNT={0x8}]}}, @NFT_MSG_DELSETELEM={0x70, 0xe, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}]}, @NFT_MSG_DELSET={0x4dc, 0xb, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_SET_KEY_LEN={0x8}, @NFTA_SET_POLICY={0x8}, @NFTA_SET_KEY_LEN={0x8}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_EXPRESSIONS={0xe4, 0x12, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_HASH_TYPE={0x8}, @NFTA_HASH_OFFSET={0x8}, @NFTA_HASH_DREG={0x8}, @NFTA_HASH_SEED={0x8}]}}}, {0x5c, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4c, 0x2, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_PACKETS={0xc}, @NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_PACKETS={0xc}]}}}, {0xc, 0x1, 0x0, 0x1, @nat={{0x8}, @void}}, {0x30, 0x1, 0x0, 0x1, @rt={{0x7}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_RT_KEY={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_RT_KEY={0x8}, @NFTA_RT_KEY={0x8}, @NFTA_RT_DREG={0x8}]}}}, {0x14, 0x1, 0x0, 0x1, @notrack={{0xc}, @val={0x4}}}]}, @NFTA_SET_DESC={0x3b0, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x140, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0x44, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0xcc, 0x2, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x80}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x44cc}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7af}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0xb4, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x1c, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x4c, 0x2, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7cc}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0x28, 0x2, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}]}, @NFTA_SET_ID={0x8}]}], {0x14}}, 0xec4}}, 0x0)

05:13:45 executing program 2:
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000040)={0x0, 0x0, 0x1000, 0x0, 0x2}, 0x20)

05:13:45 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000140)={'ip6gre0\x00', &(0x7f00000000c0)={'ip6gre0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @loopback, 0x0, 0x7}})

05:13:45 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x100000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:45 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000001700)={0x24, 0x0, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_TUPLE={0x4}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x24}}, 0x0)

05:13:45 executing program 1:
unshare(0x60000000)
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000002c80), 0x4)
getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, 0x0, &(0x7f0000000140))

[ 1390.028049][T16814] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1390.038937][T16814] CPU: 0 PID: 16814 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1390.051465][T16814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1390.061578][T16814] Call Trace:
[ 1390.064856][T16814]  <TASK>
[ 1390.067872][T16814]  dump_stack_lvl+0xd6/0x122
[ 1390.072582][T16814]  dump_stack+0x11/0x15
[ 1390.076811][T16814]  dump_header+0x98/0x430
[ 1390.081223][T16814]  oom_kill_process+0x100/0x540
[ 1390.086189][T16814]  out_of_memory+0x620/0x880
[ 1390.090827][T16814]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1390.096421][T16814]  mem_cgroup_oom+0x2e7/0x370
[ 1390.101120][T16814]  try_charge_memcg+0x717/0x9c0
[ 1390.106018][T16814]  ? debug_smp_processor_id+0x13/0x20
[ 1390.111400][T16814]  ? mod_objcg_state+0x474/0x580
[ 1390.116342][T16814]  __memcg_kmem_charge_page+0x2e4/0x480
[ 1390.121899][T16814]  alloc_thread_stack_node+0x101/0x360
[ 1390.127439][T16814]  dup_task_struct+0x96/0x2a0
[ 1390.132151][T16814]  copy_process+0x3ca/0x2100
[ 1390.136813][T16814]  ? _raw_spin_unlock+0x2d/0x50
[ 1390.141672][T16814]  kernel_clone+0x166/0x550
[ 1390.146187][T16814]  __x64_sys_clone+0xc3/0xf0
[ 1390.150844][T16814]  do_syscall_64+0x2b/0x70
[ 1390.155388][T16814]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1390.161312][T16814] RIP: 0033:0x7fa69c0199d1
[ 1390.165762][T16814] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1390.185462][T16814] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1390.193881][T16814] RAX: ffffffffffffffda RBX: 00007fa69b36b700 RCX: 00007fa69c0199d1
[ 1390.201996][T16814] RDX: 00007fa69b36b9d0 RSI: 00007fa69b36b2f0 RDI: 00000000003d0f00
[ 1390.209988][T16814] RBP: 00007ffd8ac50010 R08: 00007fa69b36b700 R09: 00007fa69b36b700
[ 1390.217961][T16814] R10: 00007fa69b36b9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
05:13:46 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_VERDICT(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x14, 0x1, 0x3, 0x201}, 0x14}}, 0x0)

[ 1390.225985][T16814] R13: 00007ffd8ac4fe7f R14: 00007fa69b36b300 R15: 0000000000022000
[ 1390.234074][T16814]  </TASK>
[ 1390.237139][T16814] memory: usage 307200kB, limit 307200kB, failcnt 46155
[ 1390.244171][T16814] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1390.251153][T16814] Memory cgroup stats for /syz0:
[ 1390.251427][T16814] anon 393216
[ 1390.251427][T16814] file 10457088
[ 1390.251427][T16814] kernel 303722496
[ 1390.251427][T16814] kernel_stack 81920
[ 1390.251427][T16814] pagetables 229376
[ 1390.251427][T16814] sec_pagetables 0
[ 1390.251427][T16814] percpu 9172448
[ 1390.251427][T16814] sock 0
[ 1390.251427][T16814] vmalloc 8192
[ 1390.251427][T16814] shmem 10457088
[ 1390.251427][T16814] file_mapped 159744
[ 1390.251427][T16814] file_dirty 0
[ 1390.251427][T16814] file_writeback 0
[ 1390.251427][T16814] swapcached 0
[ 1390.251427][T16814] inactive_anon 393216
[ 1390.251427][T16814] active_anon 10457088
[ 1390.251427][T16814] inactive_file 0
[ 1390.251427][T16814] active_file 0
[ 1390.251427][T16814] unevictable 0
[ 1390.251427][T16814] slab_reclaimable 38416
[ 1390.251427][T16814] slab_unreclaimable 294105240
[ 1390.251427][T16814] slab 294143656
[ 1390.251427][T16814] workingset_refault_anon 0
[ 1390.251427][T16814] workingset_refault_file 5
[ 1390.251427][T16814] workingset_activate_anon 0
[ 1390.347057][T16814] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16814,uid=0
[ 1390.362486][T16814] Memory cgroup out of memory: Killed process 16814 (syz-executor.0) total-vm:46468kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:46 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x218}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:46 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@private1, 0x0, 0x1}, 0x20)

05:13:46 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TYPE(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000700)={0x3c, 0xd, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}]}, 0x3c}}, 0x0)

05:13:46 executing program 4:
r0 = socket$l2tp(0x2, 0x2, 0x73)
getsockopt$sock_timeval(r0, 0x1, 0x1e, 0x0, &(0x7f0000000880))

[ 1390.449427][T16842] validate_nla: 22 callbacks suppressed
[ 1390.449442][T16842] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1390.464596][T16842] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1390.473296][T16842] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1390.481374][T16842] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1390.533647][T16860] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1390.544592][T16860] CPU: 1 PID: 16860 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1390.557008][T16860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1390.567167][T16860] Call Trace:
[ 1390.570467][T16860]  <TASK>
[ 1390.573391][T16860]  dump_stack_lvl+0xd6/0x122
[ 1390.578066][T16860]  dump_stack+0x11/0x15
[ 1390.582286][T16860]  dump_header+0x98/0x430
[ 1390.586730][T16860]  oom_kill_process+0x100/0x540
[ 1390.591577][T16860]  out_of_memory+0x620/0x880
[ 1390.596166][T16860]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1390.601769][T16860]  mem_cgroup_oom+0x2e7/0x370
[ 1390.606448][T16860]  try_charge_memcg+0x717/0x9c0
[ 1390.611308][T16860]  ? __alloc_pages+0x199/0x340
[ 1390.616086][T16860]  charge_memcg+0x54/0x250
[ 1390.620570][T16860]  __mem_cgroup_charge+0x25/0xa0
[ 1390.625533][T16860]  wp_page_copy+0x209/0x1460
[ 1390.630177][T16860]  ? shrink_zones+0x525/0x5d0
[ 1390.634856][T16860]  ? preempt_count_add+0x5e/0xa0
[ 1390.639808][T16860]  do_wp_page+0x2dd/0x780
[ 1390.644145][T16860]  handle_mm_fault+0x5ef/0xa80
[ 1390.648933][T16860]  do_user_addr_fault+0x4a1/0x980
[ 1390.654188][T16860]  exc_page_fault+0x60/0x160
[ 1390.658777][T16860]  asm_exc_page_fault+0x22/0x30
[ 1390.663690][T16860] RIP: 0033:0x7fa69bfc5970
[ 1390.668249][T16860] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1390.688114][T16860] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1390.694179][T16860] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1390.702196][T16860] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1390.710194][T16860] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1390.718577][T16860] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1390.726640][T16860] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1390.734611][T16860]  ? __sock_create+0x24/0x4e0
[ 1390.739493][T16860]  </TASK>
[ 1390.742564][T16860] memory: usage 307200kB, limit 307200kB, failcnt 46277
[ 1390.749509][T16860] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1390.756384][T16860] Memory cgroup stats for /syz0:
[ 1390.756729][T16860] anon 401408
[ 1390.756729][T16860] file 10457088
[ 1390.756729][T16860] kernel 303714304
[ 1390.756729][T16860] kernel_stack 81920
[ 1390.756729][T16860] pagetables 229376
[ 1390.756729][T16860] sec_pagetables 0
[ 1390.756729][T16860] percpu 9172448
[ 1390.756729][T16860] sock 0
[ 1390.756729][T16860] vmalloc 8192
[ 1390.756729][T16860] shmem 10457088
[ 1390.756729][T16860] file_mapped 159744
[ 1390.756729][T16860] file_dirty 0
[ 1390.756729][T16860] file_writeback 0
[ 1390.756729][T16860] swapcached 0
[ 1390.756729][T16860] inactive_anon 401408
[ 1390.756729][T16860] active_anon 10457088
[ 1390.756729][T16860] inactive_file 0
[ 1390.756729][T16860] active_file 0
[ 1390.756729][T16860] unevictable 0
[ 1390.756729][T16860] slab_reclaimable 39392
05:13:46 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000280)={'ip6tnl0\x00', 0x0})

05:13:46 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x40049409, 0x0)

05:13:46 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x5452, &(0x7f0000000080)={'ip6_vti0\x00', 0x0})

05:13:46 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x1000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:46 executing program 2:
unshare(0x60000000)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000002c80), 0x4)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000002c80), 0x4)
setsockopt$inet6_opts(r0, 0x29, 0x5, 0x0, 0x54)

[ 1390.756729][T16860] slab_unreclaimable 294100856
[ 1390.756729][T16860] slab 294140248
[ 1390.756729][T16860] workingset_refault_anon 0
[ 1390.756729][T16860] workingset_refault_file 5
[ 1390.756729][T16860] workingset_activate_anon 0
[ 1390.852412][T16860] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16860,uid=0
[ 1390.867749][T16860] Memory cgroup out of memory: Killed process 16860 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:46 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000a00)={{{@in6=@private0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}, {{@in=@private}, 0x0, @in6=@private2}}, 0xe8)

[ 1390.960153][T16877] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1390.968781][T16877] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1390.977361][T16877] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1390.986004][T16877] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:13:47 executing program 1:
setsockopt$inet6_IPV6_RTHDR(0xffffffffffffffff, 0x29, 0x39, &(0x7f0000000080)={0x0, 0x4, 0x0, 0x0, 0x0, [@loopback, @private0]}, 0xffffff4a)

05:13:47 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x225}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:47 executing program 5:
r0 = socket$igmp6(0xa, 0x3, 0x2)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c)

05:13:47 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000000)={0x0, 0x4, 0x2, 0x0, 0x0, [@private1, @ipv4={'\x00', '\xff\xff', @empty}]}, 0x28)

05:13:47 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x2000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:47 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@mcast2, @in=@private, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x6e6bb6}, {{@in6=@empty}, 0x0, @in6=@mcast1}}, 0xe8)

05:13:47 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_int(r0, 0x29, 0x12, 0x0, &(0x7f0000000140))

05:13:47 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@remote, 0x0, 0x1, 0x0, 0xc}, 0x20)

05:13:47 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000200)={{{@in=@multicast2, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xa0}}, {{@in6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x0, @in=@local}}, 0xe8)

05:13:47 executing program 1:
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000540)={0x10}, 0x10}, 0x300}, 0x0)

05:13:47 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x14, 0x16, 0xa, 0x201}], {0x14}}, 0x3c}}, 0x0)

[ 1391.713695][T16882] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1391.724592][T16882] CPU: 1 PID: 16882 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1391.737026][T16882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1391.747143][T16882] Call Trace:
[ 1391.750419][T16882]  <TASK>
[ 1391.753345][T16882]  dump_stack_lvl+0xd6/0x122
[ 1391.757946][T16882]  dump_stack+0x11/0x15
[ 1391.762108][T16882]  dump_header+0x98/0x430
[ 1391.766443][T16882]  oom_kill_process+0x100/0x540
[ 1391.771354][T16882]  out_of_memory+0x620/0x880
[ 1391.775956][T16882]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1391.781515][T16882]  mem_cgroup_oom+0x2e7/0x370
[ 1391.786296][T16882]  try_charge_memcg+0x717/0x9c0
[ 1391.791279][T16882]  ? __alloc_pages+0x199/0x340
[ 1391.796165][T16882]  charge_memcg+0x54/0x250
[ 1391.800596][T16882]  __mem_cgroup_charge+0x25/0xa0
[ 1391.805553][T16882]  wp_page_copy+0x209/0x1460
[ 1391.810164][T16882]  ? shrink_zones+0x525/0x5d0
[ 1391.814920][T16882]  ? preempt_count_add+0x5e/0xa0
[ 1391.819917][T16882]  do_wp_page+0x2dd/0x780
[ 1391.824437][T16882]  handle_mm_fault+0x5ef/0xa80
[ 1391.829222][T16882]  do_user_addr_fault+0x4a1/0x980
[ 1391.834278][T16882]  exc_page_fault+0x60/0x160
[ 1391.838889][T16882]  asm_exc_page_fault+0x22/0x30
[ 1391.843752][T16882] RIP: 0033:0x7fa69bfc5970
05:13:47 executing program 1:
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_int(r0, 0x6, 0x1, 0x0, &(0x7f0000000040))

05:13:47 executing program 1:
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_int(r0, 0x6, 0x3, 0x0, &(0x7f0000000100))

[ 1391.848166][T16882] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1391.867870][T16882] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1391.874001][T16882] RAX: 000000004310b93c RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1391.882533][T16882] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000008e03449
[ 1391.890508][T16882] RBP: 000000004310b93c R08: 000000000000193c R09: 000000004310b940
[ 1391.898557][T16882] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1391.906555][T16882] R13: 0000000000000001 R14: 0000000000000005 R15: ffffffff818f93bc
[ 1391.914564][T16882]  ? selinux_socket_create+0x2c/0x180
[ 1391.919950][T16882]  </TASK>
[ 1391.923109][T16882] memory: usage 307200kB, limit 307200kB, failcnt 46354
[ 1391.930037][T16882] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1391.934650][T16900] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1391.936964][T16882] Memory cgroup stats for 
[ 1391.944992][T16900] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1391.957749][T16882] /syz0:
[ 1391.957895][T16882] anon 409600
[ 1391.957895][T16882] file 10457088
[ 1391.957895][T16882] kernel 303706112
[ 1391.957895][T16882] kernel_stack 81920
[ 1391.957895][T16882] pagetables 229376
[ 1391.957895][T16882] sec_pagetables 0
[ 1391.957895][T16882] percpu 9172448
[ 1391.957895][T16882] sock 0
[ 1391.957895][T16882] vmalloc 8192
[ 1391.957895][T16882] shmem 10457088
[ 1391.957895][T16882] file_mapped 159744
[ 1391.957895][T16882] file_dirty 0
[ 1391.957895][T16882] file_writeback 0
[ 1391.957895][T16882] swapcached 0
[ 1391.957895][T16882] inactive_anon 409600
[ 1391.957895][T16882] active_anon 10457088
[ 1391.957895][T16882] inactive_file 0
[ 1391.957895][T16882] active_file 0
[ 1391.957895][T16882] unevictable 0
[ 1391.957895][T16882] slab_reclaimable 39392
[ 1391.957895][T16882] slab_unreclaimable 294094256
[ 1391.957895][T16882] slab 294133648
[ 1391.957895][T16882] workingset_refault_anon 0
[ 1391.957895][T16882] workingset_refault_file 5
[ 1391.957895][T16882] workingset_activate_anon 0
05:13:47 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x237}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:47 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={0x14, 0x1, 0x7, 0x5}, 0x14}}, 0x0)

05:13:47 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x5450, 0x0)

05:13:47 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x3000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:47 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000001000)={{0x14}, [@NFT_MSG_DELFLOWTABLE={0x34, 0x18, 0xa, 0x5, 0x0, 0x0, {}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc}, @NFTA_FLOWTABLE_FLAGS={0x8}]}, @NFT_MSG_DELTABLE={0x20, 0x2, 0xa, 0x5, 0x0, 0x0, {0x2}, [@NFTA_TABLE_HANDLE={0xc}]}, @NFT_MSG_DELSET={0x7a8, 0xb, 0xa, 0x801, 0x0, 0x0, {0x1, 0x0, 0xa}, [@NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_DESC={0x508, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0x90, 0x2, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0x178, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x80000000}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xd55}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x4}, {0x54, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x80}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x401}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0x64, 0x2, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0xa0, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7f}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0xa0, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xa6}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x160}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x138, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x20}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x54, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x76}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}]}, @NFTA_SET_DATA_LEN={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_DESC={0x258, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x1c4, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x86c}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x58}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffff000}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1000}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xe5}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x90, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8}]}]}]}, @NFTA_SET_KEY_LEN={0x8}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1d}, @NFTA_SET_ID={0x8}]}, @NFT_MSG_DELRULE={0x120, 0x8, 0xa, 0x301, 0x0, 0x0, {}, [@NFTA_RULE_USERDATA={0xd, 0x7, 0x1, 0x0, "2143c7cdc4fc660134"}, @NFTA_RULE_POSITION={0xc}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0xa8, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @payload={{0xc}, @void}}, {0x38, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_SIZE={0x8}, @NFTA_BYTEORDER_OP={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_BYTEORDER_SIZE={0x8}, @NFTA_BYTEORDER_LEN={0x8}]}}}, {0x2c, 0x1, 0x0, 0x1, @queue={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_QUEUE_NUM={0x6}, @NFTA_QUEUE_TOTAL={0x6}, @NFTA_QUEUE_SREG_QNUM={0x8, 0x4, 0x1, 0x0, 0xa}]}}}, {0x1c, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_XFRM_KEY={0x8}]}}}, {0x14, 0x1, 0x0, 0x1, @byteorder={{0xe}, @void}}]}, @NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_COMPAT={0x2c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x3c}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8}, @NFTA_RULE_COMPAT_FLAGS={0x8}]}]}, @NFT_MSG_NEWOBJ={0x30, 0x12, 0xa, 0x201, 0x0, 0x0, {}, @NFT_OBJECT_CONNLIMIT=@NFTA_OBJ_DATA={0x1c, 0x4, 0x0, 0x1, [@NFTA_CONNLIMIT_FLAGS={0x8}, @NFTA_CONNLIMIT_FLAGS={0x8}, @NFTA_CONNLIMIT_COUNT={0x8}]}}, @NFT_MSG_DELSETELEM={0x70, 0xe, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_SET_ID={0x8}]}, @NFT_MSG_DELSET={0x4e0, 0xb, 0xa, 0x5, 0x0, 0x0, {}, [@NFTA_SET_KEY_LEN={0x8}, @NFTA_SET_POLICY={0x8}, @NFTA_SET_KEY_LEN={0x8}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_EXPRESSIONS={0xe4, 0x12, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_HASH_TYPE={0x8}, @NFTA_HASH_OFFSET={0x8}, @NFTA_HASH_DREG={0x8}, @NFTA_HASH_SEED={0x8}]}}}, {0x5c, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x4c, 0x2, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_PACKETS={0xc}, @NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_BYTES={0xc}, @NFTA_COUNTER_PACKETS={0xc}]}}}, {0xc, 0x1, 0x0, 0x1, @nat={{0x8}, @void}}, {0x30, 0x1, 0x0, 0x1, @rt={{0x7}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_RT_KEY={0x8}, @NFTA_RT_KEY={0x8}, @NFTA_RT_KEY={0x8}, @NFTA_RT_DREG={0x8}]}}}, {0x14, 0x1, 0x0, 0x1, @notrack={{0xc}, @val={0x4}}}]}, @NFTA_SET_DESC={0x3bc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x140, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0x44, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0xcc, 0x2, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x44cc}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0xb4, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x34f1}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x4c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xa0fc}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x1c, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_CONCAT={0x70, 0x2, 0x0, 0x1, [{0x54, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1bd}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x101}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}]}]}]}], {0x14}}, 0xec4}}, 0x0)

05:13:47 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)={0x24, 0x4, 0x8, 0x401, 0x0, 0x0, {}, [@CTA_TIMEOUT_L3PROTO={0x6}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}]}, 0x24}}, 0x0)

[ 1392.051746][T16882] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16882,uid=0
[ 1392.067158][T16882] Memory cgroup out of memory: Killed process 16882 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:47 executing program 5:
unshare(0x60000000)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_opts(r0, 0x29, 0x5, 0x0, 0x54)

05:13:47 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0xc0045878, 0x0)

05:13:47 executing program 2:
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0xffffffff}, 0x8)

05:13:47 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x18, 0x0, 0x2, 0x201, 0x0, 0x0, {}, [@CTA_EXPECT_TUPLE={0x4}]}, 0x18}}, 0x0)

05:13:47 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x14, 0x3, 0x2, 0x201}, 0x14}}, 0x0)

05:13:48 executing program 2:
r0 = socket$rds(0x15, 0x5, 0x0)
sendmsg$rds(r0, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0)

[ 1392.229790][T16926] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1392.241348][T16926] CPU: 0 PID: 16926 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1392.253802][T16926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1392.263862][T16926] Call Trace:
[ 1392.267136][T16926]  <TASK>
[ 1392.270062][T16926]  dump_stack_lvl+0xd6/0x122
[ 1392.274724][T16926]  dump_stack+0x11/0x15
[ 1392.278913][T16926]  dump_header+0x98/0x430
[ 1392.283314][T16926]  oom_kill_process+0x100/0x540
[ 1392.288217][T16926]  out_of_memory+0x620/0x880
[ 1392.292816][T16926]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1392.298365][T16926]  mem_cgroup_oom+0x2e7/0x370
[ 1392.303055][T16926]  try_charge_memcg+0x717/0x9c0
[ 1392.307911][T16926]  ? __alloc_pages+0x199/0x340
[ 1392.312742][T16926]  charge_memcg+0x54/0x250
[ 1392.317174][T16926]  __mem_cgroup_charge+0x25/0xa0
[ 1392.322206][T16926]  wp_page_copy+0x209/0x1460
[ 1392.326808][T16926]  ? shrink_zones+0x525/0x5d0
[ 1392.331527][T16926]  ? preempt_count_add+0x5e/0xa0
[ 1392.336497][T16926]  do_wp_page+0x2dd/0x780
[ 1392.340865][T16926]  handle_mm_fault+0x5ef/0xa80
[ 1392.345697][T16926]  do_user_addr_fault+0x4a1/0x980
[ 1392.350736][T16926]  exc_page_fault+0x60/0x160
[ 1392.355407][T16926]  asm_exc_page_fault+0x22/0x30
[ 1392.360379][T16926] RIP: 0033:0x7fa69bfc5970
[ 1392.364820][T16926] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1392.384592][T16926] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1392.390658][T16926] RAX: 000000004310b93c RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1392.398641][T16926] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000008e03449
[ 1392.406612][T16926] RBP: 000000004310b93c R08: 000000000000193c R09: 000000004310b940
[ 1392.414664][T16926] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1392.422698][T16926] R13: 0000000000000001 R14: 0000000000000005 R15: ffffffff818f93bc
[ 1392.430684][T16926]  ? selinux_socket_create+0x2c/0x180
[ 1392.436071][T16926]  </TASK>
[ 1392.446738][T16926] memory: usage 307200kB, limit 307200kB, failcnt 46437
[ 1392.453709][T16926] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1392.460554][T16926] Memory cgroup stats for /syz0:
[ 1392.460952][T16926] anon 409600
[ 1392.460952][T16926] file 10457088
[ 1392.460952][T16926] kernel 303702016
[ 1392.460952][T16926] kernel_stack 81920
[ 1392.460952][T16926] pagetables 229376
[ 1392.460952][T16926] sec_pagetables 0
[ 1392.460952][T16926] percpu 9172448
[ 1392.460952][T16926] sock 0
[ 1392.460952][T16926] vmalloc 8192
[ 1392.460952][T16926] shmem 10457088
[ 1392.460952][T16926] file_mapped 159744
[ 1392.460952][T16926] file_dirty 0
[ 1392.460952][T16926] file_writeback 0
[ 1392.460952][T16926] swapcached 0
[ 1392.460952][T16926] inactive_anon 409600
[ 1392.460952][T16926] active_anon 10457088
[ 1392.460952][T16926] inactive_file 0
[ 1392.460952][T16926] active_file 0
[ 1392.460952][T16926] unevictable 0
[ 1392.460952][T16926] slab_reclaimable 39392
[ 1392.460952][T16926] slab_unreclaimable 294088928
[ 1392.460952][T16926] slab 294128320
[ 1392.460952][T16926] workingset_refault_anon 0
[ 1392.460952][T16926] workingset_refault_file 5
[ 1392.460952][T16926] workingset_activate_anon 0
[ 1392.556557][T16926] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16926,uid=0
05:13:48 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x242}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:48 executing program 1:
sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, &(0x7f0000002180)={0x0, 0x0, 0x0}, 0x0)
socketpair(0x2c, 0x0, 0x0, &(0x7f0000002280))

05:13:48 executing program 2:
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(0xffffffffffffffff, 0x114, 0xa, &(0x7f0000000000), 0x1)
socketpair(0x2, 0x1, 0x81, &(0x7f0000000500))

[ 1392.571880][T16926] Memory cgroup out of memory: Killed process 16926 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1392.649553][T16929] __nla_validate_parse: 9 callbacks suppressed
[ 1392.649567][T16929] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:48 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x4000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:48 executing program 4:
sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000002200)='/sys/module/srcutree', 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(0x0, r0)
socketpair(0x2c, 0x0, 0x0, &(0x7f0000002280))
syz_genetlink_get_family_id$batadv(&(0x7f0000002440), 0xffffffffffffffff)

05:13:48 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_TP_METER_CANCEL(r0, &(0x7f00000026c0)={0x0, 0x0, &(0x7f0000002680)={&(0x7f0000002640)={0x14}, 0x14}}, 0x4000)

[ 1392.717854][T16952] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1392.728791][T16952] CPU: 0 PID: 16952 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1392.741300][T16952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1392.751420][T16952] Call Trace:
[ 1392.754692][T16952]  <TASK>
[ 1392.757622][T16952]  dump_stack_lvl+0xd6/0x122
[ 1392.762223][T16952]  dump_stack+0x11/0x15
[ 1392.766466][T16952]  dump_header+0x98/0x430
[ 1392.770850][T16952]  oom_kill_process+0x100/0x540
[ 1392.775705][T16952]  out_of_memory+0x620/0x880
[ 1392.780307][T16952]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1392.785893][T16952]  mem_cgroup_oom+0x2e7/0x370
[ 1392.790300][T16957] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1392.790565][T16952]  try_charge_memcg+0x717/0x9c0
[ 1392.790592][T16952]  ? __alloc_pages+0x199/0x340
[ 1392.809520][T16952]  charge_memcg+0x54/0x250
[ 1392.813949][T16952]  __mem_cgroup_charge+0x25/0xa0
[ 1392.818929][T16952]  wp_page_copy+0x209/0x1460
[ 1392.824069][T16952]  ? shrink_zones+0x525/0x5d0
[ 1392.828871][T16952]  ? preempt_count_add+0x5e/0xa0
[ 1392.833965][T16952]  do_wp_page+0x2dd/0x780
[ 1392.838301][T16952]  handle_mm_fault+0x5ef/0xa80
[ 1392.843091][T16952]  do_user_addr_fault+0x4a1/0x980
[ 1392.843584][T16958] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1392.848149][T16952]  exc_page_fault+0x60/0x160
[ 1392.848173][T16952]  asm_exc_page_fault+0x22/0x30
[ 1392.866767][T16952] RIP: 0033:0x7fa69bfc5970
[ 1392.871187][T16952] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1392.890797][T16952] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1392.896878][T16952] RAX: 00000000db29429d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1392.904906][T16952] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a2b5e
[ 1392.912883][T16952] RBP: 00000000db29429d R08: 000000000000029d R09: 00000000db2942a1
[ 1392.920926][T16952] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1392.928896][T16952] R13: 0000000000000001 R14: 0000000000000003 R15: ffffffff83a0cf1c
[ 1392.936900][T16952]  ? __sock_create+0xbc/0x4e0
[ 1392.941641][T16952]  </TASK>
[ 1392.944692][T16952] memory: usage 307192kB, limit 307200kB, failcnt 46511
[ 1392.951638][T16952] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1392.958531][T16952] Memory cgroup stats for /syz0:
[ 1392.958806][T16952] anon 405504
[ 1392.958806][T16952] file 10457088
[ 1392.958806][T16952] kernel 303697920
[ 1392.958806][T16952] kernel_stack 81920
[ 1392.958806][T16952] pagetables 229376
[ 1392.958806][T16952] sec_pagetables 0
[ 1392.958806][T16952] percpu 9172448
[ 1392.958806][T16952] sock 0
[ 1392.958806][T16952] vmalloc 8192
[ 1392.958806][T16952] shmem 10457088
[ 1392.958806][T16952] file_mapped 159744
[ 1392.958806][T16952] file_dirty 0
[ 1392.958806][T16952] file_writeback 0
[ 1392.958806][T16952] swapcached 0
[ 1392.958806][T16952] inactive_anon 401408
[ 1392.958806][T16952] active_anon 10457088
05:13:48 executing program 5:
bind$rds(0xffffffffffffffff, 0x0, 0x0)

05:13:48 executing program 2:
syz_open_dev$sg(&(0x7f0000001480), 0x0, 0x4040)

05:13:48 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x5000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:48 executing program 2:
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$netlink(r0, &(0x7f0000000580)={&(0x7f0000000280)=@proc, 0xc, 0x0, 0x0, &(0x7f0000000540)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @rights={{0x10}}], 0x30}, 0x0)

05:13:48 executing program 5:
pselect6(0x0, 0x0, &(0x7f0000000bc0), &(0x7f0000000c00), &(0x7f0000000c40)={0x0, 0x989680}, &(0x7f0000000cc0)={&(0x7f0000000c80), 0x8})

05:13:48 executing program 2:
socketpair(0x0, 0x0, 0x0, &(0x7f0000000740))

[ 1392.958806][T16952] inactive_file 0
[ 1392.958806][T16952] active_file 0
[ 1392.958806][T16952] unevictable 0
[ 1392.958806][T16952] slab_reclaimable 44896
[ 1392.958806][T16952] slab_unreclaimable 294088160
[ 1392.958806][T16952] slab 294133056
[ 1392.958806][T16952] workingset_refault_anon 0
[ 1392.958806][T16952] workingset_refault_file 5
[ 1392.958806][T16952] workingset_activate_anon 0
05:13:48 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x27c}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:48 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)=@ipmr_getroute={0x1c}, 0x1c}}, 0x0)

05:13:48 executing program 4:
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000cc0)={0x0})

05:13:48 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x8923, &(0x7f00000002c0)={'ip6_vti0\x00', 0x0})

[ 1393.054373][T16952] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16952,uid=0
[ 1393.069706][T16952] Memory cgroup out of memory: Killed process 16952 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1393.086524][T16972] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:48 executing program 1:
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(0xffffffffffffffff, 0x114, 0xa, &(0x7f0000000000), 0x1)
socketpair(0x0, 0x0, 0x0, &(0x7f0000000500))

05:13:48 executing program 2:
syz_genetlink_get_family_id$tipc2(&(0x7f0000000600), 0xffffffffffffffff)

[ 1393.173248][T16981] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1393.199800][T16986] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1393.210735][T16986] CPU: 1 PID: 16986 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
05:13:49 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)={0x14}, 0x14}}, 0x0)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000600)={0x14}, 0x14}}, 0x0)

05:13:49 executing program 5:
socketpair(0x2c, 0x0, 0x0, &(0x7f0000000740))

[ 1393.223155][T16986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1393.233217][T16986] Call Trace:
[ 1393.236495][T16986]  <TASK>
[ 1393.239424][T16986]  dump_stack_lvl+0xd6/0x122
[ 1393.244057][T16986]  dump_stack+0x11/0x15
[ 1393.248310][T16986]  dump_header+0x98/0x430
[ 1393.252891][T16986]  oom_kill_process+0x100/0x540
[ 1393.257772][T16986]  out_of_memory+0x620/0x880
[ 1393.262427][T16986]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1393.268067][T16986]  mem_cgroup_oom+0x2e7/0x370
05:13:49 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x6000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:49 executing program 1:
openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x20402, 0x0)

05:13:49 executing program 2:
openat$sysfs(0xffffffffffffff9c, &(0x7f0000002200)='/sys/module/srcutree', 0x0, 0x0)

05:13:49 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000580)={<r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000000bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b00)=[@cred={{0x1c}}, @rights={{0x10}}], 0x30}}], 0x2, 0x0)

[ 1393.272752][T16986]  try_charge_memcg+0x717/0x9c0
[ 1393.277663][T16986]  ? __alloc_pages+0x199/0x340
[ 1393.282486][T16986]  charge_memcg+0x54/0x250
[ 1393.286916][T16986]  __mem_cgroup_charge+0x25/0xa0
[ 1393.291868][T16986]  wp_page_copy+0x209/0x1460
[ 1393.296524][T16986]  ? shrink_zones+0x525/0x5d0
[ 1393.301214][T16986]  ? preempt_count_add+0x5e/0xa0
[ 1393.306282][T16986]  do_wp_page+0x2dd/0x780
[ 1393.310625][T16986]  handle_mm_fault+0x5ef/0xa80
[ 1393.315413][T16986]  do_user_addr_fault+0x4a1/0x980
[ 1393.320514][T16986]  exc_page_fault+0x60/0x160
[ 1393.325104][T16986]  asm_exc_page_fault+0x22/0x30
[ 1393.329965][T16986] RIP: 0033:0x7fa69bfc5970
[ 1393.334376][T16986] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1393.354073][T16986] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1393.360261][T16986] RAX: 000000004310b93c RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1393.368246][T16986] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000008e03449
[ 1393.376285][T16986] RBP: 000000004310b93c R08: 000000000000193c R09: 000000004310b940
[ 1393.384254][T16986] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1393.392306][T16986] R13: 0000000000000001 R14: 0000000000000005 R15: ffffffff818f93bc
[ 1393.400273][T16986]  ? selinux_socket_create+0x2c/0x180
[ 1393.405656][T16986]  </TASK>
[ 1393.418584][T16986] memory: usage 307200kB, limit 307200kB, failcnt 46595
[ 1393.425555][T16986] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1393.432499][T16986] Memory cgroup stats for /syz0:
[ 1393.432880][T16986] anon 409600
[ 1393.432880][T16986] file 10457088
[ 1393.432880][T16986] kernel 303706112
[ 1393.432880][T16986] kernel_stack 81920
[ 1393.432880][T16986] pagetables 229376
[ 1393.432880][T16986] sec_pagetables 0
[ 1393.432880][T16986] percpu 9172448
[ 1393.432880][T16986] sock 0
[ 1393.432880][T16986] vmalloc 8192
[ 1393.432880][T16986] shmem 10457088
[ 1393.432880][T16986] file_mapped 159744
[ 1393.432880][T16986] file_dirty 0
[ 1393.432880][T16986] file_writeback 0
[ 1393.432880][T16986] swapcached 0
[ 1393.432880][T16986] inactive_anon 405504
[ 1393.432880][T16986] active_anon 10457088
[ 1393.432880][T16986] inactive_file 0
[ 1393.432880][T16986] active_file 0
[ 1393.432880][T16986] unevictable 0
[ 1393.432880][T16986] slab_reclaimable 39392
[ 1393.432880][T16986] slab_unreclaimable 294094256
[ 1393.432880][T16986] slab 294133648
[ 1393.432880][T16986] workingset_refault_anon 0
[ 1393.432880][T16986] workingset_refault_file 5
05:13:49 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x294}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:49 executing program 1:
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x6)

[ 1393.432880][T16986] workingset_activate_anon 0
[ 1393.528538][T16986] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=16986,uid=0
[ 1393.543949][T16986] Memory cgroup out of memory: Killed process 16986 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1393.602614][T17008] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1393.620662][T17012] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1393.631419][T17012] CPU: 1 PID: 17012 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1393.643863][T17012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1393.653920][T17012] Call Trace:
[ 1393.657294][T17012]  <TASK>
[ 1393.660277][T17012]  dump_stack_lvl+0xd6/0x122
[ 1393.664889][T17012]  dump_stack+0x11/0x15
[ 1393.669054][T17012]  dump_header+0x98/0x430
[ 1393.673445][T17012]  oom_kill_process+0x100/0x540
[ 1393.678293][T17012]  out_of_memory+0x620/0x880
[ 1393.682919][T17012]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1393.688470][T17012]  mem_cgroup_oom+0x2e7/0x370
[ 1393.693297][T17012]  try_charge_memcg+0x717/0x9c0
[ 1393.698153][T17012]  ? debug_smp_processor_id+0x13/0x20
[ 1393.703576][T17012]  ? mod_objcg_state+0x474/0x580
[ 1393.708660][T17012]  __memcg_kmem_charge_page+0x2e4/0x480
[ 1393.714237][T17012]  alloc_thread_stack_node+0x101/0x360
[ 1393.719703][T17012]  dup_task_struct+0x96/0x2a0
[ 1393.724508][T17012]  copy_process+0x3ca/0x2100
[ 1393.729161][T17012]  kernel_clone+0x166/0x550
[ 1393.733672][T17012]  __x64_sys_clone+0xc3/0xf0
[ 1393.738273][T17012]  do_syscall_64+0x2b/0x70
[ 1393.742733][T17012]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1393.748644][T17012] RIP: 0033:0x7fa69c0199d1
[ 1393.753058][T17012] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1393.772692][T17012] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1393.781173][T17012] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1393.789232][T17012] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1393.797202][T17012] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1393.805170][T17012] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1393.813138][T17012] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1393.821108][T17012]  </TASK>
[ 1393.824159][T17012] memory: usage 307188kB, limit 307200kB, failcnt 46662
[ 1393.831085][T17012] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1393.837962][T17012] Memory cgroup stats for /syz0:
[ 1393.838223][T17012] anon 380928
[ 1393.838223][T17012] file 10457088
[ 1393.838223][T17012] kernel 303722496
[ 1393.838223][T17012] kernel_stack 65536
[ 1393.838223][T17012] pagetables 229376
[ 1393.838223][T17012] sec_pagetables 0
[ 1393.838223][T17012] percpu 9172448
[ 1393.838223][T17012] sock 0
[ 1393.838223][T17012] vmalloc 8192
[ 1393.838223][T17012] shmem 10457088
[ 1393.838223][T17012] file_mapped 159744
[ 1393.838223][T17012] file_dirty 0
[ 1393.838223][T17012] file_writeback 0
[ 1393.838223][T17012] swapcached 0
[ 1393.838223][T17012] inactive_anon 368640
[ 1393.838223][T17012] active_anon 10457088
[ 1393.838223][T17012] inactive_file 0
[ 1393.838223][T17012] active_file 0
[ 1393.838223][T17012] unevictable 0
[ 1393.838223][T17012] slab_reclaimable 48200
[ 1393.838223][T17012] slab_unreclaimable 294102264
[ 1393.838223][T17012] slab 294150464
[ 1393.838223][T17012] workingset_refault_anon 0
[ 1393.838223][T17012] workingset_refault_file 5
[ 1393.838223][T17012] workingset_activate_anon 0
[ 1393.919516][T17009] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:49 executing program 4:
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={0xffffffffffffffff, 0x0, 0x0}, 0x10)

05:13:49 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@cgroup=r0}, 0x10)

05:13:49 executing program 5:
set_mempolicy(0x3, &(0x7f00000002c0)=0xfffffffffffffff9, 0x8)
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
preadv2(r0, &(0x7f0000000100)=[{&(0x7f0000000000)=""/72, 0xe0ffc}], 0x1, 0x20004, 0x76000000, 0x8)

05:13:49 executing program 1:
syz_open_dev$evdev(&(0x7f0000002940), 0x0, 0x2000c1)

[ 1393.934099][T17012] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17012,uid=0
[ 1393.934169][T17012] Memory cgroup out of memory: Killed process 17012 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:49 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x2b9}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:49 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r0, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f0000000c40)={0x14}, 0x14}}, 0x0)

05:13:49 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x7000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:49 executing program 2:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)

[ 1394.041731][T17023] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1394.053255][T17023] CPU: 0 PID: 17023 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1394.065674][T17023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1394.075778][T17023] Call Trace:
[ 1394.079053][T17023]  <TASK>
[ 1394.082013][T17023]  dump_stack_lvl+0xd6/0x122
[ 1394.086735][T17023]  dump_stack+0x11/0x15
05:13:49 executing program 4:
syz_genetlink_get_family_id$batadv(&(0x7f0000000880), 0xffffffffffffffff)

05:13:49 executing program 1:
open$dir(&(0x7f0000000640)='./file0\x00', 0x0, 0x0)

05:13:49 executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f00000001c0))

[ 1394.090938][T17023]  dump_header+0x98/0x430
[ 1394.095354][T17023]  oom_kill_process+0x100/0x540
[ 1394.100240][T17023]  out_of_memory+0x620/0x880
[ 1394.104837][T17023]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1394.108530][T17032] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1394.110734][T17023]  mem_cgroup_oom+0x2e7/0x370
[ 1394.124755][T17023]  try_charge_memcg+0x717/0x9c0
[ 1394.129683][T17023]  ? debug_smp_processor_id+0x13/0x20
[ 1394.135180][T17023]  ? mod_objcg_state+0x474/0x580
05:13:49 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_GET_STATUS(r0, 0x80081272, &(0x7f0000000040))

05:13:49 executing program 1:
bpf$BPF_BTF_GET_FD_BY_ID(0x22, 0x0, 0x0)

05:13:49 executing program 4:
r0 = socket$igmp(0x2, 0x3, 0x2)
ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0x890d, 0x0)

[ 1394.140119][T17023]  __memcg_kmem_charge_page+0x2e4/0x480
[ 1394.145722][T17023]  alloc_thread_stack_node+0x101/0x360
[ 1394.151199][T17023]  dup_task_struct+0x96/0x2a0
[ 1394.155924][T17023]  copy_process+0x3ca/0x2100
[ 1394.160609][T17023]  kernel_clone+0x166/0x550
[ 1394.165204][T17023]  __x64_sys_clone+0xc3/0xf0
[ 1394.169869][T17023]  do_syscall_64+0x2b/0x70
[ 1394.174296][T17023]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1394.180197][T17023] RIP: 0033:0x7fa69c0199d1
05:13:50 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000001340)={'gre0\x00', &(0x7f0000001200)={'sit0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}}}})

05:13:50 executing program 1:
r0 = io_uring_setup(0x48aa, &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0x4, 0x0, 0x0)

[ 1394.184647][T17023] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1394.204447][T17023] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1394.212866][T17023] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1394.220836][T17023] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1394.228889][T17023] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1394.236875][T17023] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1394.244846][T17023] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1394.252825][T17023]  </TASK>
[ 1394.263751][T17023] memory: usage 307188kB, limit 307200kB, failcnt 46726
[ 1394.270695][T17023] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1394.277564][T17023] Memory cgroup stats for /syz0:
[ 1394.277807][T17023] anon 380928
[ 1394.277807][T17023] file 10457088
[ 1394.277807][T17023] kernel 303722496
[ 1394.277807][T17023] kernel_stack 65536
[ 1394.277807][T17023] pagetables 229376
[ 1394.277807][T17023] sec_pagetables 0
[ 1394.277807][T17023] percpu 9172448
[ 1394.277807][T17023] sock 0
[ 1394.277807][T17023] vmalloc 8192
[ 1394.277807][T17023] shmem 10457088
[ 1394.277807][T17023] file_mapped 159744
[ 1394.277807][T17023] file_dirty 0
[ 1394.277807][T17023] file_writeback 0
[ 1394.277807][T17023] swapcached 0
[ 1394.277807][T17023] inactive_anon 335872
[ 1394.277807][T17023] active_anon 10457088
[ 1394.277807][T17023] inactive_file 0
[ 1394.277807][T17023] active_file 0
[ 1394.277807][T17023] unevictable 0
[ 1394.277807][T17023] slab_reclaimable 57272
[ 1394.277807][T17023] slab_unreclaimable 294102640
[ 1394.277807][T17023] slab 294159912
[ 1394.277807][T17023] workingset_refault_anon 0
[ 1394.277807][T17023] workingset_refault_file 5
[ 1394.277807][T17023] workingset_activate_anon 0
[ 1394.373751][T17023] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17023,uid=0
05:13:50 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x2c8}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:50 executing program 4:
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1d, 0x1, &(0x7f0000000000)=@raw=[@jmp], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

[ 1394.389032][T17023] Memory cgroup out of memory: Killed process 17023 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1394.439306][T17059] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=1000
[ 1394.450370][T17059] CPU: 0 PID: 17059 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1394.458734][T17041] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1394.462774][T17059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1394.462787][T17059] Call Trace:
[ 1394.462793][T17059]  <TASK>
[ 1394.462799][T17059]  dump_stack_lvl+0xd6/0x122
[ 1394.462831][T17059]  dump_stack+0x11/0x15
[ 1394.462930][T17059]  dump_header+0x98/0x430
[ 1394.462949][T17059]  oom_kill_process+0x100/0x540
[ 1394.462967][T17059]  out_of_memory+0x620/0x880
[ 1394.462985][T17059]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1394.463071][T17059]  mem_cgroup_oom+0x2e7/0x370
[ 1394.463094][T17059]  try_charge_memcg+0x717/0x9c0
[ 1394.463143][T17059]  obj_cgroup_charge+0x171/0x2b0
[ 1394.463164][T17059]  kmem_cache_alloc_node+0x9b/0x380
05:13:50 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x8000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:50 executing program 1:
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_clone3(&(0x7f00000017c0)={0x8000000, 0x0, &(0x7f00000006c0), 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

05:13:50 executing program 4:
ioctl$RTC_WKALM_RD(0xffffffffffffffff, 0x80287010, 0x0)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x8880, 0x0)
ioctl$RTC_AIE_ON(r0, 0x7001)
r1 = bpf$ITER_CREATE(0x21, 0x0, 0x0)
ioctl$RTC_WKALM_RD(r1, 0x80287010, &(0x7f00000000c0))
ioctl$RTC_EPOCH_SET(r1, 0x4008700e, 0x2)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x10, 0x1405, 0x10, 0x0, 0x25dfdbfe}, 0x10}}, 0x0)
pipe2$watch_queue(0x0, 0x80)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL802154_CMD_GET_SEC_KEY(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)={0x38, 0x0, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x38}}, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
ioctl$RTC_ALM_SET(0xffffffffffffffff, 0x40247007, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, 0x0)

05:13:50 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_GET_STATUS(r0, 0x127d, 0x0)

05:13:50 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_GET_STATUS(r0, 0xc0481273, &(0x7f0000000040))

[ 1394.463190][T17059]  ? dup_task_struct+0x5b/0x2a0
[ 1394.463223][T17059]  ? shrink_zones+0x525/0x5d0
[ 1394.463291][T17059]  dup_task_struct+0x5b/0x2a0
[ 1394.463318][T17059]  copy_process+0x3ca/0x2100
[ 1394.463346][T17059]  kernel_clone+0x166/0x550
[ 1394.463386][T17059]  __x64_sys_clone+0xc3/0xf0
[ 1394.463414][T17059]  do_syscall_64+0x2b/0x70
[ 1394.463439][T17059]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1394.463543][T17059] RIP: 0033:0x7fa69c0199d1
05:13:50 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_GET_STATUS(r0, 0x401870cc, 0x0)

05:13:50 executing program 5:
syz_io_uring_setup(0x32f6, &(0x7f0000000000)={0x0, 0xccf7, 0x8}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0))

05:13:50 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000001600)={0x0, 0x0, 0x17})

05:13:50 executing program 1:
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
pidfd_send_signal(r0, 0x0, &(0x7f0000000000)={0x3b}, 0x0)

[ 1394.579676][T17059] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1394.599360][T17059] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1394.607778][T17059] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1394.615838][T17059] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1394.623874][T17059] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1394.631865][T17059] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
05:13:50 executing program 2:
bpf$MAP_CREATE(0x10, &(0x7f0000002380), 0x48)

[ 1394.639860][T17059] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1394.647841][T17059]  </TASK>
[ 1394.660702][T17059] memory: usage 307196kB, limit 307200kB, failcnt 46786
[ 1394.662908][T17076] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1394.667662][T17059] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1394.667685][T17059] Memory cgroup stats for /syz0:
[ 1394.668025][T17059] anon 380928
[ 1394.668025][T17059] file 10457088
[ 1394.668025][T17059] kernel 303718400
[ 1394.668025][T17059] kernel_stack 65536
[ 1394.668025][T17059] pagetables 229376
[ 1394.668025][T17059] sec_pagetables 0
[ 1394.668025][T17059] percpu 9172448
[ 1394.668025][T17059] sock 0
[ 1394.668025][T17059] vmalloc 8192
[ 1394.668025][T17059] shmem 10457088
[ 1394.668025][T17059] file_mapped 159744
[ 1394.668025][T17059] file_dirty 0
[ 1394.668025][T17059] file_writeback 0
[ 1394.668025][T17059] swapcached 0
[ 1394.668025][T17059] inactive_anon 344064
[ 1394.668025][T17059] active_anon 10457088
[ 1394.668025][T17059] inactive_file 0
[ 1394.668025][T17059] active_file 0
[ 1394.668025][T17059] unevictable 0
[ 1394.668025][T17059] slab_reclaimable 55896
[ 1394.668025][T17059] slab_unreclaimable 294099504
[ 1394.668025][T17059] slab 294155400
[ 1394.668025][T17059] workingset_refault_anon 0
[ 1394.668025][T17059] workingset_refault_file 5
[ 1394.668025][T17059] workingset_activate_anon 0
05:13:50 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x2d2}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:50 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f0000000080)=@ethtool_gfeatures})

[ 1394.780279][T17059] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17059,uid=0
[ 1394.795582][T17059] Memory cgroup out of memory: Killed process 17059 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:50 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x9000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:50 executing program 2:
syz_io_uring_setup(0x568, &(0x7f0000000000), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, 0x0)
syz_io_uring_setup(0xe8, &(0x7f0000000180), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))

05:13:50 executing program 4:
r0 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TIOCGPGRP(r0, 0x5420, 0x0)

05:13:50 executing program 1:
setxattr$security_evm(&(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)

05:13:50 executing program 2:
syz_io_uring_setup(0x568, &(0x7f0000000000), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, 0x0)
syz_io_uring_setup(0xe8, &(0x7f0000000180)={0x0, 0x4939}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))

05:13:50 executing program 2:
r0 = socket$igmp(0x2, 0x3, 0x2)
ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0x40049409, 0x0)

05:13:50 executing program 5:
bpf$OBJ_GET_PROG(0x12, &(0x7f0000001140)={0x0, 0x0, 0x14}, 0x10)

05:13:50 executing program 5:
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x1, 0x2, &(0x7f0000000040)=@raw=[@initr0], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x80)

05:13:50 executing program 1:
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = syz_clone3(&(0x7f00000017c0)={0x8000000, &(0x7f0000000680), &(0x7f00000006c0), &(0x7f0000000700), {0x32}, &(0x7f0000000740)=""/19, 0x13, &(0x7f0000000780)=""/4096, &(0x7f0000001780)=[0x0, 0x0], 0x2, {r1}}, 0x58)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x1ff)
write$tcp_congestion(r1, &(0x7f0000000100)='scalable\x00', 0x9)
r3 = socket$unix(0x1, 0x5, 0x0)
sendmmsg$unix(r3, &(0x7f0000003740)=[{{&(0x7f0000000040)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000005c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, &(0x7f00000000c0)=ANY=[@ANYBLOB="d551731d010000d2454bb76a89bf1000", @ANYRES32=0x0, @ANYRES64=r2, @ANYRES32=0x0, @ANYBLOB="0000000010000000000000000100000001000000"], 0x30}}], 0x1, 0x80)
ioctl$AUTOFS_IOC_EXPIRE(r3, 0x810c9365, &(0x7f0000000140)={{0xfffffff9}, 0x100, './file0\x00'})
write$tcp_congestion(r0, 0x0, 0x0)

05:13:50 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_GET_STATUS(r0, 0x125f, 0x0)

[ 1394.934547][T17107] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1394.945406][T17107] CPU: 1 PID: 17107 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1394.957824][T17107] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1394.967880][T17107] Call Trace:
[ 1394.971196][T17107]  <TASK>
[ 1394.974125][T17107]  dump_stack_lvl+0xd6/0x122
[ 1394.978834][T17107]  dump_stack+0x11/0x15
[ 1394.983003][T17107]  dump_header+0x98/0x430
[ 1394.987409][T17107]  oom_kill_process+0x100/0x540
[ 1394.992264][T17107]  out_of_memory+0x620/0x880
[ 1394.996849][T17107]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1395.002425][T17107]  mem_cgroup_oom+0x2e7/0x370
[ 1395.007114][T17107]  try_charge_memcg+0x717/0x9c0
[ 1395.011976][T17107]  ? avc_has_perm_noaudit+0x1c0/0x270
[ 1395.017356][T17107]  obj_cgroup_charge+0x171/0x2b0
[ 1395.022339][T17107]  memcg_slab_pre_alloc_hook+0xf7/0x170
[ 1395.028002][T17107]  ? sock_alloc_inode+0x2d/0xa0
[ 1395.032875][T17107]  kmem_cache_alloc_lru+0x75/0x2a0
[ 1395.037998][T17107]  sock_alloc_inode+0x2d/0xa0
[ 1395.042724][T17107]  ? sockfs_init_fs_context+0x70/0x70
[ 1395.048210][T17107]  alloc_inode+0x38/0x150
[ 1395.052625][T17107]  new_inode_pseudo+0x13/0x60
[ 1395.057308][T17107]  __sock_create+0x122/0x4e0
[ 1395.061959][T17107]  __sys_socket+0x9c/0x220
[ 1395.066388][T17107]  __x64_sys_socket+0x3b/0x50
[ 1395.071067][T17107]  do_syscall_64+0x2b/0x70
[ 1395.075511][T17107]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1395.081450][T17107] RIP: 0033:0x7fa69c0185a9
[ 1395.085866][T17107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1395.105541][T17107] RSP: 002b:00007fa69b38c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1395.114233][T17107] RAX: ffffffffffffffda RBX: 00007fa69c138f80 RCX: 00007fa69c0185a9
[ 1395.122262][T17107] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000010
[ 1395.130232][T17107] RBP: 00007fa69c0737b0 R08: 0000000000000000 R09: 0000000000000000
[ 1395.138199][T17107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1395.146185][T17107] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1395.154235][T17107]  </TASK>
[ 1395.164671][T17107] memory: usage 307192kB, limit 307200kB, failcnt 46863
[ 1395.171680][T17107] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1395.178523][T17107] Memory cgroup stats for /syz0:
[ 1395.178810][T17107] anon 389120
[ 1395.178810][T17107] file 10457088
[ 1395.178810][T17107] kernel 303714304
[ 1395.178810][T17107] kernel_stack 81920
[ 1395.178810][T17107] pagetables 229376
[ 1395.178810][T17107] sec_pagetables 0
[ 1395.178810][T17107] percpu 9172448
[ 1395.178810][T17107] sock 0
[ 1395.178810][T17107] vmalloc 8192
[ 1395.178810][T17107] shmem 10457088
[ 1395.178810][T17107] file_mapped 159744
[ 1395.178810][T17107] file_dirty 0
[ 1395.178810][T17107] file_writeback 0
[ 1395.178810][T17107] swapcached 0
[ 1395.178810][T17107] inactive_anon 389120
[ 1395.178810][T17107] active_anon 10457088
[ 1395.178810][T17107] inactive_file 0
[ 1395.178810][T17107] active_file 0
[ 1395.178810][T17107] unevictable 0
[ 1395.178810][T17107] slab_reclaimable 38416
[ 1395.178810][T17107] slab_unreclaimable 294100832
[ 1395.178810][T17107] slab 294139248
[ 1395.178810][T17107] workingset_refault_anon 0
[ 1395.178810][T17107] workingset_refault_file 5
[ 1395.178810][T17107] workingset_activate_anon 0
05:13:51 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x2dc}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:51 executing program 4:
syz_io_uring_setup(0x4448, &(0x7f0000000000), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0))

05:13:51 executing program 2:
io_setup(0x100, &(0x7f0000000100)=<r0=>0x0)
io_cancel(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)

05:13:51 executing program 5:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000fc0), 0x0, 0x0)
dup3(0xffffffffffffffff, r0, 0x0)

05:13:51 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xa000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:51 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_GET_STATUS(r0, 0x4c06, &(0x7f0000000040))

[ 1395.274770][T17107] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17090,uid=0
[ 1395.290058][T17107] Memory cgroup out of memory: Killed process 17090 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:51 executing program 5:
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$tcp_congestion(r0, &(0x7f0000000100)='dctcp\x00', 0x6)

05:13:51 executing program 1:
openat$null(0xffffffffffffff9c, &(0x7f0000000180), 0x4442, 0x0)

05:13:51 executing program 4:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_GET_STATUS(r0, 0x4020940d, &(0x7f0000000040))

05:13:51 executing program 1:
syz_io_uring_setup(0x7ba5, &(0x7f0000000600), &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000ffb000/0x1000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x291, &(0x7f0000001a00), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000001a80), &(0x7f0000001ac0))

05:13:51 executing program 5:
r0 = syz_io_uring_setup(0x6b1b, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_setup(0x1b53, &(0x7f00000001c0)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000280))

[ 1395.404354][T17132] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1395.415187][T17132] CPU: 1 PID: 17132 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1395.427654][T17132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1395.437948][T17132] Call Trace:
[ 1395.441254][T17132]  <TASK>
[ 1395.444200][T17132]  dump_stack_lvl+0xd6/0x122
[ 1395.448903][T17132]  dump_stack+0x11/0x15
05:13:51 executing program 4:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(r0, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)

[ 1395.453069][T17132]  dump_header+0x98/0x430
[ 1395.457407][T17132]  oom_kill_process+0x100/0x540
[ 1395.462265][T17132]  out_of_memory+0x620/0x880
[ 1395.466854][T17132]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1395.474156][T17132]  mem_cgroup_oom+0x2e7/0x370
[ 1395.478902][T17132]  try_charge_memcg+0x717/0x9c0
[ 1395.483771][T17132]  ? __alloc_pages+0x199/0x340
[ 1395.488553][T17132]  charge_memcg+0x54/0x250
[ 1395.492990][T17132]  __mem_cgroup_charge+0x25/0xa0
[ 1395.497967][T17132]  wp_page_copy+0x209/0x1460
[ 1395.502575][T17132]  ? should_fail+0x2a/0x240
[ 1395.507088][T17132]  do_wp_page+0x2dd/0x780
[ 1395.511518][T17132]  handle_mm_fault+0x5ef/0xa80
[ 1395.516382][T17132]  do_user_addr_fault+0x4a1/0x980
[ 1395.521414][T17132]  exc_page_fault+0x60/0x160
[ 1395.526040][T17132]  asm_exc_page_fault+0x22/0x30
[ 1395.530901][T17132] RIP: 0033:0x7fa69bfc333d
[ 1395.535356][T17132] Code: e0 04 8b 44 02 08 85 c0 0f 85 3e 0a 00 00 31 c0 b9 40 42 0f 00 ba 81 00 00 00 c7 06 01 00 00 00 bf ca 00 00 00 e8 53 52 05 00 <83> 05 44 76 17 00 01 80 bc 24 d8 00 00 00 00 0f b6 05 57 f0 c9 00
[ 1395.554975][T17132] RSP: 002b:00007ffd8ac4ff00 EFLAGS: 00010217
[ 1395.561043][T17132] RAX: 0000000000000000 RBX: 00007fa69c138f8c RCX: 00007fa69c0185a9
[ 1395.569153][T17132] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa69c138f88
[ 1395.577200][T17132] RBP: 00007fa69c138f80 R08: 00007fa69b38c700 R09: 0000000000000000
[ 1395.585169][T17132] R10: 00007fa69b38c700 R11: 0000000000000246 R12: 00007fa69c138f8c
[ 1395.593141][T17132] R13: 00007fa69bb8d060 R14: 00007fa69c138f80 R15: 0000000000000000
[ 1395.601205][T17132]  </TASK>
[ 1395.614414][T17132] memory: usage 307200kB, limit 307200kB, failcnt 46963
[ 1395.615518][T17129] validate_nla: 26 callbacks suppressed
[ 1395.615531][T17129] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1395.621367][T17132] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1395.621381][T17132] Memory cgroup stats for /syz0:
[ 1395.621684][T17132] anon 385024
[ 1395.621684][T17132] file 10457088
[ 1395.621684][T17132] kernel 303722496
[ 1395.621684][T17132] kernel_stack 81920
[ 1395.621684][T17132] pagetables 229376
[ 1395.621684][T17132] sec_pagetables 0
[ 1395.621684][T17132] percpu 9172448
[ 1395.621684][T17132] sock 0
[ 1395.621684][T17132] vmalloc 8192
[ 1395.621684][T17132] shmem 10457088
[ 1395.621684][T17132] file_mapped 159744
[ 1395.621684][T17132] file_dirty 0
[ 1395.621684][T17132] file_writeback 0
[ 1395.621684][T17132] swapcached 0
[ 1395.621684][T17132] inactive_anon 368640
[ 1395.621684][T17132] active_anon 10457088
[ 1395.621684][T17132] inactive_file 0
[ 1395.621684][T17132] active_file 0
[ 1395.621684][T17132] unevictable 0
[ 1395.621684][T17132] slab_reclaimable 39792
[ 1395.621684][T17132] slab_unreclaimable 294102128
[ 1395.621684][T17132] slab 294141920
[ 1395.621684][T17132] workingset_refault_anon 0
[ 1395.621684][T17132] workingset_refault_file 5
[ 1395.621684][T17132] workingset_activate_anon 0
[ 1395.627655][T17129] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:13:51 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x2e4}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:51 executing program 1:
openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000140)={0x0, 0x20}, 0x18)

05:13:51 executing program 2:
syz_open_dev$vcsn(&(0x7f0000001000), 0x0, 0x501000)

05:13:51 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_SET_VLAN(r0, &(0x7f0000000a00)={0x0, 0x0, 0x0}, 0x0)

[ 1395.635122][T17132] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17132,uid=0
[ 1395.635294][T17132] Memory cgroup out of memory: Killed process 17132 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1395.787596][T17129] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1395.795724][T17129] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1395.854183][T17161] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1395.865137][T17161] CPU: 1 PID: 17161 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1395.877628][T17161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1395.887679][T17161] Call Trace:
[ 1395.891020][T17161]  <TASK>
[ 1395.893955][T17161]  dump_stack_lvl+0xd6/0x122
[ 1395.898554][T17161]  dump_stack+0x11/0x15
05:13:51 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xb000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:51 executing program 5:
clock_gettime(0x0, &(0x7f0000000c00))

05:13:51 executing program 1:
clock_gettime(0x6, &(0x7f00000002c0))

05:13:51 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:13:51 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_GET_STATUS(r0, 0x2, &(0x7f0000000040))

[ 1395.902720][T17161]  dump_header+0x98/0x430
[ 1395.907050][T17161]  oom_kill_process+0x100/0x540
[ 1395.911948][T17161]  out_of_memory+0x620/0x880
[ 1395.916538][T17161]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1395.922159][T17161]  mem_cgroup_oom+0x2e7/0x370
[ 1395.926980][T17161]  try_charge_memcg+0x717/0x9c0
[ 1395.931847][T17161]  ? avc_has_perm_noaudit+0x1c0/0x270
[ 1395.937235][T17161]  obj_cgroup_charge+0x171/0x2b0
[ 1395.942225][T17161]  memcg_slab_pre_alloc_hook+0xf7/0x170
[ 1395.947879][T17161]  ? sock_alloc_inode+0x2d/0xa0
05:13:51 executing program 1:
r0 = io_uring_setup(0x48aa, &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0x3, 0x0, 0x0)

05:13:51 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_GET_STATUS(r0, 0x4c05, &(0x7f0000000040))

[ 1395.952820][T17161]  kmem_cache_alloc_lru+0x75/0x2a0
[ 1395.957984][T17161]  sock_alloc_inode+0x2d/0xa0
[ 1395.962677][T17161]  ? sockfs_init_fs_context+0x70/0x70
[ 1395.968060][T17161]  alloc_inode+0x38/0x150
[ 1395.972509][T17161]  new_inode_pseudo+0x13/0x60
[ 1395.977204][T17161]  __sock_create+0x122/0x4e0
[ 1395.981844][T17161]  __sys_socket+0x9c/0x220
[ 1395.986290][T17161]  __x64_sys_socket+0x3b/0x50
[ 1395.990984][T17161]  do_syscall_64+0x2b/0x70
[ 1395.995475][T17161]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
05:13:51 executing program 1:
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_SET_VLAN(r0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000980)={0x14}, 0x14}}, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000c40), r0)

[ 1396.001464][T17161] RIP: 0033:0x7fa69c0185a9
[ 1396.005881][T17161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1396.025499][T17161] RSP: 002b:00007fa69b38c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1396.033998][T17161] RAX: ffffffffffffffda RBX: 00007fa69c138f80 RCX: 00007fa69c0185a9
[ 1396.042090][T17161] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000010
[ 1396.050061][T17161] RBP: 00007fa69c0737b0 R08: 0000000000000000 R09: 0000000000000000
[ 1396.058081][T17161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1396.066055][T17161] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1396.074084][T17161]  </TASK>
[ 1396.077176][T17161] memory: usage 307200kB, limit 307200kB, failcnt 47061
[ 1396.084139][T17161] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1396.090980][T17161] Memory cgroup stats for /syz0:
[ 1396.091209][T17161] anon 389120
[ 1396.091209][T17161] file 10457088
[ 1396.091209][T17161] kernel 303726592
[ 1396.091209][T17161] kernel_stack 81920
[ 1396.091209][T17161] pagetables 229376
[ 1396.091209][T17161] sec_pagetables 0
[ 1396.091209][T17161] percpu 9172448
[ 1396.091209][T17161] sock 0
[ 1396.091209][T17161] vmalloc 8192
[ 1396.091209][T17161] shmem 10457088
[ 1396.091209][T17161] file_mapped 159744
[ 1396.091209][T17161] file_dirty 0
[ 1396.091209][T17161] file_writeback 0
[ 1396.091209][T17161] swapcached 0
[ 1396.091209][T17161] inactive_anon 389120
[ 1396.091209][T17161] active_anon 10457088
[ 1396.091209][T17161] inactive_file 0
[ 1396.091209][T17161] active_file 0
[ 1396.091209][T17161] unevictable 0
[ 1396.091209][T17161] slab_reclaimable 38416
[ 1396.091209][T17161] slab_unreclaimable 294107192
[ 1396.091209][T17161] slab 294145608
[ 1396.091209][T17161] workingset_refault_anon 0
[ 1396.091209][T17161] workingset_refault_file 5
[ 1396.091209][T17161] workingset_activate_anon 0
05:13:52 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x2e7}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:52 executing program 1:
ioctl$EVIOCGABS0(0xffffffffffffffff, 0x80184540, 0x0)

05:13:52 executing program 5:
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$tcp_congestion(r0, &(0x7f0000000100)='scalable\x00', 0x9)
write$tcp_congestion(r0, 0x0, 0x0)

[ 1396.099687][   T23] audit: type=1400 audit(1667193231.891:643): avc:  denied  { mount } for  pid=17178 comm="syz-executor.4" name="/" dev="hugetlbfs" ino=683807 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[ 1396.186872][T17161] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17151,uid=0
[ 1396.186995][T17161] Memory cgroup out of memory: Killed process 17151 (syz-executor.0) total-vm:46468kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:52 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_GET_STATUS(r0, 0x40101288, 0x0)

[ 1396.265425][T17183] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=1000
[ 1396.265448][T17183] CPU: 0 PID: 17183 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1396.265542][T17183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1396.265553][T17183] Call Trace:
[ 1396.265559][T17183]  <TASK>
[ 1396.265565][T17183]  dump_stack_lvl+0xd6/0x122
[ 1396.308991][T17183]  dump_stack+0x11/0x15
[ 1396.309080][T17183]  dump_header+0x98/0x430
[ 1396.309145][T17183]  oom_kill_process+0x100/0x540
[ 1396.309164][T17183]  out_of_memory+0x620/0x880
05:13:52 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xc000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:52 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x2ec}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:52 executing program 5:
setsockopt$MRT_ADD_VIF(0xffffffffffffffff, 0x0, 0xca, 0x0, 0x0)

[ 1396.309180][T17183]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1396.309202][T17183]  mem_cgroup_oom+0x2e7/0x370
[ 1396.309226][T17183]  try_charge_memcg+0x717/0x9c0
[ 1396.309289][T17183]  obj_cgroup_charge+0x171/0x2b0
[ 1396.309310][T17183]  kmem_cache_alloc_node+0x9b/0x380
[ 1396.309426][T17183]  ? dup_task_struct+0x5b/0x2a0
[ 1396.309454][T17183]  ? shrink_zones+0x525/0x5d0
[ 1396.309471][T17183]  dup_task_struct+0x5b/0x2a0
[ 1396.309498][T17183]  copy_process+0x3ca/0x2100
[ 1396.309581][T17183]  kernel_clone+0x166/0x550
[ 1396.309609][T17183]  __x64_sys_clone+0xc3/0xf0
[ 1396.309696][T17183]  do_syscall_64+0x2b/0x70
[ 1396.309721][T17183]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1396.309815][T17183] RIP: 0033:0x7fa69c0199d1
[ 1396.309829][T17183] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1396.309846][T17183] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1396.309921][T17183] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1396.309933][T17183] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1396.309945][T17183] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1396.309964][T17183] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1396.309977][T17183] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1396.309994][T17183]  </TASK>
[ 1396.310057][T17183] memory: usage 307196kB, limit 307200kB, failcnt 47123
[ 1396.310069][T17183] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1396.310079][T17183] Memory cgroup stats for /syz0:
[ 1396.310389][T17183] anon 380928
[ 1396.310389][T17183] file 10457088
[ 1396.310389][T17183] kernel 303730688
[ 1396.310389][T17183] kernel_stack 65536
[ 1396.310389][T17183] pagetables 229376
[ 1396.310389][T17183] sec_pagetables 0
[ 1396.310389][T17183] percpu 9172448
[ 1396.310389][T17183] sock 0
[ 1396.310389][T17183] vmalloc 8192
[ 1396.310389][T17183] shmem 10457088
[ 1396.310389][T17183] file_mapped 159744
[ 1396.310389][T17183] file_dirty 0
[ 1396.310389][T17183] file_writeback 0
[ 1396.310389][T17183] swapcached 0
[ 1396.310389][T17183] inactive_anon 380928
[ 1396.310389][T17183] active_anon 10457088
[ 1396.310389][T17183] inactive_file 0
[ 1396.310389][T17183] active_file 0
[ 1396.310389][T17183] unevictable 0
[ 1396.310389][T17183] slab_reclaimable 56672
[ 1396.310389][T17183] slab_unreclaimable 294109640
[ 1396.310389][T17183] slab 294166312
[ 1396.310389][T17183] workingset_refault_anon 0
[ 1396.310389][T17183] workingset_refault_file 5
[ 1396.310389][T17183] workingset_activate_anon 0
[ 1396.310457][T17183] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17183,uid=0
[ 1396.310582][T17183] Memory cgroup out of memory: Killed process 17183 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1396.321502][T17173] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1396.322174][T17173] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1396.322186][T17173] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1396.322197][T17173] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1396.501111][T17191] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1396.501152][T17191] CPU: 0 PID: 17191 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1396.501193][T17191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1396.501204][T17191] Call Trace:
[ 1396.501208][T17191]  <TASK>
[ 1396.501214][T17191]  dump_stack_lvl+0xd6/0x122
[ 1396.501246][T17191]  dump_stack+0x11/0x15
[ 1396.501271][T17191]  dump_header+0x98/0x430
[ 1396.501317][T17191]  oom_kill_process+0x100/0x540
[ 1396.501335][T17191]  out_of_memory+0x620/0x880
[ 1396.501352][T17191]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1396.501374][T17191]  mem_cgroup_oom+0x2e7/0x370
[ 1396.501430][T17191]  try_charge_memcg+0x717/0x9c0
[ 1396.501453][T17191]  ? __alloc_pages+0x199/0x340
[ 1396.501527][T17191]  charge_memcg+0x54/0x250
[ 1396.501549][T17191]  __mem_cgroup_charge+0x25/0xa0
[ 1396.501582][T17191]  wp_page_copy+0x209/0x1460
[ 1396.501609][T17191]  ? delay_tsc+0xc1/0xe0
[ 1396.501628][T17191]  ? should_fail+0x2a/0x240
[ 1396.501651][T17191]  do_wp_page+0x2dd/0x780
[ 1396.501714][T17191]  handle_mm_fault+0x5ef/0xa80
[ 1396.501741][T17191]  do_user_addr_fault+0x4a1/0x980
[ 1396.501796][T17191]  exc_page_fault+0x60/0x160
[ 1396.501815][T17191]  asm_exc_page_fault+0x22/0x30
[ 1396.501841][T17191] RIP: 0033:0x7fa69bfc333d
[ 1396.501855][T17191] Code: e0 04 8b 44 02 08 85 c0 0f 85 3e 0a 00 00 31 c0 b9 40 42 0f 00 ba 81 00 00 00 c7 06 01 00 00 00 bf ca 00 00 00 e8 53 52 05 00 <83> 05 44 76 17 00 01 80 bc 24 d8 00 00 00 00 0f b6 05 57 f0 c9 00
[ 1396.501940][T17191] RSP: 002b:00007ffd8ac4ff00 EFLAGS: 00010217
[ 1396.501996][T17191] RAX: 0000000000000000 RBX: 00007fa69c138f8c RCX: 00007fa69c0185a9
[ 1396.502009][T17191] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa69c138f88
[ 1396.502021][T17191] RBP: 00007fa69c138f80 R08: 00007fa69b38c700 R09: 0000000000000000
[ 1396.502047][T17191] R10: 00007fa69b38c700 R11: 0000000000000246 R12: 00007fa69c138f8c
[ 1396.502059][T17191] R13: 00007fa69bb8d060 R14: 00007fa69c138f80 R15: 0000000000000000
[ 1396.502075][T17191]  </TASK>
[ 1396.502844][T17191] memory: usage 307200kB, limit 307200kB, failcnt 47214
[ 1396.502858][T17191] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1396.502941][T17191] Memory cgroup stats for /syz0:
[ 1396.503173][T17191] anon 385024
[ 1396.503173][T17191] file 10457088
[ 1396.503173][T17191] kernel 303726592
[ 1396.503173][T17191] kernel_stack 81920
[ 1396.503173][T17191] pagetables 229376
[ 1396.503173][T17191] sec_pagetables 0
[ 1396.503173][T17191] percpu 9172448
[ 1396.503173][T17191] sock 0
[ 1396.503173][T17191] vmalloc 8192
[ 1396.503173][T17191] shmem 10457088
[ 1396.503173][T17191] file_mapped 159744
[ 1396.503173][T17191] file_dirty 0
[ 1396.503173][T17191] file_writeback 0
[ 1396.503173][T17191] swapcached 0
[ 1396.503173][T17191] inactive_anon 364544
[ 1396.503173][T17191] active_anon 10457088
[ 1396.503173][T17191] inactive_file 0
[ 1396.503173][T17191] active_file 0
[ 1396.503173][T17191] unevictable 0
[ 1396.503173][T17191] slab_reclaimable 39792
[ 1396.503173][T17191] slab_unreclaimable 294107456
[ 1396.503173][T17191] slab 294147248
[ 1396.503173][T17191] workingset_refault_anon 0
[ 1396.503173][T17191] workingset_refault_file 5
[ 1396.503173][T17191] workingset_activate_anon 0
[ 1396.503265][T17191] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17191,uid=0
[ 1396.503420][T17191] Memory cgroup out of memory: Killed process 17191 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1396.539264][T17195] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1397.123796][T17195] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:13:53 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:13:53 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$inet6(r0, &(0x7f0000001440)={&(0x7f0000000000)={0xa, 0x0, 0x8, @dev, 0x8}, 0x1c, &(0x7f0000001300)=[{&(0x7f0000000040)="337cd3a546c7568eb81464509f892960c9f7993ce0740d5ee33e101b6e24b2826bef335d2b8c847c6e2ccb9127775186b0fb8a0f7d57a46674a0990bbc4460c6a291268d87f22c1b036aed7e95b666f2f5239d1acf7442d762861ae7a970ff2ea29fd6840917deadcf28162c2e9da060617fe941ca9ceb892415e5050ac1e0e3e06aa7f94c43aed21373cc2976f65519369830918c7654b3e3381e7ea8c52ec74d7e", 0xa2}, {&(0x7f0000000100)="5450424af5e6287bb560b5f5fff597fc2707b86051a91fcef7ccee77e9fee9978344574accf42c34fbbd29d1158cb1b9305fd79c08d62300544e53ce84fd7aafc8a239179c4c7f6fb4fd4230fec233e0bfac2620f9fdb27af14f67d3a0e3c2850bc29a6c27e97595b44ae57b4e7d6fc4e5d96bfb1226c85e011254142f3fa916c6477e5cd3e80fd9919e096cba7747c82b3453b8613a12a61f", 0x99}, {&(0x7f0000000200)="08de5829f785dd2d70ebe21ca7c8801cee83d0c931b98a64703a803edb6714ae09a176fe22f347668aed945ebff4cd3a5785589c1bd5454da62cd7bd33e070198b13604c6b9106e6ec40c5c408896d19eb4451e6388bdd4202ac285fe281fe585bdf7b99c9082bf5a71730d643473a4ae6a8277bf1686bb1390d586675bfcf8868a51df4782efb7583918ad57f9823bbfbc8c8518d4925177d5659c54b603484eff929cffcf9a2c45ffa4abc3fbfb8833616ebe35075ae8193c63ab86db4f372e607197f65049ce0495a811fba043731b4ff6d826c6f36adf2482da1d955a8707f6c4e85", 0xe4}, {&(0x7f0000000300)="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", 0x7e2}], 0x4}, 0x0)

05:13:53 executing program 2:
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
ioctl$LOOP_GET_STATUS(r0, 0x1268, &(0x7f0000000040))

05:13:53 executing program 5:
r0 = syz_io_uring_setup(0x62c1, &(0x7f0000000000), &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0))
dup3(r0, 0xffffffffffffffff, 0x0)

05:13:53 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x300}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:53 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xd000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1397.233722][   T23] audit: type=1400 audit(1667193233.021:644): avc:  denied  { unmount } for  pid=1851 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1
[ 1397.238868][T17204] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1397.267235][T17204] CPU: 0 PID: 17204 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1397.279647][T17204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1397.289769][T17204] Call Trace:
[ 1397.293052][T17204]  <TASK>
[ 1397.295976][T17204]  dump_stack_lvl+0xd6/0x122
[ 1397.300635][T17204]  dump_stack+0x11/0x15
[ 1397.304852][T17204]  dump_header+0x98/0x430
[ 1397.309182][T17204]  oom_kill_process+0x100/0x540
[ 1397.314080][T17204]  out_of_memory+0x620/0x880
[ 1397.318758][T17204]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1397.324305][T17204]  mem_cgroup_oom+0x2e7/0x370
[ 1397.329011][T17204]  try_charge_memcg+0x717/0x9c0
[ 1397.333929][T17204]  ? __alloc_pages+0x199/0x340
[ 1397.338784][T17204]  charge_memcg+0x54/0x250
[ 1397.343334][T17204]  __mem_cgroup_charge+0x25/0xa0
[ 1397.348274][T17204]  wp_page_copy+0x209/0x1460
[ 1397.352944][T17204]  ? hrtimer_cancel+0x26/0x50
[ 1397.357626][T17204]  do_wp_page+0x2dd/0x780
[ 1397.361997][T17204]  handle_mm_fault+0x5ef/0xa80
[ 1397.366803][T17204]  do_user_addr_fault+0x4a1/0x980
[ 1397.371844][T17204]  ? __this_cpu_preempt_check+0xf/0x10
[ 1397.377307][T17204]  exc_page_fault+0x60/0x160
[ 1397.381976][T17204]  asm_exc_page_fault+0x22/0x30
[ 1397.386844][T17204] RIP: 0033:0x7fa69bfc2a45
[ 1397.391254][T17204] Code: 0f 1f 44 00 00 48 8b 57 18 48 83 fa ff 74 22 48 81 fa e7 03 00 00 0f 87 ee 00 00 00 48 c1 e2 04 48 8d 0d 7e 26 17 00 48 01 ca <c6> 02 01 48 89 42 08 48 8b 0d 2d 7f 17 00 48 8b 53 10 4c 8d 81 00
[ 1397.410867][T17204] RSP: 002b:00007ffd8ac4fed0 EFLAGS: 00010206
[ 1397.416993][T17204] RAX: 0000000000000003 RBX: 00007fa69c138f80 RCX: 00007fa69c1350c0
[ 1397.424974][T17204] RDX: 00007fa69c1350c0 RSI: 0000000000000080 RDI: 00007fa69c138f80
05:13:53 executing program 2:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:13:53 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80002, 0x7, &(0x7f0000000200)=[{&(0x7f00000002c0)="03", 0x1}, {&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d24200001203", 0x66, 0x400}, {&(0x7f00000000c0)="0000000000000000000000006856d49a00cc4371bd6a7c893f280045010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="03000000040000000500000016000f000300040000000000000000000f00698c", 0x20, 0x800}, {&(0x7f0000010e00)="ed41000000040000ddf4655fddf4655fddf4655f000000000000040020", 0x1d, 0x1500}, {&(0x7f0000011000)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af302000400000000000000000000000200000030000000020000000400000032", 0x49, 0x1600}, {&(0x7f0000012700)="111fc0d901000000803a0900803a09000000000006", 0x15, 0xc000}], 0x0, &(0x7f0000000180)={[{@errors_remount}, {@sb={'sb', 0x3d, 0x80000001}}, {@usrquota}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@nobarrier}]}, 0x0)
mount$bpf(0x0, &(0x7f0000000380)='./file0\x00', 0x0, 0x6021, 0x0)

[ 1397.432944][T17204] RBP: 00007fa69c138f80 R08: 0000000000000010 R09: 0000000000000000
[ 1397.440983][T17204] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00000000001551ea
[ 1397.448954][T17204] R13: 00007ffd8ac4ffe0 R14: 00007fa69c138f80 R15: 0000000000000032
[ 1397.456929][T17204]  </TASK>
[ 1397.467330][T17204] memory: usage 307192kB, limit 307200kB, failcnt 47296
[ 1397.474291][T17204] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1397.481135][T17204] Memory cgroup stats for /syz0:
[ 1397.481478][T17204] anon 389120
[ 1397.481478][T17204] file 10457088
[ 1397.481478][T17204] kernel 303718400
[ 1397.481478][T17204] kernel_stack 81920
[ 1397.481478][T17204] pagetables 229376
[ 1397.481478][T17204] sec_pagetables 0
[ 1397.481478][T17204] percpu 9172448
[ 1397.481478][T17204] sock 0
[ 1397.481478][T17204] vmalloc 8192
[ 1397.481478][T17204] shmem 10457088
[ 1397.481478][T17204] file_mapped 159744
[ 1397.481478][T17204] file_dirty 0
[ 1397.481478][T17204] file_writeback 0
[ 1397.481478][T17204] swapcached 0
[ 1397.481478][T17204] inactive_anon 389120
[ 1397.481478][T17204] active_anon 10457088
[ 1397.481478][T17204] inactive_file 0
[ 1397.481478][T17204] active_file 0
[ 1397.481478][T17204] unevictable 0
[ 1397.481478][T17204] slab_reclaimable 40768
[ 1397.481478][T17204] slab_unreclaimable 294101096
[ 1397.481478][T17204] slab 294141864
[ 1397.481478][T17204] workingset_refault_anon 0
[ 1397.481478][T17204] workingset_refault_file 5
[ 1397.481478][T17204] workingset_activate_anon 0
05:13:53 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xe000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:53 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x31a}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1397.490311][T17218] loop5: detected capacity change from 0 to 1024
[ 1397.577119][T17204] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17204,uid=0
[ 1397.577195][T17204] Memory cgroup out of memory: Killed process 17204 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1397.629745][T17218] EXT4-fs (loop5): unable to read superblock
[ 1397.657431][T17226] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=1000
05:13:53 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x325}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:53 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80002, 0x7, &(0x7f0000000200)=[{&(0x7f00000002c0)="03", 0x1}, {&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d24200001203", 0x66, 0x400}, {&(0x7f00000000c0)="0000000000000000000000006856d49a00cc4371bd6a7c893f280045010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="03000000040000000500000016000f000300040000000000000000000f00698c", 0x20, 0x800}, {&(0x7f0000010e00)="ed41000000040000ddf4655fddf4655fddf4655f000000000000040020", 0x1d, 0x1500}, {&(0x7f0000011000)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af302000400000000000000000000000200000030000000020000000400000032", 0x49, 0x1600}, {&(0x7f0000012700)="111fc0d901000000803a0900803a09000000000006", 0x15, 0xc000}], 0x0, &(0x7f0000000180)={[{@errors_remount}, {@sb={'sb', 0x3d, 0x80000001}}, {@usrquota}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@nobarrier}]}, 0x0)
mount$bpf(0x0, &(0x7f0000000380)='./file0\x00', 0x0, 0x6021, 0x0)

[ 1397.657484][T17226] CPU: 1 PID: 17226 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1397.657502][T17226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1397.657509][T17226] Call Trace:
[ 1397.657515][T17226]  <TASK>
[ 1397.657520][T17226]  dump_stack_lvl+0xd6/0x122
[ 1397.657616][T17226]  dump_stack+0x11/0x15
[ 1397.657635][T17226]  dump_header+0x98/0x430
[ 1397.657649][T17226]  oom_kill_process+0x100/0x540
[ 1397.657662][T17226]  out_of_memory+0x620/0x880
[ 1397.657675][T17226]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1397.657753][T17226]  mem_cgroup_oom+0x2e7/0x370
[ 1397.657771][T17226]  try_charge_memcg+0x717/0x9c0
[ 1397.657902][T17226]  obj_cgroup_charge+0x171/0x2b0
[ 1397.657923][T17226]  kmem_cache_alloc_node+0x9b/0x380
[ 1397.657948][T17226]  ? dup_task_struct+0x5b/0x2a0
[ 1397.658040][T17226]  ? shrink_zones+0x525/0x5d0
[ 1397.658056][T17226]  dup_task_struct+0x5b/0x2a0
[ 1397.658079][T17226]  copy_process+0x3ca/0x2100
[ 1397.658100][T17226]  kernel_clone+0x166/0x550
[ 1397.658186][T17226]  __x64_sys_clone+0xc3/0xf0
[ 1397.658214][T17226]  do_syscall_64+0x2b/0x70
[ 1397.658237][T17226]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1397.658263][T17226] RIP: 0033:0x7fa69c0199d1
[ 1397.658321][T17226] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1397.658392][T17226] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1397.658410][T17226] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1397.658424][T17226] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1397.658436][T17226] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1397.658509][T17226] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1397.658520][T17226] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1397.658535][T17226]  </TASK>
[ 1397.658551][T17226] memory: usage 307196kB, limit 307200kB, failcnt 47347
[ 1397.658562][T17226] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1397.658573][T17226] Memory cgroup stats for /syz0:
[ 1397.658791][T17226] anon 380928
[ 1397.658791][T17226] file 10457088
[ 1397.658791][T17226] kernel 303730688
[ 1397.658791][T17226] kernel_stack 65536
[ 1397.658791][T17226] pagetables 229376
[ 1397.658791][T17226] sec_pagetables 0
[ 1397.658791][T17226] percpu 9172448
[ 1397.658791][T17226] sock 0
[ 1397.658791][T17226] vmalloc 8192
[ 1397.658791][T17226] shmem 10457088
[ 1397.658791][T17226] file_mapped 159744
[ 1397.658791][T17226] file_dirty 0
[ 1397.658791][T17226] file_writeback 0
[ 1397.658791][T17226] swapcached 0
[ 1397.658791][T17226] inactive_anon 335872
[ 1397.658791][T17226] active_anon 10457088
[ 1397.658791][T17226] inactive_file 0
[ 1397.658791][T17226] active_file 0
[ 1397.658791][T17226] unevictable 0
[ 1397.658791][T17226] slab_reclaimable 56672
[ 1397.658791][T17226] slab_unreclaimable 294109400
[ 1397.658791][T17226] slab 294166072
[ 1397.658791][T17226] workingset_refault_anon 0
[ 1397.658791][T17226] workingset_refault_file 5
[ 1397.658791][T17226] workingset_activate_anon 0
[ 1397.658830][T17226] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17226,uid=0
[ 1397.658913][T17226] Memory cgroup out of memory: Killed process 17226 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1397.680845][T17225] __nla_validate_parse: 10 callbacks suppressed
[ 1397.680859][T17225] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1397.725548][T17231] loop5: detected capacity change from 0 to 1024
[ 1397.726341][T17231] EXT4-fs (loop5): unable to read superblock
[ 1397.753841][T17232] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1397.753950][T17232] CPU: 1 PID: 17232 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1397.753993][T17232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1397.754004][T17232] Call Trace:
[ 1397.754009][T17232]  <TASK>
[ 1397.754020][T17232]  dump_stack_lvl+0xd6/0x122
[ 1397.754052][T17232]  dump_stack+0x11/0x15
[ 1397.754105][T17232]  dump_header+0x98/0x430
[ 1397.754123][T17232]  oom_kill_process+0x100/0x540
[ 1397.754144][T17232]  out_of_memory+0x620/0x880
[ 1397.754197][T17232]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1397.754278][T17232]  mem_cgroup_oom+0x2e7/0x370
[ 1397.754305][T17232]  try_charge_memcg+0x717/0x9c0
[ 1397.754345][T17232]  ? avc_has_perm_noaudit+0x1c0/0x270
[ 1397.754424][T17232]  obj_cgroup_charge+0x171/0x2b0
[ 1397.754447][T17232]  memcg_slab_pre_alloc_hook+0xf7/0x170
[ 1397.754475][T17232]  ? sock_alloc_inode+0x2d/0xa0
[ 1397.754545][T17232]  kmem_cache_alloc_lru+0x75/0x2a0
[ 1397.754708][T17232]  sock_alloc_inode+0x2d/0xa0
[ 1397.754735][T17232]  ? sockfs_init_fs_context+0x70/0x70
[ 1397.754793][T17232]  alloc_inode+0x38/0x150
[ 1397.754812][T17232]  new_inode_pseudo+0x13/0x60
[ 1397.754832][T17232]  __sock_create+0x122/0x4e0
[ 1397.754977][T17232]  __sys_socket+0x9c/0x220
[ 1397.755062][T17232]  __x64_sys_socket+0x3b/0x50
[ 1397.755087][T17232]  do_syscall_64+0x2b/0x70
[ 1397.755134][T17232]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1397.755237][T17232] RIP: 0033:0x7fa69c0185a9
[ 1397.755251][T17232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
05:13:54 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:13:54 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0xf000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:54 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x336}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:54 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80002, 0x7, &(0x7f0000000200)=[{&(0x7f00000002c0)="03", 0x1}, {&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d24200001203", 0x66, 0x400}, {&(0x7f00000000c0)="0000000000000000000000006856d49a00cc4371bd6a7c893f280045010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="03000000040000000500000016000f000300040000000000000000000f00698c", 0x20, 0x800}, {&(0x7f0000010e00)="ed41000000040000ddf4655fddf4655fddf4655f000000000000040020", 0x1d, 0x1500}, {&(0x7f0000011000)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af302000400000000000000000000000200000030000000020000000400000032", 0x49, 0x1600}, {&(0x7f0000012700)="111fc0d901000000803a0900803a09000000000006", 0x15, 0xc000}], 0x0, &(0x7f0000000180)={[{@errors_remount}, {@sb={'sb', 0x3d, 0x80000001}}, {@usrquota}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@nobarrier}]}, 0x0)
mount$bpf(0x0, &(0x7f0000000380)='./file0\x00', 0x0, 0x6021, 0x0)

05:13:54 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$inet6(r0, &(0x7f0000001440)={&(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x8}, 0x1c, &(0x7f0000001300)=[{&(0x7f0000000040)='3', 0x1}], 0x1}, 0x0)

[ 1397.755332][T17232] RSP: 002b:00007fa69b38c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1397.755350][T17232] RAX: ffffffffffffffda RBX: 00007fa69c138f80 RCX: 00007fa69c0185a9
05:13:54 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80002, 0x7, &(0x7f0000000200)=[{&(0x7f00000002c0)="03", 0x1}, {&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d24200001203", 0x66, 0x400}, {&(0x7f00000000c0)="0000000000000000000000006856d49a00cc4371bd6a7c893f280045010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="03000000040000000500000016000f000300040000000000000000000f00698c", 0x20, 0x800}, {&(0x7f0000010e00)="ed41000000040000ddf4655fddf4655fddf4655f000000000000040020", 0x1d, 0x1500}, {&(0x7f0000011000)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af302000400000000000000000000000200000030000000020000000400000032", 0x49, 0x1600}, {&(0x7f0000012700)="111fc0d901000000803a0900803a09000000000006", 0x15, 0xc000}], 0x0, &(0x7f0000000180)={[{@errors_remount}, {@sb={'sb', 0x3d, 0x80000001}}, {@usrquota}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@nobarrier}]}, 0x0)
mount$bpf(0x0, &(0x7f0000000380)='./file0\x00', 0x0, 0x6021, 0x0)

[ 1397.755364][T17232] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000010
[ 1397.755376][T17232] RBP: 00007fa69c0737b0 R08: 0000000000000000 R09: 0000000000000000
[ 1397.755387][T17232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1397.755399][T17232] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1397.755413][T17232]  </TASK>
[ 1397.755475][T17232] memory: usage 307200kB, limit 307200kB, failcnt 47446
[ 1397.755531][T17232] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1397.755542][T17232] Memory cgroup stats for /syz0:
[ 1397.755688][T17232] anon 389120
[ 1397.755688][T17232] file 10457088
[ 1397.755688][T17232] kernel 303726592
[ 1397.755688][T17232] kernel_stack 81920
[ 1397.755688][T17232] pagetables 229376
[ 1397.755688][T17232] sec_pagetables 0
[ 1397.755688][T17232] percpu 9172448
[ 1397.755688][T17232] sock 0
[ 1397.755688][T17232] vmalloc 8192
[ 1397.755688][T17232] shmem 10457088
[ 1397.755688][T17232] file_mapped 159744
[ 1397.755688][T17232] file_dirty 0
[ 1397.755688][T17232] file_writeback 0
[ 1397.755688][T17232] swapcached 0
[ 1397.755688][T17232] inactive_anon 389120
[ 1397.755688][T17232] active_anon 10457088
[ 1397.755688][T17232] inactive_file 0
[ 1397.755688][T17232] active_file 0
[ 1397.755688][T17232] unevictable 0
[ 1397.755688][T17232] slab_reclaimable 41168
[ 1397.755688][T17232] slab_unreclaimable 294107456
[ 1397.755688][T17232] slab 294148624
[ 1397.755688][T17232] workingset_refault_anon 0
[ 1397.755688][T17232] workingset_refault_file 5
[ 1397.755688][T17232] workingset_activate_anon 0
[ 1397.755790][T17232] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17228,uid=0
[ 1397.755898][T17232] Memory cgroup out of memory: Killed process 17228 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1397.788002][   T23] audit: type=1400 audit(1667193233.581:645): avc:  denied  { remount } for  pid=17230 comm="syz-executor.5" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 1398.461895][T17242] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1398.462947][T17243] loop5: detected capacity change from 0 to 1024
[ 1398.463752][T17243] EXT4-fs (loop5): unable to read superblock
[ 1398.517467][T17242] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1398.542032][T17250] loop5: detected capacity change from 0 to 1024
[ 1398.542907][T17250] EXT4-fs (loop5): unable to read superblock
[ 1398.550311][T17234] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1398.550337][T17234] CPU: 0 PID: 17234 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1398.550364][T17234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1398.550375][T17234] Call Trace:
[ 1398.550381][T17234]  <TASK>
[ 1398.550388][T17234]  dump_stack_lvl+0xd6/0x122
[ 1398.550490][T17234]  dump_stack+0x11/0x15
[ 1398.550519][T17234]  dump_header+0x98/0x430
[ 1398.550539][T17234]  oom_kill_process+0x100/0x540
[ 1398.550558][T17234]  out_of_memory+0x620/0x880
[ 1398.550576][T17234]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1398.550600][T17234]  mem_cgroup_oom+0x2e7/0x370
[ 1398.550625][T17234]  try_charge_memcg+0x717/0x9c0
[ 1398.550647][T17234]  ? __alloc_pages+0x199/0x340
[ 1398.550673][T17234]  charge_memcg+0x54/0x250
[ 1398.550699][T17234]  __mem_cgroup_charge+0x25/0xa0
[ 1398.550803][T17234]  wp_page_copy+0x209/0x1460
[ 1398.550831][T17234]  ? preempt_count_add+0x5e/0xa0
[ 1398.550949][T17234]  do_wp_page+0x2dd/0x780
[ 1398.551033][T17234]  handle_mm_fault+0x5ef/0xa80
[ 1398.551060][T17234]  do_user_addr_fault+0x4a1/0x980
[ 1398.551087][T17234]  exc_page_fault+0x60/0x160
[ 1398.551106][T17234]  asm_exc_page_fault+0x22/0x30
[ 1398.551190][T17234] RIP: 0033:0x7fa69bfc5970
[ 1398.551205][T17234] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1398.551220][T17234] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1398.551235][T17234] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1398.551247][T17234] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1398.551258][T17234] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1398.551274][T17234] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1398.551341][T17234] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1398.551352][T17234]  ? __sock_create+0x24/0x4e0
[ 1398.551464][T17234]  </TASK>
[ 1398.551488][T17234] memory: usage 307200kB, limit 307200kB, failcnt 47531
[ 1398.551500][T17234] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1398.551511][T17234] Memory cgroup stats for /syz0:
[ 1398.552452][T17234] anon 401408
[ 1398.552452][T17234] file 10457088
[ 1398.552452][T17234] kernel 303714304
[ 1398.552452][T17234] kernel_stack 81920
[ 1398.552452][T17234] pagetables 229376
[ 1398.552452][T17234] sec_pagetables 0
[ 1398.552452][T17234] percpu 9172448
[ 1398.552452][T17234] sock 0
[ 1398.552452][T17234] vmalloc 8192
[ 1398.552452][T17234] shmem 10457088
[ 1398.552452][T17234] file_mapped 159744
[ 1398.552452][T17234] file_dirty 0
[ 1398.552452][T17234] file_writeback 0
[ 1398.552452][T17234] swapcached 0
[ 1398.552452][T17234] inactive_anon 401408
[ 1398.552452][T17234] active_anon 10457088
[ 1398.552452][T17234] inactive_file 0
[ 1398.552452][T17234] active_file 0
[ 1398.552452][T17234] unevictable 0
[ 1398.552452][T17234] slab_reclaimable 39392
[ 1398.552452][T17234] slab_unreclaimable 294100856
[ 1398.552452][T17234] slab 294140248
[ 1398.552452][T17234] workingset_refault_anon 0
[ 1398.552452][T17234] workingset_refault_file 5
[ 1398.552452][T17234] workingset_activate_anon 0
[ 1398.552580][T17234] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17234,uid=0
[ 1398.552642][T17234] Memory cgroup out of memory: Killed process 17234 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:55 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=@ipv6_delroute={0x1c, 0x19, 0x1, 0x0, 0x0, {0xa, 0x80, 0x0, 0x0, 0xff}}, 0x1c}}, 0x0)

05:13:55 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80002, 0x7, &(0x7f0000000200)=[{&(0x7f00000002c0)="03", 0x1}, {&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d24200001203", 0x66, 0x400}, {&(0x7f00000000c0)="0000000000000000000000006856d49a00cc4371bd6a7c893f280045010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="03000000040000000500000016000f000300040000000000000000000f00698c", 0x20, 0x800}, {&(0x7f0000010e00)="ed41000000040000ddf4655fddf4655fddf4655f000000000000040020", 0x1d, 0x1500}, {&(0x7f0000011000)="8081000000180000ddf4655fddf4655fddf4655f00000000000001002000000010000800000000000af302000400000000000000000000000200000030000000020000000400000032", 0x49, 0x1600}, {&(0x7f0000012700)="111fc0d901000000803a0900803a09000000000006", 0x15, 0xc000}], 0x0, &(0x7f0000000180)={[{@errors_remount}, {@sb={'sb', 0x3d, 0x80000001}}, {@usrquota}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@nobarrier}]}, 0x0)

05:13:55 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x356}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:55 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x10000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1399.234716][T17253] loop5: detected capacity change from 0 to 1024
[ 1399.235416][T17253] EXT4-fs (loop5): unable to read superblock
[ 1399.236152][T17254] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1399.267409][T17255] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
05:13:55 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x36d}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:55 executing program 5:
epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0xfffffffb, 0x0, 0x0)

[ 1399.267432][T17255] CPU: 1 PID: 17255 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1399.267511][T17255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1399.267520][T17255] Call Trace:
[ 1399.267524][T17255]  <TASK>
[ 1399.267532][T17255]  dump_stack_lvl+0xd6/0x122
[ 1399.267557][T17255]  dump_stack+0x11/0x15
[ 1399.267634][T17255]  dump_header+0x98/0x430
[ 1399.267648][T17255]  oom_kill_process+0x100/0x540
[ 1399.267663][T17255]  out_of_memory+0x620/0x880
[ 1399.267741][T17255]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1399.267759][T17255]  mem_cgroup_oom+0x2e7/0x370
[ 1399.267832][T17255]  try_charge_memcg+0x717/0x9c0
[ 1399.267851][T17255]  ? __alloc_pages+0x199/0x340
[ 1399.267867][T17255]  charge_memcg+0x54/0x250
[ 1399.267884][T17255]  __mem_cgroup_charge+0x25/0xa0
[ 1399.267929][T17255]  wp_page_copy+0x209/0x1460
[ 1399.267953][T17255]  ? delay_tsc+0xc1/0xe0
[ 1399.267968][T17255]  ? preempt_count_add+0x5e/0xa0
[ 1399.267997][T17255]  do_wp_page+0x2dd/0x780
[ 1399.268084][T17255]  handle_mm_fault+0x5ef/0xa80
[ 1399.268108][T17255]  do_user_addr_fault+0x4a1/0x980
[ 1399.268184][T17255]  exc_page_fault+0x60/0x160
[ 1399.268271][T17255]  asm_exc_page_fault+0x22/0x30
[ 1399.268296][T17255] RIP: 0033:0x7fa69bfc5970
[ 1399.268360][T17255] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1399.268373][T17255] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1399.268386][T17255] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1399.268397][T17255] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
[ 1399.268406][T17255] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1399.268416][T17255] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1399.268426][T17255] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
[ 1399.268436][T17255]  ? __x64_sys_socket+0xc/0x50
[ 1399.268467][T17255]  </TASK>
[ 1399.268487][T17255] memory: usage 307200kB, limit 307200kB, failcnt 47603
[ 1399.268498][T17255] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1399.268509][T17255] Memory cgroup stats for /syz0:
[ 1399.268771][T17255] anon 393216
[ 1399.268771][T17255] file 10457088
[ 1399.268771][T17255] kernel 303722496
[ 1399.268771][T17255] kernel_stack 81920
[ 1399.268771][T17255] pagetables 229376
[ 1399.268771][T17255] sec_pagetables 0
[ 1399.268771][T17255] percpu 9172448
[ 1399.268771][T17255] sock 0
[ 1399.268771][T17255] vmalloc 8192
[ 1399.268771][T17255] shmem 10457088
[ 1399.268771][T17255] file_mapped 159744
[ 1399.268771][T17255] file_dirty 0
[ 1399.268771][T17255] file_writeback 0
[ 1399.268771][T17255] swapcached 0
[ 1399.268771][T17255] inactive_anon 368640
[ 1399.268771][T17255] active_anon 10457088
[ 1399.268771][T17255] inactive_file 0
[ 1399.268771][T17255] active_file 0
[ 1399.268771][T17255] unevictable 0
[ 1399.268771][T17255] slab_reclaimable 44896
[ 1399.268771][T17255] slab_unreclaimable 294101120
[ 1399.268771][T17255] slab 294146016
[ 1399.268771][T17255] workingset_refault_anon 0
[ 1399.268771][T17255] workingset_refault_file 5
[ 1399.268771][T17255] workingset_activate_anon 0
[ 1399.268808][T17255] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17255,uid=0
[ 1399.268891][T17255] Memory cgroup out of memory: Killed process 17255 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1399.280241][T17254] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1399.385583][T17259] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=1000
[ 1399.655481][T17259] CPU: 1 PID: 17259 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1399.655569][T17259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1399.655580][T17259] Call Trace:
[ 1399.655587][T17259]  <TASK>
[ 1399.655593][T17259]  dump_stack_lvl+0xd6/0x122
[ 1399.655623][T17259]  dump_stack+0x11/0x15
[ 1399.655684][T17259]  dump_header+0x98/0x430
[ 1399.655751][T17259]  oom_kill_process+0x100/0x540
[ 1399.655849][T17259]  out_of_memory+0x620/0x880
[ 1399.655867][T17259]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1399.655930][T17259]  mem_cgroup_oom+0x2e7/0x370
[ 1399.655953][T17259]  try_charge_memcg+0x717/0x9c0
[ 1399.656008][T17259]  obj_cgroup_charge+0x171/0x2b0
[ 1399.656030][T17259]  kmem_cache_alloc_node+0x9b/0x380
[ 1399.656057][T17259]  ? dup_task_struct+0x5b/0x2a0
[ 1399.656086][T17259]  ? shrink_zones+0x525/0x5d0
[ 1399.656122][T17259]  dup_task_struct+0x5b/0x2a0
[ 1399.656148][T17259]  copy_process+0x3ca/0x2100
[ 1399.656176][T17259]  kernel_clone+0x166/0x550
[ 1399.656275][T17259]  __x64_sys_clone+0xc3/0xf0
[ 1399.656302][T17259]  do_syscall_64+0x2b/0x70
[ 1399.656472][T17259]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1399.656499][T17259] RIP: 0033:0x7fa69c0199d1
[ 1399.656513][T17259] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1399.656529][T17259] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1399.656547][T17259] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1399.656559][T17259] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1399.656572][T17259] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1399.656657][T17259] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1399.656670][T17259] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1399.656686][T17259]  </TASK>
[ 1399.656691][T17259] memory: usage 307192kB, limit 307200kB, failcnt 47665
[ 1399.656703][T17259] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1399.656713][T17259] Memory cgroup stats for /syz0:
[ 1399.657104][T17259] anon 380928
[ 1399.657104][T17259] file 10457088
[ 1399.657104][T17259] kernel 303714304
[ 1399.657104][T17259] kernel_stack 65536
[ 1399.657104][T17259] pagetables 229376
[ 1399.657104][T17259] sec_pagetables 0
[ 1399.657104][T17259] percpu 9172448
[ 1399.657104][T17259] sock 0
[ 1399.657104][T17259] vmalloc 8192
[ 1399.657104][T17259] shmem 10457088
[ 1399.657104][T17259] file_mapped 159744
[ 1399.657104][T17259] file_dirty 0
[ 1399.657104][T17259] file_writeback 0
[ 1399.657104][T17259] swapcached 0
[ 1399.657104][T17259] inactive_anon 368640
[ 1399.657104][T17259] active_anon 10457088
[ 1399.657104][T17259] inactive_file 0
[ 1399.657104][T17259] active_file 0
[ 1399.657104][T17259] unevictable 0
[ 1399.657104][T17259] slab_reclaimable 56672
[ 1399.657104][T17259] slab_unreclaimable 294099768
[ 1399.657104][T17259] slab 294156440
[ 1399.657104][T17259] workingset_refault_anon 0
[ 1399.657104][T17259] workingset_refault_file 5
[ 1399.657104][T17259] workingset_activate_anon 0
05:13:55 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:13:55 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000ec0)=@mangle={'mangle\x00', 0x1f, 0x6, 0x3c0, 0x0, 0x98, 0x158, 0x248, 0x0, 0x3d8, 0x98, 0x3d8, 0x3d8, 0x3d8, 0x6, 0x0, {[{{@ip={@private, @remote, 0x0, 0x0, 'wlan0\x00', 'virt_wifi0\x00'}, 0x0, 0x70, 0x98}, @ECN={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @dev, 0x0, 0x0, 'ipvlan0\x00', 'syzkaller1\x00'}, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CHECKSUM={0x28}}, {{@ip={@remote, @loopback, 0x0, 0x0, 'veth0_vlan\x00', 'nicvf0\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@remote, @dev, 0x0, 0x0, 'ip6gretap0\x00', 'wg0\x00'}, 0x0, 0x70, 0x98}, @ECN={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @TTL={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x420)

05:13:55 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000bc0), 0x0, 0x0)
lseek(r0, 0x5, 0x2)

05:13:55 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x11000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:55 executing program 2:
openat$procfs(0xffffffffffffff9c, &(0x7f0000000800)='/proc/sysvipc/sem\x00', 0x0, 0x0)

05:13:55 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x372}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1399.657154][T17259] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17259,uid=0
[ 1399.657259][T17259] Memory cgroup out of memory: Killed process 17259 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:55 executing program 1:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))

05:13:55 executing program 2:
syz_open_dev$vcsn(&(0x7f0000000040), 0x1, 0x2)

05:13:55 executing program 5:
recvfrom$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000002080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x14)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
getgroups(0x1, &(0x7f0000005bc0)=[0x0])
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000002200)="fc")

[ 1400.050259][T17275] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:55 executing program 2:
munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000)
mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)

[ 1400.099356][T17275] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:55 executing program 1:
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0, 0x0)

05:13:55 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x12000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1400.136654][T17270] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1400.136681][T17270] CPU: 1 PID: 17270 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1400.136705][T17270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1400.136716][T17270] Call Trace:
[ 1400.136721][T17270]  <TASK>
[ 1400.136727][T17270]  dump_stack_lvl+0xd6/0x122
[ 1400.136818][T17270]  dump_stack+0x11/0x15
[ 1400.136844][T17270]  dump_header+0x98/0x430
[ 1400.136913][T17270]  oom_kill_process+0x100/0x540
[ 1400.136933][T17270]  out_of_memory+0x620/0x880
[ 1400.136952][T17270]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1400.136976][T17270]  mem_cgroup_oom+0x2e7/0x370
[ 1400.137001][T17270]  try_charge_memcg+0x717/0x9c0
[ 1400.137033][T17270]  ? __alloc_pages+0x199/0x340
[ 1400.137055][T17270]  charge_memcg+0x54/0x250
[ 1400.137142][T17270]  __mem_cgroup_charge+0x25/0xa0
[ 1400.137177][T17270]  wp_page_copy+0x209/0x1460
[ 1400.137283][T17270]  ? shrink_zones+0x525/0x5d0
[ 1400.137304][T17270]  ? preempt_count_add+0x5e/0xa0
[ 1400.137338][T17270]  do_wp_page+0x2dd/0x780
[ 1400.137407][T17270]  handle_mm_fault+0x5ef/0xa80
[ 1400.137435][T17270]  do_user_addr_fault+0x4a1/0x980
[ 1400.137462][T17270]  exc_page_fault+0x60/0x160
[ 1400.137481][T17270]  asm_exc_page_fault+0x22/0x30
[ 1400.137527][T17270] RIP: 0033:0x7fa69bfc5970
[ 1400.137613][T17270] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1400.137630][T17270] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1400.137651][T17270] RAX: 000000004310b93c RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1400.137664][T17270] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000008e03449
[ 1400.137677][T17270] RBP: 000000004310b93c R08: 000000000000193c R09: 000000004310b940
[ 1400.137689][T17270] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1400.137702][T17270] R13: 0000000000000001 R14: 0000000000000005 R15: ffffffff818f93bc
[ 1400.137715][T17270]  ? selinux_socket_create+0x2c/0x180
[ 1400.137816][T17270]  </TASK>
[ 1400.137837][T17270] memory: usage 307200kB, limit 307200kB, failcnt 47787
[ 1400.137849][T17270] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1400.137861][T17270] Memory cgroup stats for /syz0:
[ 1400.138012][T17270] anon 409600
[ 1400.138012][T17270] file 10457088
[ 1400.138012][T17270] kernel 303706112
[ 1400.138012][T17270] kernel_stack 81920
[ 1400.138012][T17270] pagetables 229376
[ 1400.138012][T17270] sec_pagetables 0
[ 1400.138012][T17270] percpu 9172448
[ 1400.138012][T17270] sock 0
[ 1400.138012][T17270] vmalloc 8192
[ 1400.138012][T17270] shmem 10457088
[ 1400.138012][T17270] file_mapped 159744
[ 1400.138012][T17270] file_dirty 0
[ 1400.138012][T17270] file_writeback 0
[ 1400.138012][T17270] swapcached 0
[ 1400.138012][T17270] inactive_anon 409600
[ 1400.138012][T17270] active_anon 10457088
[ 1400.138012][T17270] inactive_file 0
[ 1400.138012][T17270] active_file 0
[ 1400.138012][T17270] unevictable 0
[ 1400.138012][T17270] slab_reclaimable 39392
[ 1400.138012][T17270] slab_unreclaimable 294094256
[ 1400.138012][T17270] slab 294133648
[ 1400.138012][T17270] workingset_refault_anon 0
[ 1400.138012][T17270] workingset_refault_file 5
[ 1400.138012][T17270] workingset_activate_anon 0
[ 1400.138082][T17270] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17270,uid=0
05:13:56 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x800000080004103)

05:13:56 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000340))

05:13:56 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x389}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:56 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3, 0xe45d3c3545df6275, 0xffffffffffffffff, 0x8000000)

05:13:56 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
connect$inet(r0, &(0x7f0000000340)={0x10, 0x2}, 0xe)

05:13:56 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x13110000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1400.138283][T17270] Memory cgroup out of memory: Killed process 17270 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1400.170553][T17295] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1400.230445][T17299] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:56 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000001400)={&(0x7f0000000000)=@in={0x10, 0x2}, 0x10, &(0x7f0000001340)=[{&(0x7f0000000040)='-', 0x1}], 0x1, 0x0, 0x10}, 0x0)

05:13:56 executing program 2:
arch_prctl$ARCH_GET_FS(0x1003, &(0x7f0000000000))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3, 0xe45d3c3545df6276, 0xffffffffffffffff, 0x8000000)
munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000)

05:13:56 executing program 5:
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$cont(0xffffffffffffffff, r0, 0x0, 0x0)

05:13:56 executing program 1:
syz_io_uring_setup(0x0, &(0x7f0000000000), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0xfffffffffffffffd, 0x0)

[ 1400.725716][T17308] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:13:56 executing program 2:
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3, 0xe45d3c3545df6275, 0xffffffffffffffff, 0x8000000)
munmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000)

[ 1400.790275][T17301] Memory cgroup out of memory: Killed process 17301 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1400.806381][T17323] validate_nla: 22 callbacks suppressed
[ 1400.806394][T17323] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1400.822658][T17323] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1400.830760][T17323] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:13:56 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x800000080004103)

05:13:56 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
connect$inet(r0, &(0x7f0000000340)={0x10, 0x2}, 0x10)

05:13:56 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_mreqn(r0, 0x0, 0x5, 0x0, &(0x7f0000000200))

05:13:56 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x3bd}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:56 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
connect$inet(r1, &(0x7f0000000340)={0x10, 0x2}, 0x10)
r2 = fcntl$dupfd(r1, 0x0, r0)
connect$inet(r2, &(0x7f0000000140)={0x10, 0x2}, 0x10)

[ 1400.839534][T17323] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:13:56 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x900, &(0x7f0000000180), 0x8)

05:13:56 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x14000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:56 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x800000080004103)

05:13:56 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = dup(r0)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x15, &(0x7f0000000000), &(0x7f0000000100)=0x8)

05:13:56 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
connect$inet(r0, &(0x7f0000000180)={0x10, 0x2}, 0x10)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
connect$inet(r1, &(0x7f0000000180)={0x10, 0x2}, 0x10)
r2 = socket$inet6_sctp(0x1c, 0x5, 0x84)
r3 = dup2(r1, r2)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x105, &(0x7f0000000200)=ANY=[@ANYBLOB="17192eaa", @ANYRES32=<r4=>0x0], &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp_SCTP_STATUS(r0, 0x84, 0x100, &(0x7f0000000000)={r4}, &(0x7f00000000c0)=0xb0)

[ 1400.904197][T17340] oom_kill_process: 1 callbacks suppressed
[ 1400.904211][T17340] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1400.921146][T17340] CPU: 1 PID: 17340 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1400.933637][T17340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1400.943746][T17340] Call Trace:
[ 1400.947028][T17340]  <TASK>
[ 1400.949982][T17340]  dump_stack_lvl+0xd6/0x122
05:13:56 executing program 5:
recvfrom$packet(0xffffffffffffffff, 0x0, 0xfffffffffffffe26, 0x0, &(0x7f0000002080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x14)

[ 1400.954635][T17340]  dump_stack+0x11/0x15
[ 1400.958821][T17340]  dump_header+0x98/0x430
[ 1400.963207][T17340]  oom_kill_process+0x100/0x540
[ 1400.968066][T17340]  out_of_memory+0x620/0x880
[ 1400.972661][T17340]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1400.978221][T17340]  mem_cgroup_oom+0x2e7/0x370
[ 1400.982916][T17340]  try_charge_memcg+0x717/0x9c0
[ 1400.987784][T17340]  ? debug_smp_processor_id+0x13/0x20
[ 1400.993172][T17340]  __memcg_kmem_charge_page+0x2e4/0x480
[ 1400.998761][T17340]  alloc_thread_stack_node+0x292/0x360
[ 1401.004238][T17340]  dup_task_struct+0x96/0x2a0
[ 1401.008926][T17340]  copy_process+0x3ca/0x2100
[ 1401.013530][T17340]  kernel_clone+0x166/0x550
[ 1401.018059][T17340]  __x64_sys_clone+0xc3/0xf0
[ 1401.022741][T17340]  do_syscall_64+0x2b/0x70
[ 1401.027239][T17340]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1401.033169][T17340] RIP: 0033:0x7fa69c0199d1
05:13:56 executing program 2:
r0 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000140)={'sit0\x00', 0x0})

[ 1401.037586][T17340] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1401.057209][T17340] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1401.065745][T17340] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1401.073724][T17340] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1401.081703][T17340] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1401.089689][T17340] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1401.097669][T17340] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1401.105645][T17340]  </TASK>
[ 1401.108709][T17340] memory: usage 307200kB, limit 307200kB, failcnt 47951
[ 1401.115691][T17340] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1401.122574][T17340] Memory cgroup stats for /syz0:
[ 1401.122907][T17340] anon 380928
[ 1401.122907][T17340] file 10457088
[ 1401.122907][T17340] kernel 303734784
[ 1401.122907][T17340] kernel_stack 65536
[ 1401.122907][T17340] pagetables 229376
[ 1401.122907][T17340] sec_pagetables 0
[ 1401.122907][T17340] percpu 9172448
[ 1401.122907][T17340] sock 0
[ 1401.122907][T17340] vmalloc 8192
[ 1401.122907][T17340] shmem 10457088
[ 1401.122907][T17340] file_mapped 159744
[ 1401.122907][T17340] file_dirty 0
[ 1401.122907][T17340] file_writeback 0
[ 1401.122907][T17340] swapcached 0
[ 1401.122907][T17340] inactive_anon 348160
[ 1401.122907][T17340] active_anon 10457088
[ 1401.122907][T17340] inactive_file 0
[ 1401.122907][T17340] active_file 0
[ 1401.122907][T17340] unevictable 0
[ 1401.122907][T17340] slab_reclaimable 56672
[ 1401.122907][T17340] slab_unreclaimable 294106968
[ 1401.122907][T17340] slab 294163640
05:13:56 executing program 1:
pipe2$watch_queue(0x0, 0x80)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

[ 1401.122907][T17340] workingset_refault_anon 0
[ 1401.122907][T17340] workingset_refault_file 5
[ 1401.122907][T17340] workingset_activate_anon 0
[ 1401.207165][T17353] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1401.218609][T17340] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17340,uid=0
05:13:57 executing program 5:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0xf, &(0x7f0000000640), 0xc)

05:13:57 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto$inet(r0, &(0x7f0000000380)="0dcfa544d7c97ce390386d4ff9dac600f520793963ea28b664fe23b1098b55678569ad00499defa965fc99da80eac128b799d61bdfc4e6a39d266b15bd64c0e42908cee4c2a81b3b0b8526259e7d4ae27f34fb15fafe6e0c41da619f6791cae6add9a57db56ba59011ae5fb6121fdf12f89d9a41ceb7f2d38e08a22e3fa5869bc379a23671682fc652e5328f2a7f1b83e0551a588e8e614f61c673fc87c46177ee36afc061f2afc9ebd43bf454faf79adbad46e9bceed18dde0ee931515109078bcf804722d068f7a024edc0753a897807f9e00880d3e2bce73d27bafc73371f919e858142c3d9da747de636380fe5bd2f2c99daae5d7f4dfce30c11359a26781f819fef6636415ed6cc23a4c991bf36494cff2b1923804fcb404c1900710f40d0f02361cee0657c4bb01122f93113c5534a7f1603c9d1390047fede67a0f1152ae87810070363e5d87c8a3dd89033c0908283061cb352b383705f444d5e81e8de9a95fd5b31d20ad1592c3060cb58de52d3e42a43241cf70c9133a8ddecee9d320b8e9e4b27991c993ae906a434956056de11b9c99e80be8038c9ce5f2de6c5ba36f4be9d3501fda70e2db0343383648fb1bb5e07f76def0650683ef2e40f57479c42862230dd621f685474a84914c985a9e1d86f5afec629dbf9564f527f23a8fa4e3606f1ccdaa41a7d8007cf33335c24bacc45dd8ba0c9c86f2d093b72e23f7fa9b9ccbdc22822ae9acb4d45e5b51eb44708ab6e7a11ee297f64f8971f51bdd1cbb3aaf4f5b7ea02b0160f56c947d31e6a745b7eb587b5000a974eb0df21e2b93375bf784d7ac9d2d1bb57ae20d0377519cb6c1ebe902d7cc0861bdcbb418f36c75bcf9996e2ecf0bf591e145e760858d4f9e884e83708f50a35bbb533dd48ffd32dc833ce82f4a56bb4939f15a53709276e6331cb3742044fa66b6419bf6925c3d461e4da8b44a65e684ca90f65f9b64befbc0c4243d709ad9542ff1a313d342e71caad877e9e66077b5ed2f708f5e1dd103e15046b6bc197931a2ee5d74228e053409e2150ab5c6b24d66ad56078c352ddc567402ea118160444694721690ce41cbff4a7767404bdc42800d54e8f866866a79e4aa0360cdfeb1c564d70859efb69d814661b36dceaf49e8110274b9ed94c868db1ddf412bdac8a46755be659a0ad38355829049b3643a6336e0e4d7c93e2d23fc64a5dd5e407557e264052d6657f01ae7d945d50218a18da12058d8f62e07e50e86123380abfca2e542e672bb9a2d94e0033e819170366ce7a8628c816d6f6996ccec9f284d35484b53f8eb0192f72c716a3b4cd4228369f25aa42ed2be087b4975dfba3eaabc6cd91ee008fb3a6218f17139c04390e609bde6c04215f7295e7a49310d10fe5684c70291384802838d8319da554c83bc8af8f3cb654e1a9f2c05da188752aca51bc3090966c82f013c664e73ccec94b38c8cdd6d2256bec132ce4adc7dd43b0a837581dead20c8b96840169098b808834311fd21a67766bc3d6da90f62f3339471ea4b9219ad4df3d536855f77193c47cbd79d280a126e58ac3d622f274c9407e1915ad8ef735609f9567e9f9f8a0314c3b3444f499df10ee7cbf6cbedcb51a22382cd0d659420dd57308d364d34f19169476274dd29f15208ed5b534f3b166b445ef5d405b3ed64f441335a19baddc817554ecb5a77b864d3057431f75535d04f2e0b5e00948fb791d97844ebafc09c025449946d5899b2b09c61f08a639f4c39379266cd74f28a5636998397b86a2847df2a7333bf3e45a030f74a2f5fb33a0e16ef8617928438ecc4ba147e6dd767460222a46e25c3efd55093bf1ea630b4b52f90b0b019635999aab8214ce58a1829f3f4efec8e24aa09aef6c2ba01e9ab61a0862fbfabab709e42786ec625309a31d7f1d7c74789a477d81096e0e76d72ec3dfe3df64bde5d931394b27b038f1405367a533f75ddcffe9359ef5d8e3bd879aacb9e3f002b7255497f648a8d1539b325f786eb0a5c99a8650fce62180d95f8cef5c81ed7fd84a79b8d9516b36579922543dd9d43e1115168e710b85a2035ba8b6a6c31a277d34cbc5b49441ff6c3817f86e4442e9c74b617fbabc597ac7381454abc5ff7763ea2b3dae3920aaa0c33e1aa1ee83ae46c21132338bbe4fdb2739bd80584d6a65ab70a6c441e41d32d2c58bb0e68c59aff8262a47443292a444054e23bafa897dce1468a5402af8c4a729befd2c6b742c1d3d2ebc5423b3c0eef2c953d27ff01b23d23795c0f4dbe64a4656beb6dda4ad776685affc162ca4c6d4ad168afe648b60ab65bed83759ae9ffc9ab2094a51d112bedf00286b61e129997152774082f36100533f29766118efa76dc6215a5bc68e00e58e257be1187240eb8012438fe21d02dc486e79e6fd97d95e6ffda7d20a9b209bab4d1aabb471afd0e3350e35dda67dff8769acb7ef3e8fedaa40a22b16f9f4378391495b21a464e7cec7874fbe3a5335e38e0b73915bae3ca17e641598f2bfe171a1ea865ee6b39b5bfd2d5afe8ad647d3cf389ad0517c267228d4d3b89602b4c63995422125b37b6bb92f87d3cd8faa7902413c52c9889f95f84396b4869534714c791fbc5820502bd57c941a9086d66737dbc6383de09afd8fc5634b1e3246d98bbc287cc8b83fb738df203279c307cd96d98da105e8fef4f8e63d61e069e756a83b43a5009907a6b3a080ea6bbe40f4cf810ce38169e76f1a5a8b238e516c7edf47111732f70968c1dc1164aab586d1f079848535f15e68f48addd6609f0c4a57e45014c077bc3dd4bb8dac3cd56bc25c860cec08d85403da92eb34c6db1bf4604d693e8aea49d09b425a506b90ea7f2b629df75404dc557e6d50ea458b501b050fe5d21d4b0abd8ffe3d5f11aa9933dcd84220813bf0752f3b3e701419475259713cf6780723e98c505107845bb7490838017b391d21bfaea3f6d3354d4a66d27c0874671d3464956fa680dfc3446d91f71ae2fb72c13fae83c2562cc2ba612586b6ed71fb60f34af92b0ebcc5f688bea8eefa4153692543918f1958a40a4cff287dd2a7540cb8ee81630b76490f2780a100eacebf96341228cc9d289a7a95178341fbd64bbdbaef0b75aef5c5e62d73bb2e5b5e88b6c045658989cb306583e81c1e4a59e308e86759163e82c55de482b193f0115b29c688268ca06b1cd6942dbd6836857a2bcc445d864c341a1a446bc16559e6f7b16b2af609e850501e10fb0c7b10374085ef990e4f6eed21d4bf94eb0c7dac7cbb08656208d880ad56e74e888db3cf511e26836418e4ed13a1b1fe10617a8666b2638cb7664bfcbbde48936359a6e020ebe947fd6231276a31d872450e6422a3bfb3c9aa08983fc135e6581856019596cebf6c08814d2c7396899ac057076a986d89c71db2c111708c301d01ca13aebdbf2354cb655ca9031d0d8d3b7b475b46e904fc8435eaa1aabb5ca1a05e580b1fea6bb0a6425d23fe01b270ddbb7fdb71484c7f525694e13c9f71e99b37f6149d40eea06697034cd2fdfb5c76be233358d700cea4bbf7a8691b0620c55693891801dc660810f85eac10a5153aa1e9a06de94526cf81149da199fa8c7cd99850f05f72473b5bb39ed7220e897f91b10295a8797a77e4af0df96b2ba3e5ffcdf469ba8fc3f20f45adec70b36e5b74968c2455f9b86f98dfc0080702fe684feb64cf364da6e608d1dbe63b09ab305baeabbd766a5698e7a7bd778536e857182baf2c614fb106091943d9f411be9b39d73c860bfdfaaa79956774c5f0fbd6b7d00e8d82f9d91925361cc9b994681f7d0330cf7c6dc64b9e9aaaf36af08a96b0e26590ab7f74a20415aee5184d53bc8259cbcd5e99ee73fc6e20de60273927cb2d7a3c649246aa60125ad8c55d1ad89679497dc284802f7ff0a7571ffd24da4865783f11c58132b03140b7919ca820b02553204d130533a53892d9412728573677345d27d9519c7d77da84cf0cb5bad7382106b0a4d7d1c526e4035a0a2ba7c9ea940a7e10d390b567756bddeddc37d510281d2f42b650927a6184809e71d691f910b7f199573fbbcdf9db4d72c464c135e2153a6143afcf5922faf73615274192ee30ac0f78a606d4c891361a21f4d4c4a86a35c6b1badf8ac69ac042994c4f08285bac8f62138e66a80825c3015c503d36c1f00eb13f6422f2fa124cf8c2c65d241cb8c46b297cc504dbccdc3698fad286244375297c3a44d6e3cb7165a9bd18ef9a8ccba270c129e1b667fae8912e35c5e8c52cb0f86c7283e608e35fe5eb443609a1174fe58c28f3c565ad399f21a4ab61440d4ab71d51dcfc13323c0679bb443d8bfeb94790c937948cb205e3d611e87caaa72ba7315eb379f6b9a7edb1ecd561f4510b6fd412f9e2ffb780eacbfd436b0b4db58e875dd09071feb332cb5f2929fa954ac649f126722a95d812bf3267fafd1868d854586e93d5d9ef9efc11264287829d9f636d30440980b6a7d8432896aa27865d5513ce34bddaff21c1c82e62faf9b8c0ff8d76364d2e9d0ee2db2d7d5465fefbf24f6fb00b232c5048b50d6d0e97f4ba1140082d04bd7d5370711a9a870f5c53d0393d8a11b5334ec3a9ffe774f47b33967d1ecaf5890d9e80f99ffb9787751b05289da7a762d09f613dc247e19e45d62f883b3d7b7103dce91c13b3766862ed7f361c5db5ef44e982873457e1b9af4fcccb36f44967eebf5f4588a3d77a71b6b5b0a797bcc5d9d010514e4d0ff1528cba8b3679d711913e66fa6998e674808a5f7c6918df2391c94f433c54318c7f65c0c815612d1a1f63571e7f763dffc8f0ffdccb689a52ec0e8af48f8ed34eb4e64f2edd3ea08b93c6d61e18d6e75f5362c548718b4e352880926c4ea7a77db73cc4ca7eac229911d532eae55da5b0494b3b6111f6d4be042f07f3931e17aba5bac8ec2abc23cf88ed862bcb48ce5247c313333bff6419e5bee65fa1c7aaffb5622799ca74a432a908136b1334ad25ae5bbd5d18de0c8ed65ca7a9544b8bf99a0482ae31c36aa8bf21dd98feb35593deaaf821834d8a7433c9390d39cc77e191dfb38312e93aec873ebb08ab78cc0a36ea94a2ae0266af10abd84fdf156e79ea32df97670e92a5560805d6391379c0eabefe3d723f5c36f67d829d030baf355a0db35342cec619c3b36efba581617b449cb79dc428946a20981f9c5c0b74f74658b93770571a9f36c32073703a35fff6e64503a8d3f7487845b2ab800d28f2ce2874bf2a7142cf1ff37dd5d859f45c0c3f99955bf0aad5ccdc345b13dff2ef76933c62d33b8cadd0c4616fed91377f84f913377f0095126e84ffac6d53ca6bf1ab31437744801ac1bd020ff54cee305d0b76f6cd884fa3546bd041ce0e2d66e6aee83493650daa9cb837d527a9b18af48d53f15f3ce796f908d7ea050d4b4a4df0eb014e870b07c7a43b54a7c0dcd3346118f10d239e6d3a4ae8bbef1f6c483dcc68b26ca48c734e91a5774b779ce495f05b7d3e0e716345b845c81d1bb2bf9619463a7bedb05f13df9a96507a731223d944d0b1f8bd0a02453aa252863a10cb1068ee920e8f83297fdea83f3385e6adfc0960ce2d1df46f47156ec0802c878bb1717c7c80e48886df3f1c446682a97c2ea5ded80a94d4996e36b92909e673c1cd07aef7890ac93924fbb4d251dfbbe0766f07ca6d8e79bc5bb8f1fdc1dfec66d428f0751f8b29d944a3178354b21eceb7f3a3cec679a89a532a50b69dc9a66d22d6f4a2f02161788655b69f73be77b1", 0xff1, 0x109, &(0x7f0000000100)={0x10, 0x2}, 0x10)

05:13:57 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x3ea}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:57 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000380), 0x84)

05:13:57 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
connect$inet(r0, &(0x7f0000000580)={0x10, 0x2}, 0x10)

[ 1401.218726][T17340] Memory cgroup out of memory: Killed process 17340 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1401.260846][T17353] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1401.268937][T17353] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1401.277061][T17353] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:13:57 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x15110000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:57 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(0xffffffffffffffff, r0, 0x0, 0x800000080004103)

05:13:57 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet6_sctp(0x1c, 0x5, 0x84)
r2 = dup2(r0, r1)
sendto$inet(r2, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x10, 0x2}, 0x10)

05:13:57 executing program 2:
syz_emit_ethernet(0x3a, &(0x7f0000000080)={@local, @remote, @val, {@ipv4}}, 0x0)

05:13:57 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
recvmsg(r0, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001840)=""/4096, 0x1000}, 0x1)

[ 1401.343875][T17375] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1401.354754][T17375] CPU: 0 PID: 17375 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1401.367177][T17375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1401.377275][T17375] Call Trace:
[ 1401.380561][T17375]  <TASK>
[ 1401.383547][T17375]  dump_stack_lvl+0xd6/0x122
[ 1401.388159][T17375]  dump_stack+0x11/0x15
05:13:57 executing program 1:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
bind(r0, &(0x7f0000000000)=@in6={0x1c, 0x1c, 0x2}, 0x1c)

[ 1401.392388][T17375]  dump_header+0x98/0x430
[ 1401.396733][T17375]  oom_kill_process+0x100/0x540
[ 1401.401600][T17375]  out_of_memory+0x620/0x880
[ 1401.406207][T17375]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1401.411772][T17375]  mem_cgroup_oom+0x2e7/0x370
[ 1401.416471][T17375]  try_charge_memcg+0x717/0x9c0
[ 1401.421337][T17375]  ? avc_has_perm_noaudit+0x1c0/0x270
[ 1401.426796][T17375]  obj_cgroup_charge+0x171/0x2b0
[ 1401.431827][T17375]  memcg_slab_pre_alloc_hook+0xf7/0x170
[ 1401.437448][T17375]  ? sock_alloc_inode+0x2d/0xa0
05:13:57 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000300)={&(0x7f0000000000)=@in={0x10, 0x2}, 0x10, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1c000000840000000a000000ff01000000000000000000000000000114000000840000000700000002000000070000001c00000084000000040000000400207c5bf1ffff03000000", @ANYRES32, @ANYBLOB="1c"], 0x68}, 0x0)

05:13:57 executing program 1:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
bind(r0, &(0x7f00000001c0)=@in6={0x1c, 0x1c, 0x3}, 0x1c)

[ 1401.442325][T17375]  kmem_cache_alloc_lru+0x75/0x2a0
[ 1401.447535][T17375]  sock_alloc_inode+0x2d/0xa0
[ 1401.452268][T17375]  ? sockfs_init_fs_context+0x70/0x70
[ 1401.457721][T17375]  alloc_inode+0x38/0x150
[ 1401.462057][T17375]  new_inode_pseudo+0x13/0x60
[ 1401.466812][T17375]  __sock_create+0x122/0x4e0
[ 1401.471438][T17375]  __sys_socket+0x9c/0x220
[ 1401.475925][T17375]  __x64_sys_socket+0x3b/0x50
[ 1401.480619][T17375]  do_syscall_64+0x2b/0x70
[ 1401.485060][T17375]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
05:13:57 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = fcntl$dupfd(r0, 0x0, r1)
sendto$inet(r2, &(0x7f0000000000)="92", 0x1, 0x0, &(0x7f0000000100)={0x10, 0x2}, 0x10)

[ 1401.491022][T17375] RIP: 0033:0x7fa69c0185a9
[ 1401.495447][T17375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1401.515069][T17375] RSP: 002b:00007fa69b38c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1401.523593][T17375] RAX: ffffffffffffffda RBX: 00007fa69c138f80 RCX: 00007fa69c0185a9
[ 1401.531637][T17375] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000010
[ 1401.539619][T17375] RBP: 00007fa69c0737b0 R08: 0000000000000000 R09: 0000000000000000
[ 1401.547607][T17375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1401.555596][T17375] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1401.563729][T17375]  </TASK>
[ 1401.574282][T17375] memory: usage 307200kB, limit 307200kB, failcnt 48020
[ 1401.581272][T17375] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1401.588161][T17375] Memory cgroup stats for /syz0:
[ 1401.588476][T17375] anon 389120
[ 1401.588476][T17375] file 10457088
[ 1401.588476][T17375] kernel 303726592
[ 1401.588476][T17375] kernel_stack 81920
[ 1401.588476][T17375] pagetables 229376
[ 1401.588476][T17375] sec_pagetables 0
[ 1401.588476][T17375] percpu 9172448
[ 1401.588476][T17375] sock 0
[ 1401.588476][T17375] vmalloc 8192
[ 1401.588476][T17375] shmem 10457088
[ 1401.588476][T17375] file_mapped 159744
[ 1401.588476][T17375] file_dirty 0
[ 1401.588476][T17375] file_writeback 0
[ 1401.588476][T17375] swapcached 0
[ 1401.588476][T17375] inactive_anon 364544
[ 1401.588476][T17375] active_anon 10457088
[ 1401.588476][T17375] inactive_file 0
[ 1401.588476][T17375] active_file 0
[ 1401.588476][T17375] unevictable 0
[ 1401.588476][T17375] slab_reclaimable 48600
[ 1401.588476][T17375] slab_unreclaimable 294102176
[ 1401.588476][T17375] slab 294150776
[ 1401.588476][T17375] workingset_refault_anon 0
[ 1401.588476][T17375] workingset_refault_file 5
[ 1401.588476][T17375] workingset_activate_anon 0
05:13:57 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x3ee}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:57 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x7, &(0x7f0000000040), 0x88)

05:13:57 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x103, &(0x7f0000000100)={0x0, 0x2, 'zS'}, &(0x7f0000000000)=0xa)

[ 1401.617169][T17401] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1401.684923][T17375] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17372,uid=0
[ 1401.685068][T17375] Memory cgroup out of memory: Killed process 17372 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1401.732467][T17401] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1401.787697][T17405] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1401.798701][T17405] CPU: 1 PID: 17405 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1401.811276][T17405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1401.821337][T17405] Call Trace:
[ 1401.824659][T17405]  <TASK>
[ 1401.827593][T17405]  dump_stack_lvl+0xd6/0x122
[ 1401.832200][T17405]  dump_stack+0x11/0x15
[ 1401.836431][T17405]  dump_header+0x98/0x430
[ 1401.840826][T17405]  oom_kill_process+0x100/0x540
[ 1401.845679][T17405]  out_of_memory+0x620/0x880
[ 1401.850364][T17405]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1401.855929][T17405]  mem_cgroup_oom+0x2e7/0x370
[ 1401.860726][T17405]  try_charge_memcg+0x717/0x9c0
[ 1401.865620][T17405]  ? __alloc_pages+0x199/0x340
[ 1401.870429][T17405]  charge_memcg+0x54/0x250
[ 1401.874859][T17405]  __mem_cgroup_charge+0x25/0xa0
[ 1401.879854][T17405]  wp_page_copy+0x209/0x1460
[ 1401.884522][T17405]  ? delay_tsc+0xc1/0xe0
[ 1401.888772][T17405]  ? preempt_count_add+0x5e/0xa0
[ 1401.893722][T17405]  do_wp_page+0x2dd/0x780
[ 1401.898119][T17405]  handle_mm_fault+0x5ef/0xa80
[ 1401.902899][T17405]  do_user_addr_fault+0x4a1/0x980
[ 1401.908036][T17405]  exc_page_fault+0x60/0x160
[ 1401.912640][T17405]  asm_exc_page_fault+0x22/0x30
[ 1401.917512][T17405] RIP: 0033:0x7fa69bfc5970
05:13:57 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x1a020000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:57 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(0xffffffffffffffff, r0, 0x0, 0x800000080004103)

05:13:57 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
recvmsg(r0, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001840)=""/4096, 0x1000}, 0x1)

05:13:57 executing program 2:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
connect(r0, &(0x7f00000001c0)=@in6={0x1c, 0x1c, 0x2}, 0x1c)

05:13:57 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0x1c, 0x5, 0x84)
r2 = dup2(r1, r0)
sendmsg$inet_sctp(r2, &(0x7f0000002340)={&(0x7f0000000040)=@in={0x10, 0x2}, 0x10, 0x0, 0x0, &(0x7f0000002300)=[@dstaddrv6={0x1c, 0x84, 0xa, @remote={0xfe, 0x80, '\x00', 0x0}}, @authinfo={0x10}], 0x2c}, 0x0)

[ 1401.921928][T17405] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1401.941672][T17405] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1401.947795][T17405] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1401.955776][T17405] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
[ 1401.963750][T17405] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1401.971727][T17405] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1401.979705][T17405] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
05:13:57 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(0xffffffffffffffff, r0, 0x0, 0x800000080004103)

[ 1401.987686][T17405]  ? __x64_sys_socket+0xc/0x50
[ 1401.992470][T17405]  </TASK>
[ 1401.995658][T17405] memory: usage 307200kB, limit 307200kB, failcnt 48087
[ 1402.002657][T17405] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1402.009592][T17405] Memory cgroup stats for /syz0:
[ 1402.009908][T17405] anon 393216
[ 1402.009908][T17405] file 10457088
[ 1402.009908][T17405] kernel 303722496
[ 1402.009908][T17405] kernel_stack 81920
[ 1402.009908][T17405] pagetables 229376
[ 1402.009908][T17405] sec_pagetables 0
05:13:57 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
recvmsg(r0, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001840)=""/4096, 0x1000}, 0x1)

[ 1402.009908][T17405] percpu 9172448
[ 1402.009908][T17405] sock 0
[ 1402.009908][T17405] vmalloc 8192
[ 1402.009908][T17405] shmem 10457088
[ 1402.009908][T17405] file_mapped 159744
[ 1402.009908][T17405] file_dirty 0
[ 1402.009908][T17405] file_writeback 0
[ 1402.009908][T17405] swapcached 0
[ 1402.009908][T17405] inactive_anon 339968
[ 1402.009908][T17405] active_anon 10457088
[ 1402.009908][T17405] inactive_file 0
[ 1402.009908][T17405] active_file 0
[ 1402.009908][T17405] unevictable 0
[ 1402.009908][T17405] slab_reclaimable 44896
05:13:57 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
recvmsg(r0, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001840)=""/4096, 0x1000}, 0x1)

05:13:57 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x20000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1402.009908][T17405] slab_unreclaimable 294101120
[ 1402.009908][T17405] slab 294146016
[ 1402.009908][T17405] workingset_refault_anon 0
[ 1402.009908][T17405] workingset_refault_file 5
[ 1402.009908][T17405] workingset_activate_anon 0
[ 1402.106000][T17405] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17405,uid=0
[ 1402.121327][T17405] Memory cgroup out of memory: Killed process 17405 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:57 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x3f2}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:57 executing program 5:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000240)={&(0x7f0000000080)=@in6={0x1c, 0x1c, 0x1}, 0x1c, 0x0}, 0x0)

05:13:58 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = dup2(r1, r0)
setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x9, &(0x7f00000001c0)=0x5, 0x4)

05:13:58 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x24000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:58 executing program 5:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x1c, 0x1c, 0x2}, 0x1c)

05:13:58 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:13:58 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet6_sctp(0x1c, 0x5, 0x84)
r2 = dup2(r0, r1)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x2, &(0x7f0000000100), &(0x7f0000000080)=0x7)

05:13:58 executing program 1:
socket$unix(0x1, 0x1, 0x0)
select(0x40, &(0x7f00000001c0), &(0x7f0000000240)={0x8}, 0x0, &(0x7f00000002c0)={0x0, 0x2710})

05:13:58 executing program 5:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
connect(r0, &(0x7f00000001c0)=@in6={0x1c, 0x1c, 0x2}, 0x1c)

05:13:58 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0xf, &(0x7f0000000500), 0xc)

[ 1402.289793][T17441] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
05:13:58 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x3f4}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:58 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x25000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:58 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0xf, &(0x7f0000000500), 0xc)

05:13:58 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x900, &(0x7f0000000000), &(0x7f0000000100)=0x8)

05:13:58 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x3f6}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1402.289822][T17441] CPU: 0 PID: 17441 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
05:13:58 executing program 2:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
connect(r0, &(0x7f00000001c0)=@in6={0x1c, 0x1c, 0x2}, 0x1c)
getsockname$inet6(r0, 0x0, &(0x7f00000000c0))

05:13:58 executing program 1:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
bind$inet(r0, &(0x7f0000000200)={0x10}, 0x10)
connect$inet(r0, &(0x7f0000000040)={0x10}, 0x10)
sendmsg$inet_sctp(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001680)=[{&(0x7f0000000180)="52465f147748ca838a9a080c7d182b056fbe871c39655f0e503d4e96d357a42cc942f16aa9911223d0", 0x29}, {&(0x7f0000000440)="6612dc83177461051ed7474bd3bc97f69a194fbbee5d817125ea84e71c124d0aa36d0f1427729b671ca89fd0c099e3df2b1794f52c79ef3f1eafe0770cc68881a0d80c3e6c46bbdb71bbd7426f612ac6fb6797bf9895e5be7bc3a5adb43858", 0x5f}, {&(0x7f00000004c0)="a70d0a1de13d47f20b", 0x9}], 0x3}, 0x0)

[ 1402.289844][T17441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1402.289889][T17441] Call Trace:
[ 1402.289894][T17441]  <TASK>
[ 1402.289899][T17441]  dump_stack_lvl+0xd6/0x122
[ 1402.290010][T17441]  dump_stack+0x11/0x15
[ 1402.290034][T17441]  dump_header+0x98/0x430
[ 1402.290116][T17441]  oom_kill_process+0x100/0x540
[ 1402.290135][T17441]  out_of_memory+0x620/0x880
[ 1402.290152][T17441]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1402.290174][T17441]  mem_cgroup_oom+0x2e7/0x370
[ 1402.290257][T17441]  try_charge_memcg+0x717/0x9c0
[ 1402.290281][T17441]  ? __alloc_pages+0x199/0x340
[ 1402.290301][T17441]  charge_memcg+0x54/0x250
[ 1402.290323][T17441]  __mem_cgroup_charge+0x25/0xa0
[ 1402.290365][T17441]  wp_page_copy+0x209/0x1460
[ 1402.290393][T17441]  ? shrink_zones+0x525/0x5d0
[ 1402.290413][T17441]  ? preempt_count_add+0x5e/0xa0
[ 1402.290439][T17441]  do_wp_page+0x2dd/0x780
[ 1402.290503][T17441]  handle_mm_fault+0x5ef/0xa80
[ 1402.290531][T17441]  do_user_addr_fault+0x4a1/0x980
[ 1402.290560][T17441]  exc_page_fault+0x60/0x160
[ 1402.290599][T17441]  asm_exc_page_fault+0x22/0x30
[ 1402.290626][T17441] RIP: 0033:0x7fa69bfc5970
[ 1402.290751][T17441] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1402.290769][T17441] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1402.290785][T17441] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1402.290798][T17441] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1402.290810][T17441] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1402.290823][T17441] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1402.290836][T17441] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1402.290860][T17441]  ? __sock_create+0x24/0x4e0
[ 1402.290963][T17441]  </TASK>
[ 1402.290988][T17441] memory: usage 307200kB, limit 307200kB, failcnt 48163
[ 1402.290999][T17441] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1402.291010][T17441] Memory cgroup stats for /syz0:
[ 1402.291349][T17441] anon 401408
[ 1402.291349][T17441] file 10457088
[ 1402.291349][T17441] kernel 303714304
[ 1402.291349][T17441] kernel_stack 81920
[ 1402.291349][T17441] pagetables 229376
[ 1402.291349][T17441] sec_pagetables 0
[ 1402.291349][T17441] percpu 9172448
[ 1402.291349][T17441] sock 0
[ 1402.291349][T17441] vmalloc 8192
[ 1402.291349][T17441] shmem 10457088
[ 1402.291349][T17441] file_mapped 159744
[ 1402.291349][T17441] file_dirty 0
[ 1402.291349][T17441] file_writeback 0
[ 1402.291349][T17441] swapcached 0
[ 1402.291349][T17441] inactive_anon 401408
[ 1402.291349][T17441] active_anon 10457088
[ 1402.291349][T17441] inactive_file 0
[ 1402.291349][T17441] active_file 0
[ 1402.291349][T17441] unevictable 0
[ 1402.291349][T17441] slab_reclaimable 39392
[ 1402.291349][T17441] slab_unreclaimable 294100856
[ 1402.291349][T17441] slab 294140248
[ 1402.291349][T17441] workingset_refault_anon 0
[ 1402.291349][T17441] workingset_refault_file 5
[ 1402.291349][T17441] workingset_activate_anon 0
[ 1402.291442][T17441] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17441,uid=0
[ 1402.292396][T17441] Memory cgroup out of memory: Killed process 17441 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1402.421484][T17473] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1402.421512][T17473] CPU: 1 PID: 17473 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1402.421538][T17473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1402.421547][T17473] Call Trace:
[ 1402.421562][T17473]  <TASK>
[ 1402.421568][T17473]  dump_stack_lvl+0xd6/0x122
[ 1402.421596][T17473]  dump_stack+0x11/0x15
[ 1402.421619][T17473]  dump_header+0x98/0x430
[ 1402.421637][T17473]  oom_kill_process+0x100/0x540
[ 1402.421653][T17473]  out_of_memory+0x620/0x880
[ 1402.421679][T17473]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1402.421702][T17473]  mem_cgroup_oom+0x2e7/0x370
[ 1402.421724][T17473]  try_charge_memcg+0x717/0x9c0
[ 1402.421823][T17473]  ? debug_smp_processor_id+0x13/0x20
[ 1402.421845][T17473]  ? delay_tsc+0xc1/0xe0
[ 1402.421864][T17473]  ? __memcg_kmem_charge_page+0x135/0x480
[ 1402.421939][T17473]  __memcg_kmem_charge_page+0x2e4/0x480
[ 1402.421962][T17473]  alloc_thread_stack_node+0x101/0x360
[ 1402.422042][T17473]  dup_task_struct+0x96/0x2a0
[ 1402.422070][T17473]  copy_process+0x3ca/0x2100
[ 1402.422114][T17473]  kernel_clone+0x166/0x550
[ 1402.422141][T17473]  __x64_sys_clone+0xc3/0xf0
[ 1402.422184][T17473]  do_syscall_64+0x2b/0x70
[ 1402.422209][T17473]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1402.422237][T17473] RIP: 0033:0x7fa69c0199d1
[ 1402.422251][T17473] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1402.422268][T17473] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1402.422299][T17473] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1402.422384][T17473] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1402.422397][T17473] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1402.422409][T17473] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1402.422420][T17473] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1402.422435][T17473]  </TASK>
[ 1402.423161][T17473] memory: usage 307192kB, limit 307200kB, failcnt 48231
[ 1402.423175][T17473] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1402.423185][T17473] Memory cgroup stats for /syz0:
[ 1402.423418][T17473] anon 380928
[ 1402.423418][T17473] file 10457088
[ 1402.423418][T17473] kernel 303726592
[ 1402.423418][T17473] kernel_stack 65536
[ 1402.423418][T17473] pagetables 229376
[ 1402.423418][T17473] sec_pagetables 0
[ 1402.423418][T17473] percpu 9172448
[ 1402.423418][T17473] sock 0
[ 1402.423418][T17473] vmalloc 8192
[ 1402.423418][T17473] shmem 10457088
[ 1402.423418][T17473] file_mapped 159744
[ 1402.423418][T17473] file_dirty 0
[ 1402.423418][T17473] file_writeback 0
[ 1402.423418][T17473] swapcached 0
[ 1402.423418][T17473] inactive_anon 352256
[ 1402.423418][T17473] active_anon 10457088
[ 1402.423418][T17473] inactive_file 0
[ 1402.423418][T17473] active_file 0
[ 1402.423418][T17473] unevictable 0
[ 1402.423418][T17473] slab_reclaimable 44696
[ 1402.423418][T17473] slab_unreclaimable 294107544
[ 1402.423418][T17473] slab 294152240
[ 1402.423418][T17473] workingset_refault_anon 0
[ 1402.423418][T17473] workingset_refault_file 5
[ 1402.423418][T17473] workingset_activate_anon 0
[ 1402.423581][T17473] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17473,uid=0
[ 1402.423715][T17473] Memory cgroup out of memory: Killed process 17473 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1402.549226][T17481] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 1402.549259][T17481] CPU: 0 PID: 17481 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1402.549293][T17481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1402.549304][T17481] Call Trace:
[ 1402.549310][T17481]  <TASK>
[ 1402.549365][T17481]  dump_stack_lvl+0xd6/0x122
[ 1402.549396][T17481]  dump_stack+0x11/0x15
[ 1402.549446][T17481]  dump_header+0x98/0x430
[ 1402.549466][T17481]  oom_kill_process+0x100/0x540
[ 1402.549529][T17481]  out_of_memory+0x620/0x880
[ 1402.549549][T17481]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1402.549573][T17481]  mem_cgroup_oom+0x2e7/0x370
[ 1402.549596][T17481]  try_charge_memcg+0x717/0x9c0
[ 1402.549687][T17481]  ? avc_has_perm_noaudit+0x1c0/0x270
[ 1402.549756][T17481]  obj_cgroup_charge+0x171/0x2b0
[ 1402.549857][T17481]  __kmem_cache_alloc_node+0xa9/0x2f0
[ 1402.549884][T17481]  ? copy_semundo+0x8a/0x170
[ 1402.549904][T17481]  kmalloc_trace+0x26/0x90
[ 1402.550040][T17481]  copy_semundo+0x8a/0x170
[ 1402.550059][T17481]  copy_process+0xd01/0x2100
[ 1402.550089][T17481]  kernel_clone+0x166/0x550
[ 1402.550116][T17481]  __x64_sys_clone+0xc3/0xf0
[ 1402.550211][T17481]  do_syscall_64+0x2b/0x70
[ 1402.550235][T17481]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1402.550261][T17481] RIP: 0033:0x7fa69c0199d1
[ 1402.550275][T17481] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1402.550314][T17481] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1402.550334][T17481] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1402.550408][T17481] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1402.550471][T17481] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1402.550483][T17481] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1402.550494][T17481] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1402.550508][T17481]  </TASK>
[ 1402.550523][T17481] memory: usage 307200kB, limit 307200kB, failcnt 48305
[ 1402.550535][T17481] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1402.550619][T17481] Memory cgroup stats for /syz0:
[ 1402.550789][T17481] anon 380928
[ 1402.550789][T17481] file 10457088
[ 1402.550789][T17481] kernel 303734784
[ 1402.550789][T17481] kernel_stack 81920
[ 1402.550789][T17481] pagetables 229376
[ 1402.550789][T17481] sec_pagetables 0
[ 1402.550789][T17481] percpu 9172448
[ 1402.550789][T17481] sock 0
[ 1402.550789][T17481] vmalloc 8192
[ 1402.550789][T17481] shmem 10457088
[ 1402.550789][T17481] file_mapped 159744
[ 1402.550789][T17481] file_dirty 0
[ 1402.550789][T17481] file_writeback 0
[ 1402.550789][T17481] swapcached 0
[ 1402.550789][T17481] inactive_anon 380928
[ 1402.550789][T17481] active_anon 10457088
[ 1402.550789][T17481] inactive_file 0
[ 1402.550789][T17481] active_file 0
[ 1402.550789][T17481] unevictable 0
[ 1402.550789][T17481] slab_reclaimable 38416
[ 1402.550789][T17481] slab_unreclaimable 294113616
[ 1402.550789][T17481] slab 294152032
[ 1402.550789][T17481] workingset_refault_anon 0
[ 1402.550789][T17481] workingset_refault_file 5
[ 1402.550789][T17481] workingset_activate_anon 0
[ 1402.550981][T17481] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17481,uid=0
05:13:59 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:13:59 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_RECVNXTINFO(r0, 0x84, 0x20, &(0x7f0000000040), &(0x7f0000000080)=0x4)

05:13:59 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg$inet_sctp(r0, &(0x7f00000006c0)={&(0x7f0000000000)=@in6={0x1c, 0x1c, 0x2}, 0x1c, 0x0, 0x0, &(0x7f0000000640)=[@sndrcv={0x2c}], 0x2c}, 0x0)

05:13:59 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x2f000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:59 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)=@in6={0x1c, 0x1c, 0x2}, 0x1c)

05:13:59 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x3fa}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:59 executing program 2:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
r1 = socket$inet6_sctp(0x1c, 0x5, 0x84)
bind(r1, &(0x7f00000001c0)=@in6={0x1c, 0x1c, 0x3}, 0x1c)
dup2(r0, r1)

05:13:59 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = socket$inet6_sctp(0x1c, 0x5, 0x84)
sendto$inet6(r2, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x1c, 0x1c, 0x2}, 0x1c)
r3 = dup2(r2, r1)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x105, &(0x7f0000000140)={0x1, [<r4=>0x0]}, &(0x7f0000000000)=0x8)
setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x26, &(0x7f0000000040)={r4}, 0x8)

[ 1402.551037][T17481] Memory cgroup out of memory: Killed process 17481 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:59 executing program 5:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x10, 0x2}, 0x10)

[ 1403.707517][T17496] __nla_validate_parse: 11 callbacks suppressed
[ 1403.707531][T17496] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1403.735229][T17505] raw_sendmsg: syz-executor.5 forgot to set AF_INET. Fix it!
[ 1403.747220][T17494] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1403.758174][T17494] CPU: 0 PID: 17494 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1403.770668][T17494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1403.780732][T17494] Call Trace:
[ 1403.784074][T17494]  <TASK>
[ 1403.787009][T17494]  dump_stack_lvl+0xd6/0x122
[ 1403.791746][T17494]  dump_stack+0x11/0x15
[ 1403.795935][T17494]  dump_header+0x98/0x430
[ 1403.800276][T17494]  oom_kill_process+0x100/0x540
05:13:59 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x7, 0x0, 0x0)

05:13:59 executing program 5:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001280)={0x4, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000100)='GPL\x00', 0x5, 0x1000, &(0x7f0000000140)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

05:13:59 executing program 1:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f00000009c0))

[ 1403.805207][T17494]  out_of_memory+0x620/0x880
[ 1403.809855][T17494]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1403.815492][T17494]  mem_cgroup_oom+0x2e7/0x370
[ 1403.820211][T17494]  try_charge_memcg+0x717/0x9c0
[ 1403.825098][T17494]  ? __alloc_pages+0x199/0x340
[ 1403.829929][T17494]  charge_memcg+0x54/0x250
[ 1403.834371][T17494]  __mem_cgroup_charge+0x25/0xa0
[ 1403.839385][T17494]  wp_page_copy+0x209/0x1460
[ 1403.844067][T17494]  ? shrink_zones+0x525/0x5d0
[ 1403.848757][T17494]  ? preempt_count_add+0x5e/0xa0
[ 1403.853754][T17494]  do_wp_page+0x2dd/0x780
[ 1403.858096][T17494]  handle_mm_fault+0x5ef/0xa80
[ 1403.862888][T17494]  do_user_addr_fault+0x4a1/0x980
[ 1403.867948][T17494]  exc_page_fault+0x60/0x160
[ 1403.872535][T17494]  asm_exc_page_fault+0x22/0x30
[ 1403.877392][T17494] RIP: 0033:0x7fa69bfc5970
[ 1403.881803][T17494] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1403.901570][T17494] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1403.907638][T17494] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1403.915602][T17494] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
[ 1403.923564][T17494] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1403.931538][T17494] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1403.939507][T17494] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
[ 1403.947469][T17494]  ? __x64_sys_socket+0xc/0x50
[ 1403.952285][T17494]  </TASK>
[ 1403.963418][T17494] memory: usage 307200kB, limit 307200kB, failcnt 48394
[ 1403.970417][T17494] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1403.977282][T17494] Memory cgroup stats for /syz0:
[ 1403.977501][T17494] anon 393216
[ 1403.977501][T17494] file 10457088
[ 1403.977501][T17494] kernel 303722496
[ 1403.977501][T17494] kernel_stack 81920
[ 1403.977501][T17494] pagetables 229376
[ 1403.977501][T17494] sec_pagetables 0
[ 1403.977501][T17494] percpu 9172448
[ 1403.977501][T17494] sock 0
[ 1403.977501][T17494] vmalloc 8192
[ 1403.977501][T17494] shmem 10457088
[ 1403.977501][T17494] file_mapped 159744
[ 1403.977501][T17494] file_dirty 0
[ 1403.977501][T17494] file_writeback 0
[ 1403.977501][T17494] swapcached 0
[ 1403.977501][T17494] inactive_anon 393216
[ 1403.977501][T17494] active_anon 10457088
[ 1403.977501][T17494] inactive_file 0
[ 1403.977501][T17494] active_file 0
[ 1403.977501][T17494] unevictable 0
[ 1403.977501][T17494] slab_reclaimable 44896
[ 1403.977501][T17494] slab_unreclaimable 294101120
[ 1403.977501][T17494] slab 294146016
[ 1403.977501][T17494] workingset_refault_anon 0
[ 1403.977501][T17494] workingset_refault_file 5
[ 1403.977501][T17494] workingset_activate_anon 0
[ 1404.073066][T17494] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17494,uid=0
[ 1404.088349][T17494] Memory cgroup out of memory: Killed process 17494 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:13:59 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x3a000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:59 executing program 1:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001280)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x7a00}}, &(0x7f0000000100)='GPL\x00', 0x5, 0x1000, &(0x7f0000000140)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

05:13:59 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:13:59 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x3fc}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:13:59 executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'dvmrp1\x00', 0x2})
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000340)={0x1, &(0x7f0000000300)=[{0x5}]})

05:13:59 executing program 5:
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001280)={0x4, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000100)='GPL\x00', 0x5, 0x1000, &(0x7f0000000140)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000011c0)={0x0, 0x3, &(0x7f0000000040)=@framed, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, r0}, 0x80)

05:14:00 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000900)={0x0, 0x0, 0x0}, 0x142)

05:14:00 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'team0\x00', 0x2})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'wg1\x00'})

05:14:00 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
recvmsg$unix(r0, &(0x7f0000001580)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001540)}, 0x40)
bpf$ITER_CREATE(0x21, 0x0, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
bpf$OBJ_PIN_PROG(0x6, 0x0, 0x0)
mkdir(&(0x7f0000000100)='./file0/file0\x00', 0x0)

[ 1404.207562][T17534] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:14:00 executing program 1:
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x0, 0x1, 0x7, 0x0, 0x0, 0x43220, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xffffff82, 0x2, @perf_config_ext={0x101, 0x3}, 0x2, 0x1ff, 0x8001, 0x8, 0xfffffffffffffffd, 0x1, 0x9, 0x0, 0x100, 0x0, 0x5}, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000d80), 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000000080)={'ip6tnl0\x00', @broadcast})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x1d, 0x10, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x9ca}, [@map_idx={0x18, 0x7, 0x5, 0x0, 0x10}, @map_idx={0x18, 0x3, 0x5, 0x0, 0x1}, @generic={0x3f, 0xe, 0x9, 0x200}, @btf_id={0x18, 0x7, 0x3, 0x0, 0x2}, @map_val={0x18, 0x9, 0x2, 0x0, 0x1}, @ldst={0x3, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffffff}, @jmp={0x5, 0x1, 0x0, 0x7, 0xa, 0x0, 0x4}, @cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffffc}]}, &(0x7f0000000040)='GPL\x00', 0x4f64, 0x3e, &(0x7f0000000300)=""/62, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x0, 0xe, 0x8, 0x9}, 0x10, 0xffffffffffffffff, 0x0, 0x0, &(0x7f00000003c0)=[0x1, 0x1, 0x1, 0x1]}, 0x80)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000d80), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg\x00', 0x2})
close(r0)

05:14:00 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x3fe}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1404.298051][T17536] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1404.298077][T17536] CPU: 0 PID: 17536 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
05:14:00 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x500}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1404.298181][T17536] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1404.298194][T17536] Call Trace:
[ 1404.298199][T17536]  <TASK>
[ 1404.298205][T17536]  dump_stack_lvl+0xd6/0x122
[ 1404.298267][T17536]  dump_stack+0x11/0x15
[ 1404.298290][T17536]  dump_header+0x98/0x430
[ 1404.298313][T17536]  oom_kill_process+0x100/0x540
[ 1404.298332][T17536]  out_of_memory+0x620/0x880
[ 1404.298427][T17536]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1404.298449][T17536]  mem_cgroup_oom+0x2e7/0x370
[ 1404.298516][T17536]  try_charge_memcg+0x717/0x9c0
[ 1404.298539][T17536]  ? __alloc_pages+0x199/0x340
[ 1404.298560][T17536]  charge_memcg+0x54/0x250
05:14:00 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x3a030000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:00 executing program 2:
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000080)={0x1, 0x0, [0x0]})

[ 1404.298581][T17536]  __mem_cgroup_charge+0x25/0xa0
[ 1404.298628][T17536]  wp_page_copy+0x209/0x1460
[ 1404.298653][T17536]  ? shrink_zones+0x525/0x5d0
[ 1404.298673][T17536]  ? preempt_count_add+0x5e/0xa0
[ 1404.298699][T17536]  do_wp_page+0x2dd/0x780
[ 1404.298777][T17536]  handle_mm_fault+0x5ef/0xa80
[ 1404.298803][T17536]  do_user_addr_fault+0x4a1/0x980
[ 1404.298829][T17536]  exc_page_fault+0x60/0x160
[ 1404.298899][T17536]  asm_exc_page_fault+0x22/0x30
[ 1404.298926][T17536] RIP: 0033:0x7fa69bfc5970
[ 1404.298940][T17536] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1404.298959][T17536] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1404.298991][T17536] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1404.299003][T17536] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1404.299015][T17536] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1404.299026][T17536] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1404.299128][T17536] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1404.299139][T17536]  ? __sock_create+0x24/0x4e0
[ 1404.299165][T17536]  </TASK>
[ 1404.299184][T17536] memory: usage 307200kB, limit 307200kB, failcnt 48477
[ 1404.299197][T17536] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1404.299207][T17536] Memory cgroup stats for /syz0:
[ 1404.299541][T17536] anon 401408
[ 1404.299541][T17536] file 10457088
[ 1404.299541][T17536] kernel 303714304
[ 1404.299541][T17536] kernel_stack 81920
[ 1404.299541][T17536] pagetables 229376
[ 1404.299541][T17536] sec_pagetables 0
[ 1404.299541][T17536] percpu 9172448
[ 1404.299541][T17536] sock 0
[ 1404.299541][T17536] vmalloc 8192
[ 1404.299541][T17536] shmem 10457088
[ 1404.299541][T17536] file_mapped 159744
[ 1404.299541][T17536] file_dirty 0
[ 1404.299541][T17536] file_writeback 0
[ 1404.299541][T17536] swapcached 0
[ 1404.299541][T17536] inactive_anon 393216
[ 1404.299541][T17536] active_anon 10457088
[ 1404.299541][T17536] inactive_file 0
[ 1404.299541][T17536] active_file 0
[ 1404.299541][T17536] unevictable 0
[ 1404.299541][T17536] slab_reclaimable 39392
[ 1404.299541][T17536] slab_unreclaimable 294100856
[ 1404.299541][T17536] slab 294140248
[ 1404.299541][T17536] workingset_refault_anon 0
[ 1404.299541][T17536] workingset_refault_file 5
[ 1404.299541][T17536] workingset_activate_anon 0
[ 1404.299607][T17536] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17536,uid=0
[ 1404.299663][T17536] Memory cgroup out of memory: Killed process 17536 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1404.358173][T17555] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1404.358199][T17555] CPU: 0 PID: 17555 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1404.358221][T17555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1404.358303][T17555] Call Trace:
[ 1404.358309][T17555]  <TASK>
[ 1404.358315][T17555]  dump_stack_lvl+0xd6/0x122
[ 1404.358343][T17555]  dump_stack+0x11/0x15
[ 1404.358366][T17555]  dump_header+0x98/0x430
[ 1404.358432][T17555]  oom_kill_process+0x100/0x540
[ 1404.358452][T17555]  out_of_memory+0x620/0x880
[ 1404.358473][T17555]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1404.358498][T17555]  mem_cgroup_oom+0x2e7/0x370
[ 1404.358523][T17555]  try_charge_memcg+0x717/0x9c0
[ 1404.358548][T17555]  ? debug_smp_processor_id+0x13/0x20
[ 1404.358644][T17555]  __memcg_kmem_charge_page+0x2e4/0x480
[ 1404.358668][T17555]  alloc_thread_stack_node+0x292/0x360
[ 1404.358761][T17555]  dup_task_struct+0x96/0x2a0
[ 1404.358788][T17555]  copy_process+0x3ca/0x2100
[ 1404.358815][T17555]  kernel_clone+0x166/0x550
[ 1404.358891][T17555]  __x64_sys_clone+0xc3/0xf0
[ 1404.358953][T17555]  do_syscall_64+0x2b/0x70
[ 1404.359001][T17555]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1404.359106][T17555] RIP: 0033:0x7fa69c0199d1
[ 1404.359121][T17555] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1404.359138][T17555] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1404.359157][T17555] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1404.359169][T17555] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1404.359183][T17555] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1404.359194][T17555] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1404.359204][T17555] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1404.359218][T17555]  </TASK>
[ 1404.359238][T17555] memory: usage 307200kB, limit 307200kB, failcnt 48551
[ 1404.359250][T17555] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1404.359262][T17555] Memory cgroup stats for /syz0:
[ 1404.359508][T17555] anon 380928
[ 1404.359508][T17555] file 10457088
[ 1404.359508][T17555] kernel 303734784
[ 1404.359508][T17555] kernel_stack 65536
[ 1404.359508][T17555] pagetables 229376
[ 1404.359508][T17555] sec_pagetables 0
[ 1404.359508][T17555] percpu 9172448
[ 1404.359508][T17555] sock 0
[ 1404.359508][T17555] vmalloc 8192
[ 1404.359508][T17555] shmem 10457088
[ 1404.359508][T17555] file_mapped 159744
[ 1404.359508][T17555] file_dirty 0
[ 1404.359508][T17555] file_writeback 0
[ 1404.359508][T17555] swapcached 0
[ 1404.359508][T17555] inactive_anon 364544
[ 1404.359508][T17555] active_anon 10457088
[ 1404.359508][T17555] inactive_file 0
[ 1404.359508][T17555] active_file 0
[ 1404.359508][T17555] unevictable 0
[ 1404.359508][T17555] slab_reclaimable 56672
[ 1404.359508][T17555] slab_unreclaimable 294107208
[ 1404.359508][T17555] slab 294163880
[ 1404.359508][T17555] workingset_refault_anon 0
[ 1404.359508][T17555] workingset_refault_file 5
[ 1404.359508][T17555] workingset_activate_anon 0
[ 1404.359556][T17555] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17555,uid=0
[ 1404.359656][T17555] Memory cgroup out of memory: Killed process 17555 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1404.393754][T17546] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1404.429746][T17559] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1405.101201][T17559] CPU: 1 PID: 17559 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1405.113645][T17559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1405.123976][T17559] Call Trace:
[ 1405.127262][T17559]  <TASK>
[ 1405.127268][T17559]  dump_stack_lvl+0xd6/0x122
[ 1405.127300][T17559]  dump_stack+0x11/0x15
[ 1405.127384][T17559]  dump_header+0x98/0x430
[ 1405.127404][T17559]  oom_kill_process+0x100/0x540
[ 1405.127433][T17559]  out_of_memory+0x620/0x880
[ 1405.127459][T17559]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1405.127483][T17559]  mem_cgroup_oom+0x2e7/0x370
[ 1405.127506][T17559]  try_charge_memcg+0x717/0x9c0
[ 1405.127530][T17559]  ? debug_smp_processor_id+0x13/0x20
[ 1405.127553][T17559]  __memcg_kmem_charge_page+0x2e4/0x480
[ 1405.127615][T17559]  alloc_thread_stack_node+0x292/0x360
[ 1405.127645][T17559]  dup_task_struct+0x96/0x2a0
[ 1405.127672][T17559]  copy_process+0x3ca/0x2100
[ 1405.127751][T17559]  kernel_clone+0x166/0x550
[ 1405.127777][T17559]  __x64_sys_clone+0xc3/0xf0
[ 1405.127816][T17559]  do_syscall_64+0x2b/0x70
[ 1405.127892][T17559]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1405.127919][T17559] RIP: 0033:0x7fa69c0199d1
[ 1405.127933][T17559] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1405.127950][T17559] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1405.127969][T17559] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1405.127981][T17559] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1405.128042][T17559] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1405.128054][T17559] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1405.128066][T17559] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1405.128081][T17559]  </TASK>
[ 1405.128115][T17559] memory: usage 307192kB, limit 307200kB, failcnt 48612
[ 1405.128157][T17559] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1405.128168][T17559] Memory cgroup stats for /syz0:
[ 1405.128337][T17559] anon 380928
[ 1405.128337][T17559] file 10457088
[ 1405.128337][T17559] kernel 303714304
[ 1405.128337][T17559] kernel_stack 65536
[ 1405.128337][T17559] pagetables 229376
[ 1405.128337][T17559] sec_pagetables 0
[ 1405.128337][T17559] percpu 9172448
[ 1405.128337][T17559] sock 0
[ 1405.128337][T17559] vmalloc 8192
[ 1405.128337][T17559] shmem 10457088
[ 1405.128337][T17559] file_mapped 159744
[ 1405.128337][T17559] file_dirty 0
[ 1405.128337][T17559] file_writeback 0
[ 1405.128337][T17559] swapcached 0
[ 1405.128337][T17559] inactive_anon 364544
[ 1405.128337][T17559] active_anon 10457088
[ 1405.128337][T17559] inactive_file 0
[ 1405.128337][T17559] active_file 0
[ 1405.128337][T17559] unevictable 0
[ 1405.128337][T17559] slab_reclaimable 39792
[ 1405.128337][T17559] slab_unreclaimable 294101688
05:14:01 executing program 4:
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:14:01 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x59a}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:01 executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'dvmrp1\x00', 0x2})

[ 1405.128337][T17559] slab 294141480
[ 1405.128337][T17559] workingset_refault_anon 0
[ 1405.128337][T17559] workingset_refault_file 5
[ 1405.128337][T17559] workingset_activate_anon 0
[ 1405.399469][T17559] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17559,uid=0
[ 1405.399580][T17559] Memory cgroup out of memory: Killed process 17559 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:14:01 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'dvmrp1\x00', 0x2})
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000340)={0x1, &(0x7f0000000300)=[{}]})

[ 1405.460693][T17564] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:14:01 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x3f000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:01 executing program 1:
bpf$BPF_PROG_DETACH(0x6, &(0x7f0000000040)={@map, 0xffffffffffffffff, 0x19}, 0x10)

[ 1405.506504][T17567] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:14:01 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x0, 0x0, 0x7ff}, 0x48)

05:14:01 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x5bf}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:01 executing program 1:
bpf$PROG_LOAD_XDP(0x19, &(0x7f0000001240)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

05:14:01 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000001680)=@bloom_filter={0x1e, 0x0, 0x0, 0x0, 0x2f7, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x5}, 0x48)

[ 1405.544669][T17578] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1405.575258][T17575] Memory cgroup out of memory: Killed process 17575 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:14:01 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0xf, 0x0, 0x0, 0x5}, 0x48)

05:14:01 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x5c0}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1405.627113][T17588] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1405.648601][T17589] Memory cgroup out of memory: Killed process 17589 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:14:01 executing program 4:
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:14:01 executing program 2:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r0)

05:14:01 executing program 1:
setrlimit(0x0, &(0x7f0000000000)={0x0, 0xffffffffffffffff})

05:14:01 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x40000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:01 executing program 5:
r0 = socket$inet6(0x18, 0x3, 0x0)
setsockopt$sock_cred(r0, 0xffff, 0x1022, 0x0, 0x0)

[ 1405.729952][T17599] Memory cgroup out of memory: Killed process 17599 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:14:01 executing program 1:
r0 = socket$unix(0x1, 0x2, 0x0)
sendto$unix(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=@abs, 0x8)

05:14:01 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x600}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:01 executing program 2:
r0 = socket$unix(0x1, 0x1, 0x0)
setsockopt$sock_cred(r0, 0xffff, 0x1022, &(0x7f00000000c0)={0xffffffffffffffff}, 0xc)

05:14:01 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCGICOUNT(r0, 0x5450, 0x0)

[ 1405.771997][T17608] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1405.783303][   T23] audit: type=1400 audit(1667193241.581:646): avc:  denied  { setopt } for  pid=17605 comm="syz-executor.5" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
05:14:01 executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x16, 0x0, 0x1, 0x5, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000180)={r0, 0x0, 0x0}, 0x20)

05:14:01 executing program 5:
utimes(0x0, &(0x7f00000000c0)={{}, {0x0, 0xffffffffffffffff}})

05:14:01 executing program 2:
writev(0xffffffffffffffff, &(0x7f00000015c0)=[{&(0x7f0000000000)="a296c8ff4431db79f8b9e7b5b98ab721ca6f6b94ece1fb2b2011de15ff288da22559e9c88a93fd2c64b78020e7e540bf09ee7a02a403350d2c6a315b68d4d4573758d7c4a892dff5a653c89013c49f8253f459b7e44e75e390e004f940fd6fe7a805bd83a87359aa111e41c1614d6d042508863e4aafb77edbcfa4eb22909b5acbb91c5494568ddaa21c1300ce33fae312ee9cd5676df74e2fa18832", 0x9c}, {&(0x7f00000000c0)="7ced741bbec0f2940e040b0aae85178eb695e906df2a313e8e5fec545725e9361555851f2ca4e720098109e526709b584add5cb9f7707f3ebed926c634", 0x3d}, {&(0x7f0000000100)="fbc47c255e26889b2553256f07e50eb0bf51a20ffc64fd1defede4a5a3b8b978bb11d24ca309383b950b17a2317eee3139f707dac89910cdeb119f790df7ae6e80069eb57c6f46d25faa3fe2691deaaa2f1ec7ae00f700fc0fcc299d0b88c747571c53e53a23b56ef2d7eaef18f63b6001912aafb754326b5adf7c9ac267fe4284367fe59a57782847e3a39b7e498e5c2c15519fb9958bbadb3401548b", 0x9d}, {&(0x7f00000001c0)="a02870f2f1dd51e44240ddaadfdaaef6dfab2a76f5f2caa3ae298c4be44934d1637db3920d19a50dd7c61f806a5d65fa7f8eed68e41deed81db6132b7fe24ff77a3fd7000d37aef70811f0c64ca0a2a6e3a7f8a0077979288fe99a7713e887bbabf074de9fe0f1f0fe41df37f812c3af66b2da285ae9340ca77057b5c53e9f0f056cbac9145f10b07f0b345f52ff72394947b79f96ddbc2eeb63a01a49f2645fbb1c669d14f71e92d95fee83fe0a2d7d217c87e8b12c3547df665e6c93062e089a0acf2af284653b6c457d12062349a145970ec33b351161307b2227c49ce0d803985929f4e92fac", 0xe8}, {&(0x7f0000001700)="31544c1f1f0cf3a114d27b53a44859c1b99ba6d7318285ff192a4c92b71e92b4223b70343ff28fa37296f5135f10ac723813b3af062e3882ef1f88d2bf4902f21c5fa9e9b72457d76a765b8e899eb8ca18c067cc4da2854c7111577698ea3bf8d48dcd4f541c83c6164bbcee2dd2d7b5dbe9dc3bfc729cc34c345d0654caacfd9a4646e26acd9a8c4a450dd84020a0c912efc250409cdbce99e94d7e4310b27b053adccd56a5ee7299f4469e9e0f6b5f8c853b35878ecf67e4437efec5aff448c68ae44aaf3d", 0xc6}, {&(0x7f0000001680)="0e934de76dff2522bd43a728419da1e50e3ac75b9b04d63f55a2b7ee5a3d1acb8fefa2542950ea20cbc09b04b317e4c8cc7371a6d00b7222c304b61bbe038cd42903bb9f25aaa81e83184db24e883c2bd68551074f4990dd9853f70000000000000000", 0x63}, {&(0x7f0000000440)="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", 0x1000}, {&(0x7f0000001440)="2ec581fd48b7367b92a1bd4150901b4f70ba029b94261b064e87184e596b07805aebf7387649e3f3792cb0c7cbaf84eae73c1826de50d1b3b5cb242f04030724e07316050d7390e7eaab8271d0289d1e43788a69ea2a6a3fd9b91852a09a50324c62e6e57fbcf271dc769cd498cb9196cbbd", 0x72}, {&(0x7f00000014c0)="d6ed925c9f001906633109ba2bb460bfc14d3709ba2d0c1eaa793d58d260cf96a81b76a157a68261dab4387b450055da3c29187f7277a474548cf9e7eb3291fa071503fa34cf3a730cccd4d616cbe3c4bbec4ed2d92652f17d31d23faaef6a3b8b90c2aab9eee07fc2e2b20dabd0ac9ca8e5c3393cebd05b34518d11aad8f0bb1898d65032d9a4afa7185eede65619b26f8167ac8d0eba1a68c9fa5596f4609c87e08095ea3774ade40fde486361b52d0269e67c5f95239e7a9ee8ddf33cbcae2b311621de32fce5e6886fd1e725d950c1f20373c84e6e8e1e66616bd2c1aba61de1fd5189efcb9d282fdf95132638c3ea176f3d", 0xf4}], 0x5c)

05:14:01 executing program 4:
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

[ 1405.872906][T17614] validate_nla: 30 callbacks suppressed
[ 1405.872920][T17614] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1405.887992][T17614] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1405.896074][T17614] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1405.904148][T17614] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1405.912218][T17614] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:14:01 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002a40)={<r0=>0xffffffffffffffff})
lseek(r0, 0x0, 0x0)

05:14:01 executing program 1:
r0 = msgget(0x2, 0x0)
msgctl$IPC_STAT(r0, 0x2, &(0x7f0000001200)=""/4096)

[ 1406.003270][T17619] oom_kill_process: 3 callbacks suppressed
[ 1406.003285][T17619] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1406.003325][T17619] CPU: 0 PID: 17619 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
05:14:01 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x48000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:01 executing program 5:
mlock(&(0x7f0000ffe000/0x2000)=nil, 0x2000)
munlock(&(0x7f0000ffd000/0x3000)=nil, 0x3000)

05:14:01 executing program 2:
msgget$private(0x0, 0x0)
r0 = msgget$private(0x0, 0x2)
msgsnd(r0, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x70, 0x800)
msgsnd(r0, &(0x7f0000000000)={0x3, "e84c8089cae8dce7105de36c58703f73911a2a87e6476bf457dfb5b39219108530"}, 0x29, 0x0)
msgsnd(r0, &(0x7f00000003c0)={0x1, "42688c78c8369d06615e48ee0b8e87eec9281951b372256428730de905407b45841ceda7af1cd63105667fc5392a9b803010d2981db5a4d912c194e95166f750257e5a3479bddb0f99a9956dffc56950c43bd518ef6626df8fe2748791af2e489d8bc443bb4148a6a8315da2a6add8c035b8121fbbdfca8b211af27fcb2682f9a5db0cabef3b7340fb9973f5cd9bb9f027e38f08006f4479d7a72e308f24bf7f1a73ba4206bec407f8742461abf5e3b5a02009db8a363e"}, 0xbf, 0x800)
msgsnd(r0, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], 0x6d, 0x0)
msgrcv(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0x1a, 0x1, 0x3000)
msgrcv(r0, &(0x7f00000001c0)={0x0, ""/64}, 0x48, 0x2, 0x1000)
r1 = msgget$private(0x0, 0x258)
msgrcv(r1, &(0x7f0000000540)=ANY=[@ANYRES16=r1], 0xfe, 0x2, 0x800)
msgrcv(r1, &(0x7f0000000280)=ANY=[@ANYRESDEC], 0x93, 0x1, 0x0)
msgrcv(r1, &(0x7f0000000040), 0x8, 0x1, 0x1000)
msgsnd(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="0300000000040000db4436958b193c67b6ce0c093bb0bbf3b3245230033f58052ebd438aa6e7161916fd47a14a3a74259ca57335615dd09efc3ddf520906bf778f89cf9aa9da8fbd888acf1d82017353ebaf5328755e3b05d90ba5ba0c00faff96c620f0866394baac68ef3968d6247c2d3fdea40dfbe86d923a6695db41644ec76b89d44ff6c8bc800cc4a12363220b1cc4c442e5104616053cd8e5171654d7502d1e0daedd3be6"], 0xb, 0x800)
msgctl$IPC_STAT(r0, 0x2, &(0x7f0000000680)=""/9)
msgctl$IPC_RMID(r0, 0x0)
msgctl$IPC_RMID(r0, 0x0)

05:14:01 executing program 1:
getgroups(0x7, &(0x7f00000005c0)=[0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0])

05:14:01 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x700}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:01 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
getpeername$unix(r0, 0xfffffffffffffffe, 0x0)

05:14:01 executing program 1:
r0 = socket$unix(0x1, 0x1, 0x0)
select(0x40, &(0x7f0000000100), &(0x7f0000000140)={0x7fffffffffffffff}, 0x0, 0x0)
shutdown(r0, 0x1)
select(0x40, &(0x7f0000000000), &(0x7f0000000040)={0x8}, 0x0, 0x0)

[ 1406.003347][T17619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1406.003356][T17619] Call Trace:
[ 1406.003362][T17619]  <TASK>
[ 1406.003369][T17619]  dump_stack_lvl+0xd6/0x122
05:14:01 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
dup2(r1, r0)
poll(&(0x7f0000000180)=[{r0}, {r0, 0x7}], 0x2, 0x0)

05:14:01 executing program 1:
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff})
sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

[ 1406.003448][T17619]  dump_stack+0x11/0x15
[ 1406.003472][T17619]  dump_header+0x98/0x430
[ 1406.003492][T17619]  oom_kill_process+0x100/0x540
[ 1406.003541][T17619]  out_of_memory+0x620/0x880
[ 1406.003604][T17619]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1406.003669][T17619]  mem_cgroup_oom+0x2e7/0x370
[ 1406.003732][T17619]  try_charge_memcg+0x717/0x9c0
[ 1406.003756][T17619]  ? debug_smp_processor_id+0x13/0x20
[ 1406.003775][T17619]  ? mod_objcg_state+0x474/0x580
[ 1406.003876][T17619]  __memcg_kmem_charge_page+0x2e4/0x480
[ 1406.003899][T17619]  alloc_thread_stack_node+0x101/0x360
[ 1406.003927][T17619]  dup_task_struct+0x96/0x2a0
[ 1406.004004][T17619]  copy_process+0x3ca/0x2100
[ 1406.004081][T17619]  kernel_clone+0x166/0x550
[ 1406.004105][T17619]  __x64_sys_clone+0xc3/0xf0
[ 1406.004133][T17619]  do_syscall_64+0x2b/0x70
[ 1406.004240][T17619]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1406.004268][T17619] RIP: 0033:0x7fa69c0199d1
[ 1406.004283][T17619] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1406.004300][T17619] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1406.004319][T17619] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1406.004331][T17619] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1406.004401][T17619] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1406.004472][T17619] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1406.004484][T17619] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1406.004499][T17619]  </TASK>
[ 1406.004506][T17619] memory: usage 307200kB, limit 307200kB, failcnt 48924
[ 1406.004518][T17619] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1406.004537][T17619] Memory cgroup stats for /syz0:
[ 1406.004727][T17619] anon 380928
[ 1406.004727][T17619] file 10457088
[ 1406.004727][T17619] kernel 303734784
[ 1406.004727][T17619] kernel_stack 65536
[ 1406.004727][T17619] pagetables 229376
[ 1406.004727][T17619] sec_pagetables 0
[ 1406.004727][T17619] percpu 9172448
[ 1406.004727][T17619] sock 0
[ 1406.004727][T17619] vmalloc 8192
[ 1406.004727][T17619] shmem 10457088
[ 1406.004727][T17619] file_mapped 159744
[ 1406.004727][T17619] file_dirty 0
[ 1406.004727][T17619] file_writeback 0
[ 1406.004727][T17619] swapcached 0
[ 1406.004727][T17619] inactive_anon 380928
[ 1406.004727][T17619] active_anon 10457088
[ 1406.004727][T17619] inactive_file 0
[ 1406.004727][T17619] active_file 0
[ 1406.004727][T17619] unevictable 0
[ 1406.004727][T17619] slab_reclaimable 38416
[ 1406.004727][T17619] slab_unreclaimable 294120216
[ 1406.004727][T17619] slab 294158632
[ 1406.004727][T17619] workingset_refault_anon 0
[ 1406.004727][T17619] workingset_refault_file 5
[ 1406.004727][T17619] workingset_activate_anon 0
[ 1406.004809][T17619] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17619,uid=0
[ 1406.004867][T17619] Memory cgroup out of memory: Killed process 17619 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1406.106160][T17647] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1406.144808][T17638] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1406.144833][T17638] CPU: 0 PID: 17638 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1406.144866][T17638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1406.144876][T17638] Call Trace:
[ 1406.144881][T17638]  <TASK>
[ 1406.144887][T17638]  dump_stack_lvl+0xd6/0x122
[ 1406.144923][T17638]  dump_stack+0x11/0x15
[ 1406.144946][T17638]  dump_header+0x98/0x430
[ 1406.144989][T17638]  oom_kill_process+0x100/0x540
[ 1406.145006][T17638]  out_of_memory+0x620/0x880
[ 1406.145022][T17638]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1406.145044][T17638]  mem_cgroup_oom+0x2e7/0x370
[ 1406.145137][T17638]  try_charge_memcg+0x717/0x9c0
[ 1406.145166][T17638]  ? __alloc_pages+0x199/0x340
[ 1406.145238][T17638]  charge_memcg+0x54/0x250
[ 1406.145260][T17638]  __mem_cgroup_charge+0x25/0xa0
[ 1406.145281][T17638]  wp_page_copy+0x209/0x1460
[ 1406.145417][T17638]  ? shrink_zones+0x525/0x5d0
[ 1406.145439][T17638]  do_wp_page+0x2dd/0x780
[ 1406.145464][T17638]  handle_mm_fault+0x5ef/0xa80
[ 1406.145568][T17638]  do_user_addr_fault+0x4a1/0x980
[ 1406.145591][T17638]  ? switch_fpu_return+0xc9/0x190
[ 1406.145659][T17638]  exc_page_fault+0x60/0x160
[ 1406.145691][T17638]  asm_exc_page_fault+0x22/0x30
[ 1406.145773][T17638] RIP: 0033:0x7fa69bfe6c81
[ 1406.145787][T17638] Code: 12 00 4c 29 e8 4b 8d 0c 2f 48 8b 6c 24 18 48 39 d3 48 89 4b 60 0f 95 c2 48 83 c8 01 0f b6 d2 48 c1 e2 02 4c 09 ea 48 83 ca 01 <49> 89 57 08 48 89 41 08 49 83 c7 10 eb b3 48 8d 3d fa 00 0a 00 e8
[ 1406.145802][T17638] RSP: 002b:00007ffd8ac4fd20 EFLAGS: 00010206
[ 1406.145817][T17638] RAX: 0000000000020801 RBX: 00007fa69c1125e0 RCX: 000055555570c800
[ 1406.145829][T17638] RDX: 0000000000000121 RSI: 0000000000000000 RDI: 0000000000000004
[ 1406.145845][T17638] RBP: 0000000000000110 R08: 0000000000000003 R09: 00007fa69c112640
[ 1406.145857][T17638] R10: 0000000000020022 R11: 0000000000000120 R12: 0000000000000010
[ 1406.145869][T17638] R13: 0000000000000120 R14: 0000000000000012 R15: 000055555570c6e0
[ 1406.145886][T17638]  </TASK>
[ 1406.145904][T17638] memory: usage 307200kB, limit 307200kB, failcnt 49018
[ 1406.145915][T17638] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1406.145926][T17638] Memory cgroup stats for /syz0:
[ 1406.146100][T17638] anon 376832
[ 1406.146100][T17638] file 10457088
[ 1406.146100][T17638] kernel 303738880
[ 1406.146100][T17638] kernel_stack 65536
[ 1406.146100][T17638] pagetables 229376
[ 1406.146100][T17638] sec_pagetables 0
[ 1406.146100][T17638] percpu 9172448
[ 1406.146100][T17638] sock 0
[ 1406.146100][T17638] vmalloc 8192
[ 1406.146100][T17638] shmem 10457088
[ 1406.146100][T17638] file_mapped 159744
[ 1406.146100][T17638] file_dirty 0
[ 1406.146100][T17638] file_writeback 0
[ 1406.146100][T17638] swapcached 0
[ 1406.146100][T17638] inactive_anon 372736
[ 1406.146100][T17638] active_anon 10457088
[ 1406.146100][T17638] inactive_file 0
[ 1406.146100][T17638] active_file 0
[ 1406.146100][T17638] unevictable 0
[ 1406.146100][T17638] slab_reclaimable 38416
[ 1406.146100][T17638] slab_unreclaimable 294122648
[ 1406.146100][T17638] slab 294161064
[ 1406.146100][T17638] workingset_refault_anon 0
[ 1406.146100][T17638] workingset_refault_file 5
[ 1406.146100][T17638] workingset_activate_anon 0
[ 1406.146170][T17638] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17638,uid=0
[ 1406.146225][T17638] Memory cgroup out of memory: Killed process 17638 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:14:02 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, 0x0, &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:14:02 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x900}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:02 executing program 1:
pipe(&(0x7f0000001180)={<r0=>0xffffffffffffffff})
select(0x40, &(0x7f0000000000)={0xfffffffffffffffe}, 0x0, 0x0, 0x0)
select(0x40, &(0x7f0000000080), &(0x7f0000000100)={0xa8}, 0x0, 0x0)
writev(r0, &(0x7f0000000480)=[{&(0x7f00000000c0)='u', 0x1}], 0x1)

05:14:02 executing program 5:
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff})
recvfrom$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:14:02 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x4a000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1406.165658][T17654] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1406.165726][T17654] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1406.165737][T17654] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1406.165810][T17654] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:14:02 executing program 2:
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TIOCGETD(r0, 0x4004741a, &(0x7f0000000300))

05:14:02 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff})
getsockopt(r0, 0x0, 0x0, &(0x7f00000001c0)=""/29, &(0x7f0000000200)=0x1d)

05:14:02 executing program 1:
readv(0xffffffffffffffff, &(0x7f0000001640)=[{&(0x7f0000001340)=""/13, 0xfffffffffffffe0c}, {&(0x7f0000001240)=""/186, 0xba}, {&(0x7f0000001380)=""/203}, {&(0x7f0000001480)=""/188}, {&(0x7f0000001540)=""/201}], 0x2)

05:14:02 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200, 0x0)
readv(r0, &(0x7f0000000240)=[{0x0}], 0x1)

05:14:02 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xa00}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:02 executing program 2:
syz_emit_ethernet(0x46, &(0x7f00000000c0)={@broadcast, @remote, @val, {@ipv6}}, 0x0)

05:14:02 executing program 5:
pipe(&(0x7f0000001180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r0)
close(r1)

[ 1406.981198][T17668] syz-executor.0 invoked oom-killer: gfp_mask=0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), order=0, oom_score_adj=1000
[ 1406.981231][T17668] CPU: 0 PID: 17668 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1406.981253][T17668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1406.981264][T17668] Call Trace:
[ 1406.981269][T17668]  <TASK>
[ 1406.981275][T17668]  dump_stack_lvl+0xd6/0x122
[ 1406.981307][T17668]  dump_stack+0x11/0x15
[ 1406.981335][T17668]  dump_header+0x98/0x430
[ 1406.981354][T17668]  oom_kill_process+0x100/0x540
[ 1406.981373][T17668]  out_of_memory+0x620/0x880
[ 1406.981392][T17668]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1406.981417][T17668]  mem_cgroup_oom+0x2e7/0x370
[ 1406.981440][T17668]  try_charge_memcg+0x717/0x9c0
[ 1406.981483][T17668]  ? avc_has_perm_noaudit+0x1c0/0x270
[ 1406.981510][T17668]  obj_cgroup_charge+0x171/0x2b0
[ 1406.981534][T17668]  __kmem_cache_alloc_node+0xa9/0x2f0
[ 1406.981637][T17668]  ? copy_semundo+0x8a/0x170
[ 1406.981666][T17668]  kmalloc_trace+0x26/0x90
[ 1406.981700][T17668]  copy_semundo+0x8a/0x170
[ 1406.981790][T17668]  copy_process+0xd01/0x2100
[ 1406.981818][T17668]  kernel_clone+0x166/0x550
[ 1406.981844][T17668]  __x64_sys_clone+0xc3/0xf0
[ 1406.981893][T17668]  do_syscall_64+0x2b/0x70
[ 1406.981925][T17668]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1406.981953][T17668] RIP: 0033:0x7fa69c0199d1
[ 1406.981967][T17668] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1406.981984][T17668] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1406.982003][T17668] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1406.982050][T17668] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1406.982063][T17668] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1406.982076][T17668] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1406.982088][T17668] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1406.982103][T17668]  </TASK>
[ 1406.982757][T17668] memory: usage 307200kB, limit 307200kB, failcnt 49120
[ 1406.982769][T17668] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1406.982810][T17668] Memory cgroup stats for /syz0:
[ 1406.983004][T17668] anon 380928
[ 1406.983004][T17668] file 10457088
[ 1406.983004][T17668] kernel 303734784
[ 1406.983004][T17668] kernel_stack 81920
[ 1406.983004][T17668] pagetables 229376
[ 1406.983004][T17668] sec_pagetables 0
[ 1406.983004][T17668] percpu 9172448
[ 1406.983004][T17668] sock 0
[ 1406.983004][T17668] vmalloc 8192
[ 1406.983004][T17668] shmem 10457088
[ 1406.983004][T17668] file_mapped 159744
[ 1406.983004][T17668] file_dirty 0
[ 1406.983004][T17668] file_writeback 0
[ 1406.983004][T17668] swapcached 0
[ 1406.983004][T17668] inactive_anon 380928
[ 1406.983004][T17668] active_anon 10457088
[ 1406.983004][T17668] inactive_file 0
[ 1406.983004][T17668] active_file 0
[ 1406.983004][T17668] unevictable 0
[ 1406.983004][T17668] slab_reclaimable 38416
[ 1406.983004][T17668] slab_unreclaimable 294113616
[ 1406.983004][T17668] slab 294152032
[ 1406.983004][T17668] workingset_refault_anon 0
[ 1406.983004][T17668] workingset_refault_file 5
[ 1406.983004][T17668] workingset_activate_anon 0
[ 1406.983105][T17668] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17668,uid=0
[ 1406.983230][T17668] Memory cgroup out of memory: Killed process 17668 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1407.030293][T17683] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1407.030309][T17683] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1407.080828][T17690] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=1, oom_score_adj=1000
[ 1407.080856][T17690] CPU: 0 PID: 17690 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1407.080918][T17690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1407.080928][T17690] Call Trace:
[ 1407.080935][T17690]  <TASK>
[ 1407.080941][T17690]  dump_stack_lvl+0xd6/0x122
[ 1407.080979][T17690]  dump_stack+0x11/0x15
[ 1407.081006][T17690]  dump_header+0x98/0x430
[ 1407.081024][T17690]  oom_kill_process+0x100/0x540
[ 1407.081047][T17690]  out_of_memory+0x620/0x880
[ 1407.081064][T17690]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1407.081088][T17690]  mem_cgroup_oom+0x2e7/0x370
[ 1407.081227][T17690]  try_charge_memcg+0x717/0x9c0
[ 1407.081252][T17690]  obj_cgroup_charge+0x171/0x2b0
[ 1407.081274][T17690]  kmem_cache_alloc_node+0x9b/0x380
[ 1407.081303][T17690]  ? dup_task_struct+0x5b/0x2a0
[ 1407.081410][T17690]  ? shrink_zones+0x525/0x5d0
[ 1407.081475][T17690]  dup_task_struct+0x5b/0x2a0
[ 1407.081583][T17690]  copy_process+0x3ca/0x2100
[ 1407.081610][T17690]  kernel_clone+0x166/0x550
[ 1407.081636][T17690]  __x64_sys_clone+0xc3/0xf0
[ 1407.081671][T17690]  do_syscall_64+0x2b/0x70
[ 1407.081696][T17690]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1407.081744][T17690] RIP: 0033:0x7fa69c0199d1
[ 1407.081808][T17690] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1407.081825][T17690] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1407.081844][T17690] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1407.081856][T17690] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1407.081949][T17690] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1407.081961][T17690] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1407.081973][T17690] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1407.081988][T17690]  </TASK>
[ 1407.082680][T17690] memory: usage 307196kB, limit 307200kB, failcnt 49198
[ 1407.082692][T17690] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1407.082703][T17690] Memory cgroup stats for /syz0:
[ 1407.082893][T17690] anon 380928
[ 1407.082893][T17690] file 10457088
[ 1407.082893][T17690] kernel 303730688
[ 1407.082893][T17690] kernel_stack 65536
[ 1407.082893][T17690] pagetables 229376
[ 1407.082893][T17690] sec_pagetables 0
[ 1407.082893][T17690] percpu 9172448
[ 1407.082893][T17690] sock 0
[ 1407.082893][T17690] vmalloc 8192
[ 1407.082893][T17690] shmem 10457088
[ 1407.082893][T17690] file_mapped 159744
[ 1407.082893][T17690] file_dirty 0
[ 1407.082893][T17690] file_writeback 0
[ 1407.082893][T17690] swapcached 0
[ 1407.082893][T17690] inactive_anon 335872
[ 1407.082893][T17690] active_anon 10457088
[ 1407.082893][T17690] inactive_file 0
[ 1407.082893][T17690] active_file 0
[ 1407.082893][T17690] unevictable 0
[ 1407.082893][T17690] slab_reclaimable 43920
[ 1407.082893][T17690] slab_unreclaimable 294116312
[ 1407.082893][T17690] slab 294160232
[ 1407.082893][T17690] workingset_refault_anon 0
[ 1407.082893][T17690] workingset_refault_file 5
[ 1407.082893][T17690] workingset_activate_anon 0
05:14:03 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, 0x0, &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:14:03 executing program 5:
pipe(&(0x7f0000001180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
close(r0)
mknodat(r0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)

05:14:03 executing program 1:
shmctl$IPC_SET(0xffffffffffffffff, 0x1, &(0x7f00000001c0))

05:14:03 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0xffff, 0x8, 0x0, 0x0)

05:14:03 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xa56}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:03 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x4c000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1407.083068][T17690] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17690,uid=0
[ 1407.083165][T17690] Memory cgroup out of memory: Killed process 17690 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:14:03 executing program 5:
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$FIONREAD(r0, 0x4004667f, &(0x7f0000000040))

[ 1407.923610][T17696] ==================================================================
[ 1407.931720][T17696] BUG: KCSAN: data-race in drain_all_stock / drain_stock
[ 1407.938937][T17696] 
[ 1407.941260][T17696] write to 0xffff888237d283a8 of 8 bytes by task 17695 on cpu 1:
[ 1407.948984][T17696]  drain_stock+0x88/0xf0
[ 1407.953258][T17696]  refill_stock+0x85/0x130
[ 1407.957692][T17696]  try_charge_memcg+0x742/0x9c0
[ 1407.962552][T17696]  obj_cgroup_charge+0x171/0x2b0
[ 1407.967500][T17696]  memcg_slab_pre_alloc_hook+0xf7/0x170
05:14:03 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002a40)={<r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0xffff, 0x10, &(0x7f0000000000)=0x9, 0x4)

05:14:03 executing program 5:
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
fchown(r0, 0xffffffffffffffff, 0x0)

05:14:03 executing program 5:
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
fcntl$lock(r0, 0x9, &(0x7f0000000080))

05:14:03 executing program 1:
r0 = shmget(0x2, 0x2000, 0x0, &(0x7f0000ffe000/0x2000)=nil)
shmctl$IPC_SET(r0, 0x1, &(0x7f0000000300))

05:14:03 executing program 5:
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
poll(&(0x7f0000000040)=[{r0, 0x2}], 0x1, 0x7f)
syz_open_pts(0xffffffffffffffff, 0x0)

[ 1407.973187][T17696]  kmem_cache_alloc_lru+0x75/0x2a0
[ 1407.978306][T17696]  __d_alloc+0x3d/0x380
[ 1407.982477][T17696]  d_alloc+0x2a/0x100
[ 1407.986476][T17696]  __lookup_hash+0x8f/0x180
[ 1407.990985][T17696]  filename_create+0x147/0x2b0
[ 1407.995762][T17696]  do_symlinkat+0x83/0x330
[ 1408.000191][T17696]  __x64_sys_symlinkat+0x5e/0x70
[ 1408.005136][T17696]  do_syscall_64+0x2b/0x70
[ 1408.009562][T17696]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1408.015462][T17696] 
[ 1408.017789][T17696] read to 0xffff888237d283a8 of 8 bytes by task 17696 on cpu 0:
[ 1408.025506][T17696]  drain_all_stock+0xb3/0x2b0
[ 1408.030191][T17696]  try_charge_memcg+0x5d2/0x9c0
[ 1408.035050][T17696]  charge_memcg+0x54/0x250
[ 1408.039475][T17696]  __mem_cgroup_charge+0x25/0xa0
[ 1408.044418][T17696]  wp_page_copy+0x209/0x1460
[ 1408.049018][T17696]  do_wp_page+0x2dd/0x780
[ 1408.053358][T17696]  handle_mm_fault+0x5ef/0xa80
[ 1408.058134][T17696]  do_user_addr_fault+0x4a1/0x980
[ 1408.063164][T17696]  exc_page_fault+0x60/0x160
[ 1408.067758][T17696]  asm_exc_page_fault+0x22/0x30
[ 1408.072621][T17696] 
[ 1408.074941][T17696] value changed: 0xffff88813b845000 -> 0xffff88813b6c2000
[ 1408.082067][T17696] 
[ 1408.084393][T17696] Reported by Kernel Concurrency Sanitizer on:
[ 1408.090536][T17696] CPU: 0 PID: 17696 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1408.102945][T17696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1408.113003][T17696] ==================================================================
05:14:04 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, 0x0, &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:14:04 executing program 1:
open$dir(&(0x7f0000000000)='./file0\x00', 0x727580bcfff876d1, 0x0)
open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)

05:14:04 executing program 2:
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
poll(&(0x7f0000000040)=[{r0, 0x4}], 0x1, 0x0)
syz_open_pts(0xffffffffffffffff, 0x0)

05:14:04 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x5e000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:04 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xb00}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:04 executing program 1:
mlock(&(0x7f000000a000/0x1000)=nil, 0x1000)
munlock(&(0x7f000000a000/0x1000)=nil, 0x1000)

05:14:04 executing program 2:
recvfrom(0xffffffffffffffff, &(0x7f0000000200)=""/215, 0xe0, 0x0, &(0x7f0000000040)=@in={0x2, 0x1}, 0xfffffffffffffe83)

05:14:04 executing program 5:
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
read(r0, &(0x7f0000000000)=""/74, 0x4a)

05:14:04 executing program 1:
recvmsg(0xffffffffffffffff, &(0x7f00000009c0)={0x0, 0x0, 0x0}, 0x0)
munlock(&(0x7f000000a000/0x1000)=nil, 0x2000a000)

05:14:04 executing program 2:
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
fcntl$dupfd(r0, 0xa, r0)

05:14:04 executing program 1:
msgget$private(0x0, 0x0)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000580)={{0x3, 0x0, 0x0, 0x0, 0x0, 0x145, 0x20}, 0x1000, 0x0, 0x0, 0x0, 0x5, 0x8000000000000001, 0x4, 0x7})

05:14:04 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
connect$inet(r0, &(0x7f0000000180)={0x10, 0x2}, 0x10)
r1 = socket$inet6_sctp(0x1c, 0x5, 0x84)
r2 = dup2(r0, r1)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
connect$inet(r3, &(0x7f0000000180)={0x10, 0x2}, 0x10)
r4 = socket$inet6_sctp(0x1c, 0x5, 0x84)
r5 = dup2(r3, r4)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x105, &(0x7f0000000580)={0x1, [<r6=>0x0]}, &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x2, &(0x7f0000000040)={<r7=>r6}, &(0x7f0000000080)=0x14)
r8 = socket$inet6_sctp(0x1c, 0x5, 0x84)
connect$inet6(r8, &(0x7f0000000400)={0x1c, 0x1c, 0x3}, 0x1c)
r9 = dup2(r8, r8)
sendmsg$inet_sctp(r9, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f00000005c0)='O', 0x1}], 0x1, &(0x7f00000004c0)=[@sndinfo={0x1c, 0x84, 0x4, {0x0, 0x2400, 0x0, 0x0, r7}}], 0x1c}, 0x0)

[ 1408.273293][T17696] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1408.273320][T17696] CPU: 0 PID: 17696 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1408.273365][T17696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1408.273376][T17696] Call Trace:
[ 1408.273381][T17696]  <TASK>
[ 1408.273387][T17696]  dump_stack_lvl+0xd6/0x122
[ 1408.273419][T17696]  dump_stack+0x11/0x15
[ 1408.273504][T17696]  dump_header+0x98/0x430
[ 1408.273524][T17696]  oom_kill_process+0x100/0x540
[ 1408.273545][T17696]  out_of_memory+0x620/0x880
[ 1408.273614][T17696]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1408.273640][T17696]  mem_cgroup_oom+0x2e7/0x370
[ 1408.273663][T17696]  try_charge_memcg+0x717/0x9c0
[ 1408.273727][T17696]  ? __alloc_pages+0x199/0x340
[ 1408.273748][T17696]  charge_memcg+0x54/0x250
[ 1408.273772][T17696]  __mem_cgroup_charge+0x25/0xa0
[ 1408.273856][T17696]  wp_page_copy+0x209/0x1460
[ 1408.273884][T17696]  ? shrink_zones+0x525/0x5d0
[ 1408.273905][T17696]  ? preempt_count_add+0x5e/0xa0
[ 1408.273953][T17696]  do_wp_page+0x2dd/0x780
[ 1408.273977][T17696]  handle_mm_fault+0x5ef/0xa80
[ 1408.274050][T17696]  do_user_addr_fault+0x4a1/0x980
[ 1408.274076][T17696]  exc_page_fault+0x60/0x160
[ 1408.274096][T17696]  asm_exc_page_fault+0x22/0x30
[ 1408.274121][T17696] RIP: 0033:0x7fa69bfc5970
[ 1408.274215][T17696] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1408.274230][T17696] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1408.274247][T17696] RAX: 0000000009b44434 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1408.274260][T17696] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000008e28481
[ 1408.274273][T17696] RBP: 0000000009b44434 R08: 0000000000000434 R09: 0000000009b44438
[ 1408.274284][T17696] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1408.274296][T17696] R13: 0000000000000001 R14: 000000000000000c R15: ffffffff8192b888
[ 1408.274308][T17696]  ? security_is_socket_class+0x8/0x250
[ 1408.274388][T17696]  </TASK>
[ 1408.274407][T17696] memory: usage 307200kB, limit 307200kB, failcnt 49292
[ 1408.274419][T17696] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1408.274430][T17696] Memory cgroup stats for /syz0:
[ 1408.274693][T17696] anon 421888
[ 1408.274693][T17696] file 10457088
[ 1408.274693][T17696] kernel 303693824
[ 1408.274693][T17696] kernel_stack 81920
[ 1408.274693][T17696] pagetables 229376
[ 1408.274693][T17696] sec_pagetables 0
[ 1408.274693][T17696] percpu 9172448
[ 1408.274693][T17696] sock 0
[ 1408.274693][T17696] vmalloc 8192
[ 1408.274693][T17696] shmem 10457088
[ 1408.274693][T17696] file_mapped 159744
[ 1408.274693][T17696] file_dirty 0
[ 1408.274693][T17696] file_writeback 0
[ 1408.274693][T17696] swapcached 0
[ 1408.274693][T17696] inactive_anon 421888
[ 1408.274693][T17696] active_anon 10457088
[ 1408.274693][T17696] inactive_file 0
[ 1408.274693][T17696] active_file 0
[ 1408.274693][T17696] unevictable 0
[ 1408.274693][T17696] slab_reclaimable 39392
[ 1408.274693][T17696] slab_unreclaimable 294087656
[ 1408.274693][T17696] slab 294127048
[ 1408.274693][T17696] workingset_refault_anon 0
[ 1408.274693][T17696] workingset_refault_file 5
[ 1408.274693][T17696] workingset_activate_anon 0
[ 1408.274761][T17696] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17696,uid=0
[ 1408.274839][T17696] Memory cgroup out of memory: Killed process 17696 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1408.425309][T17748] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1408.425351][T17748] CPU: 0 PID: 17748 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1408.425375][T17748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1408.425386][T17748] Call Trace:
[ 1408.425392][T17748]  <TASK>
[ 1408.425398][T17748]  dump_stack_lvl+0xd6/0x122
[ 1408.425506][T17748]  dump_stack+0x11/0x15
[ 1408.425529][T17748]  dump_header+0x98/0x430
[ 1408.425548][T17748]  oom_kill_process+0x100/0x540
[ 1408.425626][T17748]  out_of_memory+0x620/0x880
[ 1408.425643][T17748]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1408.425666][T17748]  mem_cgroup_oom+0x2e7/0x370
[ 1408.425690][T17748]  try_charge_memcg+0x717/0x9c0
[ 1408.425788][T17748]  ? __alloc_pages+0x199/0x340
[ 1408.425831][T17748]  charge_memcg+0x54/0x250
[ 1408.425856][T17748]  __mem_cgroup_charge+0x25/0xa0
[ 1408.425881][T17748]  wp_page_copy+0x209/0x1460
[ 1408.425971][T17748]  ? shrink_zones+0x525/0x5d0
[ 1408.426039][T17748]  ? preempt_count_add+0x5e/0xa0
[ 1408.426067][T17748]  do_wp_page+0x2dd/0x780
[ 1408.426105][T17748]  handle_mm_fault+0x5ef/0xa80
[ 1408.426132][T17748]  do_user_addr_fault+0x4a1/0x980
[ 1408.426169][T17748]  exc_page_fault+0x60/0x160
[ 1408.426261][T17748]  asm_exc_page_fault+0x22/0x30
[ 1408.426289][T17748] RIP: 0033:0x7fa69bfc5970
[ 1408.426302][T17748] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1408.426318][T17748] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1408.426332][T17748] RAX: 000000004310b93c RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1408.426345][T17748] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000008e03449
[ 1408.426412][T17748] RBP: 000000004310b93c R08: 000000000000193c R09: 000000004310b940
[ 1408.426425][T17748] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1408.426437][T17748] R13: 0000000000000001 R14: 0000000000000005 R15: ffffffff818f93bc
[ 1408.426448][T17748]  ? selinux_socket_create+0x2c/0x180
[ 1408.426470][T17748]  </TASK>
[ 1408.426489][T17748] memory: usage 307200kB, limit 307200kB, failcnt 49369
[ 1408.426501][T17748] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1408.426532][T17748] Memory cgroup stats for /syz0:
[ 1408.426642][T17748] anon 409600
[ 1408.426642][T17748] file 10457088
[ 1408.426642][T17748] kernel 303706112
[ 1408.426642][T17748] kernel_stack 81920
[ 1408.426642][T17748] pagetables 229376
[ 1408.426642][T17748] sec_pagetables 0
[ 1408.426642][T17748] percpu 9172448
[ 1408.426642][T17748] sock 0
[ 1408.426642][T17748] vmalloc 8192
[ 1408.426642][T17748] shmem 10457088
[ 1408.426642][T17748] file_mapped 159744
[ 1408.426642][T17748] file_dirty 0
[ 1408.426642][T17748] file_writeback 0
[ 1408.426642][T17748] swapcached 0
[ 1408.426642][T17748] inactive_anon 393216
[ 1408.426642][T17748] active_anon 10457088
[ 1408.426642][T17748] inactive_file 0
[ 1408.426642][T17748] active_file 0
[ 1408.426642][T17748] unevictable 0
[ 1408.426642][T17748] slab_reclaimable 39392
[ 1408.426642][T17748] slab_unreclaimable 294094256
[ 1408.426642][T17748] slab 294133648
[ 1408.426642][T17748] workingset_refault_anon 0
[ 1408.426642][T17748] workingset_refault_file 5
[ 1408.426642][T17748] workingset_activate_anon 0
05:14:05 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:14:05 executing program 1:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000740), 0x0, 0x0)
fsync(r0)

05:14:05 executing program 2:
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
readv(r0, &(0x7f0000000600)=[{0x0}], 0x1)
syz_open_pts(0xffffffffffffffff, 0x0)

05:14:05 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xc00}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:05 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x60000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:05 executing program 5:
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
fcntl$lock(r0, 0x7, 0x0)

[ 1408.426826][T17748] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17748,uid=0
[ 1408.426883][T17748] Memory cgroup out of memory: Killed process 17748 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:14:05 executing program 5:
semget(0x0, 0x2, 0x346)

05:14:05 executing program 1:
syz_extract_tcp_res$synack(&(0x7f00000000c0)={0x41424344, <r0=>0x41424344}, 0x1, 0x0)
r1 = msgget$private(0x0, 0x2000000143)
msgrcv(r1, &(0x7f0000001780)=ANY=[@ANYRESOCT=r0], 0xa7, 0x3, 0x1000)
syz_extract_tcp_res$synack(&(0x7f00000000c0)={0x41424344, <r2=>0x41424344}, 0x1, 0x0)
r3 = msgget$private(0x0, 0x2000000143)
msgrcv(r3, &(0x7f0000001780)=ANY=[@ANYRESOCT=r2], 0xa7, 0x3, 0x1000)
r4 = msgget$private(0x0, 0xfffffffffffffffd)
msgsnd(r4, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0xf9, 0x0)
msgrcv(r4, &(0x7f0000000980)={0x0, ""/161}, 0xa9, 0xada4470aed511778, 0x1800)

05:14:05 executing program 2:
io_setup(0x6, &(0x7f0000000000)=<r0=>0x0)
io_submit(r0, 0x0, 0x0)

[ 1409.217357][T17760] __nla_validate_parse: 7 callbacks suppressed
[ 1409.217371][T17760] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:14:05 executing program 5:
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RSTATFS(r0, &(0x7f0000000040)={0x43}, 0xffffffffffffff32)

[ 1409.277613][T17772] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:14:05 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)=@RTM_NEWNSID={0x1c, 0x58, 0x531, 0x0, 0x0, {}, [@NETNSA_NSID={0x8, 0x1, 0x2}]}, 0x1c}}, 0x0)

05:14:05 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xd00}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1409.318829][T17763] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1409.318858][T17763] CPU: 0 PID: 17763 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1409.318984][T17763] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1409.318994][T17763] Call Trace:
[ 1409.319001][T17763]  <TASK>
[ 1409.319007][T17763]  dump_stack_lvl+0xd6/0x122
[ 1409.319039][T17763]  dump_stack+0x11/0x15
[ 1409.319064][T17763]  dump_header+0x98/0x430
[ 1409.319086][T17763]  oom_kill_process+0x100/0x540
[ 1409.319129][T17763]  out_of_memory+0x620/0x880
[ 1409.319146][T17763]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1409.319168][T17763]  mem_cgroup_oom+0x2e7/0x370
[ 1409.319191][T17763]  try_charge_memcg+0x717/0x9c0
[ 1409.319289][T17763]  ? __alloc_pages+0x199/0x340
[ 1409.319458][T17763]  charge_memcg+0x54/0x250
[ 1409.319480][T17763]  __mem_cgroup_charge+0x25/0xa0
[ 1409.319503][T17763]  wp_page_copy+0x209/0x1460
[ 1409.319530][T17763]  ? shrink_zones+0x525/0x5d0
[ 1409.319630][T17763]  ? preempt_count_add+0x5e/0xa0
[ 1409.319658][T17763]  do_wp_page+0x2dd/0x780
[ 1409.319682][T17763]  handle_mm_fault+0x5ef/0xa80
[ 1409.319710][T17763]  do_user_addr_fault+0x4a1/0x980
[ 1409.319813][T17763]  exc_page_fault+0x60/0x160
[ 1409.319833][T17763]  asm_exc_page_fault+0x22/0x30
[ 1409.319860][T17763] RIP: 0033:0x7fa69bfc5970
[ 1409.319874][T17763] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1409.319892][T17763] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1409.319907][T17763] RAX: 0000000009b44434 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1409.319985][T17763] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000008e28481
[ 1409.319997][T17763] RBP: 0000000009b44434 R08: 0000000000000434 R09: 0000000009b44438
[ 1409.320010][T17763] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1409.320022][T17763] R13: 0000000000000001 R14: 000000000000000c R15: ffffffff8192b888
[ 1409.320075][T17763]  ? security_is_socket_class+0x8/0x250
[ 1409.320103][T17763]  </TASK>
[ 1409.320127][T17763] memory: usage 307200kB, limit 307200kB, failcnt 49444
[ 1409.320139][T17763] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1409.320221][T17763] Memory cgroup stats for /syz0:
[ 1409.320437][T17763] anon 421888
[ 1409.320437][T17763] file 10457088
[ 1409.320437][T17763] kernel 303693824
[ 1409.320437][T17763] kernel_stack 81920
[ 1409.320437][T17763] pagetables 229376
[ 1409.320437][T17763] sec_pagetables 0
[ 1409.320437][T17763] percpu 9172448
[ 1409.320437][T17763] sock 0
[ 1409.320437][T17763] vmalloc 8192
[ 1409.320437][T17763] shmem 10457088
[ 1409.320437][T17763] file_mapped 159744
[ 1409.320437][T17763] file_dirty 0
[ 1409.320437][T17763] file_writeback 0
[ 1409.320437][T17763] swapcached 0
[ 1409.320437][T17763] inactive_anon 421888
[ 1409.320437][T17763] active_anon 10457088
[ 1409.320437][T17763] inactive_file 0
[ 1409.320437][T17763] active_file 0
[ 1409.320437][T17763] unevictable 0
[ 1409.320437][T17763] slab_reclaimable 39392
[ 1409.320437][T17763] slab_unreclaimable 294087656
[ 1409.320437][T17763] slab 294127048
[ 1409.320437][T17763] workingset_refault_anon 0
[ 1409.320437][T17763] workingset_refault_file 5
[ 1409.320437][T17763] workingset_activate_anon 0
[ 1409.320558][T17763] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17763,uid=0
[ 1409.320696][T17763] Memory cgroup out of memory: Killed process 17763 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1409.373453][T17786] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1409.446640][T17788] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1409.446667][T17788] CPU: 1 PID: 17788 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1409.446688][T17788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1409.446698][T17788] Call Trace:
[ 1409.446703][T17788]  <TASK>
[ 1409.446779][T17788]  dump_stack_lvl+0xd6/0x122
[ 1409.446896][T17788]  dump_stack+0x11/0x15
[ 1409.446953][T17788]  dump_header+0x98/0x430
[ 1409.446968][T17788]  oom_kill_process+0x100/0x540
[ 1409.446982][T17788]  out_of_memory+0x620/0x880
[ 1409.446997][T17788]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1409.447078][T17788]  mem_cgroup_oom+0x2e7/0x370
[ 1409.447100][T17788]  try_charge_memcg+0x717/0x9c0
[ 1409.447121][T17788]  ? __alloc_pages+0x199/0x340
[ 1409.447138][T17788]  charge_memcg+0x54/0x250
[ 1409.447191][T17788]  __mem_cgroup_charge+0x25/0xa0
[ 1409.447208][T17788]  wp_page_copy+0x209/0x1460
[ 1409.447229][T17788]  ? shrink_zones+0x525/0x5d0
[ 1409.447244][T17788]  ? preempt_count_add+0x5e/0xa0
[ 1409.447266][T17788]  do_wp_page+0x2dd/0x780
[ 1409.447401][T17788]  handle_mm_fault+0x5ef/0xa80
[ 1409.447422][T17788]  do_user_addr_fault+0x4a1/0x980
[ 1409.447442][T17788]  exc_page_fault+0x60/0x160
[ 1409.447456][T17788]  asm_exc_page_fault+0x22/0x30
[ 1409.447488][T17788] RIP: 0033:0x7fa69bfc5970
[ 1409.447501][T17788] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1409.447518][T17788] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1409.447532][T17788] RAX: 000000004310b93c RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1409.447543][T17788] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000008e03449
[ 1409.447586][T17788] RBP: 000000004310b93c R08: 000000000000193c R09: 000000004310b940
[ 1409.447595][T17788] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1409.447605][T17788] R13: 0000000000000001 R14: 0000000000000005 R15: ffffffff818f93bc
[ 1409.447637][T17788]  ? selinux_socket_create+0x2c/0x180
[ 1409.447658][T17788]  </TASK>
[ 1409.447664][T17788] memory: usage 307200kB, limit 307200kB, failcnt 49539
[ 1409.447674][T17788] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1409.447685][T17788] Memory cgroup stats for /syz0:
[ 1409.447853][T17788] anon 409600
[ 1409.447853][T17788] file 10457088
[ 1409.447853][T17788] kernel 303706112
[ 1409.447853][T17788] kernel_stack 81920
[ 1409.447853][T17788] pagetables 229376
[ 1409.447853][T17788] sec_pagetables 0
[ 1409.447853][T17788] percpu 9172448
[ 1409.447853][T17788] sock 0
[ 1409.447853][T17788] vmalloc 8192
[ 1409.447853][T17788] shmem 10457088
[ 1409.447853][T17788] file_mapped 159744
[ 1409.447853][T17788] file_dirty 0
[ 1409.447853][T17788] file_writeback 0
[ 1409.447853][T17788] swapcached 0
[ 1409.447853][T17788] inactive_anon 372736
[ 1409.447853][T17788] active_anon 10457088
[ 1409.447853][T17788] inactive_file 0
[ 1409.447853][T17788] active_file 0
[ 1409.447853][T17788] unevictable 0
[ 1409.447853][T17788] slab_reclaimable 39392
[ 1409.447853][T17788] slab_unreclaimable 294094256
[ 1409.447853][T17788] slab 294133648
[ 1409.447853][T17788] workingset_refault_anon 0
[ 1409.447853][T17788] workingset_refault_file 5
[ 1409.447853][T17788] workingset_activate_anon 0
05:14:05 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:14:05 executing program 2:
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x84800)
write$P9_RWSTAT(r0, &(0x7f0000000080)={0x7}, 0xfece)
write$P9_RXATTRWALK(r0, &(0x7f0000000040)={0xf}, 0xf)

05:14:05 executing program 5:
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x105200, 0x0)

05:14:05 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x64ea56e7}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:05 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xe00}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:05 executing program 1:
r0 = socket$igmp6(0xa, 0x3, 0x2)
sendmsg$inet6(r0, &(0x7f00000004c0)={&(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000340)=[@tclass={{0x14}}], 0x18}, 0x0)

[ 1409.447915][T17788] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17788,uid=0
[ 1409.448013][T17788] Memory cgroup out of memory: Killed process 17788 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:14:06 executing program 1:
syz_open_dev$usbfs(&(0x7f00000000c0), 0xb96, 0x0)

05:14:06 executing program 2:
r0 = semget(0x2, 0x0, 0x300)
semctl$IPC_RMID(r0, 0x0, 0x0)

05:14:06 executing program 5:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000002c0)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x20)

[ 1410.202148][T17799] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:14:06 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_mreqn(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)=0xfffffffffffffd5f)

05:14:06 executing program 5:
io_setup(0xe91, &(0x7f0000000340)=<r0=>0x0)
io_getevents(r0, 0x0, 0x0, 0x0, 0x0)

05:14:06 executing program 1:
inotify_add_watch(0xffffffffffffffff, 0x0, 0x90000cdc)

[ 1410.271171][T17796] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1410.271201][T17796] CPU: 1 PID: 17796 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1410.271223][T17796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1410.271233][T17796] Call Trace:
[ 1410.271238][T17796]  <TASK>
[ 1410.271243][T17796]  dump_stack_lvl+0xd6/0x122
[ 1410.271310][T17796]  dump_stack+0x11/0x15
[ 1410.271346][T17796]  dump_header+0x98/0x430
[ 1410.271365][T17796]  oom_kill_process+0x100/0x540
[ 1410.271382][T17796]  out_of_memory+0x620/0x880
[ 1410.271467][T17796]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1410.271490][T17796]  mem_cgroup_oom+0x2e7/0x370
[ 1410.271647][T17796]  try_charge_memcg+0x717/0x9c0
[ 1410.271672][T17796]  ? __alloc_pages+0x199/0x340
[ 1410.271693][T17796]  charge_memcg+0x54/0x250
[ 1410.271734][T17796]  __mem_cgroup_charge+0x25/0xa0
[ 1410.271756][T17796]  wp_page_copy+0x209/0x1460
[ 1410.271825][T17796]  ? preempt_count_add+0x5e/0xa0
[ 1410.271874][T17796]  do_wp_page+0x2dd/0x780
[ 1410.271897][T17796]  handle_mm_fault+0x5ef/0xa80
[ 1410.271924][T17796]  do_user_addr_fault+0x4a1/0x980
[ 1410.271971][T17796]  exc_page_fault+0x60/0x160
[ 1410.271989][T17796]  asm_exc_page_fault+0x22/0x30
[ 1410.272015][T17796] RIP: 0033:0x7fa69bfc5970
[ 1410.272029][T17796] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1410.272123][T17796] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1410.272138][T17796] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1410.272151][T17796] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1410.272164][T17796] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1410.272176][T17796] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1410.272238][T17796] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1410.272250][T17796]  ? __sock_create+0x24/0x4e0
[ 1410.272275][T17796]  </TASK>
[ 1410.273071][T17796] memory: usage 307200kB, limit 307200kB, failcnt 49628
[ 1410.273083][T17796] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1410.273168][T17796] Memory cgroup stats for /syz0:
[ 1410.273380][T17796] anon 401408
[ 1410.273380][T17796] file 10457088
[ 1410.273380][T17796] kernel 303714304
[ 1410.273380][T17796] kernel_stack 81920
[ 1410.273380][T17796] pagetables 229376
[ 1410.273380][T17796] sec_pagetables 0
[ 1410.273380][T17796] percpu 9172448
[ 1410.273380][T17796] sock 0
[ 1410.273380][T17796] vmalloc 8192
[ 1410.273380][T17796] shmem 10457088
[ 1410.273380][T17796] file_mapped 159744
[ 1410.273380][T17796] file_dirty 0
[ 1410.273380][T17796] file_writeback 0
[ 1410.273380][T17796] swapcached 0
[ 1410.273380][T17796] inactive_anon 401408
[ 1410.273380][T17796] active_anon 10457088
[ 1410.273380][T17796] inactive_file 0
[ 1410.273380][T17796] active_file 0
[ 1410.273380][T17796] unevictable 0
[ 1410.273380][T17796] slab_reclaimable 39392
[ 1410.273380][T17796] slab_unreclaimable 294100856
[ 1410.273380][T17796] slab 294140248
[ 1410.273380][T17796] workingset_refault_anon 0
[ 1410.273380][T17796] workingset_refault_file 5
[ 1410.273380][T17796] workingset_activate_anon 0
[ 1410.273533][T17796] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17796,uid=0
05:14:06 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:14:06 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xf00}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:06 executing program 1:
io_setup(0x3, &(0x7f00000003c0)=<r0=>0x0)
io_submit(r0, 0x0, 0x0)
io_destroy(r0)

[ 1410.273590][T17796] Memory cgroup out of memory: Killed process 17796 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1410.312277][T17807] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:14:06 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x65580000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:06 executing program 2:
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x0)
ioctl$EVIOCGABS3F(r0, 0x8018457f, &(0x7f0000000040)=""/2)
shmdt(0x0)
r1 = shmget$private(0x0, 0x1000, 0x200, &(0x7f0000ffc000/0x1000)=nil)
shmat(r1, &(0x7f0000ff9000/0x4000)=nil, 0x3000)
write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f00000000c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000080), 0x0, 0xffffffffffffffff, 0x30, 0x1, @ib={0x1b, 0xff, 0x7, {"2085e9645fffb38d86b7a504eb7846ff"}, 0x8, 0x8000000000000001, 0x6}}}, 0xa0)
r2 = semget(0x3, 0x0, 0x2)
semctl$GETNCNT(r2, 0x4, 0xe, &(0x7f0000000180)=""/194)
semctl$SEM_STAT_ANY(r2, 0x0, 0x14, &(0x7f0000000280)=""/118)
r3 = semget(0x1, 0x4, 0x2)
semctl$GETZCNT(r3, 0x0, 0xf, &(0x7f0000000300)=""/4096)
getsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f0000001300), &(0x7f0000001340)=0xe)
r4 = getegid()
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000001380)={{{@in6=@private1, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}}, {{@in6}, 0x0, @in=@empty}}, &(0x7f0000001480)=0xe8)
r6 = getegid()
semctl$IPC_SET(r2, 0x0, 0x1, &(0x7f00000014c0)={{0x2, 0xffffffffffffffff, r4, r5, r6, 0x89, 0x6}, 0x3ff, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x8001})
r7 = semget$private(0x0, 0x2, 0x208)
getresgid(&(0x7f0000001540), &(0x7f0000001580), &(0x7f00000015c0)=<r8=>0x0)
semctl$IPC_SET(r7, 0x0, 0x1, &(0x7f0000001600)={{0x3, r5, r4, r5, r8, 0x104, 0x800}, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40})
semctl$IPC_RMID(0x0, 0x0, 0x0)

05:14:06 executing program 5:
r0 = socket$igmp6(0xa, 0x3, 0x2)
sendmsg$inet6(r0, &(0x7f00000004c0)={&(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c, 0x0}, 0x0)

05:14:06 executing program 1:
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
getresgid(&(0x7f0000001540), &(0x7f0000001580), &(0x7f00000015c0))

05:14:06 executing program 5:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(r0, &(0x7f0000000340)={0x5, 0x10, 0xfa00, {&(0x7f0000000400)}}, 0xfffffffffffffe9d)

05:14:06 executing program 2:
io_setup(0x3, &(0x7f00000002c0)=<r0=>0x0)
io_getevents(r0, 0x1, 0x1, &(0x7f0000000200)=[{}], 0x0)

05:14:06 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_TP_METER(r0, 0x0, 0x0)

05:14:06 executing program 1:
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, 0x0, &(0x7f0000000100))

[ 1410.794931][T17823] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1410.794958][T17823] CPU: 0 PID: 17823 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1410.794990][T17823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1410.794999][T17823] Call Trace:
[ 1410.795005][T17823]  <TASK>
[ 1410.795010][T17823]  dump_stack_lvl+0xd6/0x122
[ 1410.795080][T17823]  dump_stack+0x11/0x15
05:14:06 executing program 1:
mount$9p_fd(0x0, 0x0, 0x0, 0xcbf5ca72caada1d8, 0x0)

[ 1410.795106][T17823]  dump_header+0x98/0x430
[ 1410.795125][T17823]  oom_kill_process+0x100/0x540
[ 1410.795143][T17823]  out_of_memory+0x620/0x880
[ 1410.795297][T17823]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1410.795322][T17823]  mem_cgroup_oom+0x2e7/0x370
[ 1410.795347][T17823]  try_charge_memcg+0x717/0x9c0
[ 1410.795403][T17823]  ? __alloc_pages+0x199/0x340
[ 1410.795424][T17823]  charge_memcg+0x54/0x250
[ 1410.795445][T17823]  __mem_cgroup_charge+0x25/0xa0
[ 1410.795543][T17823]  wp_page_copy+0x209/0x1460
[ 1410.795569][T17823]  ? shrink_zones+0x525/0x5d0
[ 1410.795600][T17823]  ? preempt_count_add+0x5e/0xa0
[ 1410.795629][T17823]  do_wp_page+0x2dd/0x780
[ 1410.795661][T17823]  handle_mm_fault+0x5ef/0xa80
[ 1410.795726][T17823]  do_user_addr_fault+0x4a1/0x980
[ 1410.795752][T17823]  exc_page_fault+0x60/0x160
[ 1410.795772][T17823]  asm_exc_page_fault+0x22/0x30
[ 1410.795796][T17823] RIP: 0033:0x7fa69bfc5970
[ 1410.795811][T17823] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1410.948093][T17823] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1410.948112][T17823] RAX: 000000004310b93c RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1410.948124][T17823] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000008e03449
[ 1410.948136][T17823] RBP: 000000004310b93c R08: 000000000000193c R09: 000000004310b940
[ 1410.948147][T17823] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1410.948158][T17823] R13: 0000000000000001 R14: 0000000000000005 R15: ffffffff818f93bc
[ 1410.984096][T17847] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1410.986138][T17823]  ? selinux_socket_create+0x2c/0x180
[ 1411.008840][T17823]  </TASK>
[ 1411.016317][T17823] memory: usage 307200kB, limit 307200kB, failcnt 49711
[ 1411.016332][T17823] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1411.016343][T17823] Memory cgroup stats for /syz0:
[ 1411.016609][T17823] anon 409600
[ 1411.016609][T17823] file 10457088
[ 1411.016609][T17823] kernel 303706112
[ 1411.016609][T17823] kernel_stack 81920
[ 1411.016609][T17823] pagetables 229376
[ 1411.016609][T17823] sec_pagetables 0
[ 1411.016609][T17823] percpu 9172448
[ 1411.016609][T17823] sock 0
[ 1411.016609][T17823] vmalloc 8192
[ 1411.016609][T17823] shmem 10457088
[ 1411.016609][T17823] file_mapped 159744
[ 1411.016609][T17823] file_dirty 0
[ 1411.016609][T17823] file_writeback 0
[ 1411.016609][T17823] swapcached 0
[ 1411.016609][T17823] inactive_anon 409600
[ 1411.016609][T17823] active_anon 10457088
[ 1411.016609][T17823] inactive_file 0
[ 1411.016609][T17823] active_file 0
[ 1411.016609][T17823] unevictable 0
[ 1411.016609][T17823] slab_reclaimable 39392
[ 1411.016609][T17823] slab_unreclaimable 294094256
[ 1411.016609][T17823] slab 294133648
[ 1411.016609][T17823] workingset_refault_anon 0
[ 1411.016609][T17823] workingset_refault_file 5
[ 1411.016609][T17823] workingset_activate_anon 0
[ 1411.016692][T17823] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17823,uid=0
[ 1411.016759][T17823] Memory cgroup out of memory: Killed process 17823 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1411.083605][T17850] validate_nla: 18 callbacks suppressed
[ 1411.083680][T17850] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
05:14:07 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:14:07 executing program 1:
openat$bsg(0xffffffffffffff9c, &(0x7f0000000200), 0x111000, 0x0)

05:14:07 executing program 5:
socketpair(0x26, 0x5, 0x409340, 0x0)

05:14:07 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xffe}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:07 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x68000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1411.200008][T17850] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1411.200020][T17850] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1411.200028][T17850] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1411.200038][T17850] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:14:07 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockname$inet6(r0, 0x0, 0x0)

05:14:07 executing program 1:
setregid(0xee00, 0xee00)

05:14:07 executing program 5:
r0 = socket(0x1e, 0x2, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r0)

[ 1411.294500][T17857] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1411.350671][T17852] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1411.350698][T17852] CPU: 0 PID: 17852 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1411.350722][T17852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1411.350733][T17852] Call Trace:
[ 1411.350738][T17852]  <TASK>
[ 1411.350806][T17852]  dump_stack_lvl+0xd6/0x122
[ 1411.350977][T17852]  dump_stack+0x11/0x15
[ 1411.351005][T17852]  dump_header+0x98/0x430
[ 1411.351025][T17852]  oom_kill_process+0x100/0x540
[ 1411.351208][T17852]  out_of_memory+0x620/0x880
[ 1411.351226][T17852]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1411.351247][T17852]  mem_cgroup_oom+0x2e7/0x370
[ 1411.351329][T17852]  try_charge_memcg+0x717/0x9c0
[ 1411.351353][T17852]  ? __alloc_pages+0x199/0x340
[ 1411.351374][T17852]  charge_memcg+0x54/0x250
[ 1411.351460][T17852]  __mem_cgroup_charge+0x25/0xa0
[ 1411.351482][T17852]  wp_page_copy+0x209/0x1460
[ 1411.351510][T17852]  ? shrink_zones+0x525/0x5d0
[ 1411.351573][T17852]  ? preempt_count_add+0x5e/0xa0
[ 1411.351599][T17852]  do_wp_page+0x2dd/0x780
[ 1411.351654][T17852]  handle_mm_fault+0x5ef/0xa80
[ 1411.351681][T17852]  do_user_addr_fault+0x4a1/0x980
[ 1411.351744][T17852]  exc_page_fault+0x60/0x160
[ 1411.351763][T17852]  asm_exc_page_fault+0x22/0x30
[ 1411.351833][T17852] RIP: 0033:0x7fa69bfc5970
[ 1411.351847][T17852] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1411.351865][T17852] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1411.351880][T17852] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1411.351892][T17852] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1411.351904][T17852] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1411.351982][T17852] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1411.351993][T17852] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1411.352006][T17852]  ? __sock_create+0x24/0x4e0
[ 1411.352030][T17852]  </TASK>
[ 1411.352842][T17852] memory: usage 307200kB, limit 307200kB, failcnt 49783
[ 1411.352854][T17852] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1411.352863][T17852] Memory cgroup stats for /syz0:
[ 1411.353039][T17852] anon 401408
[ 1411.353039][T17852] file 10457088
[ 1411.353039][T17852] kernel 303714304
[ 1411.353039][T17852] kernel_stack 81920
[ 1411.353039][T17852] pagetables 229376
[ 1411.353039][T17852] sec_pagetables 0
[ 1411.353039][T17852] percpu 9172448
[ 1411.353039][T17852] sock 0
[ 1411.353039][T17852] vmalloc 8192
[ 1411.353039][T17852] shmem 10457088
[ 1411.353039][T17852] file_mapped 159744
[ 1411.353039][T17852] file_dirty 0
[ 1411.353039][T17852] file_writeback 0
[ 1411.353039][T17852] swapcached 0
[ 1411.353039][T17852] inactive_anon 401408
[ 1411.353039][T17852] active_anon 10457088
[ 1411.353039][T17852] inactive_file 0
[ 1411.353039][T17852] active_file 0
[ 1411.353039][T17852] unevictable 0
[ 1411.353039][T17852] slab_reclaimable 39392
[ 1411.353039][T17852] slab_unreclaimable 294100856
[ 1411.353039][T17852] slab 294140248
[ 1411.353039][T17852] workingset_refault_anon 0
[ 1411.353039][T17852] workingset_refault_file 5
[ 1411.353039][T17852] workingset_activate_anon 0
[ 1411.353121][T17852] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17852,uid=0
[ 1411.353210][T17852] Memory cgroup out of memory: Killed process 17852 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1411.427326][T17872] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1411.427342][T17872] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1411.427354][T17872] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1411.427405][T17872] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1411.427416][T17872] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:14:07 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000280), r0)
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)={0x14}, 0x14}}, 0x0)

05:14:07 executing program 1:
r0 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, 0x0)

05:14:07 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'})

05:14:07 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x1100}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:07 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x6c000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:07 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:14:07 executing program 1:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000100)={'ip6_vti0\x00', &(0x7f0000000080)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, @empty}})

05:14:07 executing program 5:
recvmsg(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0, 0xc, &(0x7f0000000480)=""/133, 0x85}, 0x0)

05:14:07 executing program 2:
select(0x0, 0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)={0x0, 0x2710})

[ 1411.943377][T17875] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:14:07 executing program 2:
ustat(0x1c, 0x0)

[ 1412.007924][T17879] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1412.007950][T17879] CPU: 0 PID: 17879 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1412.007974][T17879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1412.007985][T17879] Call Trace:
[ 1412.007990][T17879]  <TASK>
[ 1412.007996][T17879]  dump_stack_lvl+0xd6/0x122
[ 1412.008082][T17879]  dump_stack+0x11/0x15
[ 1412.008123][T17879]  dump_header+0x98/0x430
[ 1412.008142][T17879]  oom_kill_process+0x100/0x540
[ 1412.008161][T17879]  out_of_memory+0x620/0x880
[ 1412.008179][T17879]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1412.008367][T17879]  mem_cgroup_oom+0x2e7/0x370
[ 1412.008389][T17879]  try_charge_memcg+0x717/0x9c0
[ 1412.008411][T17879]  ? __alloc_pages+0x199/0x340
[ 1412.008431][T17879]  charge_memcg+0x54/0x250
[ 1412.008527][T17879]  __mem_cgroup_charge+0x25/0xa0
[ 1412.008548][T17879]  wp_page_copy+0x209/0x1460
[ 1412.008573][T17879]  ? _raw_spin_unlock+0x10/0x50
[ 1412.008597][T17879]  do_wp_page+0x2dd/0x780
[ 1412.008695][T17879]  handle_mm_fault+0x5ef/0xa80
[ 1412.008720][T17879]  do_user_addr_fault+0x4a1/0x980
[ 1412.008743][T17879]  ? switch_fpu_return+0xc9/0x190
[ 1412.127946][T17879]  exc_page_fault+0x60/0x160
05:14:07 executing program 2:
mq_notify(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x2, @thr={0x0, 0x0}})

05:14:07 executing program 1:
io_setup(0x3, &(0x7f00000003c0)=<r0=>0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000700), 0x2, 0x0)
io_submit(r0, 0x1, &(0x7f00000005c0)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x8, 0x0, r1, 0x0}])

[ 1412.128033][T17879]  asm_exc_page_fault+0x22/0x30
05:14:08 executing program 5:
r0 = socket$unix(0x1, 0x5, 0x0)
recvmmsg$unix(r0, &(0x7f0000004fc0), 0x1, 0x0, 0x0)

05:14:08 executing program 2:
select(0x40, &(0x7f0000000200), &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100)={0x0, 0x2710})

[ 1412.128061][T17879] RIP: 0033:0x7fa69bfc5970
[ 1412.128077][T17879] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1412.128093][T17879] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
05:14:08 executing program 5:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r0, &(0x7f0000000700)={0xb, 0x10, 0xfa00, {0x0, 0xffffffffffffffff, 0x302}}, 0x18)

[ 1412.128108][T17879] RAX: 000000004310b93c RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1412.128120][T17879] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000008e03449
[ 1412.128191][T17879] RBP: 000000004310b93c R08: 000000000000193c R09: 000000004310b940
[ 1412.128203][T17879] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1412.128216][T17879] R13: 0000000000000001 R14: 0000000000000005 R15: ffffffff818f93bc
[ 1412.128229][T17879]  ? selinux_socket_create+0x2c/0x180
[ 1412.128257][T17879]  </TASK>
[ 1412.134971][T17879] memory: usage 307200kB, limit 307200kB, failcnt 49860
[ 1412.134987][T17879] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1412.134997][T17879] Memory cgroup stats for /syz0:
[ 1412.135310][T17879] anon 409600
[ 1412.135310][T17879] file 10457088
[ 1412.135310][T17879] kernel 303706112
05:14:08 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x1200}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:08 executing program 2:
select(0x40, &(0x7f0000000200), &(0x7f0000000080), &(0x7f00000000c0)={0x2b944814}, &(0x7f0000000100)={0x0, 0x2710})

[ 1412.135310][T17879] kernel_stack 81920
[ 1412.135310][T17879] pagetables 229376
[ 1412.135310][T17879] sec_pagetables 0
[ 1412.135310][T17879] percpu 9172448
[ 1412.135310][T17879] sock 0
[ 1412.135310][T17879] vmalloc 8192
[ 1412.135310][T17879] shmem 10457088
[ 1412.135310][T17879] file_mapped 159744
[ 1412.135310][T17879] file_dirty 0
[ 1412.135310][T17879] file_writeback 0
[ 1412.135310][T17879] swapcached 0
[ 1412.135310][T17879] inactive_anon 409600
[ 1412.135310][T17879] active_anon 10457088
[ 1412.135310][T17879] inactive_file 0
[ 1412.135310][T17879] active_file 0
[ 1412.135310][T17879] unevictable 0
[ 1412.135310][T17879] slab_reclaimable 39392
[ 1412.135310][T17879] slab_unreclaimable 294094256
[ 1412.135310][T17879] slab 294133648
[ 1412.135310][T17879] workingset_refault_anon 0
[ 1412.135310][T17879] workingset_refault_file 5
[ 1412.135310][T17879] workingset_activate_anon 0
[ 1412.135350][T17879] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17879,uid=0
[ 1412.135468][T17879] Memory cgroup out of memory: Killed process 17879 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1412.146218][T17892] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1412.146233][T17892] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 1412.432312][T17913] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1412.432338][T17913] CPU: 1 PID: 17913 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1412.432360][T17913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1412.432371][T17913] Call Trace:
[ 1412.432414][T17913]  <TASK>
[ 1412.432421][T17913]  dump_stack_lvl+0xd6/0x122
[ 1412.432470][T17913]  dump_stack+0x11/0x15
[ 1412.432623][T17913]  dump_header+0x98/0x430
[ 1412.432643][T17913]  oom_kill_process+0x100/0x540
[ 1412.432661][T17913]  out_of_memory+0x620/0x880
[ 1412.432680][T17913]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1412.432776][T17913]  mem_cgroup_oom+0x2e7/0x370
[ 1412.432798][T17913]  try_charge_memcg+0x717/0x9c0
[ 1412.432830][T17913]  ? avc_has_perm_noaudit+0x1c0/0x270
[ 1412.432878][T17913]  obj_cgroup_charge+0x171/0x2b0
[ 1412.432969][T17913]  memcg_slab_pre_alloc_hook+0xf7/0x170
[ 1412.433098][T17913]  ? sock_alloc_inode+0x2d/0xa0
[ 1412.433128][T17913]  kmem_cache_alloc_lru+0x75/0x2a0
[ 1412.433222][T17913]  sock_alloc_inode+0x2d/0xa0
[ 1412.433244][T17913]  ? sockfs_init_fs_context+0x70/0x70
[ 1412.433327][T17913]  alloc_inode+0x38/0x150
[ 1412.433344][T17913]  new_inode_pseudo+0x13/0x60
[ 1412.433361][T17913]  __sock_create+0x122/0x4e0
[ 1412.433393][T17913]  __sys_socket+0x9c/0x220
[ 1412.433437][T17913]  __x64_sys_socket+0x3b/0x50
[ 1412.433455][T17913]  do_syscall_64+0x2b/0x70
[ 1412.433474][T17913]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1412.433496][T17913] RIP: 0033:0x7fa69c0185a9
[ 1412.433508][T17913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1412.433565][T17913] RSP: 002b:00007fa69b38c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[ 1412.433582][T17913] RAX: ffffffffffffffda RBX: 00007fa69c138f80 RCX: 00007fa69c0185a9
[ 1412.433592][T17913] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000010
[ 1412.433603][T17913] RBP: 00007fa69c0737b0 R08: 0000000000000000 R09: 0000000000000000
[ 1412.433615][T17913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1412.433627][T17913] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1412.433642][T17913]  </TASK>
[ 1412.433650][T17913] memory: usage 307200kB, limit 307200kB, failcnt 49930
[ 1412.433662][T17913] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1412.433670][T17913] Memory cgroup stats for /syz0:
[ 1412.433847][T17913] anon 389120
[ 1412.433847][T17913] file 10457088
[ 1412.433847][T17913] kernel 303726592
[ 1412.433847][T17913] kernel_stack 81920
[ 1412.433847][T17913] pagetables 229376
[ 1412.433847][T17913] sec_pagetables 0
[ 1412.433847][T17913] percpu 9172448
[ 1412.433847][T17913] sock 0
[ 1412.433847][T17913] vmalloc 8192
[ 1412.433847][T17913] shmem 10457088
[ 1412.433847][T17913] file_mapped 159744
[ 1412.433847][T17913] file_dirty 0
[ 1412.433847][T17913] file_writeback 0
[ 1412.433847][T17913] swapcached 0
[ 1412.433847][T17913] inactive_anon 335872
[ 1412.433847][T17913] active_anon 10457088
[ 1412.433847][T17913] inactive_file 0
[ 1412.433847][T17913] active_file 0
[ 1412.433847][T17913] unevictable 0
[ 1412.433847][T17913] slab_reclaimable 56672
[ 1412.433847][T17913] slab_unreclaimable 294096480
[ 1412.433847][T17913] slab 294153152
[ 1412.433847][T17913] workingset_refault_anon 0
[ 1412.433847][T17913] workingset_refault_file 5
[ 1412.433847][T17913] workingset_activate_anon 0
05:14:08 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, 0x0)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:14:08 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x74000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:08 executing program 1:
shmat(0x0, &(0x7f0000ffd000/0x3000)=nil, 0x5000)
shmat(0x0, &(0x7f0000ff9000/0x3000)=nil, 0x4000)

05:14:08 executing program 5:
shmat(0x0, &(0x7f0000ffc000/0x3000)=nil, 0x6000)
shmat(0x0, &(0x7f0000ffd000/0x1000)=nil, 0x5000)

05:14:08 executing program 2:
io_setup(0x6, &(0x7f0000000040)=<r0=>0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
io_submit(r0, 0x1, &(0x7f0000000300)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}])

05:14:08 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x1802}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:08 executing program 5:
ustat(0x1c, &(0x7f00000000c0))

[ 1412.433963][T17913] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17912,uid=0
[ 1412.434092][T17913] Memory cgroup out of memory: Killed process 17912 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:14:08 executing program 1:
r0 = semget$private(0x0, 0x3, 0x0)
semop(r0, &(0x7f0000000000)=[{0x0, 0x8}, {}], 0x2)

[ 1412.944938][T17918] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1412.955922][T17918] CPU: 1 PID: 17918 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1412.968369][T17918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1412.978514][T17918] Call Trace:
[ 1412.978521][T17918]  <TASK>
[ 1412.978527][T17918]  dump_stack_lvl+0xd6/0x122
[ 1412.989310][T17918]  dump_stack+0x11/0x15
05:14:08 executing program 5:
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x416c02, 0x0)

05:14:08 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x7a000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1412.989336][T17918]  dump_header+0x98/0x430
[ 1412.989430][T17918]  oom_kill_process+0x100/0x540
[ 1412.989447][T17918]  out_of_memory+0x620/0x880
[ 1412.989462][T17918]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1412.989501][T17918]  mem_cgroup_oom+0x2e7/0x370
[ 1412.989521][T17918]  try_charge_memcg+0x717/0x9c0
[ 1412.989542][T17918]  ? __alloc_pages+0x199/0x340
[ 1412.989634][T17918]  charge_memcg+0x54/0x250
[ 1412.989699][T17918]  __mem_cgroup_charge+0x25/0xa0
[ 1412.989719][T17918]  wp_page_copy+0x209/0x1460
05:14:08 executing program 5:
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000200)=ANY=[])

[ 1412.989742][T17918]  ? shrink_zones+0x525/0x5d0
[ 1412.989764][T17918]  ? preempt_count_add+0x5e/0xa0
[ 1412.989790][T17918]  do_wp_page+0x2dd/0x780
[ 1412.989821][T17918]  handle_mm_fault+0x5ef/0xa80
[ 1412.989845][T17918]  do_user_addr_fault+0x4a1/0x980
[ 1412.989868][T17918]  exc_page_fault+0x60/0x160
[ 1412.989902][T17918]  asm_exc_page_fault+0x22/0x30
[ 1412.989928][T17918] RIP: 0033:0x7fa69bfc5970
05:14:08 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_TP_METER(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14}, 0x14}}, 0x0)
sendmsg$BATADV_CMD_GET_HARDIF(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14}, 0x14}}, 0x0)

[ 1412.989943][T17918] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1412.989982][T17918] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1412.989998][T17918] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1412.990010][T17918] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
[ 1412.990098][T17918] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1412.990110][T17918] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1412.990122][T17918] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
[ 1412.990184][T17918]  ? __x64_sys_socket+0xc/0x50
[ 1412.990234][T17918]  </TASK>
[ 1412.992863][T17918] memory: usage 307200kB, limit 307200kB, failcnt 50001
[ 1413.160249][T17918] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1413.160264][T17918] Memory cgroup stats for /syz0:
[ 1413.160512][T17918] anon 393216
[ 1413.160512][T17918] file 10457088
[ 1413.160512][T17918] kernel 303710208
[ 1413.160512][T17918] kernel_stack 81920
[ 1413.160512][T17918] pagetables 229376
[ 1413.160512][T17918] sec_pagetables 0
[ 1413.160512][T17918] percpu 9172448
[ 1413.160512][T17918] sock 0
[ 1413.160512][T17918] vmalloc 8192
[ 1413.160512][T17918] shmem 10457088
[ 1413.160512][T17918] file_mapped 159744
[ 1413.160512][T17918] file_dirty 0
[ 1413.160512][T17918] file_writeback 0
[ 1413.160512][T17918] swapcached 0
[ 1413.160512][T17918] inactive_anon 364544
[ 1413.160512][T17918] active_anon 10457088
[ 1413.160512][T17918] inactive_file 0
[ 1413.160512][T17918] active_file 0
[ 1413.160512][T17918] unevictable 0
[ 1413.160512][T17918] slab_reclaimable 44896
[ 1413.160512][T17918] slab_unreclaimable 294094760
[ 1413.160512][T17918] slab 294139656
[ 1413.160512][T17918] workingset_refault_anon 0
[ 1413.160512][T17918] workingset_refault_file 5
[ 1413.160512][T17918] workingset_activate_anon 0
05:14:09 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(r0, r1, 0x0, 0x800000080004103)

05:14:09 executing program 5:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f0000000200)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x0, 0x0, @in={0x2, 0x0, @broadcast}}}, 0x90)

05:14:09 executing program 2:
openat$sysfs(0xffffffffffffff9c, &(0x7f00000007c0)='/sys/block/loop0', 0x0, 0x0)

05:14:09 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x81000000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:09 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x1a03}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1413.160586][T17918] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17918,uid=0
[ 1413.160670][T17918] Memory cgroup out of memory: Killed process 17918 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:14:09 executing program 5:
set_mempolicy(0x0, &(0x7f0000000040)=0x1, 0x7098)

05:14:09 executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000100)={'ip6_vti0\x00', &(0x7f0000000080)={'syztnl0\x00', 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, @empty}})

[ 1413.512007][T17957] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1413.512034][T17957] CPU: 0 PID: 17957 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1413.512058][T17957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1413.512069][T17957] Call Trace:
[ 1413.512074][T17957]  <TASK>
[ 1413.512080][T17957]  dump_stack_lvl+0xd6/0x122
[ 1413.512189][T17957]  dump_stack+0x11/0x15
[ 1413.512213][T17957]  dump_header+0x98/0x430
[ 1413.512230][T17957]  oom_kill_process+0x100/0x540
[ 1413.512248][T17957]  out_of_memory+0x620/0x880
[ 1413.512267][T17957]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1413.512351][T17957]  mem_cgroup_oom+0x2e7/0x370
[ 1413.512374][T17957]  try_charge_memcg+0x717/0x9c0
[ 1413.512409][T17957]  ? __alloc_pages+0x199/0x340
[ 1413.512474][T17957]  charge_memcg+0x54/0x250
[ 1413.512496][T17957]  __mem_cgroup_charge+0x25/0xa0
[ 1413.512590][T17957]  wp_page_copy+0x209/0x1460
[ 1413.512659][T17957]  ? shrink_zones+0x525/0x5d0
[ 1413.512681][T17957]  ? preempt_count_add+0x5e/0xa0
[ 1413.512777][T17957]  do_wp_page+0x2dd/0x780
[ 1413.512803][T17957]  handle_mm_fault+0x5ef/0xa80
[ 1413.512831][T17957]  do_user_addr_fault+0x4a1/0x980
[ 1413.512855][T17957]  exc_page_fault+0x60/0x160
[ 1413.512940][T17957]  asm_exc_page_fault+0x22/0x30
[ 1413.512965][T17957] RIP: 0033:0x7fa69bfc5970
[ 1413.512979][T17957] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1413.513029][T17957] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1413.513046][T17957] RAX: 000000004310b93c RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1413.513059][T17957] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000008e03449
[ 1413.513072][T17957] RBP: 000000004310b93c R08: 000000000000193c R09: 000000004310b940
[ 1413.513085][T17957] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1413.513097][T17957] R13: 0000000000000001 R14: 0000000000000005 R15: ffffffff818f93bc
[ 1413.513188][T17957]  ? selinux_socket_create+0x2c/0x180
05:14:09 executing program 1:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000480), 0x8)

05:14:09 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})

05:14:09 executing program 2:
r0 = socket$igmp6(0xa, 0x3, 0x2)
recvfrom$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:14:09 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x81ffffff}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:09 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x1c01}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1413.513212][T17957]  </TASK>
[ 1413.513233][T17957] memory: usage 307200kB, limit 307200kB, failcnt 50075
[ 1413.513245][T17957] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1413.513257][T17957] Memory cgroup stats for /syz0:
[ 1413.513552][T17957] anon 409600
[ 1413.513552][T17957] file 10457088
[ 1413.513552][T17957] kernel 303706112
[ 1413.513552][T17957] kernel_stack 81920
[ 1413.513552][T17957] pagetables 229376
[ 1413.513552][T17957] sec_pagetables 0
[ 1413.513552][T17957] percpu 9172448
[ 1413.513552][T17957] sock 0
[ 1413.513552][T17957] vmalloc 8192
[ 1413.513552][T17957] shmem 10457088
[ 1413.513552][T17957] file_mapped 159744
[ 1413.513552][T17957] file_dirty 0
[ 1413.513552][T17957] file_writeback 0
[ 1413.513552][T17957] swapcached 0
[ 1413.513552][T17957] inactive_anon 393216
[ 1413.513552][T17957] active_anon 10457088
[ 1413.513552][T17957] inactive_file 0
[ 1413.513552][T17957] active_file 0
[ 1413.513552][T17957] unevictable 0
[ 1413.513552][T17957] slab_reclaimable 39392
[ 1413.513552][T17957] slab_unreclaimable 294094256
[ 1413.513552][T17957] slab 294133648
[ 1413.513552][T17957] workingset_refault_anon 0
[ 1413.513552][T17957] workingset_refault_file 5
[ 1413.513552][T17957] workingset_activate_anon 0
[ 1413.513631][T17957] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17957,uid=0
[ 1413.513690][T17957] Memory cgroup out of memory: Killed process 17957 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 1413.933571][T17974] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1413.933709][T17974] CPU: 1 PID: 17974 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1413.933732][T17974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1413.933743][T17974] Call Trace:
[ 1413.933748][T17974]  <TASK>
[ 1413.933790][T17974]  dump_stack_lvl+0xd6/0x122
[ 1413.933819][T17974]  dump_stack+0x11/0x15
[ 1413.933894][T17974]  dump_header+0x98/0x430
[ 1413.933914][T17974]  oom_kill_process+0x100/0x540
[ 1413.933981][T17974]  out_of_memory+0x620/0x880
[ 1413.933999][T17974]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1413.934101][T17974]  mem_cgroup_oom+0x2e7/0x370
[ 1413.934123][T17974]  try_charge_memcg+0x717/0x9c0
[ 1413.934212][T17974]  ? __alloc_pages+0x199/0x340
[ 1413.934234][T17974]  charge_memcg+0x54/0x250
[ 1413.934255][T17974]  __mem_cgroup_charge+0x25/0xa0
[ 1413.934277][T17974]  wp_page_copy+0x209/0x1460
[ 1413.934330][T17974]  ? shrink_zones+0x525/0x5d0
[ 1413.934351][T17974]  ? preempt_count_add+0x5e/0xa0
[ 1413.934379][T17974]  do_wp_page+0x2dd/0x780
[ 1413.934411][T17974]  handle_mm_fault+0x5ef/0xa80
[ 1413.934438][T17974]  do_user_addr_fault+0x4a1/0x980
[ 1413.934504][T17974]  exc_page_fault+0x60/0x160
[ 1413.934523][T17974]  asm_exc_page_fault+0x22/0x30
[ 1413.934548][T17974] RIP: 0033:0x7fa69bfc5970
[ 1413.934562][T17974] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1413.934600][T17974] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1413.934617][T17974] RAX: 00000000e44fd48d RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1413.934629][T17974] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 000000000a0a30a4
[ 1413.934641][T17974] RBP: 00000000e44fd48d R08: 000000000000148d R09: 00000000e44fd491
[ 1413.934652][T17974] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1413.934664][T17974] R13: 0000000000000001 R14: 0000000000000002 R15: ffffffff83a0ce84
[ 1413.934676][T17974]  ? __sock_create+0x24/0x4e0
[ 1413.934736][T17974]  </TASK>
[ 1413.934753][T17974] memory: usage 307200kB, limit 307200kB, failcnt 50149
[ 1413.934765][T17974] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1413.934775][T17974] Memory cgroup stats for /syz0:
[ 1413.934931][T17974] anon 393216
[ 1413.934931][T17974] file 10457088
[ 1413.934931][T17974] kernel 303714304
[ 1413.934931][T17974] kernel_stack 81920
[ 1413.934931][T17974] pagetables 229376
[ 1413.934931][T17974] sec_pagetables 0
[ 1413.934931][T17974] percpu 9172448
[ 1413.934931][T17974] sock 0
[ 1413.934931][T17974] vmalloc 8192
[ 1413.934931][T17974] shmem 10457088
[ 1413.934931][T17974] file_mapped 159744
[ 1413.934931][T17974] file_dirty 0
[ 1413.934931][T17974] file_writeback 0
[ 1413.934931][T17974] swapcached 0
[ 1413.934931][T17974] inactive_anon 364544
[ 1413.934931][T17974] active_anon 10457088
[ 1413.934931][T17974] inactive_file 0
[ 1413.934931][T17974] active_file 0
[ 1413.934931][T17974] unevictable 0
[ 1413.934931][T17974] slab_reclaimable 39392
[ 1413.934931][T17974] slab_unreclaimable 294100856
[ 1413.934931][T17974] slab 294140248
[ 1413.934931][T17974] workingset_refault_anon 0
[ 1413.934931][T17974] workingset_refault_file 5
[ 1413.934931][T17974] workingset_activate_anon 0
[ 1413.934984][T17974] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17974,uid=0
05:14:10 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, 0x0)
sendfile(r0, r1, 0x0, 0x800000080004103)

05:14:10 executing program 5:
socketpair(0x18, 0x0, 0x1, 0x0)

05:14:10 executing program 1:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
read$usbfs(r0, &(0x7f0000000000)=""/5, 0x5)

05:14:10 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x2000}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:10 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x88020000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1413.935066][T17974] Memory cgroup out of memory: Killed process 17974 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:14:10 executing program 5:
r0 = socket$igmp6(0xa, 0x3, 0x2)
accept4$inet6(r0, 0x0, 0x0, 0x0)

05:14:10 executing program 1:
socket$inet6(0xa, 0x0, 0x7fff)

[ 1414.440150][T17988] __nla_validate_parse: 9 callbacks suppressed
[ 1414.440164][T17988] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:14:10 executing program 1:
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f00000014c0)={{0x2, 0xffffffffffffffff}})

05:14:10 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, 0x0)
sendfile(r0, r1, 0x0, 0x800000080004103)

[ 1414.475535][   T23] audit: type=1400 audit(1667193250.271:647): avc:  denied  { accept } for  pid=17991 comm="syz-executor.5" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[ 1414.520953][T17985] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1414.532630][T17985] CPU: 1 PID: 17985 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1414.540894][T17998] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1414.545031][T17985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1414.545044][T17985] Call Trace:
[ 1414.567684][T17985]  <TASK>
[ 1414.570673][T17985]  dump_stack_lvl+0xd6/0x122
[ 1414.575276][T17985]  dump_stack+0x11/0x15
[ 1414.579460][T17985]  dump_header+0x98/0x430
[ 1414.583951][T17985]  oom_kill_process+0x100/0x540
05:14:10 executing program 2:
r0 = socket$unix(0x1, 0x5, 0x0)
recvmmsg$unix(r0, &(0x7f0000004fc0)=[{{0x0, 0x20, 0x0, 0xfffffffffffffdb1}}], 0x1, 0x0, 0x0)

05:14:10 executing program 5:
r0 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ffb000/0x3000)=nil)
shmat(r0, &(0x7f0000ffd000/0x3000)=nil, 0x5000)
r1 = shmat(r0, &(0x7f0000ff9000/0x3000)=nil, 0x4000)
shmdt(r1)

05:14:10 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_VLAN(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="0002"], 0x54}}, 0x0)

05:14:10 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x88470000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1414.588806][T17985]  out_of_memory+0x620/0x880
[ 1414.593423][T17985]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1414.599033][T17985]  mem_cgroup_oom+0x2e7/0x370
[ 1414.603776][T17985]  try_charge_memcg+0x717/0x9c0
[ 1414.608634][T17985]  ? __alloc_pages+0x199/0x340
[ 1414.613399][T17985]  charge_memcg+0x54/0x250
[ 1414.617876][T17985]  __mem_cgroup_charge+0x25/0xa0
[ 1414.622885][T17985]  wp_page_copy+0x209/0x1460
[ 1414.627546][T17985]  ? shrink_zones+0x525/0x5d0
[ 1414.632224][T17985]  ? preempt_count_add+0x5e/0xa0
05:14:10 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_VLAN(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='1'], 0x54}}, 0x0)

05:14:10 executing program 5:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000940), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000a00)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000009c0)={<r2=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_JOIN_MCAST(r1, &(0x7f0000000a40)={0x16, 0x98, 0xfa00, {0x0, 0x0, r2, 0x30, 0x0, @ib={0x1b, 0x0, 0x0, {"7afba63ab912b3da99fc1ef641069f34"}}}}, 0xa0)

[ 1414.637222][T17985]  do_wp_page+0x2dd/0x780
[ 1414.641573][T17985]  handle_mm_fault+0x5ef/0xa80
[ 1414.646374][T17985]  do_user_addr_fault+0x4a1/0x980
[ 1414.651438][T17985]  exc_page_fault+0x60/0x160
[ 1414.656052][T17985]  asm_exc_page_fault+0x22/0x30
[ 1414.661135][T17985] RIP: 0033:0x7fa69bfc5970
[ 1414.665565][T17985] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1414.685190][T17985] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1414.691258][T17985] RAX: 000000004310b93c RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1414.699404][T17985] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000008e03449
[ 1414.706318][T18015] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1414.707364][T17985] RBP: 000000004310b93c R08: 000000000000193c R09: 000000004310b940
[ 1414.724603][T17985] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1414.732575][T17985] R13: 0000000000000001 R14: 0000000000000005 R15: ffffffff818f93bc
[ 1414.740554][T17985]  ? selinux_socket_create+0x2c/0x180
[ 1414.746061][T17985]  </TASK>
[ 1414.749106][T17985] memory: usage 307200kB, limit 307200kB, failcnt 50229
[ 1414.756135][T17985] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1414.762988][T17985] Memory cgroup stats for /syz0:
[ 1414.763291][T17985] anon 409600
[ 1414.763291][T17985] file 10457088
[ 1414.763291][T17985] kernel 303706112
[ 1414.763291][T17985] kernel_stack 81920
[ 1414.763291][T17985] pagetables 229376
[ 1414.763291][T17985] sec_pagetables 0
[ 1414.763291][T17985] percpu 9172448
[ 1414.763291][T17985] sock 0
[ 1414.763291][T17985] vmalloc 8192
[ 1414.763291][T17985] shmem 10457088
[ 1414.763291][T17985] file_mapped 159744
[ 1414.763291][T17985] file_dirty 0
[ 1414.763291][T17985] file_writeback 0
[ 1414.763291][T17985] swapcached 0
[ 1414.763291][T17985] inactive_anon 409600
[ 1414.763291][T17985] active_anon 10457088
[ 1414.763291][T17985] inactive_file 0
[ 1414.763291][T17985] active_file 0
[ 1414.763291][T17985] unevictable 0
[ 1414.763291][T17985] slab_reclaimable 39392
[ 1414.763291][T17985] slab_unreclaimable 294094256
[ 1414.763291][T17985] slab 294133648
[ 1414.763291][T17985] workingset_refault_anon 0
[ 1414.763291][T17985] workingset_refault_file 5
[ 1414.763291][T17985] workingset_activate_anon 0
[ 1414.859100][T17985] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=17985,uid=0
[ 1414.874455][T17985] Memory cgroup out of memory: Killed process 17985 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:14:10 executing program 2:
openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/b2c2_flexcop', 0x0, 0x0)

05:14:10 executing program 5:
socketpair(0x11, 0x3, 0x9, 0x0)

05:14:10 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x2400}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:10 executing program 1:
mmap$usbfs(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0)

05:14:10 executing program 2:
r0 = socket$igmp6(0xa, 0x3, 0x2)
sendmsg$inet6(r0, &(0x7f00000004c0)={&(0x7f0000000000)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c, &(0x7f00000002c0)=[{0x0}, {0x0}], 0x2, &(0x7f0000000340)=[@hoplimit_2292={{0x14}}, @tclass={{0x14}}], 0x30}, 0x0)

[ 1414.878761][T18015] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1414.969512][T18028] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1414.980490][T18028] CPU: 0 PID: 18028 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1414.992926][T18028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1414.992940][T18028] Call Trace:
[ 1414.992946][T18028]  <TASK>
[ 1414.992953][T18028]  dump_stack_lvl+0xd6/0x122
[ 1414.992995][T18028]  dump_stack+0x11/0x15
[ 1414.993019][T18028]  dump_header+0x98/0x430
[ 1414.993049][T18028]  oom_kill_process+0x100/0x540
[ 1414.993069][T18028]  out_of_memory+0x620/0x880
[ 1414.993086][T18028]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1414.993110][T18028]  mem_cgroup_oom+0x2e7/0x370
[ 1415.042050][T18028]  try_charge_memcg+0x717/0x9c0
[ 1415.042082][T18028]  ? debug_smp_processor_id+0x13/0x20
[ 1415.042146][T18028]  __memcg_kmem_charge_page+0x2e4/0x480
[ 1415.042170][T18028]  alloc_thread_stack_node+0x292/0x360
[ 1415.042205][T18028]  dup_task_struct+0x96/0x2a0
[ 1415.068380][T18028]  copy_process+0x3ca/0x2100
[ 1415.072989][T18028]  kernel_clone+0x166/0x550
[ 1415.077250][T18039] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1415.077492][T18028]  __x64_sys_clone+0xc3/0xf0
[ 1415.091333][T18028]  do_syscall_64+0x2b/0x70
[ 1415.095759][T18028]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1415.101723][T18028] RIP: 0033:0x7fa69c0199d1
05:14:10 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_procfs(0x0, 0x0)
sendfile(r0, r1, 0x0, 0x800000080004103)

05:14:10 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$BATADV_CMD_GET_VLAN(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='1\x00\x00\x00', @ANYBLOB="00022cbd7000ffdbdf25110000000500350009000000080034000300000005002d000000000008003400ff03000008003b"], 0x54}}, 0x0)

05:14:10 executing program 5:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f}}, 0x20)

05:14:10 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x88480000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:10 executing program 2:
r0 = semget$private(0x0, 0x3, 0x0)
semop(r0, &(0x7f0000000000)=[{0x0, 0x0, 0x1000}], 0x1)

05:14:10 executing program 1:
io_cancel(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000440), 0xffffffffffffffff)

05:14:10 executing program 1:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/expire_quiescent_template\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, 0x0, 0x0)

05:14:10 executing program 1:
io_setup(0x1000, &(0x7f00000003c0)=<r0=>0x0)
io_cancel(r0, &(0x7f0000001440)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)

[ 1415.106202][T18028] Code: 48 85 ff 74 3d 48 85 f6 74 38 48 83 ee 10 48 89 4e 08 48 89 3e 48 89 d7 4c 89 c2 4d 89 c8 4c 8b 54 24 08 b8 38 00 00 00 0f 05 <48> 85 c0 7c 13 74 01 c3 31 ed 58 5f ff d0 48 89 c7 b8 3c 00 00 00
[ 1415.125833][T18028] RSP: 002b:00007ffd8ac4fdc8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 1415.134251][T18028] RAX: ffffffffffffffda RBX: 00007fa69b38c700 RCX: 00007fa69c0199d1
[ 1415.142269][T18028] RDX: 00007fa69b38c9d0 RSI: 00007fa69b38c2f0 RDI: 00000000003d0f00
[ 1415.150323][T18028] RBP: 00007ffd8ac50010 R08: 00007fa69b38c700 R09: 00007fa69b38c700
[ 1415.158298][T18028] R10: 00007fa69b38c9d0 R11: 0000000000000206 R12: 00007ffd8ac4fe7e
[ 1415.166266][T18028] R13: 00007ffd8ac4fe7f R14: 00007fa69b38c300 R15: 0000000000022000
[ 1415.174287][T18028]  </TASK>
[ 1415.177340][T18028] memory: usage 307200kB, limit 307200kB, failcnt 50314
[ 1415.184287][T18028] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1415.191137][T18028] Memory cgroup stats for /syz0:
[ 1415.191428][T18028] anon 380928
[ 1415.191428][T18028] file 10457088
[ 1415.191428][T18028] kernel 303734784
[ 1415.191428][T18028] kernel_stack 65536
[ 1415.191428][T18028] pagetables 229376
[ 1415.191428][T18028] sec_pagetables 0
[ 1415.191428][T18028] percpu 9172448
[ 1415.191428][T18028] sock 0
[ 1415.191428][T18028] vmalloc 8192
[ 1415.191428][T18028] shmem 10457088
[ 1415.191428][T18028] file_mapped 159744
[ 1415.191428][T18028] file_dirty 0
[ 1415.191428][T18028] file_writeback 0
[ 1415.191428][T18028] swapcached 0
[ 1415.191428][T18028] inactive_anon 368640
[ 1415.191428][T18028] active_anon 10457088
[ 1415.191428][T18028] inactive_file 0
[ 1415.191428][T18028] active_file 0
[ 1415.191428][T18028] unevictable 0
[ 1415.191428][T18028] slab_reclaimable 58048
[ 1415.191428][T18028] slab_unreclaimable 294106968
[ 1415.191428][T18028] slab 294165016
[ 1415.191428][T18028] workingset_refault_anon 0
[ 1415.191428][T18028] workingset_refault_file 5
[ 1415.191428][T18028] workingset_activate_anon 0
[ 1415.287387][T18028] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=18028,uid=0
[ 1415.302789][T18028] Memory cgroup out of memory: Killed process 18028 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:14:11 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x244a}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:11 executing program 2:
setrlimit(0x0, &(0x7f0000000280)={0x6})

05:14:11 executing program 5:
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
socket$inet6_dccp(0xa, 0x6, 0x0)

05:14:11 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x88a8ffff}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

[ 1415.326935][T18044] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
05:14:11 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(0xffffffffffffffff, r0, 0x0, 0x800000080004103)

05:14:11 executing program 2:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
inotify_add_watch(r0, 0x0, 0x281)

05:14:11 executing program 5:
io_setup(0x8a32, &(0x7f0000000100))

05:14:11 executing program 1:
socket(0x23, 0x0, 0x2000001)

05:14:11 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(0xffffffffffffffff, r0, 0x0, 0x800000080004103)

[ 1415.414780][T18065] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1415.469676][T18062] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1415.480648][T18062] CPU: 1 PID: 18062 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1415.493072][T18062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1415.503196][T18062] Call Trace:
[ 1415.506475][T18062]  <TASK>
[ 1415.509481][T18062]  dump_stack_lvl+0xd6/0x122
[ 1415.514084][T18062]  dump_stack+0x11/0x15
05:14:11 executing program 2:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r0, &(0x7f00000000c0)={0x10, 0x30, 0xfa00, {0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, 0x38)

05:14:11 executing program 2:
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/block/loop0', 0x0, 0x0)

05:14:11 executing program 2:
io_setup(0x6, &(0x7f0000000040)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f0000000300)=[0x0])

[ 1415.518319][T18062]  dump_header+0x98/0x430
[ 1415.522656][T18062]  oom_kill_process+0x100/0x540
[ 1415.527553][T18062]  out_of_memory+0x620/0x880
[ 1415.532164][T18062]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1415.537718][T18062]  mem_cgroup_oom+0x2e7/0x370
[ 1415.542402][T18062]  try_charge_memcg+0x717/0x9c0
[ 1415.547287][T18062]  ? __alloc_pages+0x199/0x340
[ 1415.552061][T18062]  charge_memcg+0x54/0x250
[ 1415.556563][T18062]  __mem_cgroup_charge+0x25/0xa0
[ 1415.561507][T18062]  wp_page_copy+0x209/0x1460
[ 1415.566106][T18062]  ? shrink_zones+0x525/0x5d0
[ 1415.570791][T18062]  ? preempt_count_add+0x5e/0xa0
[ 1415.575816][T18062]  do_wp_page+0x2dd/0x780
[ 1415.580149][T18062]  handle_mm_fault+0x5ef/0xa80
[ 1415.584995][T18062]  do_user_addr_fault+0x4a1/0x980
[ 1415.590027][T18062]  exc_page_fault+0x60/0x160
[ 1415.594689][T18062]  asm_exc_page_fault+0x22/0x30
[ 1415.599565][T18062] RIP: 0033:0x7fa69bfc5970
[ 1415.603978][T18062] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1415.623624][T18062] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1415.629688][T18062] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1415.637656][T18062] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
[ 1415.645635][T18062] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1415.646934][T18080] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1415.653590][T18062] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1415.653605][T18062] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
[ 1415.678824][T18062]  ? __x64_sys_socket+0xc/0x50
[ 1415.683602][T18062]  </TASK>
[ 1415.686639][T18062] memory: usage 307188kB, limit 307200kB, failcnt 50377
[ 1415.693629][T18062] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1415.700473][T18062] Memory cgroup stats for /syz0:
[ 1415.700883][T18062] anon 393216
[ 1415.700883][T18062] file 10457088
[ 1415.700883][T18062] kernel 303710208
[ 1415.700883][T18062] kernel_stack 81920
[ 1415.700883][T18062] pagetables 229376
[ 1415.700883][T18062] sec_pagetables 0
[ 1415.700883][T18062] percpu 9172448
[ 1415.700883][T18062] sock 0
[ 1415.700883][T18062] vmalloc 8192
[ 1415.700883][T18062] shmem 10457088
[ 1415.700883][T18062] file_mapped 159744
[ 1415.700883][T18062] file_dirty 0
[ 1415.700883][T18062] file_writeback 0
[ 1415.700883][T18062] swapcached 0
[ 1415.700883][T18062] inactive_anon 376832
[ 1415.700883][T18062] active_anon 10457088
[ 1415.700883][T18062] inactive_file 0
[ 1415.700883][T18062] active_file 0
[ 1415.700883][T18062] unevictable 0
[ 1415.700883][T18062] slab_reclaimable 44896
[ 1415.700883][T18062] slab_unreclaimable 294094760
[ 1415.700883][T18062] slab 294139656
[ 1415.700883][T18062] workingset_refault_anon 0
[ 1415.700883][T18062] workingset_refault_file 5
[ 1415.700883][T18062] workingset_activate_anon 0
[ 1415.796652][T18062] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=18062,uid=0
05:14:11 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x24ec}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:11 executing program 1:
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0xb84c1, 0x0)

05:14:11 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x96030000}}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x3}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8}]}, 0x9c}}, 0x0)

05:14:11 executing program 1:
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000040)=""/83)

[ 1415.811969][T18062] Memory cgroup out of memory: Killed process 18062 (syz-executor.0) total-vm:46336kB, anon-rss:464kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:72kB oom_score_adj:1000
05:14:11 executing program 4:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000280)={[{@size={'size', 0x3d, [0x32, 0x2d]}}]}, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='hugetlbfs\x00', 0x0, &(0x7f0000000280))
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
sendfile(0xffffffffffffffff, r0, 0x0, 0x800000080004103)

05:14:11 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=@RTM_NEWNSID={0x1c, 0x58, 0x531, 0x0, 0x0, {}, [@NETNSA_NSID={0x8}]}, 0x1c}}, 0x0)

05:14:11 executing program 1:
syz_open_dev$usbfs(&(0x7f0000000000), 0x6b16, 0x0)

[ 1415.870969][T18094] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1415.910417][T18095] syz-executor.0 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 1415.910561][T18101] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1415.921108][T18095] CPU: 1 PID: 18095 Comm: syz-executor.0 Tainted: G        W          6.1.0-rc2-syzkaller-00487-gb72018ab8236-dirty #0
[ 1415.942266][T18095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[ 1415.952346][T18095] Call Trace:
[ 1415.955621][T18095]  <TASK>
[ 1415.958629][T18095]  dump_stack_lvl+0xd6/0x122
[ 1415.963234][T18095]  dump_stack+0x11/0x15
05:14:11 executing program 1:
r0 = socket$igmp6(0xa, 0x3, 0x2)
sendmsg$inet6(r0, &(0x7f00000004c0)={&(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c, 0x0}, 0x0)

05:14:11 executing program 1:
r0 = socket$igmp6(0xa, 0x3, 0x2)
sendmsg$inet6(r0, &(0x7f00000004c0)={&(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000340)=[@hoplimit_2292={{0x14}}], 0x18}, 0x0)

[ 1415.967407][T18095]  dump_header+0x98/0x430
[ 1415.971821][T18095]  oom_kill_process+0x100/0x540
[ 1415.976690][T18095]  out_of_memory+0x620/0x880
[ 1415.981277][T18095]  mem_cgroup_out_of_memory+0x13a/0x180
[ 1415.986886][T18095]  mem_cgroup_oom+0x2e7/0x370
[ 1415.991655][T18095]  try_charge_memcg+0x717/0x9c0
[ 1415.996520][T18095]  ? __alloc_pages+0x199/0x340
[ 1416.001292][T18095]  charge_memcg+0x54/0x250
[ 1416.005714][T18095]  __mem_cgroup_charge+0x25/0xa0
[ 1416.010707][T18095]  wp_page_copy+0x209/0x1460
[ 1416.015390][T18095]  ? preempt_count_add+0x5e/0xa0
05:14:11 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x0)

05:14:11 executing program 1:
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={@empty, @private2, @private0})
io_cancel(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000440), 0xffffffffffffffff)
openat$bsg(0xffffffffffffff9c, 0x0, 0x440, 0x0)

[ 1416.020339][T18095]  do_wp_page+0x2dd/0x780
[ 1416.024680][T18095]  handle_mm_fault+0x5ef/0xa80
[ 1416.029461][T18095]  do_user_addr_fault+0x4a1/0x980
[ 1416.034564][T18095]  ? switch_fpu_return+0xc9/0x190
[ 1416.039718][T18095]  exc_page_fault+0x60/0x160
[ 1416.044456][T18095]  asm_exc_page_fault+0x22/0x30
[ 1416.049484][T18095] RIP: 0033:0x7fa69bfc5970
[ 1416.053952][T18095] Code: fe ff 49 39 dc 75 eb 48 8b 44 24 18 89 28 48 83 c4 28 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 44 00 00 41 89 c5 e9 75 fe ff ff <43> 89 2c 84 e9 a3 fe ff ff 0f 1f 80 00 00 00 00 49 39 d4 74 70 48
[ 1416.073572][T18095] RSP: 002b:00007ffd8ac4fe20 EFLAGS: 00010246
[ 1416.079776][T18095] RAX: 0000000043099e86 RBX: 00007fa69c139018 RCX: 0000001b2d120000
[ 1416.088017][T18095] RDX: 0000000000000000 RSI: 0000001b2d120018 RDI: 0000000000000022
[ 1416.096051][T18095] RBP: 0000000043099e86 R08: 0000000000001e86 R09: 0000000043099e8a
[ 1416.104025][T18095] R10: 00007ffd8ac4ffe0 R11: 0000000000000246 R12: 00007fa69c12d000
[ 1416.112008][T18095] R13: 0000000000000001 R14: 0000000000000000 R15: ffffffff83a0d7ec
[ 1416.120065][T18095]  ? __x64_sys_socket+0xc/0x50
[ 1416.124976][T18095]  </TASK>
[ 1416.137907][T18095] memory: usage 307200kB, limit 307200kB, failcnt 50458
[ 1416.144866][T18095] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 1416.151723][T18095] Memory cgroup stats for /syz0:
[ 1416.152043][T18095] anon 393216
[ 1416.152043][T18095] file 10457088
[ 1416.152043][T18095] kernel 303710208
[ 1416.152043][T18095] kernel_stack 81920
[ 1416.152043][T18095] pagetables 229376
[ 1416.152043][T18095] sec_pagetables 0
[ 1416.152043][T18095] percpu 9172448
[ 1416.152043][T18095] sock 0
[ 1416.152043][T18095] vmalloc 8192
[ 1416.152043][T18095] shmem 10457088
[ 1416.152043][T18095] file_mapped 159744
[ 1416.152043][T18095] file_dirty 0
[ 1416.152043][T18095] file_writeback 0
[ 1416.152043][T18095] swapcached 0
[ 1416.152043][T18095] inactive_anon 393216
[ 1416.152043][T18095] active_anon 10457088
[ 1416.152043][T18095] inactive_file 0
[ 1416.152043][T18095] active_file 0
[ 1416.152043][T18095] unevictable 0
[ 1416.152043][T18095] slab_reclaimable 40768
[ 1416.152043][T18095] slab_unreclaimable 294095792
[ 1416.152043][T18095] slab 294136560
[ 1416.152043][T18095] workingset_refault_anon 0
[ 1416.152043][T18095] workingset_refault_file 5
[ 1416.152043][T18095] workingset_activate_anon 0
[ 1416.247602][T18095] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz-executor.0,pid=18095,uid=0
05:14:12 executing program 2:
setsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x17, &(0x7f0000000000), 0xfffffffffffffdbf)

05:14:12 executing program 5:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000a00)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000009c0), 0x111, 0x8}}, 0x20)

05:14:12 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0xfffffe5d)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3c00000010008506000000ff0100000000000000", @ANYRES32=r2, @ANYBLOB="0100d0e1c2ed00001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000380)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x9c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_INGRESS_QOS={0x4, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0x2500}}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA