x4f3/0xfd0
[ 2055.318271][T20099]  ? follow_page_mask+0x1570/0x1570
[ 2055.323494][T20099]  populate_vma_page_range+0x23d/0x320
[ 2055.328964][T20099]  __mm_populate+0x1ea/0x3d0
[ 2055.333567][T20099]  ? faultin_vma_page_range+0x300/0x300
[ 2055.339127][T20099]  ? up_write+0x148/0x470
[ 2055.343472][T20099]  vm_mmap_pgoff+0x1fd/0x270
[ 2055.348073][T20099]  ? randomize_page+0xb0/0xb0
[ 2055.352768][T20099]  ksys_mmap_pgoff+0x79/0x5a0
[ 2055.357461][T20099]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2055.364060][T20099]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2055.369353][T20099]  __do_fast_syscall_32+0x65/0xf0
[ 2055.374386][T20099]  do_fast_syscall_32+0x2f/0x70
[ 2055.379245][T20099]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2055.385578][T20099] RIP: 0023:0xf7fdf549
[ 2055.389646][T20099] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2055.409266][T20099] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2055.417688][T20099] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2055.425660][T20099] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2055.433632][T20099] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2055.441603][T20099] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2055.449575][T20099] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2055.457564][T20099]  </TASK>
[ 2055.460668][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2055.554037][T20099] memory: usage 307200kB, limit 307200kB, failcnt 622
[ 2055.561122][T20099] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2055.569094][T20099] Memory cgroup stats for /syz2:
[ 2055.569314][T20099] anon 110592
[ 2055.569314][T20099] file 311689216
[ 2055.569314][T20099] kernel 2772992
[ 2055.569314][T20099] kernel_stack 98304
[ 2055.569314][T20099] pagetables 77824
[ 2055.569314][T20099] percpu 8288
[ 2055.569314][T20099] sock 0
[ 2055.569314][T20099] vmalloc 0
[ 2055.569314][T20099] shmem 311689216
[ 2055.569314][T20099] zswap 0
[ 2055.569314][T20099] zswapped 0
[ 2055.569314][T20099] file_mapped 4362240
[ 2055.569314][T20099] file_dirty 0
[ 2055.569314][T20099] file_writeback 0
[ 2055.569314][T20099] swapcached 0
[ 2055.569314][T20099] anon_thp 0
[ 2055.569314][T20099] file_thp 0
[ 2055.569314][T20099] shmem_thp 0
[ 2055.569314][T20099] inactive_anon 311631872
[ 2055.569314][T20099] active_anon 167936
[ 2055.569314][T20099] inactive_file 0
[ 2055.569314][T20099] active_file 0
[ 2055.569314][T20099] unevictable 0
[ 2055.569314][T20099] slab_reclaimable 1020464
[ 2055.569314][T20099] slab_unreclaimable 1550848
[ 2055.569314][T20099] slab 2571312
[ 2055.663083][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2055.680664][T20099] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20092,uid=0
[ 2055.697626][T20099] Memory cgroup out of memory: Killed process 20092 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3956kB, UID:0 pgtables:72kB oom_score_adj:1000
15:14:35 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, 0x2000})
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r2, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8)
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:14:35 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 32)
ioctl$KVM_SMI(r2, 0xaeb7) (async, rerun: 32)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xc0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600), 0x0, 0x0, 0x0, 0x0, 0x324e2e215565f3c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x47)
r4 = inotify_init1(0x0)
fcntl$setown(r4, 0x8, 0xffffffffffffffff)
fcntl$getownex(r4, 0x10, &(0x7f0000000140)={0x0, <r5=>0x0})
ptrace$setopts(0x4206, r5, 0x0, 0x0) (async)
fcntl$lock(r0, 0x25, &(0x7f0000000000)={0x0, 0x4, 0x3ed0fdbc, 0x5, r5})
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000300)=@broute={'broute\x00', 0x20, 0x1, 0x1c8, [], 0x0, 0x0, 0x0}, 0x240) (async)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:14:35 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x4c}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:35 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x6}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:35 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r2 = shmget$private(0x0, 0x4000, 0x78000000, &(0x7f0000a38000/0x4000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r2, 0xc)
ioctl$TIOCEXCL(r1, 0x540c)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:14:35 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x490, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:35 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x8}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2057.385611][T20130] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:35 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x60}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:35 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x68}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2057.469497][T20125] ptrace attach of "/root/syz-executor.5 exec"[3664] was attempted by "/root/syz-executor.5 exec"[20125]
[ 2057.504252][T20141] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:35 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0xe}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2057.596250][T20149] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:35 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x6c}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:35 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SMI(r2, 0xaeb7)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xc0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600), 0x0, 0x0, 0x0, 0x0, 0x324e2e215565f3c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x47)
r4 = inotify_init1(0x0)
fcntl$setown(r4, 0x8, 0xffffffffffffffff)
fcntl$getownex(r4, 0x10, &(0x7f0000000140)={0x0, <r5=>0x0})
ptrace$setopts(0x4206, r5, 0x0, 0x0)
fcntl$lock(r0, 0x25, &(0x7f0000000000)={0x0, 0x4, 0x3ed0fdbc, 0x5, r5})
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000300)=@broute={'broute\x00', 0x20, 0x1, 0x1c8, [], 0x0, 0x0, 0x0}, 0x240)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
ioctl$KVM_SMI(r2, 0xaeb7) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000003c0)={0xffffffffffffffff, 0xc0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600), 0x0, 0x0, 0x0, 0x0, 0x324e2e215565f3c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x47) (async)
inotify_init1(0x0) (async)
fcntl$setown(r4, 0x8, 0xffffffffffffffff) (async)
fcntl$getownex(r4, 0x10, &(0x7f0000000140)) (async)
ptrace$setopts(0x4206, r5, 0x0, 0x0) (async)
fcntl$lock(r0, 0x25, &(0x7f0000000000)={0x0, 0x4, 0x3ed0fdbc, 0x5, r5}) (async)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000300)=@broute={'broute\x00', 0x20, 0x1, 0x1c8, [], 0x0, 0x0, 0x0}, 0x240) (async)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

[ 2057.746545][T20153] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2057.927255][T20147] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2057.930012][T20156] ptrace attach of "/root/syz-executor.5 exec"[3664] was attempted by "/root/syz-executor.5 exec"[20156]
[ 2057.948937][T20147] CPU: 1 PID: 20147 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2057.959393][T20147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2057.969470][T20147] Call Trace:
[ 2057.972767][T20147]  <TASK>
[ 2057.975715][T20147]  dump_stack_lvl+0xcd/0x134
[ 2057.980342][T20147]  dump_header+0x10b/0x7f9
[ 2057.984895][T20147]  oom_kill_process.cold+0x10/0x15
[ 2057.990049][T20147]  out_of_memory+0x358/0x14a0
[ 2057.994765][T20147]  ? find_held_lock+0x2d/0x110
[ 2057.999521][T20147]  ? oom_killer_disable+0x270/0x270
[ 2058.004716][T20147]  ? find_held_lock+0x2d/0x110
[ 2058.009480][T20147]  mem_cgroup_out_of_memory+0x206/0x270
[ 2058.015027][T20147]  ? mem_cgroup_margin+0x130/0x130
[ 2058.020126][T20147]  ? lock_downgrade+0x6e0/0x6e0
[ 2058.024979][T20147]  try_charge_memcg+0xf67/0x13f0
[ 2058.029910][T20147]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2058.035895][T20147]  ? lock_downgrade+0x6e0/0x6e0
[ 2058.040766][T20147]  charge_memcg+0x31/0x320
[ 2058.045279][T20147]  __mem_cgroup_charge+0x27/0x90
[ 2058.050236][T20147]  ? folio_flags.constprop.0+0x53/0x150
[ 2058.055803][T20147]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2058.061379][T20147]  ? shmem_write_end+0xe90/0xe90
[ 2058.066338][T20147]  ? folio_flags.constprop.0+0x53/0x150
[ 2058.071912][T20147]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2058.077840][T20147]  shmem_getpage_gfp+0x8af/0x1f30
[ 2058.082906][T20147]  ? shmem_is_huge+0x330/0x330
[ 2058.087704][T20147]  shmem_fault+0x1b4/0x750
[ 2058.092175][T20147]  ? shmem_getpage+0xa0/0xa0
[ 2058.096797][T20147]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2058.102457][T20147]  __do_fault+0x10d/0x610
[ 2058.106798][T20147]  __handle_mm_fault+0x2130/0x39b0
[ 2058.111924][T20147]  ? vm_iomap_memory+0x190/0x190
[ 2058.116892][T20147]  handle_mm_fault+0x1c8/0x780
[ 2058.121666][T20147]  __get_user_pages+0x4f3/0xfd0
[ 2058.126538][T20147]  ? follow_page_mask+0x1570/0x1570
[ 2058.131761][T20147]  populate_vma_page_range+0x23d/0x320
[ 2058.137233][T20147]  __mm_populate+0x1ea/0x3d0
[ 2058.141837][T20147]  ? faultin_vma_page_range+0x300/0x300
[ 2058.147396][T20147]  ? up_write+0x148/0x470
[ 2058.151764][T20147]  vm_mmap_pgoff+0x1fd/0x270
[ 2058.156384][T20147]  ? randomize_page+0xb0/0xb0
[ 2058.161080][T20147]  ? kfree+0x1fb/0x580
[ 2058.165175][T20147]  ksys_mmap_pgoff+0x79/0x5a0
[ 2058.169866][T20147]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2058.176486][T20147]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2058.181800][T20147]  __do_fast_syscall_32+0x65/0xf0
[ 2058.186859][T20147]  do_fast_syscall_32+0x2f/0x70
[ 2058.191728][T20147]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2058.198072][T20147] RIP: 0023:0xf7fdf549
[ 2058.202150][T20147] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
15:14:36 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x1c}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:36 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x74}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:36 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, 0x2000})
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r2, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:14:36 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x7, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

[ 2058.221766][T20147] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2058.230186][T20147] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2058.238183][T20147] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2058.246165][T20147] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2058.254145][T20147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2058.262146][T20147] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2058.270153][T20147]  </TASK>
[ 2058.309981][T20172] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2058.339036][T20147] memory: usage 307152kB, limit 307200kB, failcnt 737
[ 2058.366826][T20147] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2058.496193][T20147] Memory cgroup stats for /syz2:
[ 2058.496439][T20147] anon 110592
[ 2058.496439][T20147] file 311549952
[ 2058.496439][T20147] kernel 2830336
[ 2058.496439][T20147] kernel_stack 98304
[ 2058.496439][T20147] pagetables 77824
[ 2058.496439][T20147] percpu 9472
[ 2058.496439][T20147] sock 0
[ 2058.496439][T20147] vmalloc 0
[ 2058.496439][T20147] shmem 311549952
[ 2058.496439][T20147] zswap 0
[ 2058.496439][T20147] zswapped 0
[ 2058.496439][T20147] file_mapped 4222976
[ 2058.496439][T20147] file_dirty 0
[ 2058.496439][T20147] file_writeback 0
[ 2058.496439][T20147] swapcached 0
[ 2058.496439][T20147] anon_thp 0
[ 2058.496439][T20147] file_thp 0
[ 2058.496439][T20147] shmem_thp 0
[ 2058.496439][T20147] inactive_anon 311492608
[ 2058.496439][T20147] active_anon 167936
[ 2058.496439][T20147] inactive_file 0
[ 2058.496439][T20147] active_file 0
[ 2058.496439][T20147] unevictable 0
[ 2058.496439][T20147] slab_reclaimable 1020464
[ 2058.496439][T20147] slab_unreclaimable 1603960
[ 2058.496439][T20147] slab 2624424
[ 2058.619751][T20147] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20142,uid=0
[ 2058.644088][T20147] Memory cgroup out of memory: Killed process 20142 (syz-executor.2) total-vm:54492kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3692kB, UID:0 pgtables:72kB oom_score_adj:1000
15:14:38 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r2 = shmget$private(0x0, 0x4000, 0x78000000, &(0x7f0000a38000/0x4000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r2, 0xc)
ioctl$TIOCEXCL(r1, 0x540c)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)
unshare(0x40000400) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2) (async)
shmget$private(0x0, 0x4000, 0x78000000, &(0x7f0000a38000/0x4000)=nil) (async)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r2, 0xb) (async)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r2, 0xc) (async)
ioctl$TIOCEXCL(r1, 0x540c) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50) (async)

15:14:38 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x60}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:38 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x7a}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:38 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, 0x2000})
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r2, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8)
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:14:38 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0xa, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:38 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, 0x2000})
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:14:38 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2060.600708][T20184] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:38 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:38 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x2}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2060.774962][T20201] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:38 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x2}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:38 executing program 5:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x83, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:39 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x3}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2060.996526][T20209] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2061.135374][T20197] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2061.145932][T20197] CPU: 1 PID: 20197 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2061.156366][T20197] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2061.166416][T20197] Call Trace:
[ 2061.169681][T20197]  <TASK>
[ 2061.172603][T20197]  dump_stack_lvl+0xcd/0x134
[ 2061.177202][T20197]  dump_header+0x10b/0x7f9
[ 2061.181616][T20197]  oom_kill_process.cold+0x10/0x15
[ 2061.186724][T20197]  out_of_memory+0x358/0x14a0
[ 2061.191401][T20197]  ? find_held_lock+0x2d/0x110
[ 2061.196192][T20197]  ? oom_killer_disable+0x270/0x270
[ 2061.201413][T20197]  ? find_held_lock+0x2d/0x110
[ 2061.206181][T20197]  mem_cgroup_out_of_memory+0x206/0x270
[ 2061.211728][T20197]  ? mem_cgroup_margin+0x130/0x130
[ 2061.216830][T20197]  ? lock_downgrade+0x6e0/0x6e0
[ 2061.221679][T20197]  try_charge_memcg+0xf67/0x13f0
[ 2061.226623][T20197]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2061.232596][T20197]  ? lock_downgrade+0x6e0/0x6e0
[ 2061.237441][T20197]  charge_memcg+0x31/0x320
[ 2061.241861][T20197]  __mem_cgroup_charge+0x27/0x90
[ 2061.246811][T20197]  ? folio_flags.constprop.0+0x53/0x150
[ 2061.252353][T20197]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2061.257893][T20197]  ? shmem_write_end+0xe90/0xe90
[ 2061.262820][T20197]  ? find_held_lock+0x2d/0x110
[ 2061.267574][T20197]  ? folio_flags.constprop.0+0x53/0x150
[ 2061.273118][T20197]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2061.279006][T20197]  shmem_getpage_gfp+0x8af/0x1f30
[ 2061.284030][T20197]  ? shmem_is_huge+0x330/0x330
[ 2061.288789][T20197]  shmem_fault+0x1b4/0x750
[ 2061.293196][T20197]  ? shmem_getpage+0xa0/0xa0
[ 2061.297776][T20197]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2061.303406][T20197]  __do_fault+0x10d/0x610
[ 2061.307723][T20197]  __handle_mm_fault+0x2130/0x39b0
[ 2061.312826][T20197]  ? vm_iomap_memory+0x190/0x190
[ 2061.317766][T20197]  handle_mm_fault+0x1c8/0x780
[ 2061.322548][T20197]  __get_user_pages+0x4f3/0xfd0
[ 2061.327394][T20197]  ? follow_page_mask+0x1570/0x1570
[ 2061.332593][T20197]  populate_vma_page_range+0x23d/0x320
[ 2061.338052][T20197]  __mm_populate+0x1ea/0x3d0
[ 2061.342634][T20197]  ? faultin_vma_page_range+0x300/0x300
[ 2061.348169][T20197]  ? up_write+0x148/0x470
[ 2061.352490][T20197]  vm_mmap_pgoff+0x1fd/0x270
[ 2061.357069][T20197]  ? randomize_page+0xb0/0xb0
[ 2061.361733][T20197]  ? __ct_user_enter+0x19f/0x1d0
[ 2061.366669][T20197]  ksys_mmap_pgoff+0x79/0x5a0
[ 2061.371334][T20197]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2061.377914][T20197]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2061.383191][T20197]  __do_fast_syscall_32+0x65/0xf0
[ 2061.388207][T20197]  do_fast_syscall_32+0x2f/0x70
[ 2061.393048][T20197]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2061.399366][T20197] RIP: 0023:0xf7fdf549
[ 2061.403428][T20197] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2061.423037][T20197] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2061.431449][T20197] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2061.439406][T20197] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2061.447362][T20197] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2061.455317][T20197] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2061.463285][T20197] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2061.471372][T20197]  </TASK>
[ 2061.513247][T20197] memory: usage 307200kB, limit 307200kB, failcnt 773
[ 2061.520189][T20197] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2061.528725][T20197] Memory cgroup stats for /syz2:
[ 2061.528952][T20197] anon 110592
[ 2061.528952][T20197] file 311263232
[ 2061.528952][T20197] kernel 3198976
[ 2061.528952][T20197] kernel_stack 98304
[ 2061.528952][T20197] pagetables 77824
[ 2061.528952][T20197] percpu 15392
[ 2061.528952][T20197] sock 0
[ 2061.528952][T20197] vmalloc 0
[ 2061.528952][T20197] shmem 311263232
[ 2061.528952][T20197] zswap 0
[ 2061.528952][T20197] zswapped 0
[ 2061.528952][T20197] file_mapped 3936256
[ 2061.528952][T20197] file_dirty 0
[ 2061.528952][T20197] file_writeback 0
[ 2061.528952][T20197] swapcached 0
[ 2061.528952][T20197] anon_thp 0
[ 2061.528952][T20197] file_thp 0
[ 2061.528952][T20197] shmem_thp 0
[ 2061.528952][T20197] inactive_anon 311205888
[ 2061.528952][T20197] active_anon 167936
[ 2061.528952][T20197] inactive_file 0
[ 2061.528952][T20197] active_file 0
[ 2061.528952][T20197] unevictable 0
15:14:39 executing program 2:
unshare(0x40000400) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r0 = socket$inet_tcp(0x2, 0x1, 0x0) (rerun: 32)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r2 = shmget$private(0x0, 0x4000, 0x78000000, &(0x7f0000a38000/0x4000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r2, 0xc) (async)
ioctl$TIOCEXCL(r1, 0x540c) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:14:39 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="b1ba2e39102dbbad454c95b8806d3ba7074a6c5343147863fa6508d840ac209cdc7c98f38a1cba9f814eb82c514d1ec99006165125abd7ec43678d9a4f85a22276a8afe6fb989b08fb3f0f4298c3f104c92030bd272e824effbc5207392ee0e5a049da251365162137ea490a9e1b6611d5798615101772acf9063c95174abc2237d19fcbd51033660bee98addf79f873c95defed253b00675aeb62205cda9fa4ca01d117c704efd95636ce0d46dd90867969bf5bc8e05af3f459514126baf148488322c2c9152a0872b52660ab79e42a4da81b41b503e034ec26d7afa815c4c3a9be7c4374f57042653bef9f47268ab67abca30d0f8b3bd4a46e40f47268d1e2efc2e06c9da72238e06214c79a8c1fc8ed0677fd900014e9eb5885e1f5379d984bae384fc3543dba129e151396de172e92dbd9e53a"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:39 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x5}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:39 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, 0x2000})
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:14:39 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x3}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2061.528952][T20197] slab_reclaimable 1025928
[ 2061.528952][T20197] slab_unreclaimable 1961896
[ 2061.528952][T20197] slab 2987824
[ 2061.624807][T20197] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20193,uid=0
[ 2061.640759][T20197] Memory cgroup out of memory: Killed process 20193 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3428kB, UID:0 pgtables:72kB oom_score_adj:1000
15:14:39 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x6}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:39 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f0000001840)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000001880)=0x14)
sendmmsg$inet(r0, &(0x7f0000001900)=[{{&(0x7f0000000140)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000001200)=[{&(0x7f0000000180)="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", 0x1000}, {&(0x7f0000001180)="c953a1953804c5c989659984c6c4b3a7396a13b080", 0x15}, {&(0x7f00000011c0)="35d5d2c23063f771639be9104265b95f39924ddb8476ed1a920a4aa2344e779d194cbe91", 0x24}], 0x3, &(0x7f0000001280)=[@ip_tos_int={{0x10, 0x0, 0x1, 0x9}}, @ip_retopts={{0x24, 0x0, 0x7, {[@timestamp_addr={0x44, 0x14, 0x6d, 0x1, 0xb, [{@local, 0x631d}, {@private=0xa010101, 0x9}]}, @noop]}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @multicast2, @loopback}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @remote, @rand_addr=0x64010101}}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x10000}}, @ip_tos_int={{0x10, 0x0, 0x1, 0xf5be}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x7ff}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x40}}, @ip_tos_int={{0x10}}], 0xb4}}, {{0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f0000001340)="c4c74e52dbaf1390b3c641d30989fe19781d1dec3dc2fca78e07eb942f1b1d4080f66fa72fbe6c3cf7502b816b7078736d8ca53aa235d1df1b68b268bc550cc9ab14d7865d6a3e5000cf932456fe5a42eb128b4e6ed667186f013e9e12f52197f08ac04c6c539bbc2dbe67316cb802445513ccfa9791fb32", 0x78}, {&(0x7f00000013c0)="d3e76ac9685f38e7b09bfc3cc6713c23dc1a9fe91e87f45a7f163cb7ea9e6441fcea8d5e8030843a392f91c88693b39ab6b53a94a691ae6c94eaaafcf2f597978d4c28886b551641665bb892387692527cce69e63b0073cf304c7a098caa527fb1a9ecf42f3258007573445347c3b57e06df7fdde889a62791d616e5bf94bf0b19a292c5be6e4ecdbb83170eca3d6da217cb8cd2ffcbc9ecdefa05414cb5e8402bb01698a92b45078ec1e3e0195b206c325aa635e1da04c1a0a7e1d4d311769c62f406df7ac6e760a88aa51637240e05691205d5d0c78fd67ad7ca61018eba9a62d8a23ee0d65f7971d1fe6c10d6eb4f2a42d45774c5fede", 0xf8}], 0x2}}, {{0x0, 0x0, &(0x7f0000001800)=[{&(0x7f0000001500)="4e4cb9c6d61debf61077db4ba6fbca1ca4fbdc634fdacae7233ef11a9491560ef3708ccd02e614bb6d8d312777bb757a40636ec2004277f04c367bb36bff215fc19f36da6456daf042fe0fb11fb0748f6f5cca762705ef5b5e1d94ff7d17065e248f15c4edc869b413e5f7cd351bc9751e6c369703dac240d46e15cc04db69d8853be1eba8b18ddb647e21eb3cb3e4d07ebd3ffb695a2e0ed0c376a20bc0e8fbe0d689f0631712275f", 0xa9}, {&(0x7f00000015c0)="7f85cde3d1d4ebadfcd17c2feae33dd9cca3f1cc36d6d17ac7c5812b7c5234d1b465c58e986fd6ab975f2708623711d29c3d3e96c9dab4387e9a9715e1b229eb5b15c8d08ea3ebd6bbb6fef44cb634cda6fa17c2807f466015d76a35a50ea3e2070438bc2ab9bd313a43aa9031b2adac2ac2637c846150e92cfbeea26e81a9306b9461e9324a6fe60fedf9a009db649940e6bdb31852599059f1cc373cb88a167098be89902e57381fba6aa6ead98f0be4270f6d6256c694df873ed60cfa1ad1c5", 0xc1}, {&(0x7f00000016c0)="3a3e2effe374bdc4342921aeb8d37f0a7109f99517345ffd7904ffde52988f038f3a7575923960f96f", 0x29}, {&(0x7f0000001700)="de324a7c5dcae5c866bf716f742c7b08db82533a77ae3f702c648ae257", 0x1d}, {&(0x7f0000001740)="4e29d84c947ac0dfdd2e297da55d2890208f586fd31655af62516ba9bc53691a904925d1a73b029b6905adf5c3e54e1f9cd9abe1ae956687374a6383f4dbb76b3711fd08fc3fba8480e7fc06830e9a14e7011b84f5da257c41f0dc2cd54def77b6197ad51f1ec09dac012b0a39bb58c3e34ed069e6976726b9f48ac41c454b0a32fa4ffb4b0bec", 0x87}], 0x5, &(0x7f00000018c0)=[@ip_pktinfo={{0x18, 0x0, 0x8, {r1, @dev={0xac, 0x14, 0x14, 0x2f}, @dev={0xac, 0x14, 0x14, 0x19}}}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x6}}], 0x28}}], 0x3, 0x800)
mlockall(0x2)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r2, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)
r3 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f000069b000/0x4000)=nil, 0x4000}})

[ 2061.708194][T20218] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:39 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x4}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:39 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x8}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2061.928893][T20234] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:40 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x5}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:40 executing program 5:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x2}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:40 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0xe}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:40 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00', 0x7}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:40 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x1c}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2062.114666][T20239] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:40 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000004c0)={[], 0x0, 0x202})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0xffffff02)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, &(0x7f00000002c0)={[{0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}]})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000080))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:14:40 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x6}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2062.323658][T20252] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:40 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x60}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:40 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00', 0x700}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

[ 2062.552457][T20233] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2062.617976][T20233] CPU: 0 PID: 20233 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2062.628496][T20233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2062.638543][T20233] Call Trace:
[ 2062.641815][T20233]  <TASK>
[ 2062.644736][T20233]  dump_stack_lvl+0xcd/0x134
[ 2062.649321][T20233]  dump_header+0x10b/0x7f9
[ 2062.653730][T20233]  oom_kill_process.cold+0x10/0x15
[ 2062.658833][T20233]  out_of_memory+0x358/0x14a0
[ 2062.663521][T20233]  ? find_held_lock+0x2d/0x110
[ 2062.668299][T20233]  ? oom_killer_disable+0x270/0x270
[ 2062.673494][T20233]  ? find_held_lock+0x2d/0x110
[ 2062.678263][T20233]  mem_cgroup_out_of_memory+0x206/0x270
[ 2062.683822][T20233]  ? mem_cgroup_margin+0x130/0x130
[ 2062.688941][T20233]  ? lock_downgrade+0x6e0/0x6e0
[ 2062.693790][T20233]  try_charge_memcg+0xf67/0x13f0
[ 2062.698738][T20233]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2062.704718][T20233]  ? lock_downgrade+0x6e0/0x6e0
[ 2062.709569][T20233]  charge_memcg+0x31/0x320
[ 2062.713984][T20233]  __mem_cgroup_charge+0x27/0x90
[ 2062.718917][T20233]  ? folio_flags.constprop.0+0x53/0x150
[ 2062.724459][T20233]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2062.730014][T20233]  ? shmem_write_end+0xe90/0xe90
[ 2062.734947][T20233]  ? folio_flags.constprop.0+0x53/0x150
[ 2062.740484][T20233]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2062.746372][T20233]  shmem_getpage_gfp+0x8af/0x1f30
[ 2062.751396][T20233]  ? shmem_is_huge+0x330/0x330
[ 2062.756155][T20233]  shmem_fault+0x1b4/0x750
[ 2062.760567][T20233]  ? shmem_getpage+0xa0/0xa0
[ 2062.765158][T20233]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2062.770805][T20233]  __do_fault+0x10d/0x610
[ 2062.775137][T20233]  __handle_mm_fault+0x2130/0x39b0
[ 2062.780254][T20233]  ? vm_iomap_memory+0x190/0x190
[ 2062.785203][T20233]  handle_mm_fault+0x1c8/0x780
[ 2062.789961][T20233]  __get_user_pages+0x4f3/0xfd0
[ 2062.794946][T20233]  ? follow_page_mask+0x1570/0x1570
[ 2062.800171][T20233]  populate_vma_page_range+0x23d/0x320
[ 2062.805635][T20233]  __mm_populate+0x1ea/0x3d0
[ 2062.810225][T20233]  ? faultin_vma_page_range+0x300/0x300
[ 2062.815783][T20233]  ? up_write+0x148/0x470
[ 2062.820119][T20233]  vm_mmap_pgoff+0x1fd/0x270
[ 2062.824722][T20233]  ? randomize_page+0xb0/0xb0
[ 2062.829393][T20233]  ? kfree+0x1fb/0x580
[ 2062.833462][T20233]  ksys_mmap_pgoff+0x79/0x5a0
[ 2062.838142][T20233]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2062.844741][T20233]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2062.850024][T20233]  __do_fast_syscall_32+0x65/0xf0
[ 2062.855054][T20233]  do_fast_syscall_32+0x2f/0x70
[ 2062.859912][T20233]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2062.866242][T20233] RIP: 0023:0xf7fdf549
[ 2062.870322][T20233] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2062.889929][T20233] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2062.898334][T20233] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2062.906298][T20233] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2062.914262][T20233] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2062.922227][T20233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2062.930271][T20233] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2062.938255][T20233]  </TASK>
[ 2062.941343][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2062.977605][T20233] memory: usage 307200kB, limit 307200kB, failcnt 797
[ 2063.003847][T20233] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2063.022270][T20233] Memory cgroup stats for /syz2:
[ 2063.022518][T20233] anon 110592
[ 2063.022518][T20233] file 310599680
[ 2063.022518][T20233] kernel 3862528
[ 2063.022518][T20233] kernel_stack 98304
[ 2063.022518][T20233] pagetables 77824
[ 2063.022518][T20233] percpu 23680
[ 2063.022518][T20233] sock 0
[ 2063.022518][T20233] vmalloc 0
[ 2063.022518][T20233] shmem 310599680
[ 2063.022518][T20233] zswap 0
[ 2063.022518][T20233] zswapped 0
[ 2063.022518][T20233] file_mapped 3272704
[ 2063.022518][T20233] file_dirty 0
[ 2063.022518][T20233] file_writeback 0
[ 2063.022518][T20233] swapcached 0
[ 2063.022518][T20233] anon_thp 0
[ 2063.022518][T20233] file_thp 0
[ 2063.022518][T20233] shmem_thp 0
[ 2063.022518][T20233] inactive_anon 310542336
[ 2063.022518][T20233] active_anon 167936
[ 2063.022518][T20233] inactive_file 0
[ 2063.022518][T20233] active_file 0
[ 2063.022518][T20233] unevictable 0
[ 2063.022518][T20233] slab_reclaimable 1057760
[ 2063.022518][T20233] slab_unreclaimable 2583424
[ 2063.022518][T20233] slab 3641184
[ 2063.116145][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2063.171288][T20233] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20230,uid=0
[ 2063.269140][T20233] Memory cgroup out of memory: Killed process 20230 (syz-executor.2) total-vm:54492kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:2900kB, UID:0 pgtables:72kB oom_score_adj:1000
15:14:41 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f0000001840)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000001880)=0x14)
sendmmsg$inet(r0, &(0x7f0000001900)=[{{&(0x7f0000000140)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000001200)=[{&(0x7f0000000180)="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", 0x1000}, {&(0x7f0000001180)="c953a1953804c5c989659984c6c4b3a7396a13b080", 0x15}, {&(0x7f00000011c0)="35d5d2c23063f771639be9104265b95f39924ddb8476ed1a920a4aa2344e779d194cbe91", 0x24}], 0x3, &(0x7f0000001280)=[@ip_tos_int={{0x10, 0x0, 0x1, 0x9}}, @ip_retopts={{0x24, 0x0, 0x7, {[@timestamp_addr={0x44, 0x14, 0x6d, 0x1, 0xb, [{@local, 0x631d}, {@private=0xa010101, 0x9}]}, @noop]}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @multicast2, @loopback}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @remote, @rand_addr=0x64010101}}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x10000}}, @ip_tos_int={{0x10, 0x0, 0x1, 0xf5be}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x7ff}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x40}}, @ip_tos_int={{0x10}}], 0xb4}}, {{0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f0000001340)="c4c74e52dbaf1390b3c641d30989fe19781d1dec3dc2fca78e07eb942f1b1d4080f66fa72fbe6c3cf7502b816b7078736d8ca53aa235d1df1b68b268bc550cc9ab14d7865d6a3e5000cf932456fe5a42eb128b4e6ed667186f013e9e12f52197f08ac04c6c539bbc2dbe67316cb802445513ccfa9791fb32", 0x78}, {&(0x7f00000013c0)="d3e76ac9685f38e7b09bfc3cc6713c23dc1a9fe91e87f45a7f163cb7ea9e6441fcea8d5e8030843a392f91c88693b39ab6b53a94a691ae6c94eaaafcf2f597978d4c28886b551641665bb892387692527cce69e63b0073cf304c7a098caa527fb1a9ecf42f3258007573445347c3b57e06df7fdde889a62791d616e5bf94bf0b19a292c5be6e4ecdbb83170eca3d6da217cb8cd2ffcbc9ecdefa05414cb5e8402bb01698a92b45078ec1e3e0195b206c325aa635e1da04c1a0a7e1d4d311769c62f406df7ac6e760a88aa51637240e05691205d5d0c78fd67ad7ca61018eba9a62d8a23ee0d65f7971d1fe6c10d6eb4f2a42d45774c5fede", 0xf8}], 0x2}}, {{0x0, 0x0, &(0x7f0000001800)=[{&(0x7f0000001500)="4e4cb9c6d61debf61077db4ba6fbca1ca4fbdc634fdacae7233ef11a9491560ef3708ccd02e614bb6d8d312777bb757a40636ec2004277f04c367bb36bff215fc19f36da6456daf042fe0fb11fb0748f6f5cca762705ef5b5e1d94ff7d17065e248f15c4edc869b413e5f7cd351bc9751e6c369703dac240d46e15cc04db69d8853be1eba8b18ddb647e21eb3cb3e4d07ebd3ffb695a2e0ed0c376a20bc0e8fbe0d689f0631712275f", 0xa9}, {&(0x7f00000015c0)="7f85cde3d1d4ebadfcd17c2feae33dd9cca3f1cc36d6d17ac7c5812b7c5234d1b465c58e986fd6ab975f2708623711d29c3d3e96c9dab4387e9a9715e1b229eb5b15c8d08ea3ebd6bbb6fef44cb634cda6fa17c2807f466015d76a35a50ea3e2070438bc2ab9bd313a43aa9031b2adac2ac2637c846150e92cfbeea26e81a9306b9461e9324a6fe60fedf9a009db649940e6bdb31852599059f1cc373cb88a167098be89902e57381fba6aa6ead98f0be4270f6d6256c694df873ed60cfa1ad1c5", 0xc1}, {&(0x7f00000016c0)="3a3e2effe374bdc4342921aeb8d37f0a7109f99517345ffd7904ffde52988f038f3a7575923960f96f", 0x29}, {&(0x7f0000001700)="de324a7c5dcae5c866bf716f742c7b08db82533a77ae3f702c648ae257", 0x1d}, {&(0x7f0000001740)="4e29d84c947ac0dfdd2e297da55d2890208f586fd31655af62516ba9bc53691a904925d1a73b029b6905adf5c3e54e1f9cd9abe1ae956687374a6383f4dbb76b3711fd08fc3fba8480e7fc06830e9a14e7011b84f5da257c41f0dc2cd54def77b6197ad51f1ec09dac012b0a39bb58c3e34ed069e6976726b9f48ac41c454b0a32fa4ffb4b0bec", 0x87}], 0x5, &(0x7f00000018c0)=[@ip_pktinfo={{0x18, 0x0, 0x8, {r1, @dev={0xac, 0x14, 0x14, 0x2f}, @dev={0xac, 0x14, 0x14, 0x19}}}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x6}}], 0x28}}], 0x3, 0x800)
mlockall(0x2)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r2, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)
r3 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f000069b000/0x4000)=nil, 0x4000}})
unshare(0x40000400) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
getpeername$packet(0xffffffffffffffff, &(0x7f0000001840)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000001880)=0x14) (async)
sendmmsg$inet(r0, &(0x7f0000001900)=[{{&(0x7f0000000140)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000001200)=[{&(0x7f0000000180)="a096475b37becea817009b6b7e370f48640fc4d04e2b782041992fec872eedf03971fff94f6349103ee6768cd6ed39f0483c0fba678ad18d107907e8ad0cf67ce8f70ffe4b069e4bb3b5db92b57e2e384558c7f5e6bec6ce2efeeee07a5ae06f49adb045dd7fe53525116d39e3f41ac1dd3896dad02cae0abcd2fda80fdb596c2c53610ab9ac494ab5d02233c3779bf57be6ce6951d8e82f03960befc3aec439b1571279cc4f0ef4f10f271fd6ad68feedcccf84b45aa3127e7b2fb3489eb9e6341561a36f47ea650216c6ab90c54aae6ba27f7215644d1a7f68d3501eed4b449dcfaf4a2a7d157e60ab5183ae28cae0ddbd81a219314835610fdab4d73a6dcc65e2a3ba82facda3ede85ffa1dbd3eda870b3eba88466fb934f1e565e8497283ad482fde698fa759dd7105f850035ace78e0a5116e7128bf3fb7b15a7f564c67838b554bc72613a570569c658ffb3ecf8635d22166e4d93ccb6d353cd93c73e832d33bc59349d4ddd1bd362d0226ffb8552b8ca1d5bbda0c3548dad9dfd380819bde0115c5fd2fe4507470d2e5b438755fda268888412b99c4b887f6719ba8ae7f57547cb6598402fbbfbb8a7fb8d0fc640f756cfeebc7878187cea7ca6f99e9cfa789d1022bab8e8bf84a980897c4c070ae6c4a27902f5c2439146ba9fd73e29e787225d195a2974183a5b52b791ad574b59786621f12f43d916adb5790512c4255c5d6913939a8e014c3da2deb261328a8fe96609f1affc82bb209384f62c37f6faafbec5ac44250c4f60cdd886d8ea81d34a47729b8fa8cf797e4b7fc688ec1c28b82aa19313d909517bf65f280c10a0c5977c71b57426d298590179d71df65cd910ae0348cf03c66d8b374e985d8f8f7a489f10c6a157701a9bd5cf017392a5424db051ecc18f2acd5b1c618c3c8beaa99689f978b3f5e575c1ddfdc30206d6fd9718f278dde4fa04a3c75a0d3ee06474d3a3b7c28b301ea9f36e45f2819a9145452ebe421ec98efc0b29ce431762266825afeb035686189a059746103f014d2b926f671dae52d476cd7e345f3efc86de1c3fdbac5a52e4d726964f0b3cc2d872f64d57014030465b04089c08e3ef912d97a30344cb82310c80b79e7d25b298a4c6dde4a051d158ed642ce82fece66ffe2c05f3a7543aa241514fa29cd0b5e57685f228da718a5de7a460c82dd464b4265a5b4f34f924c6b49eff9d2bee5a4adc7dc7294bf452acd23a34d5577f9eaa3871a504feec1e121cbc1fce76c322127d50e19986548877dfaf9c0b7be8f1acf65924d2ddd0bd0a4065408127f475313f5608eb23cfc96fbbcec181eabb75640913f556863594b84dc2478e88806c2420de1840f5af9713718a25ce4187d4535b5290ec6f0563573c89f861c66cc55237b47582d9585dcd15c850dacd763cb3b5b4168210b9f9db53dde728cf373471de9981d82bdc064e9d8f22134ec17dba3f32d4f9df8968bd20c7bb022a95ee682e3dca5dcc3d8b06da8d1a23da8430996d474fe0ea729562afa804042659c46d924b35502d1b6c650d9408e14fe42c0f5ddca7f3581e5aa10b9d2d65daf209c1118f6deee9c2fa70f4677db20e6e78ea243277b8d948770dcd65cf2b019f769959e747414913f85d82ea9496a75145055cb4d37d193f23f1f61b1f628458052a55210ac7e6b6ea1e7646c4788d48954ad8bbd7be6f5aa261c8bd4898afd1084e74a7174e259a0c02438510dfec081fd66cbfeedef25d1fb1af47492731e42d26a11bb48dadee2030a248eb74ae52477ee8b1bdee46df4dd39ef3b623ecd44d2a4acea69f6005a3fe8f1b27e467afabb945724144536beab041fbd52494e962c30f5df11718a90854b85a960e199ccc468dde28ddb45246151c71d32a62dbc15c3bdcae5d8f3d571c301dec534312e09279c226e1aa7ff0439ba3d3041e12cc9f05ab33b9438854a5a514393659ca832768b492b2ba6bf40701bbf5ead7b1071da0f227281aaaa16471fa5def17e80f64b56feaee9583c639bed28d21775d36cb8b5eedadfea38d0ba656d33d36e91c2b74a0604fb10b7d9ebd65e3e056e78371b89fd523a2b1f774abfd92a0083e8b40c029bc162a33ac28be535387a30e1a8d274e5975337ac4ef514b52c5102381238fd5ee926e6ae87095e2ca1379139386d4f1ace1be003f0992508590df5238563e40253cc4f4cdf1b0d6a9b074d3c3cc875dc346f3fa7f6c3a77ba16ac793cce25903a501c8bf044eea0bc5c7aeeeef3fb0350f236122f6bdd7d5c90a0af8f8710525ecf178918aafa1746ab9a8794bf3c0baa42bdb0ce9dc2bdb721d59bdcfbd1da950332ac45856d601663cc4822b16523026ee03572de841befc06f085a7454e0e301aab00d411c760e8448dc4591bffac007fa01e8c3cdc7b3dd15936c94a8334235cc494498a8c3ccbe2f30aa2dbae29f5a02bb8c71f62b27e25edfc1a7a42058ae7c29bfc4ea6b28944f7ec7e538076b053a12912f0352f9fae8f80377420abb72a4576ccafa70ade71d155de6448a9dc54948896eb75a5b575c1e5e7c32acb00c3c6071f7c6dae93571d7a0bcfd558e5ac6d0f70176d1b685b884ba208c663cc59403bc1eb3839efc0ad99fedd9da2de84e4cbc928dca255abec25dd7b5b8e197c173e5be6f93913964edd9da55b6e1bec4cb7797c6120bbe5b4630da317d4ffdbe9871108997d25c1b385edc59c2f1adbc4b00fddff37e3000988eb08f8df0c6b1365a9f505746529c30649640f33e723ef1cc3d6ef8d941a7297ecf63d6dc7a77fa458467a0cbc1ffe232623fdbec85ce10eef9acd20a1678b25812e25d9559c606b28e2dec05ffa365ed72a9db5863591d8e31cf485a308c5ee38d4512e60088f04c4001808461582fb39ec62fa8ba2631530311ddadd4d03940c286b4da5ed0b6e736d49b4ab24eef80171c17d062ce23e51df5597af173fd1860d6a96bb89e72f9b564da695993d311e17ee5eb604068e30d6a0648af2f9bfd2fb3c86c8c4336cd428557edae6e424922d9529aafa7f08d880ee524609bad34081a7af3b6a392bd386e7fd280921f12b83804b433f82e04ab8843be8ed557f6747c84131e39ac8fffae8c5fe92eef8c89b3e07026d8d0a2381cacf7e6f22bb774f89fc255fb57acb654b5a473d93bd8aacb0e298a2b468808322ed2a16dccee044cd4ef2f3203a65c69c345d65eab63bd35f4bc859f48e546aa1dbc75080dda42538cdcf313566e9aa7cddc931cc1f09388051ae00271c41a07b56daa04b4b46bc2185564f36aca0bd6ee8bdd158a670ba5261edd1a6d28dd61fc8da9921097344764b64c8c8df8cf891dfdba704bd2506841be95cb2fa1fd085ec54251a75a53ec3a688fb7bd23ed7e07fd65c47d7241ba418da5c4cc9584ace0bf49ccccce8bdf896ec70019f85452f82aa6483c6a316d98d5ba97aa94340a15059b154c4faf2e64ca5847a43cb83f274fb9587535d05e9a6c515ae64f1db9d3d71eab7cc73232a58831aace8f01cbade66cd4cbf60d3bda5e871162ff62d86063ffca0a160a281b0bd8229c6711a0048aedd9bc9937c73e829b7a42f1765fd7f3466eed6bf33b26bb7dbbe9d835ade07048a56c942b4591ff1bf4ef93dd83811f73bc8b91547a547f92ea47f63bcad3875d8c3726f437beae1385e26476edd0f5049f6d9d49594a7fd4d3dceb56c967ec310f7f83310f9fd80f6a0abfb817d35e7a0953c927635e423796177fa38d9cb01d620536107394e48eb11ab045bb2beccd9f0540090684a06e5cabf36a2fe792fe295ce3da93affc2ceae537fdaddde99e93609d40eac941642d815ff90e637e996e273dbe9509d50ab13ab1a6ce77d66f455594e998bb16bf882838d475a7724550f4afa094cd55203238469df6f01e721a18d400882f910219ce9b6de2aae0f61eecc24e0eec5f03f62747ef555e835035d03115cbea4cbc480a32a002bfb11235eb771fd3bb5d945e5e11e4d2a5d762746ce18ccb07e7ea63a195f8833804e8bf85366c6293eeaae97250285a9d84e51a7a4b63c926ddd0273c4ece3a23a753bff32ac33e15d00f1db923957475ece44ee9b1e6cdec92fb65d8a56775e4666b4bf9f7512c8e4e44b95a218758fb36c4d226610838d8f9e7f98b16972447090247f610f52f1551cacb85895566bd81251eb0812b4f59fc78aad3b4b10bab9859da75b10582996f1c93df8e6857d3b5c040b87b19f8fd999cb7e5183fbebbed9adcc7974f3b2660eb7c2dacd5b524e14f121f708f29f384554a3a8ca986119656be744a41a95dea28acbe029572e835f6426e9be0b2d94496b832ef77169517ebd56bb08fb0384ba7929727fc73e9ce6c9f0d2da9c55becf862ed6fdd92c902ac3e6a6a1d67198ef95d53147e58f737cef2c59f6e777e7c11474084003ce58b5ea1b3a202925bb2581328b2aea63d7a06411bf655f9f9938bf8e5eed175e4ce8250d3050778ccf897db09a628e8956822f6dd5e61a59c21389cbf85ec6ae048c30bf92aa8b6d6fc8fca5df20478294b986fd54f7a3faeea25a7b6ec52cd52ee90a491f190cb276956836a9bdc945a15a1bda39d1463c4d0f52413731bf517e117d576d8feaedd8c4aa7782ad36b9b797ca02cc09dc3eb84cd977f97ccbd58130a9bf5fa143f16207f4a72283a777fa039b75bb5250afab217b9fcb71108f171a41d702d20fa97d3f5c169d9adfeed046d316a55494ad6f7d3cfcb6b9d93f62f2f514eadc2771a8c2f20b97b56cda14b2cb5127ae24d081ba8c7e8b0f72939fd46bbb5139e5ad67272488f3fe96ec045b13ee2d97dfcef080a5245c8b55e575faff1b83bda11479de1ea0adac1774d5732ef326fd00f60b76c3971022960fd8e17b83d49c10594470aaafce7e089efc5633d475cf3cf94b713bc192c3c381f7d0b9b9a988d800fbdf7eecb4c50d8aa472d7a6688bf8d5e12df2f28c211b0fac561aba4f4c9a2b2099a4f559acc073bdcb34e468f01d7a8b575d5ce0f4f2a64adb172b111ffb325a6504320d4fe7a4e8d21bb2d11396e2b9edb530f3323d61fc98aaf685147ce7a1755e738650ee4beb1b26c989a162e84249bdae9999869dc87e124d8b9807fabb263f17c9110b27545414ed1cdc7c60b7fc659bd52f1685407f9910f5424402730c866da8e33df6f303fb54795d6679f6d3ab52806468e76ac1b2cef7289b63886aa917a324caf2cc3fead2f61f135fe4ff0cf59e87d9a89f985ad594fd6f99e6a04cf4dff5b2098cc70dd479bb13f81b58e4b3efd14c6054e7716df59ff4f81ecca3c6eb7d269a225ce1781f08277239ba6eddd9cc235973c98008f6df18c75e5fdd8d551baa7192dbc3efa06aa65c3eaa649d54205ac4ffee8bc68ef35e8c4288fd3c7d28768760d0d96c23b419e9d4b4e072f73a25168df21c3accdec50c7721235eedbc78dfbb1772e4c8cc50c9f7f3b695a446a26d5d69739359738e3aadedc1405cd0523d359280df5767d6bf46959e399395e78d58fd13738f5fcede68aba4871e7da61188dbf4556346f1f023eeac52deb873551035dbfd278906e4b853e949ed5f52382e3ed757238bd50ae0c4665fd07c642de4c253d4ae1e90bb22d70aa3aa0a61ed5a6aea8183b8cdf053721ed803518951def7825f0e5e687b1f3fe0d7b285be50bc68d59e05d46de478c4f1005241629b9422776436c01da050585b1c8af140f9cca2bda706f6d6233e22f6edb0eb2a82530d5e978cb1c4eacde959321b5dbf571b32c20195cbeca9fe7d4990ff40a96e571a8982f4", 0x1000}, {&(0x7f0000001180)="c953a1953804c5c989659984c6c4b3a7396a13b080", 0x15}, {&(0x7f00000011c0)="35d5d2c23063f771639be9104265b95f39924ddb8476ed1a920a4aa2344e779d194cbe91", 0x24}], 0x3, &(0x7f0000001280)=[@ip_tos_int={{0x10, 0x0, 0x1, 0x9}}, @ip_retopts={{0x24, 0x0, 0x7, {[@timestamp_addr={0x44, 0x14, 0x6d, 0x1, 0xb, [{@local, 0x631d}, {@private=0xa010101, 0x9}]}, @noop]}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @multicast2, @loopback}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @remote, @rand_addr=0x64010101}}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x10000}}, @ip_tos_int={{0x10, 0x0, 0x1, 0xf5be}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x7ff}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x40}}, @ip_tos_int={{0x10}}], 0xb4}}, {{0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f0000001340)="c4c74e52dbaf1390b3c641d30989fe19781d1dec3dc2fca78e07eb942f1b1d4080f66fa72fbe6c3cf7502b816b7078736d8ca53aa235d1df1b68b268bc550cc9ab14d7865d6a3e5000cf932456fe5a42eb128b4e6ed667186f013e9e12f52197f08ac04c6c539bbc2dbe67316cb802445513ccfa9791fb32", 0x78}, {&(0x7f00000013c0)="d3e76ac9685f38e7b09bfc3cc6713c23dc1a9fe91e87f45a7f163cb7ea9e6441fcea8d5e8030843a392f91c88693b39ab6b53a94a691ae6c94eaaafcf2f597978d4c28886b551641665bb892387692527cce69e63b0073cf304c7a098caa527fb1a9ecf42f3258007573445347c3b57e06df7fdde889a62791d616e5bf94bf0b19a292c5be6e4ecdbb83170eca3d6da217cb8cd2ffcbc9ecdefa05414cb5e8402bb01698a92b45078ec1e3e0195b206c325aa635e1da04c1a0a7e1d4d311769c62f406df7ac6e760a88aa51637240e05691205d5d0c78fd67ad7ca61018eba9a62d8a23ee0d65f7971d1fe6c10d6eb4f2a42d45774c5fede", 0xf8}], 0x2}}, {{0x0, 0x0, &(0x7f0000001800)=[{&(0x7f0000001500)="4e4cb9c6d61debf61077db4ba6fbca1ca4fbdc634fdacae7233ef11a9491560ef3708ccd02e614bb6d8d312777bb757a40636ec2004277f04c367bb36bff215fc19f36da6456daf042fe0fb11fb0748f6f5cca762705ef5b5e1d94ff7d17065e248f15c4edc869b413e5f7cd351bc9751e6c369703dac240d46e15cc04db69d8853be1eba8b18ddb647e21eb3cb3e4d07ebd3ffb695a2e0ed0c376a20bc0e8fbe0d689f0631712275f", 0xa9}, {&(0x7f00000015c0)="7f85cde3d1d4ebadfcd17c2feae33dd9cca3f1cc36d6d17ac7c5812b7c5234d1b465c58e986fd6ab975f2708623711d29c3d3e96c9dab4387e9a9715e1b229eb5b15c8d08ea3ebd6bbb6fef44cb634cda6fa17c2807f466015d76a35a50ea3e2070438bc2ab9bd313a43aa9031b2adac2ac2637c846150e92cfbeea26e81a9306b9461e9324a6fe60fedf9a009db649940e6bdb31852599059f1cc373cb88a167098be89902e57381fba6aa6ead98f0be4270f6d6256c694df873ed60cfa1ad1c5", 0xc1}, {&(0x7f00000016c0)="3a3e2effe374bdc4342921aeb8d37f0a7109f99517345ffd7904ffde52988f038f3a7575923960f96f", 0x29}, {&(0x7f0000001700)="de324a7c5dcae5c866bf716f742c7b08db82533a77ae3f702c648ae257", 0x1d}, {&(0x7f0000001740)="4e29d84c947ac0dfdd2e297da55d2890208f586fd31655af62516ba9bc53691a904925d1a73b029b6905adf5c3e54e1f9cd9abe1ae956687374a6383f4dbb76b3711fd08fc3fba8480e7fc06830e9a14e7011b84f5da257c41f0dc2cd54def77b6197ad51f1ec09dac012b0a39bb58c3e34ed069e6976726b9f48ac41c454b0a32fa4ffb4b0bec", 0x87}], 0x5, &(0x7f00000018c0)=[@ip_pktinfo={{0x18, 0x0, 0x8, {r1, @dev={0xac, 0x14, 0x14, 0x2f}, @dev={0xac, 0x14, 0x14, 0x19}}}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x6}}], 0x28}}], 0x3, 0x800) (async)
mlockall(0x2) (async)
shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r2, 0xb) (async)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r2, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50) (async)
openat$vcs(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) (async)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f000069b000/0x4000)=nil, 0x4000}}) (async)

15:14:41 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, 0x2000})
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:14:41 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000004c0)={[], 0x0, 0x202})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0xffffff02) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, &(0x7f00000002c0)={[{0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}]})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000080)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:14:41 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x7}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:41 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00', 0xff00}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:41 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:41 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x8}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:41 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2063.447868][T20267] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:41 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0xa}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2063.568115][T20278] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2063.659575][T20285] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:41 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00', 0x1000000}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:41 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2063.744135][T20289] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:41 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0xe}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2063.846006][T20293] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2063.969934][T20296] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2064.060978][T20287] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2064.072207][T20287] CPU: 1 PID: 20287 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2064.082647][T20287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2064.092689][T20287] Call Trace:
[ 2064.095955][T20287]  <TASK>
[ 2064.098873][T20287]  dump_stack_lvl+0xcd/0x134
[ 2064.103464][T20287]  dump_header+0x10b/0x7f9
[ 2064.107874][T20287]  oom_kill_process.cold+0x10/0x15
[ 2064.112979][T20287]  out_of_memory+0x358/0x14a0
[ 2064.117668][T20287]  ? find_held_lock+0x2d/0x110
[ 2064.122420][T20287]  ? oom_killer_disable+0x270/0x270
[ 2064.127609][T20287]  ? find_held_lock+0x2d/0x110
[ 2064.132374][T20287]  mem_cgroup_out_of_memory+0x206/0x270
[ 2064.137909][T20287]  ? mem_cgroup_margin+0x130/0x130
[ 2064.143005][T20287]  ? lock_downgrade+0x6e0/0x6e0
[ 2064.147852][T20287]  try_charge_memcg+0xf67/0x13f0
[ 2064.152784][T20287]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2064.158757][T20287]  ? lock_downgrade+0x6e0/0x6e0
[ 2064.163602][T20287]  charge_memcg+0x31/0x320
[ 2064.168013][T20287]  __mem_cgroup_charge+0x27/0x90
[ 2064.172938][T20287]  ? folio_flags.constprop.0+0x53/0x150
[ 2064.178475][T20287]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2064.184014][T20287]  ? shmem_write_end+0xe90/0xe90
[ 2064.188942][T20287]  ? folio_flags.constprop.0+0x53/0x150
[ 2064.194479][T20287]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2064.200370][T20287]  shmem_getpage_gfp+0x8af/0x1f30
[ 2064.205409][T20287]  ? shmem_is_huge+0x330/0x330
[ 2064.210170][T20287]  shmem_fault+0x1b4/0x750
[ 2064.214581][T20287]  ? shmem_getpage+0xa0/0xa0
[ 2064.219162][T20287]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2064.224792][T20287]  __do_fault+0x10d/0x610
[ 2064.229111][T20287]  __handle_mm_fault+0x2130/0x39b0
[ 2064.234215][T20287]  ? vm_iomap_memory+0x190/0x190
[ 2064.239154][T20287]  handle_mm_fault+0x1c8/0x780
[ 2064.243913][T20287]  __get_user_pages+0x4f3/0xfd0
[ 2064.248762][T20287]  ? follow_page_mask+0x1570/0x1570
[ 2064.253958][T20287]  populate_vma_page_range+0x23d/0x320
[ 2064.259411][T20287]  __mm_populate+0x1ea/0x3d0
[ 2064.263996][T20287]  ? faultin_vma_page_range+0x300/0x300
[ 2064.269535][T20287]  ? up_write+0x148/0x470
[ 2064.273857][T20287]  vm_mmap_pgoff+0x1fd/0x270
[ 2064.278438][T20287]  ? randomize_page+0xb0/0xb0
[ 2064.283108][T20287]  ksys_mmap_pgoff+0x79/0x5a0
[ 2064.287774][T20287]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2064.294353][T20287]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2064.299632][T20287]  __do_fast_syscall_32+0x65/0xf0
[ 2064.304647][T20287]  do_fast_syscall_32+0x2f/0x70
[ 2064.309488][T20287]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2064.315802][T20287] RIP: 0023:0xf7fdf549
[ 2064.319856][T20287] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2064.339450][T20287] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2064.347849][T20287] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2064.355825][T20287] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2064.363781][T20287] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2064.371739][T20287] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2064.379696][T20287] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2064.387666][T20287]  </TASK>
[ 2064.411678][T20287] memory: usage 307200kB, limit 307200kB, failcnt 843
[ 2064.429447][T20287] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2064.478064][T20287] Memory cgroup stats for /syz2:
[ 2064.478283][T20287] anon 110592
[ 2064.478283][T20287] file 310231040
[ 2064.478283][T20287] kernel 4231168
[ 2064.478283][T20287] kernel_stack 98304
[ 2064.478283][T20287] pagetables 77824
[ 2064.478283][T20287] percpu 27232
[ 2064.478283][T20287] sock 0
[ 2064.478283][T20287] vmalloc 0
[ 2064.478283][T20287] shmem 310231040
[ 2064.478283][T20287] zswap 0
[ 2064.478283][T20287] zswapped 0
[ 2064.478283][T20287] file_mapped 2904064
[ 2064.478283][T20287] file_dirty 0
[ 2064.478283][T20287] file_writeback 0
[ 2064.478283][T20287] swapcached 0
[ 2064.478283][T20287] anon_thp 0
[ 2064.478283][T20287] file_thp 0
[ 2064.478283][T20287] shmem_thp 0
[ 2064.478283][T20287] inactive_anon 310173696
[ 2064.478283][T20287] active_anon 167936
[ 2064.478283][T20287] inactive_file 0
[ 2064.478283][T20287] active_file 0
[ 2064.478283][T20287] unevictable 0
[ 2064.478283][T20287] slab_reclaimable 1084840
[ 2064.478283][T20287] slab_unreclaimable 2919216
[ 2064.478283][T20287] slab 4004056
[ 2064.571917][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2064.591593][T20287] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20280,uid=0
[ 2064.644230][T20287] Memory cgroup out of memory: Killed process 20280 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:2372kB, UID:0 pgtables:72kB oom_score_adj:1000
15:14:44 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async, rerun: 32)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (rerun: 32)
getpeername$packet(0xffffffffffffffff, &(0x7f0000001840)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000001880)=0x14)
sendmmsg$inet(r0, &(0x7f0000001900)=[{{&(0x7f0000000140)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000001200)=[{&(0x7f0000000180)="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", 0x1000}, {&(0x7f0000001180)="c953a1953804c5c989659984c6c4b3a7396a13b080", 0x15}, {&(0x7f00000011c0)="35d5d2c23063f771639be9104265b95f39924ddb8476ed1a920a4aa2344e779d194cbe91", 0x24}], 0x3, &(0x7f0000001280)=[@ip_tos_int={{0x10, 0x0, 0x1, 0x9}}, @ip_retopts={{0x24, 0x0, 0x7, {[@timestamp_addr={0x44, 0x14, 0x6d, 0x1, 0xb, [{@local, 0x631d}, {@private=0xa010101, 0x9}]}, @noop]}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @multicast2, @loopback}}}, @ip_pktinfo={{0x18, 0x0, 0x8, {0x0, @remote, @rand_addr=0x64010101}}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x10000}}, @ip_tos_int={{0x10, 0x0, 0x1, 0xf5be}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x7ff}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x40}}, @ip_tos_int={{0x10}}], 0xb4}}, {{0x0, 0x0, &(0x7f00000014c0)=[{&(0x7f0000001340)="c4c74e52dbaf1390b3c641d30989fe19781d1dec3dc2fca78e07eb942f1b1d4080f66fa72fbe6c3cf7502b816b7078736d8ca53aa235d1df1b68b268bc550cc9ab14d7865d6a3e5000cf932456fe5a42eb128b4e6ed667186f013e9e12f52197f08ac04c6c539bbc2dbe67316cb802445513ccfa9791fb32", 0x78}, {&(0x7f00000013c0)="d3e76ac9685f38e7b09bfc3cc6713c23dc1a9fe91e87f45a7f163cb7ea9e6441fcea8d5e8030843a392f91c88693b39ab6b53a94a691ae6c94eaaafcf2f597978d4c28886b551641665bb892387692527cce69e63b0073cf304c7a098caa527fb1a9ecf42f3258007573445347c3b57e06df7fdde889a62791d616e5bf94bf0b19a292c5be6e4ecdbb83170eca3d6da217cb8cd2ffcbc9ecdefa05414cb5e8402bb01698a92b45078ec1e3e0195b206c325aa635e1da04c1a0a7e1d4d311769c62f406df7ac6e760a88aa51637240e05691205d5d0c78fd67ad7ca61018eba9a62d8a23ee0d65f7971d1fe6c10d6eb4f2a42d45774c5fede", 0xf8}], 0x2}}, {{0x0, 0x0, &(0x7f0000001800)=[{&(0x7f0000001500)="4e4cb9c6d61debf61077db4ba6fbca1ca4fbdc634fdacae7233ef11a9491560ef3708ccd02e614bb6d8d312777bb757a40636ec2004277f04c367bb36bff215fc19f36da6456daf042fe0fb11fb0748f6f5cca762705ef5b5e1d94ff7d17065e248f15c4edc869b413e5f7cd351bc9751e6c369703dac240d46e15cc04db69d8853be1eba8b18ddb647e21eb3cb3e4d07ebd3ffb695a2e0ed0c376a20bc0e8fbe0d689f0631712275f", 0xa9}, {&(0x7f00000015c0)="7f85cde3d1d4ebadfcd17c2feae33dd9cca3f1cc36d6d17ac7c5812b7c5234d1b465c58e986fd6ab975f2708623711d29c3d3e96c9dab4387e9a9715e1b229eb5b15c8d08ea3ebd6bbb6fef44cb634cda6fa17c2807f466015d76a35a50ea3e2070438bc2ab9bd313a43aa9031b2adac2ac2637c846150e92cfbeea26e81a9306b9461e9324a6fe60fedf9a009db649940e6bdb31852599059f1cc373cb88a167098be89902e57381fba6aa6ead98f0be4270f6d6256c694df873ed60cfa1ad1c5", 0xc1}, {&(0x7f00000016c0)="3a3e2effe374bdc4342921aeb8d37f0a7109f99517345ffd7904ffde52988f038f3a7575923960f96f", 0x29}, {&(0x7f0000001700)="de324a7c5dcae5c866bf716f742c7b08db82533a77ae3f702c648ae257", 0x1d}, {&(0x7f0000001740)="4e29d84c947ac0dfdd2e297da55d2890208f586fd31655af62516ba9bc53691a904925d1a73b029b6905adf5c3e54e1f9cd9abe1ae956687374a6383f4dbb76b3711fd08fc3fba8480e7fc06830e9a14e7011b84f5da257c41f0dc2cd54def77b6197ad51f1ec09dac012b0a39bb58c3e34ed069e6976726b9f48ac41c454b0a32fa4ffb4b0bec", 0x87}], 0x5, &(0x7f00000018c0)=[@ip_pktinfo={{0x18, 0x0, 0x8, {r1, @dev={0xac, 0x14, 0x14, 0x2f}, @dev={0xac, 0x14, 0x14, 0x19}}}}, @ip_tos_int={{0x10, 0x0, 0x1, 0x6}}], 0x28}}], 0x3, 0x800) (async)
mlockall(0x2) (async)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r2, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50) (async, rerun: 32)
r3 = openat$vcs(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) (rerun: 32)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f000069b000/0x4000)=nil, 0x4000}})

15:14:44 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x5}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:44 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x10}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:44 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, 0x2000})
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8)
socket$inet6_sctp(0xa, 0x1, 0x84)
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:14:44 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000004c0)={[], 0x0, 0x202})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0xffffff02) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, &(0x7f00000002c0)={[{0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}]})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000080)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

15:14:44 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00', 0x7000000}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:44 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x2c}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2066.418586][T20302] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2066.434965][T20306] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:44 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x33}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:44 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x6}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2066.530348][T20319] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:44 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x38}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2066.592015][T20321] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:44 executing program 5:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00', 0x1000000}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:44 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x48}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2066.942366][T20317] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2066.952994][T20317] CPU: 1 PID: 20317 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2066.963463][T20317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2066.973513][T20317] Call Trace:
[ 2066.976792][T20317]  <TASK>
[ 2066.979717][T20317]  dump_stack_lvl+0xcd/0x134
[ 2066.984303][T20317]  dump_header+0x10b/0x7f9
[ 2066.988715][T20317]  oom_kill_process.cold+0x10/0x15
[ 2066.993823][T20317]  out_of_memory+0x358/0x14a0
[ 2066.998499][T20317]  ? find_held_lock+0x2d/0x110
[ 2067.003252][T20317]  ? oom_killer_disable+0x270/0x270
[ 2067.008442][T20317]  ? find_held_lock+0x2d/0x110
[ 2067.013207][T20317]  mem_cgroup_out_of_memory+0x206/0x270
[ 2067.018743][T20317]  ? mem_cgroup_margin+0x130/0x130
[ 2067.023842][T20317]  ? lock_downgrade+0x6e0/0x6e0
[ 2067.028739][T20317]  try_charge_memcg+0xf67/0x13f0
[ 2067.033689][T20317]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2067.039678][T20317]  ? lock_downgrade+0x6e0/0x6e0
[ 2067.044534][T20317]  charge_memcg+0x31/0x320
[ 2067.048945][T20317]  __mem_cgroup_charge+0x27/0x90
[ 2067.053872][T20317]  ? folio_flags.constprop.0+0x53/0x150
[ 2067.059408][T20317]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2067.064951][T20317]  ? shmem_write_end+0xe90/0xe90
[ 2067.069879][T20317]  ? folio_flags.constprop.0+0x53/0x150
[ 2067.075445][T20317]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2067.081346][T20317]  shmem_getpage_gfp+0x8af/0x1f30
[ 2067.086386][T20317]  ? shmem_is_huge+0x330/0x330
[ 2067.091153][T20317]  shmem_fault+0x1b4/0x750
[ 2067.095596][T20317]  ? shmem_getpage+0xa0/0xa0
[ 2067.100202][T20317]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2067.105846][T20317]  __do_fault+0x10d/0x610
[ 2067.110180][T20317]  __handle_mm_fault+0x2130/0x39b0
[ 2067.115289][T20317]  ? vm_iomap_memory+0x190/0x190
[ 2067.120228][T20317]  handle_mm_fault+0x1c8/0x780
[ 2067.124986][T20317]  __get_user_pages+0x4f3/0xfd0
[ 2067.129834][T20317]  ? follow_page_mask+0x1570/0x1570
[ 2067.135032][T20317]  populate_vma_page_range+0x23d/0x320
[ 2067.140486][T20317]  __mm_populate+0x1ea/0x3d0
[ 2067.145069][T20317]  ? faultin_vma_page_range+0x300/0x300
[ 2067.150608][T20317]  ? up_write+0x148/0x470
[ 2067.154934][T20317]  vm_mmap_pgoff+0x1fd/0x270
[ 2067.159517][T20317]  ? randomize_page+0xb0/0xb0
[ 2067.164193][T20317]  ksys_mmap_pgoff+0x79/0x5a0
[ 2067.168876][T20317]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2067.175463][T20317]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2067.180748][T20317]  __do_fast_syscall_32+0x65/0xf0
[ 2067.185768][T20317]  do_fast_syscall_32+0x2f/0x70
[ 2067.190616][T20317]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2067.196941][T20317] RIP: 0023:0xf7fdf549
[ 2067.200999][T20317] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2067.220599][T20317] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2067.229000][T20317] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2067.236979][T20317] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2067.244954][T20317] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2067.252916][T20317] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2067.260880][T20317] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2067.268857][T20317]  </TASK>
[ 2067.279880][T20317] memory: usage 307200kB, limit 307200kB, failcnt 994
[ 2067.299469][T20317] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2067.307497][T20317] Memory cgroup stats for /syz2:
[ 2067.310800][T20317] anon 110592
[ 2067.310800][T20317] file 311164928
[ 2067.310800][T20317] kernel 3293184
[ 2067.310800][T20317] kernel_stack 98304
[ 2067.310800][T20317] pagetables 77824
[ 2067.310800][T20317] percpu 10656
[ 2067.310800][T20317] sock 0
[ 2067.310800][T20317] vmalloc 0
[ 2067.310800][T20317] shmem 311164928
[ 2067.310800][T20317] zswap 0
[ 2067.310800][T20317] zswapped 0
[ 2067.310800][T20317] file_mapped 3837952
[ 2067.310800][T20317] file_dirty 0
[ 2067.310800][T20317] file_writeback 0
[ 2067.310800][T20317] swapcached 0
[ 2067.310800][T20317] anon_thp 0
[ 2067.310800][T20317] file_thp 0
[ 2067.310800][T20317] shmem_thp 0
[ 2067.310800][T20317] inactive_anon 311107584
[ 2067.310800][T20317] active_anon 167936
[ 2067.310800][T20317] inactive_file 0
[ 2067.310800][T20317] active_file 0
[ 2067.310800][T20317] unevictable 0
[ 2067.310800][T20317] slab_reclaimable 1074624
[ 2067.310800][T20317] slab_unreclaimable 2014144
[ 2067.310800][T20317] slab 3088768
[ 2067.409666][T20317] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20309,uid=0
[ 2067.426983][T20317] Memory cgroup out of memory: Killed process 20309 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3428kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 2069.472156][   T30] oom_reaper: reaped process 20309 (syz-executor.2), now anon-rss:0kB, file-rss:8128kB, shmem-rss:3520kB
15:14:48 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r2, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:14:48 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x8}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:48 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x4c}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:48 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, 0x2000})
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8)
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:14:48 executing program 5:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00', 0x1000000}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:48 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00', 0xff000000}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

[ 2070.631667][T20343] net_ratelimit: 3 callbacks suppressed
[ 2070.631680][T20343] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2070.654604][T20344] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:48 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:48 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x60}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2070.859655][T20354] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2070.885543][T20356] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:49 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x68}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:49 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x44)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:49 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1c}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2071.018648][T20360] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:49 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x6c}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2071.174818][T20367] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2071.396971][T20352] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2071.418611][T20352] CPU: 1 PID: 20352 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2071.429175][T20352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2071.439253][T20352] Call Trace:
[ 2071.442554][T20352]  <TASK>
[ 2071.445505][T20352]  dump_stack_lvl+0xcd/0x134
[ 2071.450129][T20352]  dump_header+0x10b/0x7f9
[ 2071.454580][T20352]  oom_kill_process.cold+0x10/0x15
[ 2071.459727][T20352]  out_of_memory+0x358/0x14a0
[ 2071.464431][T20352]  ? find_held_lock+0x2d/0x110
[ 2071.469194][T20352]  ? oom_killer_disable+0x270/0x270
[ 2071.474389][T20352]  ? find_held_lock+0x2d/0x110
[ 2071.479148][T20352]  mem_cgroup_out_of_memory+0x206/0x270
[ 2071.484688][T20352]  ? mem_cgroup_margin+0x130/0x130
[ 2071.489788][T20352]  ? lock_downgrade+0x6e0/0x6e0
[ 2071.494640][T20352]  try_charge_memcg+0xf67/0x13f0
[ 2071.499575][T20352]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2071.505553][T20352]  ? lock_downgrade+0x6e0/0x6e0
[ 2071.510403][T20352]  charge_memcg+0x31/0x320
[ 2071.514842][T20352]  __mem_cgroup_charge+0x27/0x90
[ 2071.519771][T20352]  ? folio_flags.constprop.0+0x53/0x150
[ 2071.525311][T20352]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2071.531031][T20352]  ? shmem_write_end+0xe90/0xe90
[ 2071.535967][T20352]  ? folio_flags.constprop.0+0x53/0x150
[ 2071.541505][T20352]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2071.547397][T20352]  shmem_getpage_gfp+0x8af/0x1f30
[ 2071.552424][T20352]  ? shmem_is_huge+0x330/0x330
[ 2071.557186][T20352]  shmem_fault+0x1b4/0x750
[ 2071.561598][T20352]  ? shmem_getpage+0xa0/0xa0
[ 2071.566188][T20352]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2071.571821][T20352]  __do_fault+0x10d/0x610
[ 2071.576142][T20352]  __handle_mm_fault+0x2130/0x39b0
[ 2071.581256][T20352]  ? vm_iomap_memory+0x190/0x190
[ 2071.586201][T20352]  handle_mm_fault+0x1c8/0x780
[ 2071.590958][T20352]  __get_user_pages+0x4f3/0xfd0
[ 2071.595811][T20352]  ? follow_page_mask+0x1570/0x1570
[ 2071.601014][T20352]  populate_vma_page_range+0x23d/0x320
[ 2071.606468][T20352]  __mm_populate+0x1ea/0x3d0
[ 2071.611052][T20352]  ? faultin_vma_page_range+0x300/0x300
[ 2071.616594][T20352]  ? up_write+0x148/0x470
[ 2071.620921][T20352]  vm_mmap_pgoff+0x1fd/0x270
[ 2071.625509][T20352]  ? randomize_page+0xb0/0xb0
[ 2071.630176][T20352]  ? kfree+0x1fb/0x580
[ 2071.634248][T20352]  ksys_mmap_pgoff+0x79/0x5a0
[ 2071.638916][T20352]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2071.645499][T20352]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2071.650780][T20352]  __do_fast_syscall_32+0x65/0xf0
[ 2071.655796][T20352]  do_fast_syscall_32+0x2f/0x70
[ 2071.660640][T20352]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2071.666963][T20352] RIP: 0023:0xf7fdf549
[ 2071.671021][T20352] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2071.690711][T20352] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2071.699115][T20352] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2071.707080][T20352] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2071.715043][T20352] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2071.723003][T20352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2071.730966][T20352] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2071.738941][T20352]  </TASK>
[ 2071.764102][T20352] memory: usage 307200kB, limit 307200kB, failcnt 1097
[ 2071.771078][T20352] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2071.778728][T20352] Memory cgroup stats for /syz2:
[ 2071.778960][T20352] anon 110592
[ 2071.778960][T20352] file 311263232
[ 2071.778960][T20352] kernel 3198976
[ 2071.778960][T20352] kernel_stack 98304
[ 2071.778960][T20352] pagetables 77824
[ 2071.778960][T20352] percpu 15392
[ 2071.778960][T20352] sock 0
[ 2071.778960][T20352] vmalloc 0
[ 2071.778960][T20352] shmem 311263232
[ 2071.778960][T20352] zswap 0
[ 2071.778960][T20352] zswapped 0
[ 2071.778960][T20352] file_mapped 3936256
[ 2071.778960][T20352] file_dirty 0
[ 2071.778960][T20352] file_writeback 0
[ 2071.778960][T20352] swapcached 0
[ 2071.778960][T20352] anon_thp 0
[ 2071.778960][T20352] file_thp 0
[ 2071.778960][T20352] shmem_thp 0
[ 2071.778960][T20352] inactive_anon 311205888
[ 2071.778960][T20352] active_anon 167936
[ 2071.778960][T20352] inactive_file 0
[ 2071.778960][T20352] active_file 0
[ 2071.778960][T20352] unevictable 0
[ 2071.778960][T20352] slab_reclaimable 1025928
[ 2071.778960][T20352] slab_unreclaimable 1961896
[ 2071.778960][T20352] slab 2987824
[ 2071.876027][T20352] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20347,uid=0
[ 2071.892426][T20352] Memory cgroup out of memory: Killed process 20347 (syz-executor.2) total-vm:54492kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3428kB, UID:0 pgtables:72kB oom_score_adj:1000
15:14:50 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r0) (async)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async, rerun: 32)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (rerun: 32)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2) (async)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r2, 0xb) (async)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1) (async, rerun: 32)
shmctl$SHM_UNLOCK(r2, 0xc) (async, rerun: 32)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:14:50 executing program 5:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:50 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x74}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:50 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x60}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:50 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000600000000000000080000000000000008080000000000000000008040000000ff7f00000000000008"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:50 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000100)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, 0x2000})
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:14:50 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2072.014227][T20375] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:50 executing program 5:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00', 0xff00}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:50 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x7a}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:50 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x2, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2072.204913][T20390] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:50 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x3, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:50 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2072.413689][T20398] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2072.520789][T20387] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2072.546217][T20387] CPU: 0 PID: 20387 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2072.556689][T20387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2072.566766][T20387] Call Trace:
[ 2072.570065][T20387]  <TASK>
[ 2072.573018][T20387]  dump_stack_lvl+0xcd/0x134
[ 2072.577647][T20387]  dump_header+0x10b/0x7f9
[ 2072.582095][T20387]  oom_kill_process.cold+0x10/0x15
[ 2072.587237][T20387]  out_of_memory+0x358/0x14a0
[ 2072.591944][T20387]  ? find_held_lock+0x2d/0x110
[ 2072.596729][T20387]  ? oom_killer_disable+0x270/0x270
[ 2072.601959][T20387]  ? find_held_lock+0x2d/0x110
[ 2072.606743][T20387]  mem_cgroup_out_of_memory+0x206/0x270
[ 2072.612300][T20387]  ? mem_cgroup_margin+0x130/0x130
[ 2072.617415][T20387]  ? lock_downgrade+0x6e0/0x6e0
[ 2072.622288][T20387]  try_charge_memcg+0xf67/0x13f0
[ 2072.627244][T20387]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2072.633238][T20387]  ? lock_downgrade+0x6e0/0x6e0
[ 2072.638122][T20387]  charge_memcg+0x31/0x320
[ 2072.642550][T20387]  __mem_cgroup_charge+0x27/0x90
[ 2072.647493][T20387]  ? folio_flags.constprop.0+0x53/0x150
[ 2072.653061][T20387]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2072.658630][T20387]  ? shmem_write_end+0xe90/0xe90
[ 2072.663588][T20387]  ? folio_flags.constprop.0+0x53/0x150
[ 2072.669147][T20387]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2072.675061][T20387]  shmem_getpage_gfp+0x8af/0x1f30
[ 2072.680111][T20387]  ? shmem_is_huge+0x330/0x330
[ 2072.684911][T20387]  shmem_fault+0x1b4/0x750
[ 2072.689355][T20387]  ? __lock_acquire+0xbc3/0x56d0
[ 2072.694315][T20387]  ? shmem_getpage+0xa0/0xa0
[ 2072.698931][T20387]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2072.704591][T20387]  __do_fault+0x10d/0x610
[ 2072.708935][T20387]  __handle_mm_fault+0x2130/0x39b0
[ 2072.714103][T20387]  ? vm_iomap_memory+0x190/0x190
[ 2072.719086][T20387]  handle_mm_fault+0x1c8/0x780
[ 2072.723879][T20387]  __get_user_pages+0x4f3/0xfd0
[ 2072.728762][T20387]  ? follow_page_mask+0x1570/0x1570
[ 2072.733998][T20387]  populate_vma_page_range+0x23d/0x320
[ 2072.739488][T20387]  __mm_populate+0x1ea/0x3d0
[ 2072.744111][T20387]  ? faultin_vma_page_range+0x300/0x300
[ 2072.749673][T20387]  ? up_write+0x148/0x470
[ 2072.754019][T20387]  vm_mmap_pgoff+0x1fd/0x270
[ 2072.758623][T20387]  ? randomize_page+0xb0/0xb0
[ 2072.763318][T20387]  ksys_mmap_pgoff+0x79/0x5a0
[ 2072.768091][T20387]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2072.774703][T20387]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2072.780003][T20387]  __do_fast_syscall_32+0x65/0xf0
[ 2072.785040][T20387]  do_fast_syscall_32+0x2f/0x70
[ 2072.789919][T20387]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2072.796257][T20387] RIP: 0023:0xf7fdf549
[ 2072.800359][T20387] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2072.819993][T20387] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2072.828419][T20387] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2072.836399][T20387] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2072.844551][T20387] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2072.852532][T20387] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2072.860598][T20387] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2072.868596][T20387]  </TASK>
[ 2072.871724][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2072.878885][T20387] memory: usage 307200kB, limit 307200kB, failcnt 1174
[ 2072.897725][T20387] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2072.909537][T20387] Memory cgroup stats for /syz2:
[ 2072.909803][T20387] anon 110592
[ 2072.909803][T20387] file 310845440
[ 2072.909803][T20387] kernel 3616768
[ 2072.909803][T20387] kernel_stack 98304
[ 2072.909803][T20387] pagetables 77824
[ 2072.909803][T20387] percpu 18944
[ 2072.909803][T20387] sock 0
[ 2072.909803][T20387] vmalloc 0
[ 2072.909803][T20387] shmem 310845440
[ 2072.909803][T20387] zswap 0
[ 2072.909803][T20387] zswapped 0
[ 2072.909803][T20387] file_mapped 3518464
[ 2072.909803][T20387] file_dirty 0
[ 2072.909803][T20387] file_writeback 0
[ 2072.909803][T20387] swapcached 0
[ 2072.909803][T20387] anon_thp 0
[ 2072.909803][T20387] file_thp 0
[ 2072.909803][T20387] shmem_thp 0
[ 2072.909803][T20387] inactive_anon 310788096
[ 2072.909803][T20387] active_anon 167936
[ 2072.909803][T20387] inactive_file 0
[ 2072.909803][T20387] active_file 0
[ 2072.909803][T20387] unevictable 0
[ 2072.909803][T20387] slab_reclaimable 1052296
[ 2072.909803][T20387] slab_unreclaimable 2346808
[ 2072.909803][T20387] slab 3399104
[ 2073.028307][T20387] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20381,uid=0
[ 2073.051377][T20387] Memory cgroup out of memory: Killed process 20381 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3164kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 2075.152781][   T30] oom_reaper: reaped process 20381 (syz-executor.2), now anon-rss:0kB, file-rss:8192kB, shmem-rss:3204kB
15:14:53 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x5, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:53 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="b1ba2e39102dbbad454c95b8806d3ba7074a6c5343147863fa6508d840ac209cdc7c98f38a1cba9f814eb82c514d1ec99006165125abd7ec43678d9a4f85a22276a8afe6fb989b08fb3f0f4298c3f104c92030bd272e824effbc5207392ee0e5a049da251365162137ea490a9e1b6611d5798615101772acf9063c95174abc2237d19fcbd51033660bee98addf79f873c95defed253b00675aeb62205cda9fa4ca01d117c704efd95636ce0d46dd90867969bf5bc8e05af3f459514126baf148488322c2c9152a0872b52660ab79e42a4da81b41b503e034ec26d7afa815c4c3a9be7c4374f57042653bef9f47268ab67abca30d0f8b3bd4a46e40f47268d1e2efc2e06c9da72238e06214c79a8c1fc8ed0677fd900014e9eb5885e1f5379d984bae384fc3543dba129e151396de172e92dbd9e53a"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000600000000000000080000000000000008080000000000000000008040000000ff7f00000000000008"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="b1ba2e39102dbbad454c95b8806d3ba7074a6c5343147863fa6508d840ac209cdc7c98f38a1cba9f814eb82c514d1ec99006165125abd7ec43678d9a4f85a22276a8afe6fb989b08fb3f0f4298c3f104c92030bd272e824effbc5207392ee0e5a049da251365162137ea490a9e1b6611d5798615101772acf9063c95174abc2237d19fcbd51033660bee98addf79f873c95defed253b00675aeb62205cda9fa4ca01d117c704efd95636ce0d46dd90867969bf5bc8e05af3f459514126baf148488322c2c9152a0872b52660ab79e42a4da81b41b503e034ec26d7afa815c4c3a9be7c4374f57042653bef9f47268ab67abca30d0f8b3bd4a46e40f47268d1e2efc2e06c9da72238e06214c79a8c1fc8ed0677fd900014e9eb5885e1f5379d984bae384fc3543dba129e151396de172e92dbd9e53a"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
socket$inet(0x2, 0x3, 0x2) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000600000000000000080000000000000008080000000000000000008040000000ff7f00000000000008"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (async)

15:14:53 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:53 executing program 0:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:14:53 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r0) (async)
r1 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async, rerun: 64)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async, rerun: 64)
mlockall(0x2)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1) (async, rerun: 32)
shmctl$SHM_UNLOCK(r2, 0xc) (async, rerun: 32)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:14:53 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x6, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2075.684372][T20401] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:53 executing program 5:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00', 0xff00}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:53 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:53 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x8, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2075.967087][T20422] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:54 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x4}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:54 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0xe, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:54 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x3, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2076.185924][T20428] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2076.226756][T20413] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2076.263328][T20413] CPU: 1 PID: 20413 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2076.273800][T20413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2076.283882][T20413] Call Trace:
[ 2076.287184][T20413]  <TASK>
[ 2076.290134][T20413]  dump_stack_lvl+0xcd/0x134
[ 2076.294759][T20413]  dump_header+0x10b/0x7f9
[ 2076.299212][T20413]  oom_kill_process.cold+0x10/0x15
[ 2076.304364][T20413]  out_of_memory+0x358/0x14a0
[ 2076.309076][T20413]  ? find_held_lock+0x2d/0x110
[ 2076.313864][T20413]  ? oom_killer_disable+0x270/0x270
[ 2076.319107][T20413]  ? find_held_lock+0x2d/0x110
[ 2076.323904][T20413]  mem_cgroup_out_of_memory+0x206/0x270
[ 2076.329469][T20413]  ? mem_cgroup_margin+0x130/0x130
[ 2076.334589][T20413]  ? lock_downgrade+0x6e0/0x6e0
[ 2076.339495][T20413]  try_charge_memcg+0xf67/0x13f0
[ 2076.344458][T20413]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2076.350436][T20413]  ? lock_downgrade+0x6e0/0x6e0
[ 2076.355292][T20413]  charge_memcg+0x31/0x320
[ 2076.359702][T20413]  __mem_cgroup_charge+0x27/0x90
[ 2076.364634][T20413]  ? folio_flags.constprop.0+0x53/0x150
[ 2076.370171][T20413]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2076.375713][T20413]  ? shmem_write_end+0xe90/0xe90
[ 2076.380643][T20413]  ? folio_flags.constprop.0+0x53/0x150
[ 2076.386178][T20413]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2076.392064][T20413]  shmem_getpage_gfp+0x8af/0x1f30
[ 2076.397175][T20413]  ? shmem_is_huge+0x330/0x330
[ 2076.401935][T20413]  shmem_fault+0x1b4/0x750
[ 2076.406343][T20413]  ? shmem_getpage+0xa0/0xa0
[ 2076.410930][T20413]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2076.416565][T20413]  __do_fault+0x10d/0x610
[ 2076.420886][T20413]  __handle_mm_fault+0x2130/0x39b0
[ 2076.425989][T20413]  ? vm_iomap_memory+0x190/0x190
[ 2076.430930][T20413]  handle_mm_fault+0x1c8/0x780
[ 2076.435686][T20413]  __get_user_pages+0x4f3/0xfd0
[ 2076.440535][T20413]  ? follow_page_mask+0x1570/0x1570
[ 2076.445741][T20413]  populate_vma_page_range+0x23d/0x320
[ 2076.451204][T20413]  __mm_populate+0x1ea/0x3d0
[ 2076.455819][T20413]  ? faultin_vma_page_range+0x300/0x300
[ 2076.461356][T20413]  ? up_write+0x148/0x470
[ 2076.465682][T20413]  vm_mmap_pgoff+0x1fd/0x270
[ 2076.470267][T20413]  ? randomize_page+0xb0/0xb0
[ 2076.474957][T20413]  ksys_mmap_pgoff+0x79/0x5a0
[ 2076.479629][T20413]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2076.486212][T20413]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2076.491494][T20413]  __do_fast_syscall_32+0x65/0xf0
[ 2076.496513][T20413]  do_fast_syscall_32+0x2f/0x70
[ 2076.501351][T20413]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2076.507672][T20413] RIP: 0023:0xf7fdf549
[ 2076.511734][T20413] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2076.531328][T20413] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2076.539733][T20413] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2076.547693][T20413] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2076.555657][T20413] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2076.563614][T20413] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2076.571571][T20413] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2076.579541][T20413]  </TASK>
[ 2076.612271][T20413] memory: usage 307188kB, limit 307200kB, failcnt 1309
[ 2076.652900][T20413] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2076.711392][T20413] Memory cgroup stats for /syz2:
[ 2076.711628][T20413] anon 122880
[ 2076.711628][T20413] file 311496704
[ 2076.711628][T20413] kernel 2924544
[ 2076.711628][T20413] kernel_stack 131072
[ 2076.711628][T20413] pagetables 77824
[ 2076.711628][T20413] percpu 8288
[ 2076.711628][T20413] sock 0
[ 2076.711628][T20413] vmalloc 0
[ 2076.711628][T20413] shmem 311496704
[ 2076.711628][T20413] zswap 0
[ 2076.711628][T20413] zswapped 0
[ 2076.711628][T20413] file_mapped 4169728
[ 2076.711628][T20413] file_dirty 0
[ 2076.711628][T20413] file_writeback 0
[ 2076.711628][T20413] swapcached 0
[ 2076.711628][T20413] anon_thp 0
[ 2076.711628][T20413] file_thp 0
[ 2076.711628][T20413] shmem_thp 0
[ 2076.711628][T20413] inactive_anon 311451648
[ 2076.711628][T20413] active_anon 167936
[ 2076.711628][T20413] inactive_file 0
[ 2076.711628][T20413] active_file 0
[ 2076.711628][T20413] unevictable 0
[ 2076.711628][T20413] slab_reclaimable 1044840
[ 2076.711628][T20413] slab_unreclaimable 1643152
[ 2076.711628][T20413] slab 2687992
[ 2076.805079][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2076.939947][T20413] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20410,uid=0
[ 2076.987467][T20413] Memory cgroup out of memory: Killed process 20410 (syz-executor.2) total-vm:50784kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3692kB, UID:0 pgtables:72kB oom_score_adj:1000
15:14:57 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x13c, 0x0, 0x8, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_TX_RATES={0x118, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x88, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1c, 0x1, [0x32, 0x16, 0x1, 0x36, 0x6c, 0x16, 0x2, 0x9, 0x4b, 0x6c, 0x2, 0x1d, 0x0, 0x60, 0x12, 0xcfc19b39489a22b3, 0x16, 0x24, 0x9, 0x9, 0x50, 0x9, 0x14, 0x2]}, @NL80211_TXRATE_HT={0x22, 0x2, [{0x4, 0x2}, {0x6, 0x4}, {0x7, 0x2}, {0x4, 0x8}, {0x0, 0x7}, {0x1, 0x4}, {0x4, 0x3}, {0x2, 0x9}, {0x5, 0x8}, {0x1, 0x9}, {0x2, 0x8}, {0x3, 0x2}, {0x1, 0x3}, {0x0, 0x7}, {0x6, 0x6}, {0x0, 0x6}, {0x3, 0x7}, {0x0, 0x1}, {0x1, 0x8}, {0x2, 0x5}, {0x5, 0x6}, {0x2, 0x2}, {0x5, 0x2}, {0x0, 0x7}, {0x3, 0x4}, {0x2, 0x5}, {0x7, 0x8}, {0x0, 0x3}, {0x5, 0x7}, {0x2, 0x2}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xca6e, 0x2000, 0x7, 0x8, 0x9, 0xe2, 0x8, 0x6]}}, @NL80211_TXRATE_LEGACY={0x1a, 0x1, [0x24, 0x2, 0x36, 0x6c, 0x48, 0x12, 0x9, 0x6, 0x1b, 0x1b, 0x12, 0x4, 0x9, 0x16, 0xc, 0xc, 0xb, 0x24, 0x1b, 0x1, 0x24, 0xc]}, @NL80211_TXRATE_LEGACY={0x11, 0x1, [0x60, 0x60, 0x16, 0xb, 0x9, 0x30, 0x1b, 0x6, 0x18, 0x12, 0x16, 0x75, 0x9]}]}, @NL80211_BAND_5GHZ={0x8c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x14, 0x4, 0x8, 0xffff, 0xffff, 0x7a52, 0x800]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x9, 0x4e0, 0x0, 0xffff, 0x6, 0x6, 0x4]}}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x8001, 0x391a, 0x200, 0x7, 0x7f, 0x6, 0x20, 0x4]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x8, 0x0, 0xfffc, 0x0, 0x902, 0x2, 0x2, 0xda]}}, @NL80211_TXRATE_HT={0x9, 0x2, [{0x0, 0x4}, {0x3, 0x9}, {0x0, 0x6}, {0x3, 0x3}, {0x2, 0xe}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x101, 0x5, 0x20, 0x200, 0x3, 0x6, 0xf000, 0xc800]}}, @NL80211_TXRATE_HE_LTF={0x5}]}]}, @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x13c}, 0x1, 0x0, 0x0, 0x4041}, 0x40011)
mlockall(0x2)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r2, 0xc)
mlockall(0x4)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:14:57 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x5}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2078.959592][T20434] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2079.233150][T20437] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2079.273726][T20437] CPU: 0 PID: 20437 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2079.284193][T20437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2079.294259][T20437] Call Trace:
[ 2079.297527][T20437]  <TASK>
[ 2079.300447][T20437]  dump_stack_lvl+0xcd/0x134
[ 2079.305034][T20437]  dump_header+0x10b/0x7f9
[ 2079.309444][T20437]  oom_kill_process.cold+0x10/0x15
[ 2079.314558][T20437]  out_of_memory+0x358/0x14a0
[ 2079.319247][T20437]  ? find_held_lock+0x2d/0x110
[ 2079.324013][T20437]  ? oom_killer_disable+0x270/0x270
[ 2079.329244][T20437]  ? find_held_lock+0x2d/0x110
[ 2079.334033][T20437]  mem_cgroup_out_of_memory+0x206/0x270
[ 2079.339570][T20437]  ? mem_cgroup_margin+0x130/0x130
[ 2079.344671][T20437]  ? lock_downgrade+0x6e0/0x6e0
[ 2079.349522][T20437]  try_charge_memcg+0xf67/0x13f0
[ 2079.354457][T20437]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2079.360431][T20437]  ? lock_downgrade+0x6e0/0x6e0
[ 2079.365278][T20437]  charge_memcg+0x31/0x320
[ 2079.369683][T20437]  __mem_cgroup_charge+0x27/0x90
[ 2079.374627][T20437]  ? folio_flags.constprop.0+0x53/0x150
[ 2079.380197][T20437]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2079.385760][T20437]  ? shmem_write_end+0xe90/0xe90
[ 2079.390713][T20437]  ? folio_flags.constprop.0+0x53/0x150
[ 2079.396272][T20437]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2079.402181][T20437]  shmem_getpage_gfp+0x8af/0x1f30
[ 2079.407227][T20437]  ? shmem_is_huge+0x330/0x330
[ 2079.412010][T20437]  shmem_fault+0x1b4/0x750
[ 2079.416440][T20437]  ? shmem_getpage+0xa0/0xa0
[ 2079.421041][T20437]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2079.426697][T20437]  __do_fault+0x10d/0x610
[ 2079.431035][T20437]  __handle_mm_fault+0x2130/0x39b0
[ 2079.436159][T20437]  ? vm_iomap_memory+0x190/0x190
[ 2079.441125][T20437]  handle_mm_fault+0x1c8/0x780
[ 2079.445901][T20437]  __get_user_pages+0x4f3/0xfd0
[ 2079.450770][T20437]  ? follow_page_mask+0x1570/0x1570
[ 2079.455992][T20437]  populate_vma_page_range+0x23d/0x320
[ 2079.461464][T20437]  __mm_populate+0x1ea/0x3d0
[ 2079.466068][T20437]  ? faultin_vma_page_range+0x300/0x300
[ 2079.471628][T20437]  ? up_write+0x148/0x470
[ 2079.475969][T20437]  vm_mmap_pgoff+0x1fd/0x270
[ 2079.480578][T20437]  ? randomize_page+0xb0/0xb0
[ 2079.485261][T20437]  ? kfree+0x1fb/0x580
[ 2079.489347][T20437]  ksys_mmap_pgoff+0x79/0x5a0
[ 2079.494033][T20437]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2079.500631][T20437]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2079.505931][T20437]  __do_fast_syscall_32+0x65/0xf0
[ 2079.510961][T20437]  do_fast_syscall_32+0x2f/0x70
[ 2079.515819][T20437]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2079.522155][T20437] RIP: 0023:0xf7fdf549
[ 2079.526224][T20437] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2079.545837][T20437] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2079.554257][T20437] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2079.562316][T20437] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2079.570295][T20437] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2079.578265][T20437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2079.586241][T20437] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2079.594230][T20437]  </TASK>
[ 2079.597298][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2079.605022][T20437] memory: usage 307200kB, limit 307200kB, failcnt 1374
[ 2079.612741][T20437] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2079.619621][T20437] Memory cgroup stats for /syz2:
[ 2079.619826][T20437] anon 110592
[ 2079.619826][T20437] file 311709696
[ 2079.619826][T20437] kernel 2744320
[ 2079.619826][T20437] kernel_stack 98304
[ 2079.619826][T20437] pagetables 77824
[ 2079.619826][T20437] percpu 8288
[ 2079.619826][T20437] sock 0
[ 2079.619826][T20437] vmalloc 0
[ 2079.619826][T20437] shmem 311709696
[ 2079.619826][T20437] zswap 0
[ 2079.619826][T20437] zswapped 0
[ 2079.619826][T20437] file_mapped 4382720
[ 2079.619826][T20437] file_dirty 0
[ 2079.619826][T20437] file_writeback 0
[ 2079.619826][T20437] swapcached 0
[ 2079.619826][T20437] anon_thp 0
[ 2079.619826][T20437] file_thp 0
[ 2079.619826][T20437] shmem_thp 0
[ 2079.619826][T20437] inactive_anon 311599104
[ 2079.619826][T20437] active_anon 167936
[ 2079.619826][T20437] inactive_file 0
[ 2079.619826][T20437] active_file 0
[ 2079.619826][T20437] unevictable 0
[ 2079.619826][T20437] slab_reclaimable 1020464
[ 2079.619826][T20437] slab_unreclaimable 1522624
[ 2079.619826][T20437] slab 2543088
15:14:57 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
r1 = socket$inet(0x2, 0x3, 0x2) (async)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000600000000000000080000000000000008080000000000000000008040000000ff7f00000000000008"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:57 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x8, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:57 executing program 0:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:14:57 executing program 5:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000600000000000000080000000000000008080000000000000000008040000000ff7f00000000000008"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:57 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x6}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2079.725769][T20437] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20435,uid=0
[ 2079.745445][T20437] Memory cgroup out of memory: Killed process 20435 (syz-executor.2) total-vm:54492kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3956kB, UID:0 pgtables:72kB oom_score_adj:1000
15:14:57 executing program 0:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x5}, 0x8)
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2079.822482][T20443] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:57 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:58 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x7}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:58 executing program 0:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2079.997143][T20454] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:14:58 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x2, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2081.792929][   T30] oom_reaper: reaped process 20435 (syz-executor.2), now anon-rss:0kB, file-rss:8192kB, shmem-rss:4052kB
15:14:59 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x13c, 0x0, 0x8, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_TX_RATES={0x118, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x88, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1c, 0x1, [0x32, 0x16, 0x1, 0x36, 0x6c, 0x16, 0x2, 0x9, 0x4b, 0x6c, 0x2, 0x1d, 0x0, 0x60, 0x12, 0xcfc19b39489a22b3, 0x16, 0x24, 0x9, 0x9, 0x50, 0x9, 0x14, 0x2]}, @NL80211_TXRATE_HT={0x22, 0x2, [{0x4, 0x2}, {0x6, 0x4}, {0x7, 0x2}, {0x4, 0x8}, {0x0, 0x7}, {0x1, 0x4}, {0x4, 0x3}, {0x2, 0x9}, {0x5, 0x8}, {0x1, 0x9}, {0x2, 0x8}, {0x3, 0x2}, {0x1, 0x3}, {0x0, 0x7}, {0x6, 0x6}, {0x0, 0x6}, {0x3, 0x7}, {0x0, 0x1}, {0x1, 0x8}, {0x2, 0x5}, {0x5, 0x6}, {0x2, 0x2}, {0x5, 0x2}, {0x0, 0x7}, {0x3, 0x4}, {0x2, 0x5}, {0x7, 0x8}, {0x0, 0x3}, {0x5, 0x7}, {0x2, 0x2}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xca6e, 0x2000, 0x7, 0x8, 0x9, 0xe2, 0x8, 0x6]}}, @NL80211_TXRATE_LEGACY={0x1a, 0x1, [0x24, 0x2, 0x36, 0x6c, 0x48, 0x12, 0x9, 0x6, 0x1b, 0x1b, 0x12, 0x4, 0x9, 0x16, 0xc, 0xc, 0xb, 0x24, 0x1b, 0x1, 0x24, 0xc]}, @NL80211_TXRATE_LEGACY={0x11, 0x1, [0x60, 0x60, 0x16, 0xb, 0x9, 0x30, 0x1b, 0x6, 0x18, 0x12, 0x16, 0x75, 0x9]}]}, @NL80211_BAND_5GHZ={0x8c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x14, 0x4, 0x8, 0xffff, 0xffff, 0x7a52, 0x800]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x9, 0x4e0, 0x0, 0xffff, 0x6, 0x6, 0x4]}}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x8001, 0x391a, 0x200, 0x7, 0x7f, 0x6, 0x20, 0x4]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x8, 0x0, 0xfffc, 0x0, 0x902, 0x2, 0x2, 0xda]}}, @NL80211_TXRATE_HT={0x9, 0x2, [{0x0, 0x4}, {0x3, 0x9}, {0x0, 0x6}, {0x3, 0x3}, {0x2, 0xe}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x101, 0x5, 0x20, 0x200, 0x3, 0x6, 0xf000, 0xc800]}}, @NL80211_TXRATE_HE_LTF={0x5}]}]}, @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x13c}, 0x1, 0x0, 0x0, 0x4041}, 0x40011)
mlockall(0x2)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r2, 0xc)
mlockall(0x4)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)
unshare(0x40000400) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x13c, 0x0, 0x8, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_TX_RATES={0x118, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x88, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1c, 0x1, [0x32, 0x16, 0x1, 0x36, 0x6c, 0x16, 0x2, 0x9, 0x4b, 0x6c, 0x2, 0x1d, 0x0, 0x60, 0x12, 0xcfc19b39489a22b3, 0x16, 0x24, 0x9, 0x9, 0x50, 0x9, 0x14, 0x2]}, @NL80211_TXRATE_HT={0x22, 0x2, [{0x4, 0x2}, {0x6, 0x4}, {0x7, 0x2}, {0x4, 0x8}, {0x0, 0x7}, {0x1, 0x4}, {0x4, 0x3}, {0x2, 0x9}, {0x5, 0x8}, {0x1, 0x9}, {0x2, 0x8}, {0x3, 0x2}, {0x1, 0x3}, {0x0, 0x7}, {0x6, 0x6}, {0x0, 0x6}, {0x3, 0x7}, {0x0, 0x1}, {0x1, 0x8}, {0x2, 0x5}, {0x5, 0x6}, {0x2, 0x2}, {0x5, 0x2}, {0x0, 0x7}, {0x3, 0x4}, {0x2, 0x5}, {0x7, 0x8}, {0x0, 0x3}, {0x5, 0x7}, {0x2, 0x2}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xca6e, 0x2000, 0x7, 0x8, 0x9, 0xe2, 0x8, 0x6]}}, @NL80211_TXRATE_LEGACY={0x1a, 0x1, [0x24, 0x2, 0x36, 0x6c, 0x48, 0x12, 0x9, 0x6, 0x1b, 0x1b, 0x12, 0x4, 0x9, 0x16, 0xc, 0xc, 0xb, 0x24, 0x1b, 0x1, 0x24, 0xc]}, @NL80211_TXRATE_LEGACY={0x11, 0x1, [0x60, 0x60, 0x16, 0xb, 0x9, 0x30, 0x1b, 0x6, 0x18, 0x12, 0x16, 0x75, 0x9]}]}, @NL80211_BAND_5GHZ={0x8c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x14, 0x4, 0x8, 0xffff, 0xffff, 0x7a52, 0x800]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x9, 0x4e0, 0x0, 0xffff, 0x6, 0x6, 0x4]}}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x8001, 0x391a, 0x200, 0x7, 0x7f, 0x6, 0x20, 0x4]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x8, 0x0, 0xfffc, 0x0, 0x902, 0x2, 0x2, 0xda]}}, @NL80211_TXRATE_HT={0x9, 0x2, [{0x0, 0x4}, {0x3, 0x9}, {0x0, 0x6}, {0x3, 0x3}, {0x2, 0xe}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x101, 0x5, 0x20, 0x200, 0x3, 0x6, 0xf000, 0xc800]}}, @NL80211_TXRATE_HE_LTF={0x5}]}]}, @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x13c}, 0x1, 0x0, 0x0, 0x4041}, 0x40011) (async)
mlockall(0x2) (async)
shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r2, 0xb) (async)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r2, 0xc) (async)
mlockall(0x4) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50) (async)

15:14:59 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x8}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:59 executing program 0:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:14:59 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x3, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:14:59 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = socket$inet(0x2, 0x4, 0xe8)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000940)=ANY=[], 0xda00)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x2000})
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000240)={0x2, 'bridge0\x00', 0x40000002}, 0xfffffffffffffe53)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r3}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="00000000000000000200000000000000000100000000000000000000000000092600000000000000070000000000000004000000000000000800000000000000080f0000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r3, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:14:59 executing program 5:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x7}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:00 executing program 5:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00', 0x7}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:15:00 executing program 0:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:00 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xa}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2081.904312][T20474] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:00 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x5, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:00 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2082.086857][T20490] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:00 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x6, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2082.431152][T20484] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2082.467553][T20484] CPU: 0 PID: 20484 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2082.478044][T20484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2082.488120][T20484] Call Trace:
[ 2082.491418][T20484]  <TASK>
[ 2082.494368][T20484]  dump_stack_lvl+0xcd/0x134
[ 2082.498985][T20484]  dump_header+0x10b/0x7f9
[ 2082.503417][T20484]  oom_kill_process.cold+0x10/0x15
[ 2082.508552][T20484]  out_of_memory+0x358/0x14a0
[ 2082.513236][T20484]  ? find_held_lock+0x2d/0x110
[ 2082.517989][T20484]  ? oom_killer_disable+0x270/0x270
[ 2082.523214][T20484]  ? find_held_lock+0x2d/0x110
[ 2082.528001][T20484]  mem_cgroup_out_of_memory+0x206/0x270
[ 2082.533570][T20484]  ? mem_cgroup_margin+0x130/0x130
[ 2082.538671][T20484]  ? lock_downgrade+0x6e0/0x6e0
[ 2082.543537][T20484]  try_charge_memcg+0xf67/0x13f0
[ 2082.548491][T20484]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2082.554464][T20484]  ? lock_downgrade+0x6e0/0x6e0
[ 2082.559316][T20484]  charge_memcg+0x31/0x320
[ 2082.563725][T20484]  __mem_cgroup_charge+0x27/0x90
[ 2082.568651][T20484]  ? folio_flags.constprop.0+0x53/0x150
[ 2082.574199][T20484]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2082.579771][T20484]  ? shmem_write_end+0xe90/0xe90
[ 2082.584725][T20484]  ? folio_flags.constprop.0+0x53/0x150
[ 2082.590285][T20484]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2082.596192][T20484]  shmem_getpage_gfp+0x8af/0x1f30
[ 2082.601238][T20484]  ? shmem_is_huge+0x330/0x330
[ 2082.606018][T20484]  shmem_fault+0x1b4/0x750
[ 2082.610452][T20484]  ? shmem_getpage+0xa0/0xa0
[ 2082.615054][T20484]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2082.620707][T20484]  __do_fault+0x10d/0x610
[ 2082.625046][T20484]  __handle_mm_fault+0x2130/0x39b0
[ 2082.630171][T20484]  ? vm_iomap_memory+0x190/0x190
[ 2082.635133][T20484]  handle_mm_fault+0x1c8/0x780
[ 2082.639904][T20484]  __get_user_pages+0x4f3/0xfd0
[ 2082.644773][T20484]  ? follow_page_mask+0x1570/0x1570
[ 2082.650081][T20484]  populate_vma_page_range+0x23d/0x320
[ 2082.655551][T20484]  __mm_populate+0x1ea/0x3d0
[ 2082.660236][T20484]  ? faultin_vma_page_range+0x300/0x300
[ 2082.665792][T20484]  ? up_write+0x148/0x470
[ 2082.670138][T20484]  vm_mmap_pgoff+0x1fd/0x270
[ 2082.674735][T20484]  ? randomize_page+0xb0/0xb0
[ 2082.679430][T20484]  ksys_mmap_pgoff+0x79/0x5a0
[ 2082.684111][T20484]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2082.690708][T20484]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2082.696000][T20484]  __do_fast_syscall_32+0x65/0xf0
[ 2082.701036][T20484]  do_fast_syscall_32+0x2f/0x70
[ 2082.705897][T20484]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2082.712228][T20484] RIP: 0023:0xf7fdf549
[ 2082.716302][T20484] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2082.735915][T20484] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2082.744333][T20484] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2082.752321][T20484] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2082.760299][T20484] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2082.768271][T20484] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2082.776244][T20484] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2082.784257][T20484]  </TASK>
[ 2082.787421][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2082.814915][T20484] memory: usage 307176kB, limit 307200kB, failcnt 1452
[ 2082.822664][T20484] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2082.829578][T20484] Memory cgroup stats for /syz2:
[ 2082.829764][T20484] anon 110592
[ 2082.829764][T20484] file 311459840
[ 2082.829764][T20484] kernel 2961408
[ 2082.829764][T20484] kernel_stack 98304
[ 2082.829764][T20484] pagetables 77824
[ 2082.829764][T20484] percpu 10656
[ 2082.829764][T20484] sock 0
[ 2082.829764][T20484] vmalloc 0
[ 2082.829764][T20484] shmem 311459840
[ 2082.829764][T20484] zswap 0
[ 2082.829764][T20484] zswapped 0
[ 2082.829764][T20484] file_mapped 4132864
[ 2082.829764][T20484] file_dirty 0
[ 2082.829764][T20484] file_writeback 0
[ 2082.829764][T20484] swapcached 0
[ 2082.829764][T20484] anon_thp 0
[ 2082.829764][T20484] file_thp 0
[ 2082.829764][T20484] shmem_thp 0
[ 2082.829764][T20484] inactive_anon 311402496
[ 2082.829764][T20484] active_anon 167936
[ 2082.829764][T20484] inactive_file 0
[ 2082.829764][T20484] active_file 0
[ 2082.829764][T20484] unevictable 0
[ 2082.829764][T20484] slab_reclaimable 1019752
[ 2082.829764][T20484] slab_unreclaimable 1737864
[ 2082.829764][T20484] slab 2757616
[ 2082.923460][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2082.929870][T20484] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20478,uid=0
[ 2082.946425][T20484] Memory cgroup out of memory: Killed process 20478 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3692kB, UID:0 pgtables:72kB oom_score_adj:1000
15:15:03 executing program 2:
unshare(0x40000400) (async, rerun: 32)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async, rerun: 32)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000100)={0x13c, 0x0, 0x8, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_TX_RATES={0x118, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x88, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1c, 0x1, [0x32, 0x16, 0x1, 0x36, 0x6c, 0x16, 0x2, 0x9, 0x4b, 0x6c, 0x2, 0x1d, 0x0, 0x60, 0x12, 0xcfc19b39489a22b3, 0x16, 0x24, 0x9, 0x9, 0x50, 0x9, 0x14, 0x2]}, @NL80211_TXRATE_HT={0x22, 0x2, [{0x4, 0x2}, {0x6, 0x4}, {0x7, 0x2}, {0x4, 0x8}, {0x0, 0x7}, {0x1, 0x4}, {0x4, 0x3}, {0x2, 0x9}, {0x5, 0x8}, {0x1, 0x9}, {0x2, 0x8}, {0x3, 0x2}, {0x1, 0x3}, {0x0, 0x7}, {0x6, 0x6}, {0x0, 0x6}, {0x3, 0x7}, {0x0, 0x1}, {0x1, 0x8}, {0x2, 0x5}, {0x5, 0x6}, {0x2, 0x2}, {0x5, 0x2}, {0x0, 0x7}, {0x3, 0x4}, {0x2, 0x5}, {0x7, 0x8}, {0x0, 0x3}, {0x5, 0x7}, {0x2, 0x2}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xca6e, 0x2000, 0x7, 0x8, 0x9, 0xe2, 0x8, 0x6]}}, @NL80211_TXRATE_LEGACY={0x1a, 0x1, [0x24, 0x2, 0x36, 0x6c, 0x48, 0x12, 0x9, 0x6, 0x1b, 0x1b, 0x12, 0x4, 0x9, 0x16, 0xc, 0xc, 0xb, 0x24, 0x1b, 0x1, 0x24, 0xc]}, @NL80211_TXRATE_LEGACY={0x11, 0x1, [0x60, 0x60, 0x16, 0xb, 0x9, 0x30, 0x1b, 0x6, 0x18, 0x12, 0x16, 0x75, 0x9]}]}, @NL80211_BAND_5GHZ={0x8c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x14, 0x4, 0x8, 0xffff, 0xffff, 0x7a52, 0x800]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x9, 0x4e0, 0x0, 0xffff, 0x6, 0x6, 0x4]}}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x8001, 0x391a, 0x200, 0x7, 0x7f, 0x6, 0x20, 0x4]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x8, 0x0, 0xfffc, 0x0, 0x902, 0x2, 0x2, 0xda]}}, @NL80211_TXRATE_HT={0x9, 0x2, [{0x0, 0x4}, {0x3, 0x9}, {0x0, 0x6}, {0x3, 0x3}, {0x2, 0xe}]}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x101, 0x5, 0x20, 0x200, 0x3, 0x6, 0xf000, 0xc800]}}, @NL80211_TXRATE_HE_LTF={0x5}]}]}, @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_HANDLE_DFS={0x4}]}, 0x13c}, 0x1, 0x0, 0x0, 0x4041}, 0x40011) (async, rerun: 32)
mlockall(0x2) (rerun: 32)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1)
shmctl$SHM_UNLOCK(r2, 0xc) (async)
mlockall(0x4) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:03 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:03 executing program 0:
syz_emit_ethernet(0x92, 0x0, 0x0)

15:15:03 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x8, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:03 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="b1ba2e39102dbbad454c95b8806d3ba7074a6c5343147863fa6508d840ac209cdc7c98f38a1cba9f814eb82c514d1ec99006165125abd7ec43678d9a4f85a22276a8afe6fb989b08fb3f0f4298c3f104c92030bd272e824effbc5207392ee0e5a049da251365162137ea490a9e1b6611d5798615101772acf9063c95174abc2237d19fcbd51033660bee98addf79f873c95defed253b00675aeb62205cda9fa4ca01d117c704efd95636ce0d46dd90867969bf5bc8e05af3f459514126baf148488322c2c9152a0872b52660ab79e42a4da81b41b503e034ec26d7afa815c4c3a9be7c4374f57042653bef9f47268ab67abca30d0f8b3bd4a46e40f47268d1e2efc2e06c9da72238e06214c79a8c1fc8ed0677fd900014e9eb5885e1f5379d984bae384fc3543dba129e151396de172e92dbd9e53a"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = socket$inet(0x2, 0x4, 0xe8)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000940)=ANY=[], 0xda00)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x2000})
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000240)={0x2, 'bridge0\x00', 0x40000002}, 0xfffffffffffffe53)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r3}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="00000000000000000200000000000000000100000000000000000000000000092600000000000000070000000000000004000000000000000800000000000000080f0000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r3, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
socket$inet(0x2, 0x3, 0x2) (async)
socket$inet(0x2, 0x4, 0xe8) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) (async)
write$cgroup_subtree(r4, &(0x7f0000000940)=ANY=[], 0xda00) (async)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x2000}) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000240)={0x2, 'bridge0\x00', 0x40000002}, 0xfffffffffffffe53) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r3}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="00000000000000000200000000000000000100000000000000000000000000092600000000000000070000000000000004000000000000000800000000000000080f0000000000000000008000000000ff7f000000000000"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r3, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (async)

15:15:03 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:03 executing program 5:
unshare(0x40000000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001f03cd989837f082f20a00008f1c", @ANYRES32=0x0, @ANYBLOB="ff7f000000000000140012800a00010076786c616e0000000400028008000a00c0989ea08c185b62a4416822d58eb291d11cd83745799215b29ef41371e2f9c234849f3c7940d337081fc6627b984ae80a15b610ff15a7f8b066f87f51a889107042ba6a7640b218a97319648c09e71ae6f3a314d57f3aaa5dd4b23998a785742b5d53f7f49d1a152356b16243a48e49572f76f170fff9c1ec7ddbd27ae00c759dc4bd0ad6a76be965627b1dd49de2c9fef26a6029749bba06e242026092424dd2231c", @ANYBLOB="5a72aeac39aee90eef48d344a3825b9ec50df83d21dbd920b1dc7cfa14"], 0x3c}, 0x1, 0x8000a0ffffffff, 0x0, 0x4000000}, 0x0)
r0 = socket(0x10, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)=@ipv6_getnetconf={0x1c, 0x52, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NETCONFA_PROXY_NEIGH={0x8, 0x5, 0x80}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x841)

15:15:03 executing program 0:
syz_emit_ethernet(0x92, 0x0, 0x0)

15:15:03 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0xe, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2085.009045][T20508] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:03 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x10}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:03 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x1c, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:03 executing program 0:
syz_emit_ethernet(0x92, 0x0, 0x0)

[ 2085.259441][T20527] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2085.507942][T20515] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2085.527647][T20515] CPU: 0 PID: 20515 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2085.538117][T20515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2085.548189][T20515] Call Trace:
[ 2085.551481][T20515]  <TASK>
[ 2085.554422][T20515]  dump_stack_lvl+0xcd/0x134
[ 2085.559044][T20515]  dump_header+0x10b/0x7f9
[ 2085.563487][T20515]  oom_kill_process.cold+0x10/0x15
[ 2085.568631][T20515]  out_of_memory+0x358/0x14a0
[ 2085.573334][T20515]  ? find_held_lock+0x2d/0x110
[ 2085.578118][T20515]  ? oom_killer_disable+0x270/0x270
[ 2085.583344][T20515]  ? find_held_lock+0x2d/0x110
[ 2085.588134][T20515]  mem_cgroup_out_of_memory+0x206/0x270
[ 2085.593706][T20515]  ? mem_cgroup_margin+0x130/0x130
[ 2085.598848][T20515]  ? lock_downgrade+0x6e0/0x6e0
[ 2085.603731][T20515]  try_charge_memcg+0xf67/0x13f0
[ 2085.608699][T20515]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2085.614712][T20515]  ? lock_downgrade+0x6e0/0x6e0
[ 2085.619602][T20515]  charge_memcg+0x31/0x320
[ 2085.624055][T20515]  __mem_cgroup_charge+0x27/0x90
[ 2085.629014][T20515]  ? folio_flags.constprop.0+0x53/0x150
[ 2085.634588][T20515]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2085.640164][T20515]  ? shmem_write_end+0xe90/0xe90
[ 2085.645132][T20515]  ? folio_flags.constprop.0+0x53/0x150
[ 2085.650704][T20515]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2085.656628][T20515]  shmem_getpage_gfp+0x8af/0x1f30
[ 2085.661698][T20515]  ? shmem_is_huge+0x330/0x330
[ 2085.666586][T20515]  shmem_fault+0x1b4/0x750
[ 2085.671039][T20515]  ? shmem_getpage+0xa0/0xa0
[ 2085.675654][T20515]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2085.681300][T20515]  __do_fault+0x10d/0x610
[ 2085.685653][T20515]  __handle_mm_fault+0x2130/0x39b0
[ 2085.690809][T20515]  ? vm_iomap_memory+0x190/0x190
[ 2085.695771][T20515]  handle_mm_fault+0x1c8/0x780
[ 2085.700527][T20515]  __get_user_pages+0x4f3/0xfd0
[ 2085.705384][T20515]  ? follow_page_mask+0x1570/0x1570
[ 2085.710583][T20515]  populate_vma_page_range+0x23d/0x320
[ 2085.716037][T20515]  __mm_populate+0x1ea/0x3d0
[ 2085.720620][T20515]  ? faultin_vma_page_range+0x300/0x300
[ 2085.726162][T20515]  ? up_write+0x148/0x470
[ 2085.730491][T20515]  vm_mmap_pgoff+0x1fd/0x270
[ 2085.735092][T20515]  ? randomize_page+0xb0/0xb0
[ 2085.739806][T20515]  ksys_mmap_pgoff+0x79/0x5a0
[ 2085.744507][T20515]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2085.751126][T20515]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2085.756406][T20515]  __do_fast_syscall_32+0x65/0xf0
[ 2085.761424][T20515]  do_fast_syscall_32+0x2f/0x70
[ 2085.766268][T20515]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2085.772587][T20515] RIP: 0023:0xf7fdf549
[ 2085.776644][T20515] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2085.796250][T20515] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2085.804667][T20515] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2085.812636][T20515] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2085.820600][T20515] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2085.828560][T20515] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2085.836536][T20515] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2085.844534][T20515]  </TASK>
[ 2085.847634][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2085.856376][T20515] memory: usage 307200kB, limit 307200kB, failcnt 1510
[ 2085.864264][T20515] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2085.871399][T20515] Memory cgroup stats for /syz2:
[ 2085.871593][T20515] anon 122880
[ 2085.871593][T20515] file 311451648
[ 2085.871593][T20515] kernel 2998272
[ 2085.871593][T20515] kernel_stack 131072
[ 2085.871593][T20515] pagetables 77824
[ 2085.871593][T20515] percpu 10656
[ 2085.871593][T20515] sock 0
[ 2085.871593][T20515] vmalloc 0
[ 2085.871593][T20515] shmem 311451648
[ 2085.871593][T20515] zswap 0
[ 2085.871593][T20515] zswapped 0
[ 2085.871593][T20515] file_mapped 4124672
[ 2085.871593][T20515] file_dirty 0
[ 2085.871593][T20515] file_writeback 0
[ 2085.871593][T20515] swapcached 0
[ 2085.871593][T20515] anon_thp 0
[ 2085.871593][T20515] file_thp 0
[ 2085.871593][T20515] shmem_thp 0
[ 2085.871593][T20515] inactive_anon 311402496
[ 2085.871593][T20515] active_anon 167936
[ 2085.871593][T20515] inactive_file 0
[ 2085.871593][T20515] active_file 0
[ 2085.871593][T20515] unevictable 0
[ 2085.871593][T20515] slab_reclaimable 1023608
[ 2085.871593][T20515] slab_unreclaimable 1738488
[ 2085.871593][T20515] slab 2762096
[ 2085.965344][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2085.974766][T20515] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20512,uid=0
[ 2085.990771][T20515] Memory cgroup out of memory: Killed process 20512 (syz-executor.2) total-vm:50784kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3692kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 2086.008256][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2088.041562][   T30] oom_reaper: reaped process 20512 (syz-executor.2), now anon-rss:0kB, file-rss:8192kB, shmem-rss:3800kB
15:15:07 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x60, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:07 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[], 0x0)

15:15:07 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2c}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:07 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="b1ba2e39102dbbad454c95b8806d3ba7074a6c5343147863fa6508d840ac209cdc7c98f38a1cba9f814eb82c514d1ec99006165125abd7ec43678d9a4f85a22276a8afe6fb989b08fb3f0f4298c3f104c92030bd272e824effbc5207392ee0e5a049da251365162137ea490a9e1b6611d5798615101772acf9063c95174abc2237d19fcbd51033660bee98addf79f873c95defed253b00675aeb62205cda9fa4ca01d117c704efd95636ce0d46dd90867969bf5bc8e05af3f459514126baf148488322c2c9152a0872b52660ab79e42a4da81b41b503e034ec26d7afa815c4c3a9be7c4374f57042653bef9f47268ab67abca30d0f8b3bd4a46e40f47268d1e2efc2e06c9da72238e06214c79a8c1fc8ed0677fd900014e9eb5885e1f5379d984bae384fc3543dba129e151396de172e92dbd9e53a"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = socket$inet(0x2, 0x4, 0xe8)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000940)=ANY=[], 0xda00)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x2000})
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000240)={0x2, 'bridge0\x00', 0x40000002}, 0xfffffffffffffe53)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r3}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="00000000000000000200000000000000000100000000000000000000000000092600000000000000070000000000000004000000000000000800000000000000080f0000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r3, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
socket$inet(0x2, 0x3, 0x2) (async)
socket$inet(0x2, 0x4, 0xe8) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) (async)
write$cgroup_subtree(r4, &(0x7f0000000940)=ANY=[], 0xda00) (async)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x2000}) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000240)={0x2, 'bridge0\x00', 0x40000002}, 0xfffffffffffffe53) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r3}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="00000000000000000200000000000000000100000000000000000000000000092600000000000000070000000000000004000000000000000800000000000000080f0000000000000000008000000000ff7f000000000000"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r3, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (async)

15:15:07 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x2c010700)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket(0x29, 0xa, 0xd68)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
r2 = openat$vcsu(0xffffff9c, &(0x7f0000000100), 0x4640, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r2)
shmctl$SHM_LOCK(r1, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:07 executing program 5:
unshare(0x40000000) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async, rerun: 64)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001f03cd989837f082f20a00008f1c", @ANYRES32=0x0, @ANYBLOB="ff7f000000000000140012800a00010076786c616e0000000400028008000a00c0989ea08c185b62a4416822d58eb291d11cd83745799215b29ef41371e2f9c234849f3c7940d337081fc6627b984ae80a15b610ff15a7f8b066f87f51a889107042ba6a7640b218a97319648c09e71ae6f3a314d57f3aaa5dd4b23998a785742b5d53f7f49d1a152356b16243a48e49572f76f170fff9c1ec7ddbd27ae00c759dc4bd0ad6a76be965627b1dd49de2c9fef26a6029749bba06e242026092424dd2231c", @ANYBLOB="5a72aeac39aee90eef48d344a3825b9ec50df83d21dbd920b1dc7cfa14"], 0x3c}, 0x1, 0x8000a0ffffffff, 0x0, 0x4000000}, 0x0) (async, rerun: 64)
r0 = socket(0x10, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)=@ipv6_getnetconf={0x1c, 0x52, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NETCONFA_PROXY_NEIGH={0x8, 0x5, 0x80}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x841)

15:15:07 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[], 0x0)

15:15:07 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2089.807991][T20540] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:07 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x33}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:08 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[], 0x0)

15:15:08 executing program 5:
unshare(0x40000000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001f03cd989837f082f20a00008f1c", @ANYRES32=0x0, @ANYBLOB="ff7f000000000000140012800a00010076786c616e0000000400028008000a00c0989ea08c185b62a4416822d58eb291d11cd83745799215b29ef41371e2f9c234849f3c7940d337081fc6627b984ae80a15b610ff15a7f8b066f87f51a889107042ba6a7640b218a97319648c09e71ae6f3a314d57f3aaa5dd4b23998a785742b5d53f7f49d1a152356b16243a48e49572f76f170fff9c1ec7ddbd27ae00c759dc4bd0ad6a76be965627b1dd49de2c9fef26a6029749bba06e242026092424dd2231c", @ANYBLOB="5a72aeac39aee90eef48d344a3825b9ec50df83d21dbd920b1dc7cfa14"], 0x3c}, 0x1, 0x8000a0ffffffff, 0x0, 0x4000000}, 0x0)
r0 = socket(0x10, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)=@ipv6_getnetconf={0x1c, 0x52, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NETCONFA_PROXY_NEIGH={0x8, 0x5, 0x80}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x841)
unshare(0x40000000) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010001f03cd989837f082f20a00008f1c", @ANYRES32=0x0, @ANYBLOB="ff7f000000000000140012800a00010076786c616e0000000400028008000a00c0989ea08c185b62a4416822d58eb291d11cd83745799215b29ef41371e2f9c234849f3c7940d337081fc6627b984ae80a15b610ff15a7f8b066f87f51a889107042ba6a7640b218a97319648c09e71ae6f3a314d57f3aaa5dd4b23998a785742b5d53f7f49d1a152356b16243a48e49572f76f170fff9c1ec7ddbd27ae00c759dc4bd0ad6a76be965627b1dd49de2c9fef26a6029749bba06e242026092424dd2231c", @ANYBLOB="5a72aeac39aee90eef48d344a3825b9ec50df83d21dbd920b1dc7cfa14"], 0x3c}, 0x1, 0x8000a0ffffffff, 0x0, 0x4000000}, 0x0) (async)
socket(0x10, 0x80002, 0x0) (async)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)=@ipv6_getnetconf={0x1c, 0x52, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NETCONFA_PROXY_NEIGH={0x8, 0x5, 0x80}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x841) (async)

15:15:08 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x2}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:08 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x3}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2090.034017][T20565] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:08 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0)

15:15:08 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x38}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2090.221066][T20580] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2090.365454][T20559] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2090.398482][T20559] CPU: 1 PID: 20559 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2090.408950][T20559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2090.419027][T20559] Call Trace:
[ 2090.422325][T20559]  <TASK>
[ 2090.425266][T20559]  dump_stack_lvl+0xcd/0x134
[ 2090.429879][T20559]  dump_header+0x10b/0x7f9
[ 2090.434309][T20559]  oom_kill_process.cold+0x10/0x15
[ 2090.439435][T20559]  out_of_memory+0x358/0x14a0
[ 2090.444125][T20559]  ? find_held_lock+0x2d/0x110
[ 2090.448892][T20559]  ? oom_killer_disable+0x270/0x270
[ 2090.454100][T20559]  ? find_held_lock+0x2d/0x110
[ 2090.458870][T20559]  mem_cgroup_out_of_memory+0x206/0x270
[ 2090.464423][T20559]  ? mem_cgroup_margin+0x130/0x130
[ 2090.469546][T20559]  ? lock_downgrade+0x6e0/0x6e0
[ 2090.474415][T20559]  try_charge_memcg+0xf67/0x13f0
[ 2090.479366][T20559]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2090.485385][T20559]  ? lock_downgrade+0x6e0/0x6e0
[ 2090.490255][T20559]  charge_memcg+0x31/0x320
[ 2090.494682][T20559]  __mem_cgroup_charge+0x27/0x90
[ 2090.499633][T20559]  ? folio_flags.constprop.0+0x53/0x150
[ 2090.505191][T20559]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2090.510755][T20559]  ? shmem_write_end+0xe90/0xe90
[ 2090.515705][T20559]  ? folio_flags.constprop.0+0x53/0x150
[ 2090.521260][T20559]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2090.527173][T20559]  shmem_getpage_gfp+0x8af/0x1f30
[ 2090.532219][T20559]  ? shmem_is_huge+0x330/0x330
[ 2090.537005][T20559]  shmem_fault+0x1b4/0x750
[ 2090.541435][T20559]  ? shmem_getpage+0xa0/0xa0
[ 2090.546039][T20559]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2090.551701][T20559]  __do_fault+0x10d/0x610
[ 2090.556037][T20559]  __handle_mm_fault+0x2130/0x39b0
[ 2090.561174][T20559]  ? vm_iomap_memory+0x190/0x190
[ 2090.566150][T20559]  handle_mm_fault+0x1c8/0x780
[ 2090.570952][T20559]  __get_user_pages+0x4f3/0xfd0
[ 2090.575825][T20559]  ? follow_page_mask+0x1570/0x1570
[ 2090.581051][T20559]  populate_vma_page_range+0x23d/0x320
[ 2090.586536][T20559]  __mm_populate+0x1ea/0x3d0
[ 2090.591144][T20559]  ? faultin_vma_page_range+0x300/0x300
[ 2090.596712][T20559]  ? up_write+0x148/0x470
[ 2090.601054][T20559]  vm_mmap_pgoff+0x1fd/0x270
[ 2090.605655][T20559]  ? randomize_page+0xb0/0xb0
[ 2090.610333][T20559]  ? kfree+0x1fb/0x580
[ 2090.614421][T20559]  ksys_mmap_pgoff+0x79/0x5a0
[ 2090.619102][T20559]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2090.625703][T20559]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2090.631001][T20559]  __do_fast_syscall_32+0x65/0xf0
[ 2090.636034][T20559]  do_fast_syscall_32+0x2f/0x70
[ 2090.640893][T20559]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2090.647227][T20559] RIP: 0023:0xf7fdf549
[ 2090.651383][T20559] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2090.671002][T20559] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2090.679418][T20559] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2090.687395][T20559] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2090.695431][T20559] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2090.703403][T20559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2090.711385][T20559] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2090.719375][T20559]  </TASK>
[ 2090.751857][T20559] memory: usage 307200kB, limit 307200kB, failcnt 1650
[ 2090.759377][T20559] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2090.773577][T20559] Memory cgroup stats for /syz2:
[ 2090.773797][T20559] anon 110592
[ 2090.773797][T20559] file 311398400
[ 2090.773797][T20559] kernel 3035136
[ 2090.773797][T20559] kernel_stack 98304
[ 2090.773797][T20559] pagetables 77824
[ 2090.773797][T20559] percpu 13024
[ 2090.773797][T20559] sock 0
[ 2090.773797][T20559] vmalloc 0
[ 2090.773797][T20559] shmem 311398400
[ 2090.773797][T20559] zswap 0
[ 2090.773797][T20559] zswapped 0
[ 2090.773797][T20559] file_mapped 4071424
[ 2090.773797][T20559] file_dirty 0
[ 2090.773797][T20559] file_writeback 0
[ 2090.773797][T20559] swapcached 0
[ 2090.773797][T20559] anon_thp 0
[ 2090.773797][T20559] file_thp 0
[ 2090.773797][T20559] shmem_thp 0
[ 2090.773797][T20559] inactive_anon 311341056
[ 2090.773797][T20559] active_anon 167936
[ 2090.773797][T20559] inactive_file 0
[ 2090.773797][T20559] active_file 0
[ 2090.773797][T20559] unevictable 0
[ 2090.773797][T20559] slab_reclaimable 1019752
[ 2090.773797][T20559] slab_unreclaimable 1809160
[ 2090.773797][T20559] slab 2828912
[ 2090.867342][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2090.875965][T20559] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20550,uid=0
[ 2090.891812][T20559] Memory cgroup out of memory: Killed process 20550 (syz-executor.2) total-vm:54492kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3692kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 2092.912283][   T30] oom_reaper: reaped process 20550 (syz-executor.2), now anon-rss:0kB, file-rss:8192kB, shmem-rss:3748kB
15:15:11 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x5}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:11 executing program 2:
unshare(0x40000400) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x2c010700) (async)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket(0x29, 0xa, 0xd68)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2) (async)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
r2 = openat$vcsu(0xffffff9c, &(0x7f0000000100), 0x4640, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r2) (async)
shmctl$SHM_LOCK(r1, 0xb) (async)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:11 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0)

15:15:11 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4a300800, &(0x7f0000000800)="da0bf6d630e00775628473b4a8c08f01caa6909e2c3442cf5d2cb40bc5306e4acf95c720dccc2e2628b2f2ee954236ac82dab9eafee46dc50a6978f376825ca9e29d66ada330d51630cc0fe33ec604668cb860b59e052909fd67543419d795a9bb3966c064510619d90e4bee302990b844a3ae04ea56daa20e1dbd78f7ac57eb4900e249dac642a70f1898dba7e4323535e6422e19f4b0d02a1ad0bc6a09e05c48e6d3bcb028c2dab9dc93ecb2d0f453bfcbffb92cb6b6b2017f6b9034c5ccfbfc8b4537624f14ea617807c0d19671072ba93874c23e3f99ac9c51cb655c", 0xffffffffffffff46, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:15:11 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x48}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:11 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x6}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:11 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000ac0)='cgroup.controllers\x00', 0x7a05, 0x1700)
write$cgroup_int(r0, &(0x7f0000000200), 0x43400)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_CHANNEL(r1, &(0x7f00000005c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000580)={&(0x7f00000004c0)={0x48, 0x0, 0x10, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x100, 0x66}}}}, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000800}, 0x4000000)
sendmsg$NL80211_CMD_DEL_KEY(r0, &(0x7f0000000400)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000300)={&(0x7f0000000100)={0x7c, 0x0, 0x400, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x3}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x1c, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_KEY_IDX={0x5}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "719d9538b8"}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "7ba7747c6973ac2f254bd5234e"}]}, 0x7c}}, 0x0)
unshare(0x20020000)
r3 = syz_open_procfs(0x0, &(0x7f0000000180)='mountinfo\x00')
preadv(r3, &(0x7f0000000440)=[{&(0x7f0000000200)=""/194, 0xc2}], 0x1, 0x0, 0x0)
unshare(0x10010000)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$fuse(0x20000000, &(0x7f0000000040)='./file0\x00', 0x0, 0x807284, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000b80)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r4, &(0x7f00000021c0)={0x2020}, 0x2020)
syz_fuse_handle_req(r4, &(0x7f000000a680)="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", 0x2000, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r5 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000600)={'#! ', '\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/', [{0x20, 'mountinfo\x00'}, {0x20, 'cgroup.controllers\x00'}, {0x20, 'mountinfo\x00'}, {0x20, '/dev/fuse\x00'}, {0x20, ',@$]'}], 0xa, "2c507d19d1e4ad5c743311908f031e0e54de96f06967c076b2f49b1927e7be5c65c9fa5e170d00445b02a1788fc65aac607c52bda68d5562169cba9d7ba11ab983fa95c5833bd2dc98be13493951b2f6fb704dffc7d5d1767f72957b2f63e2593449bd43193538d2a9504feee25db5e2eadad62f77e79a735763d28e4108528a4ef8321a9a382943a209c9ed3122029ff2bb9dfd"}, 0x11f)
renameat(r5, &(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r5, &(0x7f00000003c0)='./file0\x00')

15:15:11 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x8}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:11 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0)

15:15:11 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4a300800, &(0x7f0000000800)="da0bf6d630e00775628473b4a8c08f01caa6909e2c3442cf5d2cb40bc5306e4acf95c720dccc2e2628b2f2ee954236ac82dab9eafee46dc50a6978f376825ca9e29d66ada330d51630cc0fe33ec604668cb860b59e052909fd67543419d795a9bb3966c064510619d90e4bee302990b844a3ae04ea56daa20e1dbd78f7ac57eb4900e249dac642a70f1898dba7e4323535e6422e19f4b0d02a1ad0bc6a09e05c48e6d3bcb028c2dab9dc93ecb2d0f453bfcbffb92cb6b6b2017f6b9034c5ccfbfc8b4537624f14ea617807c0d19671072ba93874c23e3f99ac9c51cb655c", 0xffffffffffffff46, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="b1ba2e39102dbbad454c95b8806d3ba7074a6c5343147863fa6508d840ac209cdc7c98f38a1cba9f814eb82c514d1ec99006165125abd7ec43678d9a4f85a22276a8afe6fb989b08fb3f0f4298c3f104c92030bd272e824effbc5207392ee0e5a049da251365162137ea490a9e1b6611d5798615101772acf9063c95174abc2237d19fcbd51033660bee98addf79f873c95defed253b00675aeb62205cda9fa4ca01d117c704efd95636ce0d46dd90867969bf5bc8e05af3f459514126baf148488322c2c9152a0872b52660ab79e42a4da81b41b503e034ec26d7afa815c4c3a9be7c4374f57042653bef9f47268ab67abca30d0f8b3bd4a46e40f47268d1e2efc2e06c9da72238e06214c79a8c1fc8ed0677fd900014e9eb5885e1f5379d984bae384fc3543dba129e151396de172e92dbd9e53a"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

[ 2093.588300][T20598] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:11 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0xe}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:11 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x4c}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:11 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x1c}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2093.750067][T20615] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2093.940632][T20603] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2093.951672][T20603] CPU: 0 PID: 20603 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2093.962122][T20603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2093.972188][T20603] Call Trace:
[ 2093.975455][T20603]  <TASK>
[ 2093.978376][T20603]  dump_stack_lvl+0xcd/0x134
[ 2093.982963][T20603]  dump_header+0x10b/0x7f9
[ 2093.987377][T20603]  oom_kill_process.cold+0x10/0x15
[ 2093.992481][T20603]  out_of_memory+0x358/0x14a0
[ 2093.997164][T20603]  ? find_held_lock+0x2d/0x110
[ 2094.001927][T20603]  ? oom_killer_disable+0x270/0x270
[ 2094.007137][T20603]  ? find_held_lock+0x2d/0x110
[ 2094.011908][T20603]  mem_cgroup_out_of_memory+0x206/0x270
[ 2094.017458][T20603]  ? mem_cgroup_margin+0x130/0x130
[ 2094.022571][T20603]  ? lock_downgrade+0x6e0/0x6e0
[ 2094.027530][T20603]  try_charge_memcg+0xf67/0x13f0
[ 2094.032479][T20603]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2094.038472][T20603]  ? lock_downgrade+0x6e0/0x6e0
[ 2094.043343][T20603]  charge_memcg+0x31/0x320
[ 2094.047769][T20603]  __mem_cgroup_charge+0x27/0x90
[ 2094.052710][T20603]  ? folio_flags.constprop.0+0x53/0x150
[ 2094.058272][T20603]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2094.063835][T20603]  ? shmem_write_end+0xe90/0xe90
[ 2094.068784][T20603]  ? folio_flags.constprop.0+0x53/0x150
[ 2094.074343][T20603]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2094.080258][T20603]  shmem_getpage_gfp+0x8af/0x1f30
[ 2094.085305][T20603]  ? shmem_is_huge+0x330/0x330
[ 2094.090085][T20603]  shmem_fault+0x1b4/0x750
[ 2094.094515][T20603]  ? shmem_getpage+0xa0/0xa0
[ 2094.099117][T20603]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2094.104780][T20603]  __do_fault+0x10d/0x610
[ 2094.109117][T20603]  __handle_mm_fault+0x2130/0x39b0
[ 2094.114276][T20603]  ? vm_iomap_memory+0x190/0x190
[ 2094.119240][T20603]  handle_mm_fault+0x1c8/0x780
[ 2094.124014][T20603]  __get_user_pages+0x4f3/0xfd0
[ 2094.128885][T20603]  ? follow_page_mask+0x1570/0x1570
[ 2094.134106][T20603]  populate_vma_page_range+0x23d/0x320
[ 2094.139577][T20603]  __mm_populate+0x1ea/0x3d0
[ 2094.144178][T20603]  ? faultin_vma_page_range+0x300/0x300
[ 2094.149736][T20603]  ? up_write+0x148/0x470
[ 2094.154079][T20603]  vm_mmap_pgoff+0x1fd/0x270
[ 2094.158678][T20603]  ? randomize_page+0xb0/0xb0
[ 2094.163371][T20603]  ksys_mmap_pgoff+0x79/0x5a0
[ 2094.168053][T20603]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2094.174652][T20603]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2094.179948][T20603]  __do_fast_syscall_32+0x65/0xf0
[ 2094.184990][T20603]  do_fast_syscall_32+0x2f/0x70
[ 2094.189846][T20603]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2094.196181][T20603] RIP: 0023:0xf7fdf549
[ 2094.200260][T20603] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2094.219870][T20603] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2094.228288][T20603] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2094.236346][T20603] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2094.244317][T20603] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2094.252286][T20603] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2094.260260][T20603] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2094.268250][T20603]  </TASK>
[ 2094.271287][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2094.281316][T20603] memory: usage 307200kB, limit 307200kB, failcnt 1738
[ 2094.288223][T20603] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2094.295398][T20603] Memory cgroup stats for /syz2:
[ 2094.295600][T20603] anon 122880
[ 2094.295600][T20603] file 311271424
[ 2094.295600][T20603] kernel 3178496
[ 2094.295600][T20603] kernel_stack 131072
[ 2094.295600][T20603] pagetables 77824
[ 2094.295600][T20603] percpu 14208
[ 2094.295600][T20603] sock 0
[ 2094.295600][T20603] vmalloc 0
[ 2094.295600][T20603] shmem 311271424
[ 2094.295600][T20603] zswap 0
[ 2094.295600][T20603] zswapped 0
[ 2094.295600][T20603] file_mapped 3944448
[ 2094.295600][T20603] file_dirty 0
[ 2094.295600][T20603] file_writeback 0
[ 2094.295600][T20603] swapcached 0
[ 2094.295600][T20603] anon_thp 0
[ 2094.295600][T20603] file_thp 0
[ 2094.295600][T20603] shmem_thp 0
[ 2094.295600][T20603] inactive_anon 311181312
[ 2094.295600][T20603] active_anon 167936
[ 2094.295600][T20603] inactive_file 0
[ 2094.295600][T20603] active_file 0
[ 2094.295600][T20603] unevictable 0
[ 2094.295600][T20603] slab_reclaimable 1021680
[ 2094.295600][T20603] slab_unreclaimable 1911736
[ 2094.295600][T20603] slab 2933416
[ 2094.395092][T20603] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20601,uid=0
[ 2094.411133][T20603] Memory cgroup out of memory: Killed process 20601 (syz-executor.2) total-vm:50784kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3428kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 2096.512971][   T30] oom_reaper: reaped process 20601 (syz-executor.2), now anon-rss:0kB, file-rss:8192kB, shmem-rss:3624kB
15:15:14 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
unshare(0x2c010700) (async)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
socket(0x29, 0xa, 0xd68)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2) (async)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
r2 = openat$vcsu(0xffffff9c, &(0x7f0000000100), 0x4640, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r2) (async)
shmctl$SHM_LOCK(r1, 0xb) (async)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r1, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:14 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4a300800, &(0x7f0000000800)="da0bf6d630e00775628473b4a8c08f01caa6909e2c3442cf5d2cb40bc5306e4acf95c720dccc2e2628b2f2ee954236ac82dab9eafee46dc50a6978f376825ca9e29d66ada330d51630cc0fe33ec604668cb860b59e052909fd67543419d795a9bb3966c064510619d90e4bee302990b844a3ae04ea56daa20e1dbd78f7ac57eb4900e249dac642a70f1898dba7e4323535e6422e19f4b0d02a1ad0bc6a09e05c48e6d3bcb028c2dab9dc93ecb2d0f453bfcbffb92cb6b6b2017f6b9034c5ccfbfc8b4537624f14ea617807c0d19671072ba93874c23e3f99ac9c51cb655c", 0xffffffffffffff46, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4a300800, &(0x7f0000000800)="da0bf6d630e00775628473b4a8c08f01caa6909e2c3442cf5d2cb40bc5306e4acf95c720dccc2e2628b2f2ee954236ac82dab9eafee46dc50a6978f376825ca9e29d66ada330d51630cc0fe33ec604668cb860b59e052909fd67543419d795a9bb3966c064510619d90e4bee302990b844a3ae04ea56daa20e1dbd78f7ac57eb4900e249dac642a70f1898dba7e4323535e6422e19f4b0d02a1ad0bc6a09e05c48e6d3bcb028c2dab9dc93ecb2d0f453bfcbffb92cb6b6b2017f6b9034c5ccfbfc8b4537624f14ea617807c0d19671072ba93874c23e3f99ac9c51cb655c", 0xffffffffffffff46, 0x0, 0x0, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
socket$inet(0x2, 0x3, 0x2) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (async)

15:15:14 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x60}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:14 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000ac0)='cgroup.controllers\x00', 0x7a05, 0x1700)
write$cgroup_int(r0, &(0x7f0000000200), 0x43400)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_CHANNEL(r1, &(0x7f00000005c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000580)={&(0x7f00000004c0)={0x48, 0x0, 0x10, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x100, 0x66}}}}, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000800}, 0x4000000)
sendmsg$NL80211_CMD_DEL_KEY(r0, &(0x7f0000000400)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000300)={&(0x7f0000000100)={0x7c, 0x0, 0x400, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x3}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x1c, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_KEY_IDX={0x5}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "719d9538b8"}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "7ba7747c6973ac2f254bd5234e"}]}, 0x7c}}, 0x0)
unshare(0x20020000)
r3 = syz_open_procfs(0x0, &(0x7f0000000180)='mountinfo\x00')
preadv(r3, &(0x7f0000000440)=[{&(0x7f0000000200)=""/194, 0xc2}], 0x1, 0x0, 0x0)
unshare(0x10010000)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$fuse(0x20000000, &(0x7f0000000040)='./file0\x00', 0x0, 0x807284, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000b80)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r4, &(0x7f00000021c0)={0x2020}, 0x2020)
syz_fuse_handle_req(r4, &(0x7f000000a680)="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", 0x2000, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
r5 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000600)={'#! ', '\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/', [{0x20, 'mountinfo\x00'}, {0x20, 'cgroup.controllers\x00'}, {0x20, 'mountinfo\x00'}, {0x20, '/dev/fuse\x00'}, {0x20, ',@$]'}], 0xa, "2c507d19d1e4ad5c743311908f031e0e54de96f06967c076b2f49b1927e7be5c65c9fa5e170d00445b02a1788fc65aac607c52bda68d5562169cba9d7ba11ab983fa95c5833bd2dc98be13493951b2f6fb704dffc7d5d1767f72957b2f63e2593449bd43193538d2a9504feee25db5e2eadad62f77e79a735763d28e4108528a4ef8321a9a382943a209c9ed3122029ff2bb9dfd"}, 0x11f)
renameat(r5, &(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r5, &(0x7f00000003c0)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000ac0)='cgroup.controllers\x00', 0x7a05, 0x1700) (async)
write$cgroup_int(r0, &(0x7f0000000200), 0x43400) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'wlan1\x00'}) (async)
sendmsg$NL80211_CMD_SET_CHANNEL(r1, &(0x7f00000005c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000580)={&(0x7f00000004c0)={0x48, 0x0, 0x10, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x100, 0x66}}}}, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000800}, 0x4000000) (async)
sendmsg$NL80211_CMD_DEL_KEY(r0, &(0x7f0000000400)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000300)={&(0x7f0000000100)={0x7c, 0x0, 0x400, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x3}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x1c, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_KEY_IDX={0x5}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "719d9538b8"}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "7ba7747c6973ac2f254bd5234e"}]}, 0x7c}}, 0x0) (async)
unshare(0x20020000) (async)
syz_open_procfs(0x0, &(0x7f0000000180)='mountinfo\x00') (async)
preadv(r3, &(0x7f0000000440)=[{&(0x7f0000000200)=""/194, 0xc2}], 0x1, 0x0, 0x0) (async)
unshare(0x10010000) (async)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0) (async)
mount$fuse(0x20000000, &(0x7f0000000040)='./file0\x00', 0x0, 0x807284, 0x0) (async)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) (async)
mount$fuse(0x0, &(0x7f0000000b80)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async)
read$FUSE(r4, &(0x7f00000021c0)={0x2020}, 0x2020) (async)
syz_fuse_handle_req(r4, &(0x7f000000a680)="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", 0x2000, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) (async)
open(&(0x7f0000000000)='.\x00', 0x0, 0x0) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000600)={'#! ', '\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/', [{0x20, 'mountinfo\x00'}, {0x20, 'cgroup.controllers\x00'}, {0x20, 'mountinfo\x00'}, {0x20, '/dev/fuse\x00'}, {0x20, ',@$]'}], 0xa, "2c507d19d1e4ad5c743311908f031e0e54de96f06967c076b2f49b1927e7be5c65c9fa5e170d00445b02a1788fc65aac607c52bda68d5562169cba9d7ba11ab983fa95c5833bd2dc98be13493951b2f6fb704dffc7d5d1767f72957b2f63e2593449bd43193538d2a9504feee25db5e2eadad62f77e79a735763d28e4108528a4ef8321a9a382943a209c9ed3122029ff2bb9dfd"}, 0x11f) (async)
renameat(r5, &(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r5, &(0x7f00000003c0)='./file0\x00') (async)

15:15:14 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb00000000"], 0x0)

15:15:14 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x60}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:14 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0, 0x3}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:14 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYBLOB="05000002"], 0x8)
ioctl$FS_IOC_SETVERSION(0xffffffffffffffff, 0x40047602, &(0x7f0000000280)=0x3)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000200)=ANY=[@ANYBLOB="00000500a4000000000000020000000000000000010000000400000000000000007ce2329f6dea64063402871b276200092600000000000000070000000000000004000000000000000800000000000000080800bc79222d3f0f48ec9100000000ff7f000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

[ 2096.786327][T20625] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2096.813250][T20628] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:14 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb00000000"], 0x0)

15:15:15 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x68}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:15 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000ac0)='cgroup.controllers\x00', 0x7a05, 0x1700)
write$cgroup_int(r0, &(0x7f0000000200), 0x43400) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_CHANNEL(r1, &(0x7f00000005c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000580)={&(0x7f00000004c0)={0x48, 0x0, 0x10, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x100, 0x66}}}}, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000800}, 0x4000000) (async, rerun: 32)
sendmsg$NL80211_CMD_DEL_KEY(r0, &(0x7f0000000400)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000300)={&(0x7f0000000100)={0x7c, 0x0, 0x400, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x3}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x1c, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_KEY_IDX={0x5}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "719d9538b8"}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "7ba7747c6973ac2f254bd5234e"}]}, 0x7c}}, 0x0) (rerun: 32)
unshare(0x20020000)
r3 = syz_open_procfs(0x0, &(0x7f0000000180)='mountinfo\x00')
preadv(r3, &(0x7f0000000440)=[{&(0x7f0000000200)=""/194, 0xc2}], 0x1, 0x0, 0x0) (async)
unshare(0x10010000)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0) (async)
mount$fuse(0x20000000, &(0x7f0000000040)='./file0\x00', 0x0, 0x807284, 0x0) (async)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000b80)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async)
read$FUSE(r4, &(0x7f00000021c0)={0x2020}, 0x2020)
syz_fuse_handle_req(r4, &(0x7f000000a680)="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", 0x2000, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
mkdir(&(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) (async, rerun: 32)
r5 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) (rerun: 32)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000600)={'#! ', '\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/', [{0x20, 'mountinfo\x00'}, {0x20, 'cgroup.controllers\x00'}, {0x20, 'mountinfo\x00'}, {0x20, '/dev/fuse\x00'}, {0x20, ',@$]'}], 0xa, "2c507d19d1e4ad5c743311908f031e0e54de96f06967c076b2f49b1927e7be5c65c9fa5e170d00445b02a1788fc65aac607c52bda68d5562169cba9d7ba11ab983fa95c5833bd2dc98be13493951b2f6fb704dffc7d5d1767f72957b2f63e2593449bd43193538d2a9504feee25db5e2eadad62f77e79a735763d28e4108528a4ef8321a9a382943a209c9ed3122029ff2bb9dfd"}, 0x11f) (async)
renameat(r5, &(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r5, &(0x7f00000003c0)='./file0\x00')

15:15:15 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0, 0x5}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2096.956181][T20645] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2097.027373][T20652] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2097.253484][T20642] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2097.263930][T20642] CPU: 1 PID: 20642 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2097.274368][T20642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2097.284440][T20642] Call Trace:
[ 2097.287717][T20642]  <TASK>
[ 2097.290639][T20642]  dump_stack_lvl+0xcd/0x134
[ 2097.295250][T20642]  dump_header+0x10b/0x7f9
[ 2097.299687][T20642]  oom_kill_process.cold+0x10/0x15
[ 2097.304805][T20642]  out_of_memory+0x358/0x14a0
[ 2097.309496][T20642]  ? find_held_lock+0x2d/0x110
[ 2097.314262][T20642]  ? oom_killer_disable+0x270/0x270
[ 2097.319474][T20642]  ? find_held_lock+0x2d/0x110
[ 2097.324243][T20642]  mem_cgroup_out_of_memory+0x206/0x270
[ 2097.329797][T20642]  ? mem_cgroup_margin+0x130/0x130
[ 2097.334908][T20642]  ? lock_downgrade+0x6e0/0x6e0
[ 2097.339782][T20642]  try_charge_memcg+0xf67/0x13f0
[ 2097.344724][T20642]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2097.350721][T20642]  ? lock_downgrade+0x6e0/0x6e0
[ 2097.355593][T20642]  charge_memcg+0x31/0x320
[ 2097.360022][T20642]  __mem_cgroup_charge+0x27/0x90
[ 2097.364965][T20642]  ? folio_flags.constprop.0+0x53/0x150
[ 2097.370523][T20642]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2097.376084][T20642]  ? shmem_write_end+0xe90/0xe90
[ 2097.381035][T20642]  ? folio_flags.constprop.0+0x53/0x150
[ 2097.386589][T20642]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2097.392495][T20642]  shmem_getpage_gfp+0x8af/0x1f30
[ 2097.397541][T20642]  ? shmem_is_huge+0x330/0x330
[ 2097.402322][T20642]  shmem_fault+0x1b4/0x750
[ 2097.406757][T20642]  ? shmem_getpage+0xa0/0xa0
[ 2097.411361][T20642]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2097.417014][T20642]  __do_fault+0x10d/0x610
[ 2097.421350][T20642]  __handle_mm_fault+0x2130/0x39b0
[ 2097.426480][T20642]  ? vm_iomap_memory+0x190/0x190
[ 2097.431446][T20642]  handle_mm_fault+0x1c8/0x780
[ 2097.436218][T20642]  __get_user_pages+0x4f3/0xfd0
[ 2097.441087][T20642]  ? follow_page_mask+0x1570/0x1570
[ 2097.446318][T20642]  populate_vma_page_range+0x23d/0x320
[ 2097.451790][T20642]  __mm_populate+0x1ea/0x3d0
[ 2097.456389][T20642]  ? faultin_vma_page_range+0x300/0x300
[ 2097.461944][T20642]  ? up_write+0x148/0x470
[ 2097.466287][T20642]  vm_mmap_pgoff+0x1fd/0x270
[ 2097.470889][T20642]  ? randomize_page+0xb0/0xb0
[ 2097.475584][T20642]  ksys_mmap_pgoff+0x79/0x5a0
[ 2097.480265][T20642]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2097.486863][T20642]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2097.492156][T20642]  __do_fast_syscall_32+0x65/0xf0
[ 2097.497189][T20642]  do_fast_syscall_32+0x2f/0x70
[ 2097.502048][T20642]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2097.508385][T20642] RIP: 0023:0xf7fdf549
[ 2097.512454][T20642] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2097.532066][T20642] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2097.540572][T20642] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2097.548547][T20642] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2097.556521][T20642] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2097.564493][T20642] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2097.572466][T20642] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2097.580456][T20642]  </TASK>
[ 2097.586783][T20642] memory: usage 307200kB, limit 307200kB, failcnt 1801
[ 2097.593968][T20642] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2097.600836][T20642] Memory cgroup stats for /syz2:
[ 2097.601036][T20642] anon 110592
[ 2097.601036][T20642] file 311263232
[ 2097.601036][T20642] kernel 3198976
[ 2097.601036][T20642] kernel_stack 98304
[ 2097.601036][T20642] pagetables 77824
[ 2097.601036][T20642] percpu 15392
[ 2097.601036][T20642] sock 0
[ 2097.601036][T20642] vmalloc 0
[ 2097.601036][T20642] shmem 311263232
[ 2097.601036][T20642] zswap 0
[ 2097.601036][T20642] zswapped 0
[ 2097.601036][T20642] file_mapped 3936256
[ 2097.601036][T20642] file_dirty 0
[ 2097.601036][T20642] file_writeback 0
[ 2097.601036][T20642] swapcached 0
[ 2097.601036][T20642] anon_thp 0
[ 2097.601036][T20642] file_thp 0
[ 2097.601036][T20642] shmem_thp 0
[ 2097.601036][T20642] inactive_anon 311173120
[ 2097.601036][T20642] active_anon 167936
[ 2097.601036][T20642] inactive_file 0
[ 2097.601036][T20642] active_file 0
[ 2097.601036][T20642] unevictable 0
[ 2097.601036][T20642] slab_reclaimable 1025928
[ 2097.601036][T20642] slab_unreclaimable 1962712
[ 2097.601036][T20642] slab 2988640
[ 2097.694581][    C0] vkms_vblank_simulate: vblank timer overrun
15:15:15 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c00000024000bc6ccba90000000000000000000", @ANYRES32, @ANYBLOB="00000000ffffffff0000000008000100647272"], 0x2c}}, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000240)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000280)=0x14)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)=ANY=[@ANYBLOB="90000000", @ANYRES16=0x0, @ANYBLOB="00082abd7000ffdbdf25020000001c00018008000100", @ANYRES32=0x0, @ANYBLOB="0800030000000000080003000200000038000180080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="1400020076657468315f746f5f626f6e6400000008d8d0628900000008000100", @ANYRES32=0x0, @ANYBLOB="1c000180080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r2, @ANYBLOB="0c00018008000100", @ANYRES32=0x0, @ANYBLOB], 0x90}}, 0xd005)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r4 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r4, 0xb)
shmat(r4, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r4, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:15 executing program 5:
syz_emit_ethernet(0x42, &(0x7f0000000140)={@local, @random="3251f1c5b02a", @void, {@ipv4={0x800, @dccp={{0x9, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x21, 0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@lsrr={0x83, 0x7, 0x92, [@remote]}, @cipso={0x86, 0x6}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "c33a39", 0x0, "6a07cc"}}}}}}, 0x0)
syz_emit_ethernet(0x25, &(0x7f0000000000)={@local, @broadcast, @void, {@generic={0x80f3, "cc4a802acc0691668e2c7fe4e66a89091a0975a29bbd3b"}}}, &(0x7f0000000040)={0x0, 0x4, [0xf2b, 0x1b9, 0x9ed, 0x96e]})

15:15:15 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x6c}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:15 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb00000000"], 0x0)

15:15:15 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0, 0x8}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:15 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async, rerun: 64)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (rerun: 64)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async, rerun: 32)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async, rerun: 32)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYBLOB="05000002"], 0x8) (async)
ioctl$FS_IOC_SETVERSION(0xffffffffffffffff, 0x40047602, &(0x7f0000000280)=0x3) (async, rerun: 32)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000200)=ANY=[@ANYBLOB="00000500a4000000000000020000000000000000010000000400000000000000007ce2329f6dea64063402871b276200092600000000000000070000000000000004000000000000000800000000000000080800bc79222d3f0f48ec9100000000ff7f000000"]}, @devid}) (rerun: 32)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

[ 2097.703208][T20642] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20634,uid=0
[ 2097.719074][T20642] Memory cgroup out of memory: Killed process 20634 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3428kB, UID:0 pgtables:72kB oom_score_adj:1000
15:15:15 executing program 5:
syz_emit_ethernet(0x42, &(0x7f0000000140)={@local, @random="3251f1c5b02a", @void, {@ipv4={0x800, @dccp={{0x9, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x21, 0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@lsrr={0x83, 0x7, 0x92, [@remote]}, @cipso={0x86, 0x6}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "c33a39", 0x0, "6a07cc"}}}}}}, 0x0)
syz_emit_ethernet(0x25, &(0x7f0000000000)={@local, @broadcast, @void, {@generic={0x80f3, "cc4a802acc0691668e2c7fe4e66a89091a0975a29bbd3b"}}}, &(0x7f0000000040)={0x0, 0x4, [0xf2b, 0x1b9, 0x9ed, 0x96e]})

15:15:15 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb00000000000000000000000000000000000100"], 0x0)

15:15:15 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYBLOB="05000002"], 0x8) (async)
ioctl$FS_IOC_SETVERSION(0xffffffffffffffff, 0x40047602, &(0x7f0000000280)=0x3) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000200)=ANY=[@ANYBLOB="00000500a4000000000000020000000000000000010000000400000000000000007ce2329f6dea64063402871b276200092600000000000000070000000000000004000000000000000800000000000000080800bc79222d3f0f48ec9100000000ff7f000000"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:15:15 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0, 0x2, '\x00', 0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2097.795811][T20664] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2097.822408][T20670] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:16 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x74}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:16 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0, 0x2, '\x00', 0x2}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2097.932864][T20677] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2098.003290][T20686] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2098.163508][T20673] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2098.174841][T20673] CPU: 0 PID: 20673 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2098.185275][T20673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2098.195321][T20673] Call Trace:
[ 2098.198596][T20673]  <TASK>
[ 2098.201517][T20673]  dump_stack_lvl+0xcd/0x134
[ 2098.206131][T20673]  dump_header+0x10b/0x7f9
[ 2098.210543][T20673]  oom_kill_process.cold+0x10/0x15
[ 2098.215666][T20673]  out_of_memory+0x358/0x14a0
[ 2098.220344][T20673]  ? find_held_lock+0x2d/0x110
[ 2098.225098][T20673]  ? oom_killer_disable+0x270/0x270
[ 2098.230291][T20673]  ? find_held_lock+0x2d/0x110
[ 2098.235133][T20673]  mem_cgroup_out_of_memory+0x206/0x270
[ 2098.240671][T20673]  ? mem_cgroup_margin+0x130/0x130
[ 2098.245773][T20673]  ? lock_downgrade+0x6e0/0x6e0
[ 2098.250623][T20673]  try_charge_memcg+0xf67/0x13f0
[ 2098.255561][T20673]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2098.261564][T20673]  ? lock_downgrade+0x6e0/0x6e0
[ 2098.266433][T20673]  charge_memcg+0x31/0x320
[ 2098.270861][T20673]  __mem_cgroup_charge+0x27/0x90
[ 2098.275813][T20673]  ? folio_flags.constprop.0+0x53/0x150
[ 2098.281366][T20673]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2098.286938][T20673]  ? shmem_write_end+0xe90/0xe90
[ 2098.291873][T20673]  ? folio_flags.constprop.0+0x53/0x150
[ 2098.297410][T20673]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2098.303299][T20673]  shmem_getpage_gfp+0x8af/0x1f30
[ 2098.308326][T20673]  ? shmem_is_huge+0x330/0x330
[ 2098.313088][T20673]  shmem_fault+0x1b4/0x750
[ 2098.317598][T20673]  ? shmem_getpage+0xa0/0xa0
[ 2098.322182][T20673]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2098.327820][T20673]  __do_fault+0x10d/0x610
[ 2098.332144][T20673]  __handle_mm_fault+0x2130/0x39b0
[ 2098.337253][T20673]  ? vm_iomap_memory+0x190/0x190
[ 2098.342195][T20673]  handle_mm_fault+0x1c8/0x780
[ 2098.346963][T20673]  __get_user_pages+0x4f3/0xfd0
[ 2098.351834][T20673]  ? follow_page_mask+0x1570/0x1570
[ 2098.357059][T20673]  populate_vma_page_range+0x23d/0x320
[ 2098.362525][T20673]  __mm_populate+0x1ea/0x3d0
[ 2098.367121][T20673]  ? faultin_vma_page_range+0x300/0x300
[ 2098.372672][T20673]  ? up_write+0x148/0x470
[ 2098.376997][T20673]  vm_mmap_pgoff+0x1fd/0x270
[ 2098.381599][T20673]  ? randomize_page+0xb0/0xb0
[ 2098.386266][T20673]  ? kfree+0x1fb/0x580
[ 2098.390334][T20673]  ksys_mmap_pgoff+0x79/0x5a0
[ 2098.395016][T20673]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2098.401637][T20673]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2098.406944][T20673]  __do_fast_syscall_32+0x65/0xf0
[ 2098.411968][T20673]  do_fast_syscall_32+0x2f/0x70
[ 2098.416824][T20673]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2098.423145][T20673] RIP: 0023:0xf7fdf549
[ 2098.427214][T20673] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2098.446819][T20673] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2098.455245][T20673] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2098.463206][T20673] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2098.471162][T20673] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2098.479127][T20673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2098.487087][T20673] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2098.495060][T20673]  </TASK>
[ 2098.498112][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2098.526912][T20673] memory: usage 307176kB, limit 307200kB, failcnt 1858
[ 2098.534657][T20673] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2098.542135][T20673] Memory cgroup stats for /syz2:
[ 2098.542343][T20673] anon 110592
[ 2098.542343][T20673] file 310734848
[ 2098.542343][T20673] kernel 3702784
[ 2098.542343][T20673] kernel_stack 98304
[ 2098.542343][T20673] pagetables 77824
[ 2098.542343][T20673] percpu 21312
[ 2098.542343][T20673] sock 0
[ 2098.542343][T20673] vmalloc 0
[ 2098.542343][T20673] shmem 310734848
[ 2098.542343][T20673] zswap 0
[ 2098.542343][T20673] zswapped 0
[ 2098.542343][T20673] file_mapped 3407872
[ 2098.542343][T20673] file_dirty 0
[ 2098.542343][T20673] file_writeback 0
[ 2098.542343][T20673] swapcached 0
[ 2098.542343][T20673] anon_thp 0
[ 2098.542343][T20673] file_thp 0
[ 2098.542343][T20673] shmem_thp 0
[ 2098.542343][T20673] inactive_anon 310677504
[ 2098.542343][T20673] active_anon 167936
[ 2098.542343][T20673] inactive_file 0
[ 2098.542343][T20673] active_file 0
[ 2098.542343][T20673] unevictable 0
[ 2098.542343][T20673] slab_reclaimable 1052296
[ 2098.542343][T20673] slab_unreclaimable 2430688
[ 2098.542343][T20673] slab 3482984
[ 2098.617324][ T1239] ieee802154 phy0 wpan0: encryption failed: -22
[ 2098.635761][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2098.642334][ T1239] ieee802154 phy1 wpan1: encryption failed: -22
[ 2098.666670][T20673] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20666,uid=0
[ 2098.691415][T20673] Memory cgroup out of memory: Killed process 20666 (syz-executor.2) total-vm:54492kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:2900kB, UID:0 pgtables:72kB oom_score_adj:1000
15:15:18 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0, 0x2, '\x00', 0x3}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:18 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb00000000000000000000000000000000000100"], 0x0)

15:15:18 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c00000024000bc6ccba90000000000000000000", @ANYRES32, @ANYBLOB="00000000ffffffff0000000008000100647272"], 0x2c}}, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000240)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000280)=0x14)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)=ANY=[@ANYBLOB="90000000", @ANYRES16=0x0, @ANYBLOB="00082abd7000ffdbdf25020000001c00018008000100", @ANYRES32=0x0, @ANYBLOB="0800030000000000080003000200000038000180080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="1400020076657468315f746f5f626f6e6400000008d8d0628900000008000100", @ANYRES32=0x0, @ANYBLOB="1c000180080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r2, @ANYBLOB="0c00018008000100", @ANYRES32=0x0, @ANYBLOB], 0x90}}, 0xd005)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r4 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r4, 0xb)
shmat(r4, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r4, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)
unshare(0x40000400) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket(0x10, 0x3, 0x0) (async)
sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c00000024000bc6ccba90000000000000000000", @ANYRES32, @ANYBLOB="00000000ffffffff0000000008000100647272"], 0x2c}}, 0x0) (async)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000280)=0x14) (async)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)=ANY=[@ANYBLOB="90000000", @ANYRES16=0x0, @ANYBLOB="00082abd7000ffdbdf25020000001c00018008000100", @ANYRES32=0x0, @ANYBLOB="0800030000000000080003000200000038000180080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="1400020076657468315f746f5f626f6e6400000008d8d0628900000008000100", @ANYRES32=0x0, @ANYBLOB="1c000180080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r2, @ANYBLOB="0c00018008000100", @ANYRES32=0x0, @ANYBLOB], 0x90}}, 0xd005) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2) (async)
shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r4, 0xb) (async)
shmat(r4, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r4, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50) (async)

15:15:18 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x7a}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:18 executing program 5:
syz_emit_ethernet(0x42, &(0x7f0000000140)={@local, @random="3251f1c5b02a", @void, {@ipv4={0x800, @dccp={{0x9, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x21, 0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@lsrr={0x83, 0x7, 0x92, [@remote]}, @cipso={0x86, 0x6}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "c33a39", 0x0, "6a07cc"}}}}}}, 0x0)
syz_emit_ethernet(0x25, &(0x7f0000000000)={@local, @broadcast, @void, {@generic={0x80f3, "cc4a802acc0691668e2c7fe4e66a89091a0975a29bbd3b"}}}, &(0x7f0000000040)={0x0, 0x4, [0xf2b, 0x1b9, 0x9ed, 0x96e]})
syz_emit_ethernet(0x42, &(0x7f0000000140)={@local, @random="3251f1c5b02a", @void, {@ipv4={0x800, @dccp={{0x9, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x21, 0x0, @local, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@lsrr={0x83, 0x7, 0x92, [@remote]}, @cipso={0x86, 0x6}]}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "c33a39", 0x0, "6a07cc"}}}}}}, 0x0) (async)
syz_emit_ethernet(0x25, &(0x7f0000000000)={@local, @broadcast, @void, {@generic={0x80f3, "cc4a802acc0691668e2c7fe4e66a89091a0975a29bbd3b"}}}, &(0x7f0000000040)={0x0, 0x4, [0xf2b, 0x1b9, 0x9ed, 0x96e]}) (async)

15:15:18 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x7ce717d0bc8445a5, &(0x7f0000000240)="fe177b9d0ebd86314b1e04efd8f23257b3f5acdaa8f0e688d77c37c10c1c327a3ba69cf44f3dc8cea4fe0ac6fbacec15d28a44dd1c044711590c6ca41b0c331247518edbea3d764690ee9268d4ed07159d", 0x51, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000940)=ANY=[@ANYBLOB="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"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:15:18 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb00000000000000000000000000000000000100"], 0x0)

15:15:18 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0, 0x2, '\x00', 0x5}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2100.822263][T20699] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2100.843718][T20701] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:19 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x7ce717d0bc8445a5, &(0x7f0000000240)="fe177b9d0ebd86314b1e04efd8f23257b3f5acdaa8f0e688d77c37c10c1c327a3ba69cf44f3dc8cea4fe0ac6fbacec15d28a44dd1c044711590c6ca41b0c331247518edbea3d764690ee9268d4ed07159d", 0x51, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000940)=ANY=[@ANYBLOB="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"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x7ce717d0bc8445a5, &(0x7f0000000240)="fe177b9d0ebd86314b1e04efd8f23257b3f5acdaa8f0e688d77c37c10c1c327a3ba69cf44f3dc8cea4fe0ac6fbacec15d28a44dd1c044711590c6ca41b0c331247518edbea3d764690ee9268d4ed07159d", 0x51, 0x0, 0x0, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="b1ba2e39102dbbad454c95b8806d3ba7074a6c5343147863fa6508d840ac209cdc7c98f38a1cba9f814eb82c514d1ec99006165125abd7ec43678d9a4f85a22276a8afe6fb989b08fb3f0f4298c3f104c92030bd272e824effbc5207392ee0e5a049da251365162137ea490a9e1b6611d5798615101772acf9063c95174abc2237d19fcbd51033660bee98addf79f873c95defed253b00675aeb62205cda9fa4ca01d117c704efd95636ce0d46dd90867969bf5bc8e05af3f459514126baf148488322c2c9152a0872b52660ab79e42a4da81b41b503e034ec26d7afa815c4c3a9be7c4374f57042653bef9f47268ab67abca30d0f8b3bd4a46e40f47268d1e2efc2e06c9da72238e06214c79a8c1fc8ed0677fd900014e9eb5885e1f5379d984bae384fc3543dba129e151396de172e92dbd9e53a"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
socket$inet(0x2, 0x3, 0x2) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000940)=ANY=[@ANYBLOB="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"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (async)

15:15:19 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb00000000000000000000000000000000000100"], 0x0)

15:15:19 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:19 executing program 5:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x7a}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:19 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x7ce717d0bc8445a5, &(0x7f0000000240)="fe177b9d0ebd86314b1e04efd8f23257b3f5acdaa8f0e688d77c37c10c1c327a3ba69cf44f3dc8cea4fe0ac6fbacec15d28a44dd1c044711590c6ca41b0c331247518edbea3d764690ee9268d4ed07159d", 0x51, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000940)=ANY=[@ANYBLOB="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"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x7ce717d0bc8445a5, &(0x7f0000000240)="fe177b9d0ebd86314b1e04efd8f23257b3f5acdaa8f0e688d77c37c10c1c327a3ba69cf44f3dc8cea4fe0ac6fbacec15d28a44dd1c044711590c6ca41b0c331247518edbea3d764690ee9268d4ed07159d", 0x51, 0x0, 0x0, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
socket$inet(0x2, 0x3, 0x2) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000940)=ANY=[@ANYBLOB="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"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (async)

[ 2101.194506][T20703] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2101.204979][T20703] CPU: 1 PID: 20703 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2101.215422][T20703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2101.225500][T20703] Call Trace:
[ 2101.228787][T20703]  <TASK>
[ 2101.231725][T20703]  dump_stack_lvl+0xcd/0x134
[ 2101.236344][T20703]  dump_header+0x10b/0x7f9
[ 2101.240783][T20703]  oom_kill_process.cold+0x10/0x15
[ 2101.245906][T20703]  out_of_memory+0x358/0x14a0
[ 2101.250603][T20703]  ? find_held_lock+0x2d/0x110
[ 2101.255375][T20703]  ? oom_killer_disable+0x270/0x270
[ 2101.260586][T20703]  ? find_held_lock+0x2d/0x110
[ 2101.265362][T20703]  mem_cgroup_out_of_memory+0x206/0x270
[ 2101.270918][T20703]  ? mem_cgroup_margin+0x130/0x130
[ 2101.276033][T20703]  ? lock_downgrade+0x6e0/0x6e0
[ 2101.280902][T20703]  try_charge_memcg+0xf67/0x13f0
[ 2101.285852][T20703]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2101.291850][T20703]  ? lock_downgrade+0x6e0/0x6e0
[ 2101.296726][T20703]  charge_memcg+0x31/0x320
[ 2101.301152][T20703]  __mem_cgroup_charge+0x27/0x90
[ 2101.306274][T20703]  ? folio_flags.constprop.0+0x53/0x150
[ 2101.311828][T20703]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2101.317491][T20703]  ? shmem_write_end+0xe90/0xe90
[ 2101.322448][T20703]  ? folio_flags.constprop.0+0x53/0x150
[ 2101.328002][T20703]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2101.333913][T20703]  shmem_getpage_gfp+0x8af/0x1f30
[ 2101.338962][T20703]  ? shmem_is_huge+0x330/0x330
[ 2101.343746][T20703]  shmem_fault+0x1b4/0x750
[ 2101.348175][T20703]  ? shmem_getpage+0xa0/0xa0
[ 2101.352775][T20703]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2101.358426][T20703]  __do_fault+0x10d/0x610
[ 2101.362763][T20703]  __handle_mm_fault+0x2130/0x39b0
[ 2101.367887][T20703]  ? vm_iomap_memory+0x190/0x190
[ 2101.372858][T20703]  handle_mm_fault+0x1c8/0x780
[ 2101.377640][T20703]  __get_user_pages+0x4f3/0xfd0
[ 2101.382508][T20703]  ? follow_page_mask+0x1570/0x1570
[ 2101.387729][T20703]  populate_vma_page_range+0x23d/0x320
[ 2101.393201][T20703]  __mm_populate+0x1ea/0x3d0
[ 2101.397803][T20703]  ? faultin_vma_page_range+0x300/0x300
[ 2101.403362][T20703]  ? up_write+0x148/0x470
[ 2101.407705][T20703]  vm_mmap_pgoff+0x1fd/0x270
[ 2101.412311][T20703]  ? randomize_page+0xb0/0xb0
[ 2101.417006][T20703]  ksys_mmap_pgoff+0x79/0x5a0
[ 2101.421697][T20703]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2101.428295][T20703]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2101.433680][T20703]  __do_fast_syscall_32+0x65/0xf0
[ 2101.438715][T20703]  do_fast_syscall_32+0x2f/0x70
[ 2101.443574][T20703]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2101.449909][T20703] RIP: 0023:0xf7fdf549
[ 2101.453979][T20703] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2101.473607][T20703] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2101.482110][T20703] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2101.490084][T20703] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2101.498055][T20703] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2101.506028][T20703] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2101.514001][T20703] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2101.522006][T20703]  </TASK>
[ 2101.528681][T20703] memory: usage 307200kB, limit 307200kB, failcnt 1911
[ 2101.549343][T20703] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2101.556652][T20703] Memory cgroup stats for /syz2:
[ 2101.556858][T20703] anon 110592
[ 2101.556858][T20703] file 311095296
[ 2101.556858][T20703] kernel 3321856
[ 2101.556858][T20703] kernel_stack 98304
[ 2101.556858][T20703] pagetables 77824
[ 2101.556858][T20703] percpu 15392
[ 2101.556858][T20703] sock 0
[ 2101.556858][T20703] vmalloc 0
[ 2101.556858][T20703] shmem 311095296
[ 2101.556858][T20703] zswap 0
[ 2101.556858][T20703] zswapped 0
[ 2101.556858][T20703] file_mapped 3768320
[ 2101.556858][T20703] file_dirty 0
[ 2101.556858][T20703] file_writeback 0
[ 2101.556858][T20703] swapcached 0
[ 2101.556858][T20703] anon_thp 0
[ 2101.556858][T20703] file_thp 0
[ 2101.556858][T20703] shmem_thp 0
[ 2101.556858][T20703] inactive_anon 310992896
[ 2101.556858][T20703] active_anon 167936
[ 2101.556858][T20703] inactive_file 0
[ 2101.556858][T20703] active_file 0
[ 2101.556858][T20703] unevictable 0
[ 2101.556858][T20703] slab_reclaimable 1051464
[ 2101.556858][T20703] slab_unreclaimable 2063992
15:15:19 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c00000024000bc6ccba90000000000000000000", @ANYRES32, @ANYBLOB="00000000ffffffff0000000008000100647272"], 0x2c}}, 0x0) (async)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000240)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000280)=0x14)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)=ANY=[@ANYBLOB="90000000", @ANYRES16=0x0, @ANYBLOB="00082abd7000ffdbdf25020000001c00018008000100", @ANYRES32=0x0, @ANYBLOB="0800030000000000080003000200000038000180080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="1400020076657468315f746f5f626f6e6400000008d8d0628900000008000100", @ANYRES32=0x0, @ANYBLOB="1c000180080003000100000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r2, @ANYBLOB="0c00018008000100", @ANYRES32=0x0, @ANYBLOB], 0x90}}, 0xd005) (async)
r3 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2) (async)
r4 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r4, 0xb) (async)
shmat(r4, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r4, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:19 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100"], 0x0)

15:15:19 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x2, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:19 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0, 0x2, '\x00', 0x7}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:19 executing program 5:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x68}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:19 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/117, 0xfcb7}, {&(0x7f0000000440)=""/137, 0x8b}, {&(0x7f0000000340)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
mmap$usbfs(&(0x7f0000ff8000/0x6000)=nil, 0x6000, 0xc, 0x40010, r0, 0xffffffff)
syz_io_uring_setup(0x6ed9, &(0x7f0000000700)={0x0, 0xd913, 0x1, 0x2, 0x209, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000000780), &(0x7f00000007c0))
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000200)=ANY=[@ANYBLOB="2167f58f8b6eb1c2ef1c33ed5eb700000000118afa4f2b86cd0000000002000019000000000001000000c8eabc6e000040000000092600000000000000070000000000000004000000000000000800000001000000080800000000e804040000000a008000000000ff9aaafdf3af61cc66dcb4aa190ebad4473dd86c19e34a8e7621cfb78cfaa200b1f4d4d6c11c689dda94552596f08913fd7fbeff0600bb22d21cf9147c21f3f950ec89fe45888e6e5cb50ae4677686077bd5062ccb049a0b53e738970435ff"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

[ 2101.556858][T20703] slab 3115456
[ 2101.653072][T20703] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20695,uid=0
[ 2101.668978][T20703] Memory cgroup out of memory: Killed process 20695 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3428kB, UID:0 pgtables:72kB oom_score_adj:1000
15:15:19 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100"], 0x0)

15:15:19 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0, 0x2, '\x00', 0x8}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:19 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x3, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:19 executing program 5:
syz_usb_connect(0x0, 0x36, &(0x7f0000000780)=ANY=[@ANYBLOB="12010100cfc6ae084c052b000b010000000109022400010000000009040000021f25730009050e02c226ff0000d4215587028f8cd904422e0c4965235f378ea84e7a1cd73833cf7efc952d0af59fff4514504faa49f7c9d31c4bb830fb7e0900901223383db44c323f2ac8f425d53743676b88a4e2deb5a634c259ed600bb9975afaa935e07556e8af9602778ec07958d2aea2907aa0cf33"], 0x0)
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x46, 0x5a, 0x89, 0x10, 0x15c2, 0x3d, 0x4e3b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xbb, 0x8c, 0xae, 0x0, [], [{{0x9, 0x5, 0x5}}]}}]}}]}}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x0, 0x0)
syz_usb_connect(0x0, 0x466, &(0x7f0000001380)={{0x12, 0x1, 0x110, 0xd2, 0x28, 0x60, 0x2075b9b3978bc1c7, 0x2040, 0xc61b, 0x54a1, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x454, 0x1, 0x9, 0x9, 0xa0, 0x4, [{{0x9, 0x4, 0xd9, 0x9, 0xc, 0x33, 0x1e, 0xdf, 0x3, [@cdc_ncm={{0x9, 0x24, 0x6, 0x0, 0x1, "39c7d97a"}, {0x5, 0x24, 0x0, 0xc2fd}, {0xd, 0x24, 0xf, 0x1, 0x20, 0x6, 0x1, 0x9}, {0x6, 0x24, 0x1a, 0xac8c}, [@mbim_extended={0x8, 0x24, 0x1c, 0x5, 0x9, 0x401}, @call_mgmt={0x5, 0x24, 0x1, 0x0, 0x60}, @mdlm={0x15, 0x24, 0x12, 0x100}, @mbim_extended={0x8, 0x24, 0x1c, 0x0, 0x4, 0x5}, @obex={0x5, 0x24, 0x15, 0x800}]}, @cdc_ncm={{0x7, 0x24, 0x6, 0x0, 0x1, "6084"}, {0x5, 0x24, 0x0, 0x1}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x9, 0x10, 0x8}, {0x6, 0x24, 0x1a, 0x1f, 0x20}, [@network_terminal={0x7, 0x24, 0xa, 0x2, 0x20, 0xff, 0x8}, @network_terminal={0x7, 0x24, 0xa, 0x0, 0x3, 0x81, 0x15}, @mdlm_detail={0xf, 0x24, 0x13, 0x2, "6af528ce5c222c94c563ac"}, @call_mgmt={0x5, 0x24, 0x1, 0x1, 0x3f}, @mdlm={0x15, 0x24, 0x12, 0x23a0}, @mbim_extended={0x8, 0x24, 0x1c, 0x1, 0x4, 0xbc}]}], [{{0x9, 0x5, 0x6, 0x0, 0x8, 0x20, 0x3, 0x2, [@generic={0xf, 0xe, "88af2cb10f7903bd7e4229281f"}]}}, {{0x9, 0x5, 0x0, 0x10, 0x8, 0x6, 0x8, 0x7f, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0xff, 0x8}, @generic={0xd9, 0x10, "d3aedd7cbfb48084b05f04dbfbc2121b673ad41230d9300d635960f47bc05d1d793d752c2e71578354aef8b355d178522fe27f05f6bbd87919bf94aed64492ee998b8f6041d2bd056d19e00e824e6c20632bcd3319a5f126e0a38f046a7fcad6f62d4f78f43ee692804e674fbd80d60a75a79ab2025481cc197c099d0493356b0ca64f7b148d67d801b1291837b03b79a78881c976a83aed28a98e84204e4a4647616fc94ab4157ef3695e40da1d31b7baf36e865591fdb6465e348d4071b4ef2e00947621198c343c4e590769e7048d02fa928b5f8241"}]}}, {{0x9, 0x5, 0x5, 0x3, 0x8, 0x40, 0x6, 0x1a, [@generic={0x5c, 0x23, "5af4411dbc338b79489abc856f6e238c7c73d5b4cea3018f25455bf6f53d58db4e733630fba3d9d8f1c62a3c338a6b689216d91d0475f063a9535e32b7ea168feab2c3d0f170fbc59a8360f7e591fe9bfaf6bc1057d9446d09af"}]}}, {{0x9, 0x5, 0xf, 0x1, 0x200, 0x0, 0x6, 0x1f, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x5, 0xfff}]}}, {{0x9, 0x5, 0x1, 0x10, 0x200, 0x3, 0x6, 0x77, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0xbc, 0x4}]}}, {{0x9, 0x5, 0x0, 0x0, 0x40, 0xd8, 0x1, 0x0, [@generic={0x18, 0x4, "ad4f2661e3959690f4f92ff4aaa44245533e335cb02b"}]}}, {{0x9, 0x5, 0xa, 0x12, 0x20, 0xf1, 0x4, 0x6, [@generic={0x14, 0x3f, "e095bf16e0edabe9d2092ef494f7595e07a2"}]}}, {{0x9, 0x5, 0x6, 0x10, 0x8, 0x1, 0x4, 0x5, [@generic={0xda, 0x4, "7bbb4711d6c1a56ea1d9fe681130d736f90407c9074b28cee42d8668d2830b3a7a41f0c9b443ed6e5153f6fa6c6037671661d02878c6525f334308da516aa9b81f0d56613e34ae223e2dc507e73571cd4477e7e20ea8b2ae50870120c918ef9ce70f264b1967003e19f7326e12e82f952d81fafe7fc763ed1ea778d219f708bc74d6f8b4e504e4e1d63b5a9ebdf45858c346a7929d8b49d8365b6ff57c72d2d67e48dcfa22e89e1aa924c1acacf7dedc895eba0c28e78595c6f5127082228f1e7f270aaf51fdc839238bd702b23ead041f22798e836554ac"}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0x3, 0xffff}]}}, {{0x9, 0x5, 0x8, 0x1, 0x10, 0x5, 0xea, 0x40, [@uac_iso={0x7, 0x25, 0x1, 0x1600155c0282733c, 0x20, 0x9}]}}, {{0x9, 0x5, 0x7917cad7c8bbe8b0, 0x10, 0x20, 0x6, 0x0, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x9, 0x8}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x0, 0x80}]}}, {{0x9, 0x5, 0xb, 0x4, 0x200, 0x40, 0x7, 0xf9, [@generic={0xa6, 0xd, "3d6d1a798faa9bd1a4a650f03e0591c575d05b32bc728590968cc881c0c43f672b968aa6c8bb954edb4c5d255ec64abeda8c8484164593cf03a93d6ea688ee45e88dbd32527f81a7f4830042537e29ba2ae4f528670d745e9e36f0cb5a80da2fcffdbc0c62e79e4722fac4cbdd8161ab99a652bd6babf6cda18ed0ac0f967f41de095129fc9114c343829d7810a9d181edd5515599854dce617a9a15555cd9f0621ff380"}]}}, {{0x9, 0x5, 0x1, 0x0, 0x400, 0x2, 0x7, 0x85, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0xf7, 0x400}]}}]}}]}}]}}, &(0x7f0000001900)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x200, 0x8, 0x1c, 0x9, 0xff, 0x3}, 0x45, &(0x7f00000001c0)={0x5, 0xf, 0x45, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0x9, "1042c5a74df79160ac483f9792d04371"}, @generic={0x2c, 0x10, 0xf, "7f3374d7a80bdea6686ab081d836cd7e7d7079de205d461221c8aa2cfce95e8bd8c01d13675a6ef229"}]}, 0x3, [{0x4, &(0x7f0000001800)=@lang_id={0x4, 0x3, 0x44c}}, {0x4, &(0x7f0000001840)=@lang_id={0x4, 0x3, 0x814}}, {0x6a, &(0x7f0000001880)=@string={0x6a, 0x3, "03031a51985c89e63175b538a855a3c2cee9a7e0cd0f949625ff832385e9a949302e6c48d0db2d185cc00ef8b7bee77c0a172cdc00fe44527048a2bff29e2d36d599b668adb749bbbdae0f864858c51db7ad6ba5481901a22b2f3d57c429e5303ada16d56e00a1fe"}}]})
r1 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x46, 0x5a, 0x89, 0x10, 0x15c2, 0x3d, 0x4e3b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xbb, 0x8c, 0xae, 0x0, [], [{{0x9, 0x5, 0x5}}]}}]}}]}}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x0, 0x0)
syz_usb_control_io(r1, 0x0, &(0x7f0000000840)={0x44, &(0x7f0000001940)={0x0, 0x10, 0x4, "2bf90500"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x46, 0x5a, 0x89, 0x10, 0x15c2, 0x3d, 0x4e3b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xbb, 0x8c, 0xae, 0x0, [], [{{0x9, 0x5, 0x5}}]}}]}}]}}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x0, 0x0)
syz_usb_control_io(r2, &(0x7f0000000280)={0x18, &(0x7f00000000c0)={0x40, 0xf, 0x83, {0x83, 0x10, "86a10443fd72580d8ab3720667fb72ac6f2e956f2d11843a2b6d83e22dc925ffb5166fdaa4a51ea15384eb8be8027c6da8eea2a30ea2f7ffc81f2deb5574f58d0d82692ba734fd410f2cfe45cc22266afef253f3e3d4fadba664bc4e7da55a29c14bc1ebf39678b2a62ee328aad23b043d6a89412f6a8da48cbc4ee86662bd11de"}}, &(0x7f00000012c0)=ANY=[@ANYBLOB="00039d0000009d030fbdd416bebfddacee0a896c6cf628c452303e56620261a932f56b138274d4d01ee49fa759e61476fcd95b81dc791d5d277845a5264c05939202f86cd22163e8b3cb07e1ab907caaf39274f416b123347d98233f4ac8002a4a3abc02959138c8297f2899fd4829bc70fd3de0fa7a6eed5c56b030bd5b1c1f27e123c37dcfcc91eb01b8cdf4e61c9c24141a2b8b969eb2e11c9328710a0ff95f49f1fffd338d3177e131a104f655950266a5ac6b6f3c38d0"], &(0x7f0000000000)={0x0, 0xf, 0x22, {0x5, 0xf, 0x22, 0x3, [@wireless={0xb, 0x10, 0x1, 0xc, 0x21, 0x0, 0x6, 0x8, 0x6c}, @ext_cap={0x7, 0x10, 0x2, 0x8, 0x5, 0x4, 0x4}, @wireless={0xb, 0x10, 0x1, 0xc, 0xc4, 0x5, 0x40, 0x1}]}}, &(0x7f0000000040)={0x20, 0x29, 0xf, {0xf, 0x29, 0x8, 0x2, 0x6, 0x40, "dfbb528d", "e18203f4"}}, &(0x7f0000000240)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x1, 0x18, 0x3f, 0xe, 0x8, 0x3}}}, &(0x7f0000000700)={0x44, &(0x7f00000002c0)={0x20, 0x31, 0x6, "d702911fdcbb"}, &(0x7f0000000300)={0x0, 0xa, 0x1, 0x68}, &(0x7f0000000340)={0x0, 0x8, 0x1, 0x5}, &(0x7f00000003c0)={0x20, 0x0, 0x4, {0x2, 0x3}}, &(0x7f0000000400)={0x20, 0x0, 0x8, {0x60, 0x4, [0x78]}}, &(0x7f0000000440)={0x40, 0x7, 0x2, 0x8}, &(0x7f0000000480)={0x40, 0x9, 0x1, 0x7a}, &(0x7f00000004c0)={0x40, 0xb, 0x2, "5ff0"}, &(0x7f0000000500)={0x40, 0xf, 0x2, 0xfff}, &(0x7f0000000540)={0x40, 0x13, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, &(0x7f0000000580)={0x40, 0x17, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, &(0x7f00000005c0)={0x40, 0x19, 0x2, "41db"}, &(0x7f0000000600)={0x40, 0x1a, 0x2, 0x2}, &(0x7f0000000640)={0x40, 0x1c, 0x1, 0x9}, &(0x7f0000000680)={0x40, 0x1e, 0x1, 0x7f}, &(0x7f00000006c0)={0x40, 0x21, 0x1}})
syz_usb_control_io$hid(r2, &(0x7f00000009c0)={0x14, &(0x7f00000008c0)={0x40, 0x17, 0x44, {0x44, 0x2, "ccfd7820bd04ff4d823dc09f526fa97a59378f4c42b084cf2204ad7e528383bf557570d32ee1c17e290efb7e7012775862f8ce8df7c10382ffe5c79f79335f736173"}}, &(0x7f0000000080)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x3009}}, &(0x7f0000000940)={0x0, 0x22, 0x1b, {[@main=@item_012={0x1, 0x0, 0x1a, "90"}, @global=@item_012={0x1, 0x1, 0x3, "b7"}, @global=@item_4={0x3, 0x1, 0x3, "b720d2ac"}, @global=@item_012={0x2, 0x1, 0xa, "41bc"}, @main=@item_012={0x1, 0x0, 0x8, "1e"}, @global=@item_012={0x1, 0x1, 0x9, 'n'}, @local=@item_012={0x1, 0x2, 0x4, "ed"}, @local=@item_4={0x3, 0x2, 0x3, "4284c3ae"}, @local=@item_012={0x2, 0x2, 0x3, "f0a7"}, @main=@item_012={0x0, 0x0, 0xe}]}}, &(0x7f0000000980)={0x0, 0x21, 0x9, {0x9, 0x21, 0x3f, 0x2, 0x1, {0x22, 0x7db}}}}, &(0x7f0000000bc0)={0x18, &(0x7f0000000a00)={0x0, 0xa, 0x1a, "8097035f0f0c2d9579f16556f428a2c202e849bbbd375e0a9012"}, &(0x7f0000000a40)={0x0, 0xa, 0x1, 0xff}, &(0x7f0000000a80)={0x0, 0x8, 0x1, 0x29}, &(0x7f0000000ac0)={0x20, 0x1, 0x98, "c8e5a2ea69a4b4797feb0dfe1eb1c1525cc8ae29fe2a4e55290c91657148ae9d6bca6bd43e34ae15d2180b679a633148630850faba794e5b8dafc230a123e3ce24093dfef5029b842c131262a72b1a17573b2ef2be13828582b90276f1e26b522f89165c6a61fd83fdbf8f0330332f15a07ad53aa0226e4a489ec0a09b01c6a7d9310be2402e9dddf3aeb0e54635fa802cd6e6c1d22ae258"}, &(0x7f0000000b80)={0x20, 0x3, 0x1, 0x81}})
r3 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000c00)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x20, 0x46d, 0xb018, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x81, 0x80, 0x0, [{{0x9, 0x4, 0x0, 0x15, 0x1, 0x3, 0x1, 0x2, 0x7, {0x9, 0x21, 0x4, 0x4, 0x1, {0x22, 0x24d}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x40, 0x8, 0x91}}, [{{0x9, 0x5, 0x2, 0x3, 0x200, 0x5}}]}}}]}}]}}, &(0x7f0000000ec0)={0xa, &(0x7f0000000c40)={0xa, 0x6, 0x300, 0x3, 0x0, 0x4, 0xff, 0x1}, 0x6f, &(0x7f0000000c80)={0x5, 0xf, 0x6f, 0x6, [@ext_cap={0x7, 0x10, 0x2, 0x10, 0xc, 0x0, 0xf2e5}, @ss_container_id={0x14, 0x10, 0x4, 0x9, "66820b228551a6a47ddf778d35873300"}, @ssp_cap={0x20, 0x10, 0xa, 0x80, 0x5, 0x4, 0xf, 0x1, [0xf0, 0xc0, 0xff0000, 0xc0, 0xf0]}, @ss_container_id={0x14, 0x10, 0x4, 0xac, "9f28de5b023887c03a596df5f1fcf403"}, @ss_container_id={0x14, 0x10, 0x4, 0x4, "ed52aa2300c2f59412422dad4db6e7fc"}, @ext_cap={0x7, 0x10, 0x2, 0x4, 0x1, 0x6, 0x4}]}, 0x3, [{0xb6, &(0x7f0000000d00)=@string={0xb6, 0x3, "85eb5f0c426a61240cae5dd8f84a569d90123f0cf7b5cbf08ee585878130a4e773f4874bee4d7880b5122016f4d592f6602dea22dc2f71e4e6717d703b5370f74608737f5b60a7d76c2fe52259082d991225e54e0ee67a622e670928ec1cb8c6ea3030e6b2bd04c453ca8533cd74e11a55cd7b09c5e25f93c4667ccea84ea3ab2ed6f52bccfe5d2589e3ca05abd2fa2f34282c108c7eaf03d518b916e3dd8842961c74b3298e7c049607f080044980e2e7936496"}}, {0x1c, &(0x7f0000000dc0)=@string={0x1c, 0x3, "6c5ef120edefb085df146cfc2202bbf1f18ebdfa53915e65d8d9"}}, {0xbb, &(0x7f0000000e00)=@string={0xbb, 0x3, "802580dbf46fbb99d6250f00a87deb8f5104dbd399e01d81eecb7bd4145790a535c0970aa89353e28ec32a8f8994ed1cc13c3c9aca4610d473939d0f4033ff7825b1f7343ad78b3f7f1622386f3d27359d00db9368ed7a50d79ca5b2de885be02fca380329c87652ac8c98aa9d767477e97b9a49e76cb88959fb225f5a36e1feef13b15ab417052a21dd5a0cdf43f737a81b330e4cd2ffdf44e8215c71037803c9e21cbf07b88d7b77fe84e0a74b6b9d9b3c97433c794978f3"}}]})
syz_usb_control_io$hid(r3, &(0x7f0000001080)={0x14, &(0x7f0000000f00)={0x40, 0x4, 0xaf, {0xaf, 0x22, "ec30529b0bc741796c360505c325ce08d81ab73801d4486a1813130556ef255fc60bf2ccd8e05c01f158a258cfb2b33dd73255862f813722930947907b758bd86f17ec231e5f683d73db04d2f4f2f4a4c18db2ccdc13f64d30bdcb09c4398f71fea33b30cd0f1dc0d58c441450ac46c5c4b408521f7e4bc802be4704fbd713bc7b6b436c8638600b64292bd47f439d7e7286219b7d618a5286b668b06fe5eaded2602b3e42dc5fdadb320f5c62"}}, &(0x7f0000000fc0)={0x0, 0x3, 0xf, @string={0xf, 0x3, "10f5fd55284afe1b4c9fdb68df"}}, &(0x7f0000001000)={0x0, 0x22, 0x13, {[@local=@item_012={0x1, 0x2, 0xa, "ad"}, @local=@item_4={0x3, 0x2, 0x7, "c2283700"}, @local=@item_012={0x2, 0x2, 0xa, "a75f"}, @main=@item_4={0x3, 0x0, 0xb, "2071d72c"}, @local=@item_012={0x1, 0x2, 0xa, "b4"}, @main=@item_012={0x1, 0x0, 0xb, "fb"}]}}, &(0x7f0000001040)={0x0, 0x21, 0x9, {0x9, 0x21, 0x1, 0x7e, 0x1, {0x22, 0xf7}}}}, &(0x7f0000001280)={0x18, &(0x7f00000010c0)={0x40, 0x15, 0xa7, "13f04be087e77045f2dbd0d1d42b6ca4c27ebf01f1fc7be18a3303ff54e4540a1bed98b5198aaaa9b4047fa46bd3223481f789bee25b3788111874b64048e0a9fe3eb0c11489a62123d694f5e98bc37b7bb2f67a34c4d58c5b31c0d60b0e116fda86fc12d96261b0ec867d3690edacb93b00d4e5c4aaa5539d27ef71b1ed823d5eec67d4e99f3a60bef229f0d174037469826f86f1eb268d5ca7acec2db63a92c214452b21136f"}, &(0x7f0000001180)={0x0, 0xa, 0x1, 0xc1}, &(0x7f00000011c0)={0x0, 0x8, 0x1, 0x3}, &(0x7f0000001200)={0x20, 0x1, 0x30, "e95fd73f0c95c204ca69a7101eda406c6aba32023f7fbbbc821e044b4d3aac0a82c9e576fb64581bcb95806d0126b592"}, &(0x7f0000001240)={0x20, 0x3, 0x1, 0xec}})

[ 2101.829298][T20737] net_ratelimit: 4 callbacks suppressed
[ 2101.829310][T20737] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2101.915694][T20745] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:20 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:20 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100"], 0x0)

[ 2102.068019][T20754] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2102.251304][T12664] usb 6-1: new high-speed USB device number 118 using dummy_hcd
[ 2102.511322][T12664] usb 6-1: Using ep0 maxpacket: 8
[ 2102.641611][T12664] usb 6-1: config 0 has an invalid descriptor of length 212, skipping remainder of the config
[ 2102.664678][T12664] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xE has invalid maxpacket 9922, setting to 1024
[ 2102.688335][T12664] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0xE has invalid maxpacket 1024
[ 2102.709821][T12664] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 2102.736383][T12664] usb 6-1: New USB device found, idVendor=054c, idProduct=002b, bcdDevice= 1.0b
[ 2102.757257][T12664] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2102.781465][T12664] usb 6-1: config 0 descriptor??
[ 2102.821650][T20749] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 2102.851293][T12664] ums-isd200 6-1:0.0: USB Mass Storage device detected
[ 2103.060890][T20749] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2103.082356][T20749] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2103.104273][T20749] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2103.125685][T20749] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2103.148452][T20749] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2103.168460][T20749] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2103.190328][T20749] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2103.210308][T20749] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2103.235054][T20749] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2103.245173][T20749] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2103.256198][T12664] usb 6-1: USB disconnect, device number 118
15:15:22 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x2}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:22 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x4, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:22 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2"], 0x0)

15:15:22 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async, rerun: 64)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async, rerun: 64)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/117, 0xfcb7}, {&(0x7f0000000440)=""/137, 0x8b}, {&(0x7f0000000340)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
r1 = socket$inet(0x2, 0x3, 0x2) (async)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
mmap$usbfs(&(0x7f0000ff8000/0x6000)=nil, 0x6000, 0xc, 0x40010, r0, 0xffffffff) (async, rerun: 64)
syz_io_uring_setup(0x6ed9, &(0x7f0000000700)={0x0, 0xd913, 0x1, 0x2, 0x209, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000000780), &(0x7f00000007c0)) (rerun: 64)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000200)=ANY=[@ANYBLOB="2167f58f8b6eb1c2ef1c33ed5eb700000000118afa4f2b86cd0000000002000019000000000001000000c8eabc6e000040000000092600000000000000070000000000000004000000000000000800000001000000080800000000e804040000000a008000000000ff9aaafdf3af61cc66dcb4aa190ebad4473dd86c19e34a8e7621cfb78cfaa200b1f4d4d6c11c689dda94552596f08913fd7fbeff0600bb22d21cf9147c21f3f950ec89fe45888e6e5cb50ae4677686077bd5062ccb049a0b53e738970435ff"]}, @devid}) (async, rerun: 64)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (rerun: 64)

15:15:22 executing program 5:
syz_usb_connect(0x0, 0x36, &(0x7f0000000780)=ANY=[@ANYBLOB="12010100cfc6ae084c052b000b010000000109022400010000000009040000021f25730009050e02c226ff0000d4215587028f8cd904422e0c4965235f378ea84e7a1cd73833cf7efc952d0af59fff4514504faa49f7c9d31c4bb830fb7e0900901223383db44c323f2ac8f425d53743676b88a4e2deb5a634c259ed600bb9975afaa935e07556e8af9602778ec07958d2aea2907aa0cf33"], 0x0) (async, rerun: 64)
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x46, 0x5a, 0x89, 0x10, 0x15c2, 0x3d, 0x4e3b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xbb, 0x8c, 0xae, 0x0, [], [{{0x9, 0x5, 0x5}}]}}]}}]}}, 0x0) (rerun: 64)
syz_usb_ep_write(r0, 0x0, 0x0, 0x0)
syz_usb_connect(0x0, 0x466, &(0x7f0000001380)={{0x12, 0x1, 0x110, 0xd2, 0x28, 0x60, 0x2075b9b3978bc1c7, 0x2040, 0xc61b, 0x54a1, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x454, 0x1, 0x9, 0x9, 0xa0, 0x4, [{{0x9, 0x4, 0xd9, 0x9, 0xc, 0x33, 0x1e, 0xdf, 0x3, [@cdc_ncm={{0x9, 0x24, 0x6, 0x0, 0x1, "39c7d97a"}, {0x5, 0x24, 0x0, 0xc2fd}, {0xd, 0x24, 0xf, 0x1, 0x20, 0x6, 0x1, 0x9}, {0x6, 0x24, 0x1a, 0xac8c}, [@mbim_extended={0x8, 0x24, 0x1c, 0x5, 0x9, 0x401}, @call_mgmt={0x5, 0x24, 0x1, 0x0, 0x60}, @mdlm={0x15, 0x24, 0x12, 0x100}, @mbim_extended={0x8, 0x24, 0x1c, 0x0, 0x4, 0x5}, @obex={0x5, 0x24, 0x15, 0x800}]}, @cdc_ncm={{0x7, 0x24, 0x6, 0x0, 0x1, "6084"}, {0x5, 0x24, 0x0, 0x1}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x9, 0x10, 0x8}, {0x6, 0x24, 0x1a, 0x1f, 0x20}, [@network_terminal={0x7, 0x24, 0xa, 0x2, 0x20, 0xff, 0x8}, @network_terminal={0x7, 0x24, 0xa, 0x0, 0x3, 0x81, 0x15}, @mdlm_detail={0xf, 0x24, 0x13, 0x2, "6af528ce5c222c94c563ac"}, @call_mgmt={0x5, 0x24, 0x1, 0x1, 0x3f}, @mdlm={0x15, 0x24, 0x12, 0x23a0}, @mbim_extended={0x8, 0x24, 0x1c, 0x1, 0x4, 0xbc}]}], [{{0x9, 0x5, 0x6, 0x0, 0x8, 0x20, 0x3, 0x2, [@generic={0xf, 0xe, "88af2cb10f7903bd7e4229281f"}]}}, {{0x9, 0x5, 0x0, 0x10, 0x8, 0x6, 0x8, 0x7f, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0xff, 0x8}, @generic={0xd9, 0x10, "d3aedd7cbfb48084b05f04dbfbc2121b673ad41230d9300d635960f47bc05d1d793d752c2e71578354aef8b355d178522fe27f05f6bbd87919bf94aed64492ee998b8f6041d2bd056d19e00e824e6c20632bcd3319a5f126e0a38f046a7fcad6f62d4f78f43ee692804e674fbd80d60a75a79ab2025481cc197c099d0493356b0ca64f7b148d67d801b1291837b03b79a78881c976a83aed28a98e84204e4a4647616fc94ab4157ef3695e40da1d31b7baf36e865591fdb6465e348d4071b4ef2e00947621198c343c4e590769e7048d02fa928b5f8241"}]}}, {{0x9, 0x5, 0x5, 0x3, 0x8, 0x40, 0x6, 0x1a, [@generic={0x5c, 0x23, "5af4411dbc338b79489abc856f6e238c7c73d5b4cea3018f25455bf6f53d58db4e733630fba3d9d8f1c62a3c338a6b689216d91d0475f063a9535e32b7ea168feab2c3d0f170fbc59a8360f7e591fe9bfaf6bc1057d9446d09af"}]}}, {{0x9, 0x5, 0xf, 0x1, 0x200, 0x0, 0x6, 0x1f, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x5, 0xfff}]}}, {{0x9, 0x5, 0x1, 0x10, 0x200, 0x3, 0x6, 0x77, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0xbc, 0x4}]}}, {{0x9, 0x5, 0x0, 0x0, 0x40, 0xd8, 0x1, 0x0, [@generic={0x18, 0x4, "ad4f2661e3959690f4f92ff4aaa44245533e335cb02b"}]}}, {{0x9, 0x5, 0xa, 0x12, 0x20, 0xf1, 0x4, 0x6, [@generic={0x14, 0x3f, "e095bf16e0edabe9d2092ef494f7595e07a2"}]}}, {{0x9, 0x5, 0x6, 0x10, 0x8, 0x1, 0x4, 0x5, [@generic={0xda, 0x4, "7bbb4711d6c1a56ea1d9fe681130d736f90407c9074b28cee42d8668d2830b3a7a41f0c9b443ed6e5153f6fa6c6037671661d02878c6525f334308da516aa9b81f0d56613e34ae223e2dc507e73571cd4477e7e20ea8b2ae50870120c918ef9ce70f264b1967003e19f7326e12e82f952d81fafe7fc763ed1ea778d219f708bc74d6f8b4e504e4e1d63b5a9ebdf45858c346a7929d8b49d8365b6ff57c72d2d67e48dcfa22e89e1aa924c1acacf7dedc895eba0c28e78595c6f5127082228f1e7f270aaf51fdc839238bd702b23ead041f22798e836554ac"}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0x3, 0xffff}]}}, {{0x9, 0x5, 0x8, 0x1, 0x10, 0x5, 0xea, 0x40, [@uac_iso={0x7, 0x25, 0x1, 0x1600155c0282733c, 0x20, 0x9}]}}, {{0x9, 0x5, 0x7917cad7c8bbe8b0, 0x10, 0x20, 0x6, 0x0, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x9, 0x8}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x0, 0x80}]}}, {{0x9, 0x5, 0xb, 0x4, 0x200, 0x40, 0x7, 0xf9, [@generic={0xa6, 0xd, "3d6d1a798faa9bd1a4a650f03e0591c575d05b32bc728590968cc881c0c43f672b968aa6c8bb954edb4c5d255ec64abeda8c8484164593cf03a93d6ea688ee45e88dbd32527f81a7f4830042537e29ba2ae4f528670d745e9e36f0cb5a80da2fcffdbc0c62e79e4722fac4cbdd8161ab99a652bd6babf6cda18ed0ac0f967f41de095129fc9114c343829d7810a9d181edd5515599854dce617a9a15555cd9f0621ff380"}]}}, {{0x9, 0x5, 0x1, 0x0, 0x400, 0x2, 0x7, 0x85, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0xf7, 0x400}]}}]}}]}}]}}, &(0x7f0000001900)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x200, 0x8, 0x1c, 0x9, 0xff, 0x3}, 0x45, &(0x7f00000001c0)={0x5, 0xf, 0x45, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0x9, "1042c5a74df79160ac483f9792d04371"}, @generic={0x2c, 0x10, 0xf, "7f3374d7a80bdea6686ab081d836cd7e7d7079de205d461221c8aa2cfce95e8bd8c01d13675a6ef229"}]}, 0x3, [{0x4, &(0x7f0000001800)=@lang_id={0x4, 0x3, 0x44c}}, {0x4, &(0x7f0000001840)=@lang_id={0x4, 0x3, 0x814}}, {0x6a, &(0x7f0000001880)=@string={0x6a, 0x3, "03031a51985c89e63175b538a855a3c2cee9a7e0cd0f949625ff832385e9a949302e6c48d0db2d185cc00ef8b7bee77c0a172cdc00fe44527048a2bff29e2d36d599b668adb749bbbdae0f864858c51db7ad6ba5481901a22b2f3d57c429e5303ada16d56e00a1fe"}}]}) (async)
r1 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x46, 0x5a, 0x89, 0x10, 0x15c2, 0x3d, 0x4e3b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xbb, 0x8c, 0xae, 0x0, [], [{{0x9, 0x5, 0x5}}]}}]}}]}}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x0, 0x0)
syz_usb_control_io(r1, 0x0, &(0x7f0000000840)={0x44, &(0x7f0000001940)={0x0, 0x10, 0x4, "2bf90500"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x46, 0x5a, 0x89, 0x10, 0x15c2, 0x3d, 0x4e3b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xbb, 0x8c, 0xae, 0x0, [], [{{0x9, 0x5, 0x5}}]}}]}}]}}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x0, 0x0) (async)
syz_usb_control_io(r2, &(0x7f0000000280)={0x18, &(0x7f00000000c0)={0x40, 0xf, 0x83, {0x83, 0x10, "86a10443fd72580d8ab3720667fb72ac6f2e956f2d11843a2b6d83e22dc925ffb5166fdaa4a51ea15384eb8be8027c6da8eea2a30ea2f7ffc81f2deb5574f58d0d82692ba734fd410f2cfe45cc22266afef253f3e3d4fadba664bc4e7da55a29c14bc1ebf39678b2a62ee328aad23b043d6a89412f6a8da48cbc4ee86662bd11de"}}, &(0x7f00000012c0)=ANY=[@ANYBLOB="00039d0000009d030fbdd416bebfddacee0a896c6cf628c452303e56620261a932f56b138274d4d01ee49fa759e61476fcd95b81dc791d5d277845a5264c05939202f86cd22163e8b3cb07e1ab907caaf39274f416b123347d98233f4ac8002a4a3abc02959138c8297f2899fd4829bc70fd3de0fa7a6eed5c56b030bd5b1c1f27e123c37dcfcc91eb01b8cdf4e61c9c24141a2b8b969eb2e11c9328710a0ff95f49f1fffd338d3177e131a104f655950266a5ac6b6f3c38d0"], &(0x7f0000000000)={0x0, 0xf, 0x22, {0x5, 0xf, 0x22, 0x3, [@wireless={0xb, 0x10, 0x1, 0xc, 0x21, 0x0, 0x6, 0x8, 0x6c}, @ext_cap={0x7, 0x10, 0x2, 0x8, 0x5, 0x4, 0x4}, @wireless={0xb, 0x10, 0x1, 0xc, 0xc4, 0x5, 0x40, 0x1}]}}, &(0x7f0000000040)={0x20, 0x29, 0xf, {0xf, 0x29, 0x8, 0x2, 0x6, 0x40, "dfbb528d", "e18203f4"}}, &(0x7f0000000240)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x1, 0x18, 0x3f, 0xe, 0x8, 0x3}}}, &(0x7f0000000700)={0x44, &(0x7f00000002c0)={0x20, 0x31, 0x6, "d702911fdcbb"}, &(0x7f0000000300)={0x0, 0xa, 0x1, 0x68}, &(0x7f0000000340)={0x0, 0x8, 0x1, 0x5}, &(0x7f00000003c0)={0x20, 0x0, 0x4, {0x2, 0x3}}, &(0x7f0000000400)={0x20, 0x0, 0x8, {0x60, 0x4, [0x78]}}, &(0x7f0000000440)={0x40, 0x7, 0x2, 0x8}, &(0x7f0000000480)={0x40, 0x9, 0x1, 0x7a}, &(0x7f00000004c0)={0x40, 0xb, 0x2, "5ff0"}, &(0x7f0000000500)={0x40, 0xf, 0x2, 0xfff}, &(0x7f0000000540)={0x40, 0x13, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, &(0x7f0000000580)={0x40, 0x17, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, &(0x7f00000005c0)={0x40, 0x19, 0x2, "41db"}, &(0x7f0000000600)={0x40, 0x1a, 0x2, 0x2}, &(0x7f0000000640)={0x40, 0x1c, 0x1, 0x9}, &(0x7f0000000680)={0x40, 0x1e, 0x1, 0x7f}, &(0x7f00000006c0)={0x40, 0x21, 0x1}})
syz_usb_control_io$hid(r2, &(0x7f00000009c0)={0x14, &(0x7f00000008c0)={0x40, 0x17, 0x44, {0x44, 0x2, "ccfd7820bd04ff4d823dc09f526fa97a59378f4c42b084cf2204ad7e528383bf557570d32ee1c17e290efb7e7012775862f8ce8df7c10382ffe5c79f79335f736173"}}, &(0x7f0000000080)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x3009}}, &(0x7f0000000940)={0x0, 0x22, 0x1b, {[@main=@item_012={0x1, 0x0, 0x1a, "90"}, @global=@item_012={0x1, 0x1, 0x3, "b7"}, @global=@item_4={0x3, 0x1, 0x3, "b720d2ac"}, @global=@item_012={0x2, 0x1, 0xa, "41bc"}, @main=@item_012={0x1, 0x0, 0x8, "1e"}, @global=@item_012={0x1, 0x1, 0x9, 'n'}, @local=@item_012={0x1, 0x2, 0x4, "ed"}, @local=@item_4={0x3, 0x2, 0x3, "4284c3ae"}, @local=@item_012={0x2, 0x2, 0x3, "f0a7"}, @main=@item_012={0x0, 0x0, 0xe}]}}, &(0x7f0000000980)={0x0, 0x21, 0x9, {0x9, 0x21, 0x3f, 0x2, 0x1, {0x22, 0x7db}}}}, &(0x7f0000000bc0)={0x18, &(0x7f0000000a00)={0x0, 0xa, 0x1a, "8097035f0f0c2d9579f16556f428a2c202e849bbbd375e0a9012"}, &(0x7f0000000a40)={0x0, 0xa, 0x1, 0xff}, &(0x7f0000000a80)={0x0, 0x8, 0x1, 0x29}, &(0x7f0000000ac0)={0x20, 0x1, 0x98, "c8e5a2ea69a4b4797feb0dfe1eb1c1525cc8ae29fe2a4e55290c91657148ae9d6bca6bd43e34ae15d2180b679a633148630850faba794e5b8dafc230a123e3ce24093dfef5029b842c131262a72b1a17573b2ef2be13828582b90276f1e26b522f89165c6a61fd83fdbf8f0330332f15a07ad53aa0226e4a489ec0a09b01c6a7d9310be2402e9dddf3aeb0e54635fa802cd6e6c1d22ae258"}, &(0x7f0000000b80)={0x20, 0x3, 0x1, 0x81}}) (async)
r3 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000c00)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x20, 0x46d, 0xb018, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x81, 0x80, 0x0, [{{0x9, 0x4, 0x0, 0x15, 0x1, 0x3, 0x1, 0x2, 0x7, {0x9, 0x21, 0x4, 0x4, 0x1, {0x22, 0x24d}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x40, 0x8, 0x91}}, [{{0x9, 0x5, 0x2, 0x3, 0x200, 0x5}}]}}}]}}]}}, &(0x7f0000000ec0)={0xa, &(0x7f0000000c40)={0xa, 0x6, 0x300, 0x3, 0x0, 0x4, 0xff, 0x1}, 0x6f, &(0x7f0000000c80)={0x5, 0xf, 0x6f, 0x6, [@ext_cap={0x7, 0x10, 0x2, 0x10, 0xc, 0x0, 0xf2e5}, @ss_container_id={0x14, 0x10, 0x4, 0x9, "66820b228551a6a47ddf778d35873300"}, @ssp_cap={0x20, 0x10, 0xa, 0x80, 0x5, 0x4, 0xf, 0x1, [0xf0, 0xc0, 0xff0000, 0xc0, 0xf0]}, @ss_container_id={0x14, 0x10, 0x4, 0xac, "9f28de5b023887c03a596df5f1fcf403"}, @ss_container_id={0x14, 0x10, 0x4, 0x4, "ed52aa2300c2f59412422dad4db6e7fc"}, @ext_cap={0x7, 0x10, 0x2, 0x4, 0x1, 0x6, 0x4}]}, 0x3, [{0xb6, &(0x7f0000000d00)=@string={0xb6, 0x3, "85eb5f0c426a61240cae5dd8f84a569d90123f0cf7b5cbf08ee585878130a4e773f4874bee4d7880b5122016f4d592f6602dea22dc2f71e4e6717d703b5370f74608737f5b60a7d76c2fe52259082d991225e54e0ee67a622e670928ec1cb8c6ea3030e6b2bd04c453ca8533cd74e11a55cd7b09c5e25f93c4667ccea84ea3ab2ed6f52bccfe5d2589e3ca05abd2fa2f34282c108c7eaf03d518b916e3dd8842961c74b3298e7c049607f080044980e2e7936496"}}, {0x1c, &(0x7f0000000dc0)=@string={0x1c, 0x3, "6c5ef120edefb085df146cfc2202bbf1f18ebdfa53915e65d8d9"}}, {0xbb, &(0x7f0000000e00)=@string={0xbb, 0x3, "802580dbf46fbb99d6250f00a87deb8f5104dbd399e01d81eecb7bd4145790a535c0970aa89353e28ec32a8f8994ed1cc13c3c9aca4610d473939d0f4033ff7825b1f7343ad78b3f7f1622386f3d27359d00db9368ed7a50d79ca5b2de885be02fca380329c87652ac8c98aa9d767477e97b9a49e76cb88959fb225f5a36e1feef13b15ab417052a21dd5a0cdf43f737a81b330e4cd2ffdf44e8215c71037803c9e21cbf07b88d7b77fe84e0a74b6b9d9b3c97433c794978f3"}}]})
syz_usb_control_io$hid(r3, &(0x7f0000001080)={0x14, &(0x7f0000000f00)={0x40, 0x4, 0xaf, {0xaf, 0x22, "ec30529b0bc741796c360505c325ce08d81ab73801d4486a1813130556ef255fc60bf2ccd8e05c01f158a258cfb2b33dd73255862f813722930947907b758bd86f17ec231e5f683d73db04d2f4f2f4a4c18db2ccdc13f64d30bdcb09c4398f71fea33b30cd0f1dc0d58c441450ac46c5c4b408521f7e4bc802be4704fbd713bc7b6b436c8638600b64292bd47f439d7e7286219b7d618a5286b668b06fe5eaded2602b3e42dc5fdadb320f5c62"}}, &(0x7f0000000fc0)={0x0, 0x3, 0xf, @string={0xf, 0x3, "10f5fd55284afe1b4c9fdb68df"}}, &(0x7f0000001000)={0x0, 0x22, 0x13, {[@local=@item_012={0x1, 0x2, 0xa, "ad"}, @local=@item_4={0x3, 0x2, 0x7, "c2283700"}, @local=@item_012={0x2, 0x2, 0xa, "a75f"}, @main=@item_4={0x3, 0x0, 0xb, "2071d72c"}, @local=@item_012={0x1, 0x2, 0xa, "b4"}, @main=@item_012={0x1, 0x0, 0xb, "fb"}]}}, &(0x7f0000001040)={0x0, 0x21, 0x9, {0x9, 0x21, 0x1, 0x7e, 0x1, {0x22, 0xf7}}}}, &(0x7f0000001280)={0x18, &(0x7f00000010c0)={0x40, 0x15, 0xa7, "13f04be087e77045f2dbd0d1d42b6ca4c27ebf01f1fc7be18a3303ff54e4540a1bed98b5198aaaa9b4047fa46bd3223481f789bee25b3788111874b64048e0a9fe3eb0c11489a62123d694f5e98bc37b7bb2f67a34c4d58c5b31c0d60b0e116fda86fc12d96261b0ec867d3690edacb93b00d4e5c4aaa5539d27ef71b1ed823d5eec67d4e99f3a60bef229f0d174037469826f86f1eb268d5ca7acec2db63a92c214452b21136f"}, &(0x7f0000001180)={0x0, 0xa, 0x1, 0xc1}, &(0x7f00000011c0)={0x0, 0x8, 0x1, 0x3}, &(0x7f0000001200)={0x20, 0x1, 0x30, "e95fd73f0c95c204ca69a7101eda406c6aba32023f7fbbbc821e044b4d3aac0a82c9e576fb64581bcb95806d0126b592"}, &(0x7f0000001240)={0x20, 0x3, 0x1, 0xec}})

[ 2104.306831][T20766] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:22 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2"], 0x0)

15:15:22 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000240)={0x1, [<r1=>0x0]}, &(0x7f0000000280)=0x8)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000380)={r1, 0x10, "ab9b56629b1f9c1bb9da6c43b26f3ebe"}, &(0x7f0000000440)=0x18)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000000)={r1, 0x5}, 0x8)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
sendto$inet(r0, &(0x7f0000000100)="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", 0x1000, 0x20040800, 0x0, 0x0)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r2, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, &(0x7f0000000080)={'nat\x00', 0x0, 0x0, 0x0, [0x0, 0x0, 0x4, 0x4, 0x800]}, &(0x7f0000000040)=0x50)

15:15:22 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x3}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2104.355477][T20770] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
15:15:22 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2"], 0x0)

15:15:22 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x5, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2104.450274][T20770] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2104.492432][T20770] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2104.533862][T20770] misc raw-gadget: fail, usb_gadget_register_driver returned -16
15:15:22 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x5}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:22 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c20400"], 0x0)

[ 2104.599327][T20784] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2104.632441][T20770] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2104.651326][T11927] usb 6-1: new high-speed USB device number 119 using dummy_hcd
15:15:22 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c20400"], 0x0)

15:15:22 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x6}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2104.696873][T20770] misc raw-gadget: fail, usb_gadget_register_driver returned -16
15:15:22 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x6, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2104.762879][T20770] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2104.804381][T20770] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2104.835371][T20794] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2104.880815][T20770] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2104.901491][T11927] usb 6-1: Using ep0 maxpacket: 8
[ 2104.925528][T20779] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2104.926732][T20770] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2104.972947][T20779] CPU: 1 PID: 20779 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2104.983426][T20779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2104.993512][T20779] Call Trace:
[ 2104.996807][T20779]  <TASK>
[ 2104.999753][T20779]  dump_stack_lvl+0xcd/0x134
[ 2105.004383][T20779]  dump_header+0x10b/0x7f9
[ 2105.008837][T20779]  oom_kill_process.cold+0x10/0x15
[ 2105.013991][T20779]  out_of_memory+0x358/0x14a0
[ 2105.018707][T20779]  ? find_held_lock+0x2d/0x110
[ 2105.021651][T11927] usb 6-1: config 0 has an invalid descriptor of length 212, skipping remainder of the config
[ 2105.023479][T20779]  ? oom_killer_disable+0x270/0x270
[ 2105.023514][T20779]  ? find_held_lock+0x2d/0x110
[ 2105.023543][T20779]  mem_cgroup_out_of_memory+0x206/0x270
[ 2105.041315][T11927] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xE has invalid maxpacket 9922, setting to 1024
[ 2105.043787][T20779]  ? mem_cgroup_margin+0x130/0x130
[ 2105.043816][T20779]  ? lock_downgrade+0x6e0/0x6e0
[ 2105.050988][T11927] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0xE has invalid maxpacket 1024
[ 2105.060262][T20779]  try_charge_memcg+0xf67/0x13f0
[ 2105.060303][T20779]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2105.060338][T20779]  ? lock_downgrade+0x6e0/0x6e0
[ 2105.060376][T20779]  charge_memcg+0x31/0x320
[ 2105.060407][T20779]  __mem_cgroup_charge+0x27/0x90
[ 2105.060433][T20779]  ? folio_flags.constprop.0+0x53/0x150
[ 2105.060465][T20779]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2105.077992][T11927] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 2105.080260][T20779]  ? shmem_write_end+0xe90/0xe90
[ 2105.093132][T11927] usb 6-1: New USB device found, idVendor=054c, idProduct=002b, bcdDevice= 1.0b
[ 2105.095992][T20779]  ? folio_flags.constprop.0+0x53/0x150
[ 2105.103737][T11927] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2105.105320][T20779]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2105.124850][T11927] usb 6-1: config 0 descriptor??
[ 2105.129129][T20779]  shmem_getpage_gfp+0x8af/0x1f30
[ 2105.129180][T20779]  ? shmem_is_huge+0x330/0x330
[ 2105.161954][T20768] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 2105.162472][T20779]  shmem_fault+0x1b4/0x750
[ 2105.182321][T11927] ums-isd200 6-1:0.0: USB Mass Storage device detected
[ 2105.184330][T20779]  ? shmem_getpage+0xa0/0xa0
[ 2105.200386][T20779]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2105.206053][T20779]  __do_fault+0x10d/0x610
[ 2105.210383][T20779]  __handle_mm_fault+0x2130/0x39b0
[ 2105.215508][T20779]  ? vm_iomap_memory+0x190/0x190
[ 2105.220477][T20779]  handle_mm_fault+0x1c8/0x780
[ 2105.225254][T20779]  __get_user_pages+0x4f3/0xfd0
[ 2105.230128][T20779]  ? follow_page_mask+0x1570/0x1570
[ 2105.235361][T20779]  populate_vma_page_range+0x23d/0x320
[ 2105.240862][T20779]  __mm_populate+0x1ea/0x3d0
[ 2105.245485][T20779]  ? faultin_vma_page_range+0x300/0x300
[ 2105.251052][T20779]  ? up_write+0x148/0x470
[ 2105.255396][T20779]  vm_mmap_pgoff+0x1fd/0x270
[ 2105.260020][T20779]  ? randomize_page+0xb0/0xb0
[ 2105.264724][T20779]  ? kfree+0x1fb/0x580
[ 2105.268813][T20779]  ksys_mmap_pgoff+0x79/0x5a0
[ 2105.273492][T20779]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2105.280102][T20779]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2105.285399][T20779]  __do_fast_syscall_32+0x65/0xf0
[ 2105.290453][T20779]  do_fast_syscall_32+0x2f/0x70
[ 2105.295324][T20779]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2105.301657][T20779] RIP: 0023:0xf7fdf549
[ 2105.305746][T20779] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2105.325383][T20779] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2105.333824][T20779] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2105.341816][T20779] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2105.349830][T20779] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2105.357794][T20779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2105.365781][T20779] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2105.373792][T20779]  </TASK>
[ 2105.381441][T20779] memory: usage 307188kB, limit 307200kB, failcnt 1980
[ 2105.388624][T20779] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2105.406576][T20779] Memory cgroup stats for /syz2:
[ 2105.406799][T20779] anon 110592
[ 2105.406799][T20779] file 310816768
[ 2105.406799][T20779] kernel 3620864
[ 2105.406799][T20779] kernel_stack 98304
[ 2105.406799][T20779] pagetables 77824
[ 2105.406799][T20779] percpu 20128
[ 2105.406799][T20779] sock 0
[ 2105.406799][T20779] vmalloc 0
[ 2105.406799][T20779] shmem 310816768
[ 2105.406799][T20779] zswap 0
[ 2105.406799][T20779] zswapped 0
[ 2105.406799][T20779] file_mapped 3489792
[ 2105.406799][T20779] file_dirty 0
[ 2105.406799][T20779] file_writeback 0
[ 2105.406799][T20779] swapcached 0
[ 2105.406799][T20779] anon_thp 0
[ 2105.406799][T20779] file_thp 0
[ 2105.406799][T20779] shmem_thp 0
[ 2105.406799][T20779] inactive_anon 310759424
[ 2105.406799][T20779] active_anon 167936
[ 2105.406799][T20779] inactive_file 0
[ 2105.406799][T20779] active_file 0
[ 2105.406799][T20779] unevictable 0
[ 2105.406799][T20779] slab_reclaimable 1046120
[ 2105.406799][T20779] slab_unreclaimable 2361920
[ 2105.406799][T20779] slab 3408040
[ 2105.500464][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2105.514761][T11927] usb 6-1: USB disconnect, device number 119
[ 2105.533642][T20779] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20775,uid=0
[ 2105.549430][T20779] Memory cgroup out of memory: Killed process 20775 (syz-executor.2) total-vm:54492kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3164kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 2107.632600][   T30] oom_reaper: reaped process 20775 (syz-executor.2), now anon-rss:0kB, file-rss:8192kB, shmem-rss:3180kB
15:15:26 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/117, 0xfcb7}, {&(0x7f0000000440)=""/137, 0x8b}, {&(0x7f0000000340)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
r1 = socket$inet(0x2, 0x3, 0x2) (async)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
mmap$usbfs(&(0x7f0000ff8000/0x6000)=nil, 0x6000, 0xc, 0x40010, r0, 0xffffffff)
syz_io_uring_setup(0x6ed9, &(0x7f0000000700)={0x0, 0xd913, 0x1, 0x2, 0x209, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000000780), &(0x7f00000007c0))
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000200)=ANY=[@ANYBLOB="2167f58f8b6eb1c2ef1c33ed5eb700000000118afa4f2b86cd0000000002000019000000000001000000c8eabc6e000040000000092600000000000000070000000000000004000000000000000800000001000000080800000000e804040000000a008000000000ff9aaafdf3af61cc66dcb4aa190ebad4473dd86c19e34a8e7621cfb78cfaa200b1f4d4d6c11c689dda94552596f08913fd7fbeff0600bb22d21cf9147c21f3f950ec89fe45888e6e5cb50ae4677686077bd5062ccb049a0b53e738970435ff"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:15:26 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c20400"], 0x0)

15:15:26 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x7, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2108.107647][T20802] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:27 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000240)={0x1, [<r1=>0x0]}, &(0x7f0000000280)=0x8)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000380)={r1, 0x10, "ab9b56629b1f9c1bb9da6c43b26f3ebe"}, &(0x7f0000000440)=0x18) (async)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000000)={r1, 0x5}, 0x8) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async)
sendto$inet(r0, &(0x7f0000000100)="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", 0x1000, 0x20040800, 0x0, 0x0)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r2, 0xb) (async)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r2, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, &(0x7f0000000080)={'nat\x00', 0x0, 0x0, 0x0, [0x0, 0x0, 0x4, 0x4, 0x800]}, &(0x7f0000000040)=0x50)

15:15:27 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x8}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:27 executing program 5:
syz_usb_connect(0x0, 0x36, &(0x7f0000000780)=ANY=[@ANYBLOB="12010100cfc6ae084c052b000b010000000109022400010000000009040000021f25730009050e02c226ff0000d4215587028f8cd904422e0c4965235f378ea84e7a1cd73833cf7efc952d0af59fff4514504faa49f7c9d31c4bb830fb7e0900901223383db44c323f2ac8f425d53743676b88a4e2deb5a634c259ed600bb9975afaa935e07556e8af9602778ec07958d2aea2907aa0cf33"], 0x0)
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x46, 0x5a, 0x89, 0x10, 0x15c2, 0x3d, 0x4e3b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xbb, 0x8c, 0xae, 0x0, [], [{{0x9, 0x5, 0x5}}]}}]}}]}}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x0, 0x0) (async)
syz_usb_connect(0x0, 0x466, &(0x7f0000001380)={{0x12, 0x1, 0x110, 0xd2, 0x28, 0x60, 0x2075b9b3978bc1c7, 0x2040, 0xc61b, 0x54a1, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x454, 0x1, 0x9, 0x9, 0xa0, 0x4, [{{0x9, 0x4, 0xd9, 0x9, 0xc, 0x33, 0x1e, 0xdf, 0x3, [@cdc_ncm={{0x9, 0x24, 0x6, 0x0, 0x1, "39c7d97a"}, {0x5, 0x24, 0x0, 0xc2fd}, {0xd, 0x24, 0xf, 0x1, 0x20, 0x6, 0x1, 0x9}, {0x6, 0x24, 0x1a, 0xac8c}, [@mbim_extended={0x8, 0x24, 0x1c, 0x5, 0x9, 0x401}, @call_mgmt={0x5, 0x24, 0x1, 0x0, 0x60}, @mdlm={0x15, 0x24, 0x12, 0x100}, @mbim_extended={0x8, 0x24, 0x1c, 0x0, 0x4, 0x5}, @obex={0x5, 0x24, 0x15, 0x800}]}, @cdc_ncm={{0x7, 0x24, 0x6, 0x0, 0x1, "6084"}, {0x5, 0x24, 0x0, 0x1}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x9, 0x10, 0x8}, {0x6, 0x24, 0x1a, 0x1f, 0x20}, [@network_terminal={0x7, 0x24, 0xa, 0x2, 0x20, 0xff, 0x8}, @network_terminal={0x7, 0x24, 0xa, 0x0, 0x3, 0x81, 0x15}, @mdlm_detail={0xf, 0x24, 0x13, 0x2, "6af528ce5c222c94c563ac"}, @call_mgmt={0x5, 0x24, 0x1, 0x1, 0x3f}, @mdlm={0x15, 0x24, 0x12, 0x23a0}, @mbim_extended={0x8, 0x24, 0x1c, 0x1, 0x4, 0xbc}]}], [{{0x9, 0x5, 0x6, 0x0, 0x8, 0x20, 0x3, 0x2, [@generic={0xf, 0xe, "88af2cb10f7903bd7e4229281f"}]}}, {{0x9, 0x5, 0x0, 0x10, 0x8, 0x6, 0x8, 0x7f, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0xff, 0x8}, @generic={0xd9, 0x10, "d3aedd7cbfb48084b05f04dbfbc2121b673ad41230d9300d635960f47bc05d1d793d752c2e71578354aef8b355d178522fe27f05f6bbd87919bf94aed64492ee998b8f6041d2bd056d19e00e824e6c20632bcd3319a5f126e0a38f046a7fcad6f62d4f78f43ee692804e674fbd80d60a75a79ab2025481cc197c099d0493356b0ca64f7b148d67d801b1291837b03b79a78881c976a83aed28a98e84204e4a4647616fc94ab4157ef3695e40da1d31b7baf36e865591fdb6465e348d4071b4ef2e00947621198c343c4e590769e7048d02fa928b5f8241"}]}}, {{0x9, 0x5, 0x5, 0x3, 0x8, 0x40, 0x6, 0x1a, [@generic={0x5c, 0x23, "5af4411dbc338b79489abc856f6e238c7c73d5b4cea3018f25455bf6f53d58db4e733630fba3d9d8f1c62a3c338a6b689216d91d0475f063a9535e32b7ea168feab2c3d0f170fbc59a8360f7e591fe9bfaf6bc1057d9446d09af"}]}}, {{0x9, 0x5, 0xf, 0x1, 0x200, 0x0, 0x6, 0x1f, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x5, 0xfff}]}}, {{0x9, 0x5, 0x1, 0x10, 0x200, 0x3, 0x6, 0x77, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0xbc, 0x4}]}}, {{0x9, 0x5, 0x0, 0x0, 0x40, 0xd8, 0x1, 0x0, [@generic={0x18, 0x4, "ad4f2661e3959690f4f92ff4aaa44245533e335cb02b"}]}}, {{0x9, 0x5, 0xa, 0x12, 0x20, 0xf1, 0x4, 0x6, [@generic={0x14, 0x3f, "e095bf16e0edabe9d2092ef494f7595e07a2"}]}}, {{0x9, 0x5, 0x6, 0x10, 0x8, 0x1, 0x4, 0x5, [@generic={0xda, 0x4, "7bbb4711d6c1a56ea1d9fe681130d736f90407c9074b28cee42d8668d2830b3a7a41f0c9b443ed6e5153f6fa6c6037671661d02878c6525f334308da516aa9b81f0d56613e34ae223e2dc507e73571cd4477e7e20ea8b2ae50870120c918ef9ce70f264b1967003e19f7326e12e82f952d81fafe7fc763ed1ea778d219f708bc74d6f8b4e504e4e1d63b5a9ebdf45858c346a7929d8b49d8365b6ff57c72d2d67e48dcfa22e89e1aa924c1acacf7dedc895eba0c28e78595c6f5127082228f1e7f270aaf51fdc839238bd702b23ead041f22798e836554ac"}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0x3, 0xffff}]}}, {{0x9, 0x5, 0x8, 0x1, 0x10, 0x5, 0xea, 0x40, [@uac_iso={0x7, 0x25, 0x1, 0x1600155c0282733c, 0x20, 0x9}]}}, {{0x9, 0x5, 0x7917cad7c8bbe8b0, 0x10, 0x20, 0x6, 0x0, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x9, 0x8}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x0, 0x80}]}}, {{0x9, 0x5, 0xb, 0x4, 0x200, 0x40, 0x7, 0xf9, [@generic={0xa6, 0xd, "3d6d1a798faa9bd1a4a650f03e0591c575d05b32bc728590968cc881c0c43f672b968aa6c8bb954edb4c5d255ec64abeda8c8484164593cf03a93d6ea688ee45e88dbd32527f81a7f4830042537e29ba2ae4f528670d745e9e36f0cb5a80da2fcffdbc0c62e79e4722fac4cbdd8161ab99a652bd6babf6cda18ed0ac0f967f41de095129fc9114c343829d7810a9d181edd5515599854dce617a9a15555cd9f0621ff380"}]}}, {{0x9, 0x5, 0x1, 0x0, 0x400, 0x2, 0x7, 0x85, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0xf7, 0x400}]}}]}}]}}]}}, &(0x7f0000001900)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x200, 0x8, 0x1c, 0x9, 0xff, 0x3}, 0x45, &(0x7f00000001c0)={0x5, 0xf, 0x45, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0x9, "1042c5a74df79160ac483f9792d04371"}, @generic={0x2c, 0x10, 0xf, "7f3374d7a80bdea6686ab081d836cd7e7d7079de205d461221c8aa2cfce95e8bd8c01d13675a6ef229"}]}, 0x3, [{0x4, &(0x7f0000001800)=@lang_id={0x4, 0x3, 0x44c}}, {0x4, &(0x7f0000001840)=@lang_id={0x4, 0x3, 0x814}}, {0x6a, &(0x7f0000001880)=@string={0x6a, 0x3, "03031a51985c89e63175b538a855a3c2cee9a7e0cd0f949625ff832385e9a949302e6c48d0db2d185cc00ef8b7bee77c0a172cdc00fe44527048a2bff29e2d36d599b668adb749bbbdae0f864858c51db7ad6ba5481901a22b2f3d57c429e5303ada16d56e00a1fe"}}]}) (async)
r1 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x46, 0x5a, 0x89, 0x10, 0x15c2, 0x3d, 0x4e3b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xbb, 0x8c, 0xae, 0x0, [], [{{0x9, 0x5, 0x5}}]}}]}}]}}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x0, 0x0) (async)
syz_usb_control_io(r1, 0x0, &(0x7f0000000840)={0x44, &(0x7f0000001940)={0x0, 0x10, 0x4, "2bf90500"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) (async)
r2 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x46, 0x5a, 0x89, 0x10, 0x15c2, 0x3d, 0x4e3b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xbb, 0x8c, 0xae, 0x0, [], [{{0x9, 0x5, 0x5}}]}}]}}]}}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x0, 0x0) (async, rerun: 64)
syz_usb_control_io(r2, &(0x7f0000000280)={0x18, &(0x7f00000000c0)={0x40, 0xf, 0x83, {0x83, 0x10, "86a10443fd72580d8ab3720667fb72ac6f2e956f2d11843a2b6d83e22dc925ffb5166fdaa4a51ea15384eb8be8027c6da8eea2a30ea2f7ffc81f2deb5574f58d0d82692ba734fd410f2cfe45cc22266afef253f3e3d4fadba664bc4e7da55a29c14bc1ebf39678b2a62ee328aad23b043d6a89412f6a8da48cbc4ee86662bd11de"}}, &(0x7f00000012c0)=ANY=[@ANYBLOB="00039d0000009d030fbdd416bebfddacee0a896c6cf628c452303e56620261a932f56b138274d4d01ee49fa759e61476fcd95b81dc791d5d277845a5264c05939202f86cd22163e8b3cb07e1ab907caaf39274f416b123347d98233f4ac8002a4a3abc02959138c8297f2899fd4829bc70fd3de0fa7a6eed5c56b030bd5b1c1f27e123c37dcfcc91eb01b8cdf4e61c9c24141a2b8b969eb2e11c9328710a0ff95f49f1fffd338d3177e131a104f655950266a5ac6b6f3c38d0"], &(0x7f0000000000)={0x0, 0xf, 0x22, {0x5, 0xf, 0x22, 0x3, [@wireless={0xb, 0x10, 0x1, 0xc, 0x21, 0x0, 0x6, 0x8, 0x6c}, @ext_cap={0x7, 0x10, 0x2, 0x8, 0x5, 0x4, 0x4}, @wireless={0xb, 0x10, 0x1, 0xc, 0xc4, 0x5, 0x40, 0x1}]}}, &(0x7f0000000040)={0x20, 0x29, 0xf, {0xf, 0x29, 0x8, 0x2, 0x6, 0x40, "dfbb528d", "e18203f4"}}, &(0x7f0000000240)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x1, 0x18, 0x3f, 0xe, 0x8, 0x3}}}, &(0x7f0000000700)={0x44, &(0x7f00000002c0)={0x20, 0x31, 0x6, "d702911fdcbb"}, &(0x7f0000000300)={0x0, 0xa, 0x1, 0x68}, &(0x7f0000000340)={0x0, 0x8, 0x1, 0x5}, &(0x7f00000003c0)={0x20, 0x0, 0x4, {0x2, 0x3}}, &(0x7f0000000400)={0x20, 0x0, 0x8, {0x60, 0x4, [0x78]}}, &(0x7f0000000440)={0x40, 0x7, 0x2, 0x8}, &(0x7f0000000480)={0x40, 0x9, 0x1, 0x7a}, &(0x7f00000004c0)={0x40, 0xb, 0x2, "5ff0"}, &(0x7f0000000500)={0x40, 0xf, 0x2, 0xfff}, &(0x7f0000000540)={0x40, 0x13, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, &(0x7f0000000580)={0x40, 0x17, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, &(0x7f00000005c0)={0x40, 0x19, 0x2, "41db"}, &(0x7f0000000600)={0x40, 0x1a, 0x2, 0x2}, &(0x7f0000000640)={0x40, 0x1c, 0x1, 0x9}, &(0x7f0000000680)={0x40, 0x1e, 0x1, 0x7f}, &(0x7f00000006c0)={0x40, 0x21, 0x1}}) (async, rerun: 64)
syz_usb_control_io$hid(r2, &(0x7f00000009c0)={0x14, &(0x7f00000008c0)={0x40, 0x17, 0x44, {0x44, 0x2, "ccfd7820bd04ff4d823dc09f526fa97a59378f4c42b084cf2204ad7e528383bf557570d32ee1c17e290efb7e7012775862f8ce8df7c10382ffe5c79f79335f736173"}}, &(0x7f0000000080)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x3009}}, &(0x7f0000000940)={0x0, 0x22, 0x1b, {[@main=@item_012={0x1, 0x0, 0x1a, "90"}, @global=@item_012={0x1, 0x1, 0x3, "b7"}, @global=@item_4={0x3, 0x1, 0x3, "b720d2ac"}, @global=@item_012={0x2, 0x1, 0xa, "41bc"}, @main=@item_012={0x1, 0x0, 0x8, "1e"}, @global=@item_012={0x1, 0x1, 0x9, 'n'}, @local=@item_012={0x1, 0x2, 0x4, "ed"}, @local=@item_4={0x3, 0x2, 0x3, "4284c3ae"}, @local=@item_012={0x2, 0x2, 0x3, "f0a7"}, @main=@item_012={0x0, 0x0, 0xe}]}}, &(0x7f0000000980)={0x0, 0x21, 0x9, {0x9, 0x21, 0x3f, 0x2, 0x1, {0x22, 0x7db}}}}, &(0x7f0000000bc0)={0x18, &(0x7f0000000a00)={0x0, 0xa, 0x1a, "8097035f0f0c2d9579f16556f428a2c202e849bbbd375e0a9012"}, &(0x7f0000000a40)={0x0, 0xa, 0x1, 0xff}, &(0x7f0000000a80)={0x0, 0x8, 0x1, 0x29}, &(0x7f0000000ac0)={0x20, 0x1, 0x98, "c8e5a2ea69a4b4797feb0dfe1eb1c1525cc8ae29fe2a4e55290c91657148ae9d6bca6bd43e34ae15d2180b679a633148630850faba794e5b8dafc230a123e3ce24093dfef5029b842c131262a72b1a17573b2ef2be13828582b90276f1e26b522f89165c6a61fd83fdbf8f0330332f15a07ad53aa0226e4a489ec0a09b01c6a7d9310be2402e9dddf3aeb0e54635fa802cd6e6c1d22ae258"}, &(0x7f0000000b80)={0x20, 0x3, 0x1, 0x81}}) (async, rerun: 32)
r3 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000c00)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x20, 0x46d, 0xb018, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x81, 0x80, 0x0, [{{0x9, 0x4, 0x0, 0x15, 0x1, 0x3, 0x1, 0x2, 0x7, {0x9, 0x21, 0x4, 0x4, 0x1, {0x22, 0x24d}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x40, 0x8, 0x91}}, [{{0x9, 0x5, 0x2, 0x3, 0x200, 0x5}}]}}}]}}]}}, &(0x7f0000000ec0)={0xa, &(0x7f0000000c40)={0xa, 0x6, 0x300, 0x3, 0x0, 0x4, 0xff, 0x1}, 0x6f, &(0x7f0000000c80)={0x5, 0xf, 0x6f, 0x6, [@ext_cap={0x7, 0x10, 0x2, 0x10, 0xc, 0x0, 0xf2e5}, @ss_container_id={0x14, 0x10, 0x4, 0x9, "66820b228551a6a47ddf778d35873300"}, @ssp_cap={0x20, 0x10, 0xa, 0x80, 0x5, 0x4, 0xf, 0x1, [0xf0, 0xc0, 0xff0000, 0xc0, 0xf0]}, @ss_container_id={0x14, 0x10, 0x4, 0xac, "9f28de5b023887c03a596df5f1fcf403"}, @ss_container_id={0x14, 0x10, 0x4, 0x4, "ed52aa2300c2f59412422dad4db6e7fc"}, @ext_cap={0x7, 0x10, 0x2, 0x4, 0x1, 0x6, 0x4}]}, 0x3, [{0xb6, &(0x7f0000000d00)=@string={0xb6, 0x3, "85eb5f0c426a61240cae5dd8f84a569d90123f0cf7b5cbf08ee585878130a4e773f4874bee4d7880b5122016f4d592f6602dea22dc2f71e4e6717d703b5370f74608737f5b60a7d76c2fe52259082d991225e54e0ee67a622e670928ec1cb8c6ea3030e6b2bd04c453ca8533cd74e11a55cd7b09c5e25f93c4667ccea84ea3ab2ed6f52bccfe5d2589e3ca05abd2fa2f34282c108c7eaf03d518b916e3dd8842961c74b3298e7c049607f080044980e2e7936496"}}, {0x1c, &(0x7f0000000dc0)=@string={0x1c, 0x3, "6c5ef120edefb085df146cfc2202bbf1f18ebdfa53915e65d8d9"}}, {0xbb, &(0x7f0000000e00)=@string={0xbb, 0x3, "802580dbf46fbb99d6250f00a87deb8f5104dbd399e01d81eecb7bd4145790a535c0970aa89353e28ec32a8f8994ed1cc13c3c9aca4610d473939d0f4033ff7825b1f7343ad78b3f7f1622386f3d27359d00db9368ed7a50d79ca5b2de885be02fca380329c87652ac8c98aa9d767477e97b9a49e76cb88959fb225f5a36e1feef13b15ab417052a21dd5a0cdf43f737a81b330e4cd2ffdf44e8215c71037803c9e21cbf07b88d7b77fe84e0a74b6b9d9b3c97433c794978f3"}}]}) (rerun: 32)
syz_usb_control_io$hid(r3, &(0x7f0000001080)={0x14, &(0x7f0000000f00)={0x40, 0x4, 0xaf, {0xaf, 0x22, "ec30529b0bc741796c360505c325ce08d81ab73801d4486a1813130556ef255fc60bf2ccd8e05c01f158a258cfb2b33dd73255862f813722930947907b758bd86f17ec231e5f683d73db04d2f4f2f4a4c18db2ccdc13f64d30bdcb09c4398f71fea33b30cd0f1dc0d58c441450ac46c5c4b408521f7e4bc802be4704fbd713bc7b6b436c8638600b64292bd47f439d7e7286219b7d618a5286b668b06fe5eaded2602b3e42dc5fdadb320f5c62"}}, &(0x7f0000000fc0)={0x0, 0x3, 0xf, @string={0xf, 0x3, "10f5fd55284afe1b4c9fdb68df"}}, &(0x7f0000001000)={0x0, 0x22, 0x13, {[@local=@item_012={0x1, 0x2, 0xa, "ad"}, @local=@item_4={0x3, 0x2, 0x7, "c2283700"}, @local=@item_012={0x2, 0x2, 0xa, "a75f"}, @main=@item_4={0x3, 0x0, 0xb, "2071d72c"}, @local=@item_012={0x1, 0x2, 0xa, "b4"}, @main=@item_012={0x1, 0x0, 0xb, "fb"}]}}, &(0x7f0000001040)={0x0, 0x21, 0x9, {0x9, 0x21, 0x1, 0x7e, 0x1, {0x22, 0xf7}}}}, &(0x7f0000001280)={0x18, &(0x7f00000010c0)={0x40, 0x15, 0xa7, "13f04be087e77045f2dbd0d1d42b6ca4c27ebf01f1fc7be18a3303ff54e4540a1bed98b5198aaaa9b4047fa46bd3223481f789bee25b3788111874b64048e0a9fe3eb0c11489a62123d694f5e98bc37b7bb2f67a34c4d58c5b31c0d60b0e116fda86fc12d96261b0ec867d3690edacb93b00d4e5c4aaa5539d27ef71b1ed823d5eec67d4e99f3a60bef229f0d174037469826f86f1eb268d5ca7acec2db63a92c214452b21136f"}, &(0x7f0000001180)={0x0, 0xa, 0x1, 0xc1}, &(0x7f00000011c0)={0x0, 0x8, 0x1, 0x3}, &(0x7f0000001200)={0x20, 0x1, 0x30, "e95fd73f0c95c204ca69a7101eda406c6aba32023f7fbbbc821e044b4d3aac0a82c9e576fb64581bcb95806d0126b592"}, &(0x7f0000001240)={0x20, 0x3, 0x1, 0xec}})

15:15:27 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x8, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:27 executing program 0:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x6}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:27 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000000640)=ANY=[@ANYRES64, @ANYRES64, @ANYRES32])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/41, 0x29}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640), 0x36, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/118, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x6}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f00000000c0)=@usbdevfs_disconnect={0x2})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
r3 = socket$bt_rfcomm(0x1f, 0x3, 0x3)
r4 = dup(r3)
ioctl$USBDEVFS_DISCARDURB(r4, 0x550b, &(0x7f0000000280)=0x1)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000240)={'bridge_slave_0\x00', &(0x7f00000005c0)=ANY=[@ANYBLOB="3b000000070000000600000003000000ff00000004000000010001000500000008000000ff0100000300000008000000420000003763f6045d73b78e11d02f2903fd946a996746023d7c46a48b02"]})
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="00000000000000000200000000000000000100000000000000000000000000093b0000000000000007000000000000000400000000000000080000000000000008080000000100000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:15:27 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0xe}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:27 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c20400"], 0x0)

[ 2108.962535][T20814] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:27 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0xa, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:27 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x1c}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:27 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c20400"], 0x0)

15:15:27 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x60}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2109.204145][T20835] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2109.251375][T11927] usb 6-1: new high-speed USB device number 120 using dummy_hcd
[ 2109.500670][T20825] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2109.501321][T11927] usb 6-1: Using ep0 maxpacket: 8
[ 2109.527899][T20825] CPU: 1 PID: 20825 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2109.538359][T20825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2109.548434][T20825] Call Trace:
[ 2109.551727][T20825]  <TASK>
[ 2109.554672][T20825]  dump_stack_lvl+0xcd/0x134
[ 2109.559311][T20825]  dump_header+0x10b/0x7f9
[ 2109.563759][T20825]  oom_kill_process.cold+0x10/0x15
[ 2109.568927][T20825]  out_of_memory+0x358/0x14a0
[ 2109.573634][T20825]  ? find_held_lock+0x2d/0x110
[ 2109.578416][T20825]  ? oom_killer_disable+0x270/0x270
[ 2109.583640][T20825]  ? find_held_lock+0x2d/0x110
[ 2109.588426][T20825]  mem_cgroup_out_of_memory+0x206/0x270
[ 2109.594001][T20825]  ? mem_cgroup_margin+0x130/0x130
[ 2109.599217][T20825]  ? lock_downgrade+0x6e0/0x6e0
[ 2109.604114][T20825]  try_charge_memcg+0xf67/0x13f0
[ 2109.609084][T20825]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2109.615095][T20825]  ? lock_downgrade+0x6e0/0x6e0
[ 2109.619991][T20825]  charge_memcg+0x31/0x320
[ 2109.624609][T20825]  __mem_cgroup_charge+0x27/0x90
[ 2109.629569][T20825]  ? folio_flags.constprop.0+0x53/0x150
[ 2109.635143][T20825]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2109.640725][T20825]  ? shmem_write_end+0xe90/0xe90
[ 2109.641472][T11927] usb 6-1: config 0 has an invalid descriptor of length 212, skipping remainder of the config
[ 2109.645675][T20825]  ? folio_flags.constprop.0+0x53/0x150
[ 2109.645707][T20825]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2109.666182][T11927] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xE has invalid maxpacket 9922, setting to 1024
[ 2109.667357][T20825]  shmem_getpage_gfp+0x8af/0x1f30
[ 2109.667407][T20825]  ? shmem_is_huge+0x330/0x330
[ 2109.688136][T20825]  shmem_fault+0x1b4/0x750
[ 2109.692587][T20825]  ? shmem_getpage+0xa0/0xa0
[ 2109.694353][T11927] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0xE has invalid maxpacket 1024
[ 2109.697186][T20825]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2109.697232][T20825]  __do_fault+0x10d/0x610
[ 2109.717150][T20825]  __handle_mm_fault+0x2130/0x39b0
[ 2109.721886][T11927] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 2109.722277][T20825]  ? vm_iomap_memory+0x190/0x190
[ 2109.739990][T20825]  handle_mm_fault+0x1c8/0x780
[ 2109.744786][T20825]  __get_user_pages+0x4f3/0xfd0
[ 2109.749675][T20825]  ? follow_page_mask+0x1570/0x1570
[ 2109.749806][T11927] usb 6-1: New USB device found, idVendor=054c, idProduct=002b, bcdDevice= 1.0b
[ 2109.754897][T20825]  populate_vma_page_range+0x23d/0x320
[ 2109.754933][T20825]  __mm_populate+0x1ea/0x3d0
[ 2109.754964][T20825]  ? faultin_vma_page_range+0x300/0x300
[ 2109.779562][T20825]  ? up_write+0x148/0x470
[ 2109.780889][T11927] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2109.783908][T20825]  vm_mmap_pgoff+0x1fd/0x270
[ 2109.783940][T20825]  ? randomize_page+0xb0/0xb0
[ 2109.783980][T20825]  ksys_mmap_pgoff+0x79/0x5a0
[ 2109.784006][T20825]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2109.807683][T11927] usb 6-1: config 0 descriptor??
[ 2109.812439][T20825]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2109.812477][T20825]  __do_fast_syscall_32+0x65/0xf0
[ 2109.812506][T20825]  do_fast_syscall_32+0x2f/0x70
[ 2109.812531][T20825]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2109.838959][T20825] RIP: 0023:0xf7fdf549
[ 2109.841989][T20818] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 2109.843028][T20825] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2109.862302][T11927] ums-isd200 6-1:0.0: USB Mass Storage device detected
[ 2109.869703][T20825] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2109.884992][T20825] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2109.892987][T20825] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2109.900976][T20825] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2109.908961][T20825] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2109.916958][T20825] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2109.924980][T20825]  </TASK>
[ 2109.934326][T20825] memory: usage 307200kB, limit 307200kB, failcnt 2022
[ 2109.941318][T20825] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2109.948190][T20825] Memory cgroup stats for /syz2:
[ 2109.948340][T20825] anon 126976
[ 2109.948340][T20825] file 311181312
[ 2109.948340][T20825] kernel 3252224
[ 2109.948340][T20825] kernel_stack 131072
[ 2109.948340][T20825] pagetables 77824
[ 2109.948340][T20825] percpu 15392
[ 2109.948340][T20825] sock 0
[ 2109.948340][T20825] vmalloc 0
[ 2109.948340][T20825] shmem 311181312
[ 2109.948340][T20825] zswap 0
[ 2109.948340][T20825] zswapped 0
[ 2109.948340][T20825] file_mapped 3854336
[ 2109.948340][T20825] file_dirty 0
[ 2109.948340][T20825] file_writeback 0
[ 2109.948340][T20825] swapcached 0
[ 2109.948340][T20825] anon_thp 0
[ 2109.948340][T20825] file_thp 0
[ 2109.948340][T20825] shmem_thp 0
[ 2109.948340][T20825] inactive_anon 311136256
[ 2109.948340][T20825] active_anon 167936
[ 2109.948340][T20825] inactive_file 0
[ 2109.948340][T20825] active_file 0
[ 2109.948340][T20825] unevictable 0
[ 2109.948340][T20825] slab_reclaimable 1029072
[ 2109.948340][T20825] slab_unreclaimable 1979856
[ 2109.948340][T20825] slab 3008928
[ 2110.044080][T20825] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20819,uid=0
[ 2110.060651][T20825] Memory cgroup out of memory: Killed process 20819 (syz-executor.2) total-vm:50784kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3428kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 2110.079460][T20818] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2110.110525][T20818] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2110.130647][T20844] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2110.143933][T20843] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2110.156971][T20844] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2110.168058][T20843] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2110.190062][T23660] usb 6-1: USB disconnect, device number 120
15:15:28 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000240)={0x1, [<r1=>0x0]}, &(0x7f0000000280)=0x8)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000380)={r1, 0x10, "ab9b56629b1f9c1bb9da6c43b26f3ebe"}, &(0x7f0000000440)=0x18) (async)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000000)={r1, 0x5}, 0x8)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2) (async)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
sendto$inet(r0, &(0x7f0000000100)="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", 0x1000, 0x20040800, 0x0, 0x0) (async)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r2, 0xb) (async)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1)
shmctl$SHM_UNLOCK(r2, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(0xffffffffffffffff, 0x0, 0x82, &(0x7f0000000080)={'nat\x00', 0x0, 0x0, 0x0, [0x0, 0x0, 0x4, 0x4, 0x800]}, &(0x7f0000000040)=0x50)

15:15:28 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c20400"], 0x0)

15:15:28 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0xe, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:28 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x300}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:28 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000000640)=ANY=[@ANYRES64, @ANYRES64, @ANYRES32]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/41, 0x29}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640), 0x36, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/118, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x6}], 0x4, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f00000000c0)=@usbdevfs_disconnect={0x2}) (async, rerun: 32)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
r3 = socket$bt_rfcomm(0x1f, 0x3, 0x3)
r4 = dup(r3)
ioctl$USBDEVFS_DISCARDURB(r4, 0x550b, &(0x7f0000000280)=0x1) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000240)={'bridge_slave_0\x00', &(0x7f00000005c0)=ANY=[@ANYBLOB="3b000000070000000600000003000000ff00000004000000010001000500000008000000ff0100000300000008000000420000003763f6045d73b78e11d02f2903fd946a996746023d7c46a48b02"]})
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="00000000000000000200000000000000000100000000000000000000000000093b0000000000000007000000000000000400000000000000080000000000000008080000000100000000008000000000ff7f000000000000"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:15:28 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2"], 0x0)

15:15:28 executing program 0:
syz_emit_ethernet(0x92, 0x0, 0x0)

15:15:28 executing program 5:
syz_usb_connect(0x0, 0x36, &(0x7f0000000780)=ANY=[@ANYBLOB="12010100cfc6ae084c052b000b010000000109022400010000000009040000021f25730009050e02c226ff0000d4215587028f8cd904422e0c4965235f378ea84e7a1cd73833cf7efc952d0af59fff4514504faa49f7c9d31c4bb830fb7e0900901223383db44c323f2ac8f425d53743676b88a4e2deb5a634c259ed600bb9975afaa935e07556e8af9602778ec07958d2aea2907aa0cf33"], 0x0)
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x46, 0x5a, 0x89, 0x10, 0x15c2, 0x3d, 0x4e3b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xbb, 0x8c, 0xae, 0x0, [], [{{0x9, 0x5, 0x5}}]}}]}}]}}, 0x0)
syz_usb_ep_write(r0, 0x0, 0x0, 0x0)
syz_usb_connect(0x0, 0x466, &(0x7f0000001380)={{0x12, 0x1, 0x110, 0xd2, 0x28, 0x60, 0x2075b9b3978bc1c7, 0x2040, 0xc61b, 0x54a1, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x454, 0x1, 0x9, 0x9, 0xa0, 0x4, [{{0x9, 0x4, 0xd9, 0x9, 0xc, 0x33, 0x1e, 0xdf, 0x3, [@cdc_ncm={{0x9, 0x24, 0x6, 0x0, 0x1, "39c7d97a"}, {0x5, 0x24, 0x0, 0xc2fd}, {0xd, 0x24, 0xf, 0x1, 0x20, 0x6, 0x1, 0x9}, {0x6, 0x24, 0x1a, 0xac8c}, [@mbim_extended={0x8, 0x24, 0x1c, 0x5, 0x9, 0x401}, @call_mgmt={0x5, 0x24, 0x1, 0x0, 0x60}, @mdlm={0x15, 0x24, 0x12, 0x100}, @mbim_extended={0x8, 0x24, 0x1c, 0x0, 0x4, 0x5}, @obex={0x5, 0x24, 0x15, 0x800}]}, @cdc_ncm={{0x7, 0x24, 0x6, 0x0, 0x1, "6084"}, {0x5, 0x24, 0x0, 0x1}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x9, 0x10, 0x8}, {0x6, 0x24, 0x1a, 0x1f, 0x20}, [@network_terminal={0x7, 0x24, 0xa, 0x2, 0x20, 0xff, 0x8}, @network_terminal={0x7, 0x24, 0xa, 0x0, 0x3, 0x81, 0x15}, @mdlm_detail={0xf, 0x24, 0x13, 0x2, "6af528ce5c222c94c563ac"}, @call_mgmt={0x5, 0x24, 0x1, 0x1, 0x3f}, @mdlm={0x15, 0x24, 0x12, 0x23a0}, @mbim_extended={0x8, 0x24, 0x1c, 0x1, 0x4, 0xbc}]}], [{{0x9, 0x5, 0x6, 0x0, 0x8, 0x20, 0x3, 0x2, [@generic={0xf, 0xe, "88af2cb10f7903bd7e4229281f"}]}}, {{0x9, 0x5, 0x0, 0x10, 0x8, 0x6, 0x8, 0x7f, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0xff, 0x8}, @generic={0xd9, 0x10, "d3aedd7cbfb48084b05f04dbfbc2121b673ad41230d9300d635960f47bc05d1d793d752c2e71578354aef8b355d178522fe27f05f6bbd87919bf94aed64492ee998b8f6041d2bd056d19e00e824e6c20632bcd3319a5f126e0a38f046a7fcad6f62d4f78f43ee692804e674fbd80d60a75a79ab2025481cc197c099d0493356b0ca64f7b148d67d801b1291837b03b79a78881c976a83aed28a98e84204e4a4647616fc94ab4157ef3695e40da1d31b7baf36e865591fdb6465e348d4071b4ef2e00947621198c343c4e590769e7048d02fa928b5f8241"}]}}, {{0x9, 0x5, 0x5, 0x3, 0x8, 0x40, 0x6, 0x1a, [@generic={0x5c, 0x23, "5af4411dbc338b79489abc856f6e238c7c73d5b4cea3018f25455bf6f53d58db4e733630fba3d9d8f1c62a3c338a6b689216d91d0475f063a9535e32b7ea168feab2c3d0f170fbc59a8360f7e591fe9bfaf6bc1057d9446d09af"}]}}, {{0x9, 0x5, 0xf, 0x1, 0x200, 0x0, 0x6, 0x1f, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x5, 0xfff}]}}, {{0x9, 0x5, 0x1, 0x10, 0x200, 0x3, 0x6, 0x77, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0xbc, 0x4}]}}, {{0x9, 0x5, 0x0, 0x0, 0x40, 0xd8, 0x1, 0x0, [@generic={0x18, 0x4, "ad4f2661e3959690f4f92ff4aaa44245533e335cb02b"}]}}, {{0x9, 0x5, 0xa, 0x12, 0x20, 0xf1, 0x4, 0x6, [@generic={0x14, 0x3f, "e095bf16e0edabe9d2092ef494f7595e07a2"}]}}, {{0x9, 0x5, 0x6, 0x10, 0x8, 0x1, 0x4, 0x5, [@generic={0xda, 0x4, "7bbb4711d6c1a56ea1d9fe681130d736f90407c9074b28cee42d8668d2830b3a7a41f0c9b443ed6e5153f6fa6c6037671661d02878c6525f334308da516aa9b81f0d56613e34ae223e2dc507e73571cd4477e7e20ea8b2ae50870120c918ef9ce70f264b1967003e19f7326e12e82f952d81fafe7fc763ed1ea778d219f708bc74d6f8b4e504e4e1d63b5a9ebdf45858c346a7929d8b49d8365b6ff57c72d2d67e48dcfa22e89e1aa924c1acacf7dedc895eba0c28e78595c6f5127082228f1e7f270aaf51fdc839238bd702b23ead041f22798e836554ac"}, @uac_iso={0x7, 0x25, 0x1, 0x80, 0x3, 0xffff}]}}, {{0x9, 0x5, 0x8, 0x1, 0x10, 0x5, 0xea, 0x40, [@uac_iso={0x7, 0x25, 0x1, 0x1600155c0282733c, 0x20, 0x9}]}}, {{0x9, 0x5, 0x7917cad7c8bbe8b0, 0x10, 0x20, 0x6, 0x0, 0x0, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x9, 0x8}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x0, 0x80}]}}, {{0x9, 0x5, 0xb, 0x4, 0x200, 0x40, 0x7, 0xf9, [@generic={0xa6, 0xd, "3d6d1a798faa9bd1a4a650f03e0591c575d05b32bc728590968cc881c0c43f672b968aa6c8bb954edb4c5d255ec64abeda8c8484164593cf03a93d6ea688ee45e88dbd32527f81a7f4830042537e29ba2ae4f528670d745e9e36f0cb5a80da2fcffdbc0c62e79e4722fac4cbdd8161ab99a652bd6babf6cda18ed0ac0f967f41de095129fc9114c343829d7810a9d181edd5515599854dce617a9a15555cd9f0621ff380"}]}}, {{0x9, 0x5, 0x1, 0x0, 0x400, 0x2, 0x7, 0x85, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0xf7, 0x400}]}}]}}]}}]}}, &(0x7f0000001900)={0xa, &(0x7f0000000180)={0xa, 0x6, 0x200, 0x8, 0x1c, 0x9, 0xff, 0x3}, 0x45, &(0x7f00000001c0)={0x5, 0xf, 0x45, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0x9, "1042c5a74df79160ac483f9792d04371"}, @generic={0x2c, 0x10, 0xf, "7f3374d7a80bdea6686ab081d836cd7e7d7079de205d461221c8aa2cfce95e8bd8c01d13675a6ef229"}]}, 0x3, [{0x4, &(0x7f0000001800)=@lang_id={0x4, 0x3, 0x44c}}, {0x4, &(0x7f0000001840)=@lang_id={0x4, 0x3, 0x814}}, {0x6a, &(0x7f0000001880)=@string={0x6a, 0x3, "03031a51985c89e63175b538a855a3c2cee9a7e0cd0f949625ff832385e9a949302e6c48d0db2d185cc00ef8b7bee77c0a172cdc00fe44527048a2bff29e2d36d599b668adb749bbbdae0f864858c51db7ad6ba5481901a22b2f3d57c429e5303ada16d56e00a1fe"}}]})
r1 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x46, 0x5a, 0x89, 0x10, 0x15c2, 0x3d, 0x4e3b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xbb, 0x8c, 0xae, 0x0, [], [{{0x9, 0x5, 0x5}}]}}]}}]}}, 0x0)
syz_usb_ep_write(r1, 0x0, 0x0, 0x0)
syz_usb_control_io(r1, 0x0, &(0x7f0000000840)={0x44, &(0x7f0000001940)={0x0, 0x10, 0x4, "2bf90500"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x46, 0x5a, 0x89, 0x10, 0x15c2, 0x3d, 0x4e3b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xbb, 0x8c, 0xae, 0x0, [], [{{0x9, 0x5, 0x5}}]}}]}}]}}, 0x0)
syz_usb_ep_write(r2, 0x0, 0x0, 0x0)
syz_usb_control_io(r2, &(0x7f0000000280)={0x18, &(0x7f00000000c0)={0x40, 0xf, 0x83, {0x83, 0x10, "86a10443fd72580d8ab3720667fb72ac6f2e956f2d11843a2b6d83e22dc925ffb5166fdaa4a51ea15384eb8be8027c6da8eea2a30ea2f7ffc81f2deb5574f58d0d82692ba734fd410f2cfe45cc22266afef253f3e3d4fadba664bc4e7da55a29c14bc1ebf39678b2a62ee328aad23b043d6a89412f6a8da48cbc4ee86662bd11de"}}, &(0x7f00000012c0)=ANY=[@ANYBLOB="00039d0000009d030fbdd416bebfddacee0a896c6cf628c452303e56620261a932f56b138274d4d01ee49fa759e61476fcd95b81dc791d5d277845a5264c05939202f86cd22163e8b3cb07e1ab907caaf39274f416b123347d98233f4ac8002a4a3abc02959138c8297f2899fd4829bc70fd3de0fa7a6eed5c56b030bd5b1c1f27e123c37dcfcc91eb01b8cdf4e61c9c24141a2b8b969eb2e11c9328710a0ff95f49f1fffd338d3177e131a104f655950266a5ac6b6f3c38d0"], &(0x7f0000000000)={0x0, 0xf, 0x22, {0x5, 0xf, 0x22, 0x3, [@wireless={0xb, 0x10, 0x1, 0xc, 0x21, 0x0, 0x6, 0x8, 0x6c}, @ext_cap={0x7, 0x10, 0x2, 0x8, 0x5, 0x4, 0x4}, @wireless={0xb, 0x10, 0x1, 0xc, 0xc4, 0x5, 0x40, 0x1}]}}, &(0x7f0000000040)={0x20, 0x29, 0xf, {0xf, 0x29, 0x8, 0x2, 0x6, 0x40, "dfbb528d", "e18203f4"}}, &(0x7f0000000240)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x1, 0x18, 0x3f, 0xe, 0x8, 0x3}}}, &(0x7f0000000700)={0x44, &(0x7f00000002c0)={0x20, 0x31, 0x6, "d702911fdcbb"}, &(0x7f0000000300)={0x0, 0xa, 0x1, 0x68}, &(0x7f0000000340)={0x0, 0x8, 0x1, 0x5}, &(0x7f00000003c0)={0x20, 0x0, 0x4, {0x2, 0x3}}, &(0x7f0000000400)={0x20, 0x0, 0x8, {0x60, 0x4, [0x78]}}, &(0x7f0000000440)={0x40, 0x7, 0x2, 0x8}, &(0x7f0000000480)={0x40, 0x9, 0x1, 0x7a}, &(0x7f00000004c0)={0x40, 0xb, 0x2, "5ff0"}, &(0x7f0000000500)={0x40, 0xf, 0x2, 0xfff}, &(0x7f0000000540)={0x40, 0x13, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, &(0x7f0000000580)={0x40, 0x17, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, &(0x7f00000005c0)={0x40, 0x19, 0x2, "41db"}, &(0x7f0000000600)={0x40, 0x1a, 0x2, 0x2}, &(0x7f0000000640)={0x40, 0x1c, 0x1, 0x9}, &(0x7f0000000680)={0x40, 0x1e, 0x1, 0x7f}, &(0x7f00000006c0)={0x40, 0x21, 0x1}})
syz_usb_control_io$hid(r2, &(0x7f00000009c0)={0x14, &(0x7f00000008c0)={0x40, 0x17, 0x44, {0x44, 0x2, "ccfd7820bd04ff4d823dc09f526fa97a59378f4c42b084cf2204ad7e528383bf557570d32ee1c17e290efb7e7012775862f8ce8df7c10382ffe5c79f79335f736173"}}, &(0x7f0000000080)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x3009}}, &(0x7f0000000940)={0x0, 0x22, 0x1b, {[@main=@item_012={0x1, 0x0, 0x1a, "90"}, @global=@item_012={0x1, 0x1, 0x3, "b7"}, @global=@item_4={0x3, 0x1, 0x3, "b720d2ac"}, @global=@item_012={0x2, 0x1, 0xa, "41bc"}, @main=@item_012={0x1, 0x0, 0x8, "1e"}, @global=@item_012={0x1, 0x1, 0x9, 'n'}, @local=@item_012={0x1, 0x2, 0x4, "ed"}, @local=@item_4={0x3, 0x2, 0x3, "4284c3ae"}, @local=@item_012={0x2, 0x2, 0x3, "f0a7"}, @main=@item_012={0x0, 0x0, 0xe}]}}, &(0x7f0000000980)={0x0, 0x21, 0x9, {0x9, 0x21, 0x3f, 0x2, 0x1, {0x22, 0x7db}}}}, &(0x7f0000000bc0)={0x18, &(0x7f0000000a00)={0x0, 0xa, 0x1a, "8097035f0f0c2d9579f16556f428a2c202e849bbbd375e0a9012"}, &(0x7f0000000a40)={0x0, 0xa, 0x1, 0xff}, &(0x7f0000000a80)={0x0, 0x8, 0x1, 0x29}, &(0x7f0000000ac0)={0x20, 0x1, 0x98, "c8e5a2ea69a4b4797feb0dfe1eb1c1525cc8ae29fe2a4e55290c91657148ae9d6bca6bd43e34ae15d2180b679a633148630850faba794e5b8dafc230a123e3ce24093dfef5029b842c131262a72b1a17573b2ef2be13828582b90276f1e26b522f89165c6a61fd83fdbf8f0330332f15a07ad53aa0226e4a489ec0a09b01c6a7d9310be2402e9dddf3aeb0e54635fa802cd6e6c1d22ae258"}, &(0x7f0000000b80)={0x20, 0x3, 0x1, 0x81}})
r3 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000c00)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x20, 0x46d, 0xb018, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x81, 0x80, 0x0, [{{0x9, 0x4, 0x0, 0x15, 0x1, 0x3, 0x1, 0x2, 0x7, {0x9, 0x21, 0x4, 0x4, 0x1, {0x22, 0x24d}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x40, 0x8, 0x91}}, [{{0x9, 0x5, 0x2, 0x3, 0x200, 0x5}}]}}}]}}]}}, &(0x7f0000000ec0)={0xa, &(0x7f0000000c40)={0xa, 0x6, 0x300, 0x3, 0x0, 0x4, 0xff, 0x1}, 0x6f, &(0x7f0000000c80)={0x5, 0xf, 0x6f, 0x6, [@ext_cap={0x7, 0x10, 0x2, 0x10, 0xc, 0x0, 0xf2e5}, @ss_container_id={0x14, 0x10, 0x4, 0x9, "66820b228551a6a47ddf778d35873300"}, @ssp_cap={0x20, 0x10, 0xa, 0x80, 0x5, 0x4, 0xf, 0x1, [0xf0, 0xc0, 0xff0000, 0xc0, 0xf0]}, @ss_container_id={0x14, 0x10, 0x4, 0xac, "9f28de5b023887c03a596df5f1fcf403"}, @ss_container_id={0x14, 0x10, 0x4, 0x4, "ed52aa2300c2f59412422dad4db6e7fc"}, @ext_cap={0x7, 0x10, 0x2, 0x4, 0x1, 0x6, 0x4}]}, 0x3, [{0xb6, &(0x7f0000000d00)=@string={0xb6, 0x3, "85eb5f0c426a61240cae5dd8f84a569d90123f0cf7b5cbf08ee585878130a4e773f4874bee4d7880b5122016f4d592f6602dea22dc2f71e4e6717d703b5370f74608737f5b60a7d76c2fe52259082d991225e54e0ee67a622e670928ec1cb8c6ea3030e6b2bd04c453ca8533cd74e11a55cd7b09c5e25f93c4667ccea84ea3ab2ed6f52bccfe5d2589e3ca05abd2fa2f34282c108c7eaf03d518b916e3dd8842961c74b3298e7c049607f080044980e2e7936496"}}, {0x1c, &(0x7f0000000dc0)=@string={0x1c, 0x3, "6c5ef120edefb085df146cfc2202bbf1f18ebdfa53915e65d8d9"}}, {0xbb, &(0x7f0000000e00)=@string={0xbb, 0x3, "802580dbf46fbb99d6250f00a87deb8f5104dbd399e01d81eecb7bd4145790a535c0970aa89353e28ec32a8f8994ed1cc13c3c9aca4610d473939d0f4033ff7825b1f7343ad78b3f7f1622386f3d27359d00db9368ed7a50d79ca5b2de885be02fca380329c87652ac8c98aa9d767477e97b9a49e76cb88959fb225f5a36e1feef13b15ab417052a21dd5a0cdf43f737a81b330e4cd2ffdf44e8215c71037803c9e21cbf07b88d7b77fe84e0a74b6b9d9b3c97433c794978f3"}}]})
syz_usb_control_io$hid(r3, &(0x7f0000001080)={0x14, &(0x7f0000000f00)={0x40, 0x4, 0xaf, {0xaf, 0x22, "ec30529b0bc741796c360505c325ce08d81ab73801d4486a1813130556ef255fc60bf2ccd8e05c01f158a258cfb2b33dd73255862f813722930947907b758bd86f17ec231e5f683d73db04d2f4f2f4a4c18db2ccdc13f64d30bdcb09c4398f71fea33b30cd0f1dc0d58c441450ac46c5c4b408521f7e4bc802be4704fbd713bc7b6b436c8638600b64292bd47f439d7e7286219b7d618a5286b668b06fe5eaded2602b3e42dc5fdadb320f5c62"}}, &(0x7f0000000fc0)={0x0, 0x3, 0xf, @string={0xf, 0x3, "10f5fd55284afe1b4c9fdb68df"}}, &(0x7f0000001000)={0x0, 0x22, 0x13, {[@local=@item_012={0x1, 0x2, 0xa, "ad"}, @local=@item_4={0x3, 0x2, 0x7, "c2283700"}, @local=@item_012={0x2, 0x2, 0xa, "a75f"}, @main=@item_4={0x3, 0x0, 0xb, "2071d72c"}, @local=@item_012={0x1, 0x2, 0xa, "b4"}, @main=@item_012={0x1, 0x0, 0xb, "fb"}]}}, &(0x7f0000001040)={0x0, 0x21, 0x9, {0x9, 0x21, 0x1, 0x7e, 0x1, {0x22, 0xf7}}}}, &(0x7f0000001280)={0x18, &(0x7f00000010c0)={0x40, 0x15, 0xa7, "13f04be087e77045f2dbd0d1d42b6ca4c27ebf01f1fc7be18a3303ff54e4540a1bed98b5198aaaa9b4047fa46bd3223481f789bee25b3788111874b64048e0a9fe3eb0c11489a62123d694f5e98bc37b7bb2f67a34c4d58c5b31c0d60b0e116fda86fc12d96261b0ec867d3690edacb93b00d4e5c4aaa5539d27ef71b1ed823d5eec67d4e99f3a60bef229f0d174037469826f86f1eb268d5ca7acec2db63a92c214452b21136f"}, &(0x7f0000001180)={0x0, 0xa, 0x1, 0xc1}, &(0x7f00000011c0)={0x0, 0x8, 0x1, 0x3}, &(0x7f0000001200)={0x20, 0x1, 0x30, "e95fd73f0c95c204ca69a7101eda406c6aba32023f7fbbbc821e044b4d3aac0a82c9e576fb64581bcb95806d0126b592"}, &(0x7f0000001240)={0x20, 0x3, 0x1, 0xec}})

15:15:28 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x500}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2110.281628][T20853] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:28 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x2, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:28 executing program 0:
syz_emit_ethernet(0x92, 0x0, 0x0)

15:15:28 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x600}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:28 executing program 2:
unshare(0x40000400)
mmap(&(0x7f000045c000/0x3000)=nil, 0x3000, 0x3, 0x8031, 0xffffffffffffffff, 0xba173000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r1, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x0)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:28 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x3, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:28 executing program 0:
syz_emit_ethernet(0x92, 0x0, 0x0)

15:15:28 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0xe00}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2110.715040][T23660] usb 6-1: new high-speed USB device number 121 using dummy_hcd
[ 2110.971391][T23660] usb 6-1: Using ep0 maxpacket: 8
[ 2111.091599][T23660] usb 6-1: config 0 has an invalid descriptor of length 212, skipping remainder of the config
[ 2111.107635][T23660] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xE has invalid maxpacket 9922, setting to 1024
[ 2111.131005][T23660] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0xE has invalid maxpacket 1024
[ 2111.158144][T23660] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 2111.206921][T23660] usb 6-1: New USB device found, idVendor=054c, idProduct=002b, bcdDevice= 1.0b
[ 2111.259289][T23660] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2111.289572][T23660] usb 6-1: config 0 descriptor??
[ 2111.321706][T20873] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 2111.342370][T23660] ums-isd200 6-1:0.0: USB Mass Storage device detected
[ 2111.623267][T20873] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2111.646952][T20873] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2111.694756][T20873] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2111.723005][T20873] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2111.765839][T20873] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2111.797176][T20873] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2111.824985][T20873] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2111.836843][T20873] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2111.887218][T20873] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2111.931548][T20873] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2111.997189][T12675] usb 6-1: USB disconnect, device number 121
15:15:31 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async, rerun: 64)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000000640)=ANY=[@ANYRES64, @ANYRES64, @ANYRES32]) (async, rerun: 64)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/41, 0x29}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640), 0x36, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/118, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x6}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f00000000c0)=@usbdevfs_disconnect={0x2})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async, rerun: 32)
r1 = socket$inet(0x2, 0x3, 0x2) (rerun: 32)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
r3 = socket$bt_rfcomm(0x1f, 0x3, 0x3)
r4 = dup(r3)
ioctl$USBDEVFS_DISCARDURB(r4, 0x550b, &(0x7f0000000280)=0x1) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000240)={'bridge_slave_0\x00', &(0x7f00000005c0)=ANY=[@ANYBLOB="3b000000070000000600000003000000ff00000004000000010001000500000008000000ff0100000300000008000000420000003763f6045d73b78e11d02f2903fd946a996746023d7c46a48b02"]}) (async, rerun: 32)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="00000000000000000200000000000000000100000000000000000000000000093b0000000000000007000000000000000400000000000000080000000000000008080000000100000000008000000000ff7f000000000000"]}, @devid}) (async, rerun: 32)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:15:31 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[], 0x0)

15:15:31 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x1c00}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:31 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x4, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:31 executing program 2:
unshare(0x40000400) (async)
mmap(&(0x7f000045c000/0x3000)=nil, 0x3000, 0x3, 0x8031, 0xffffffffffffffff, 0xba173000) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r0 = socket$inet_tcp(0x2, 0x1, 0x0) (rerun: 64)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async, rerun: 64)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async, rerun: 64)
mlockall(0x2) (async, rerun: 32)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async, rerun: 32)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r1, 0xb) (async)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x0)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:31 executing program 5:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x2, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:31 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[], 0x0)

15:15:31 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0) (fail_nth: 1)

15:15:31 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x3f00}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:31 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x5, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:31 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x4000}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:31 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0) (fail_nth: 2)

15:15:31 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
tkill(r0, 0x39)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r1, 0x8108551b, &(0x7f0000000380))
r2 = socket$inet(0x2, 0x3, 0x2)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r2, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000004840)={{r3}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000800)=ANY=[@ANYBLOB="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"]}, @devid})
setsockopt$inet_mreqsrc(r3, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, @loopback}, 0xc)

15:15:31 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x6000}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:31 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[], 0x0)

[ 2113.152829][T20925] FAULT_INJECTION: forcing a failure.
[ 2113.152829][T20925] name fail_usercopy, interval 1, probability 0, space 0, times 0
15:15:31 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x8, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2113.253949][T20925] CPU: 1 PID: 20925 Comm: syz-executor.5 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2113.264523][T20925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2113.274584][T20925] Call Trace:
[ 2113.277856][T20925]  <TASK>
[ 2113.280777][T20925]  dump_stack_lvl+0xcd/0x134
[ 2113.285369][T20925]  should_fail.cold+0x5/0xa
[ 2113.289870][T20925]  copyin+0x19/0x120
[ 2113.293853][T20925]  _copy_from_iter+0x1ca/0x11c0
[ 2113.298726][T20925]  ? mark_lock.part.0+0xee/0x1910
[ 2113.303746][T20925]  ? __alloc_pages_slowpath.constprop.0+0x2300/0x2300
[ 2113.310508][T20925]  ? _copy_mc_to_iter+0x1430/0x1430
[ 2113.316154][T20925]  ? tun_build_skb+0x186/0x1160
[ 2113.321004][T20925]  copy_page_from_iter+0x321/0x520
[ 2113.326112][T20925]  ? skb_page_frag_refill+0x1f9/0x360
[ 2113.331483][T20925]  tun_build_skb+0x27c/0x1160
[ 2113.336157][T20925]  ? tun_net_xmit+0x17a0/0x17a0
[ 2113.340999][T20925]  ? __lock_acquire+0xbc3/0x56d0
[ 2113.345936][T20925]  tun_get_user+0x7ef/0x3a00
[ 2113.350531][T20925]  ? tun_build_skb+0x1160/0x1160
[ 2113.355476][T20925]  ? lock_downgrade+0x6e0/0x6e0
[ 2113.360326][T20925]  tun_chr_write_iter+0xdb/0x200
[ 2113.365256][T20925]  vfs_write+0x9e9/0xdd0
[ 2113.369490][T20925]  ? kernel_write+0x630/0x630
[ 2113.374158][T20925]  ? __fget_files+0x26a/0x440
[ 2113.378829][T20925]  ? __fget_light+0xe5/0x270
[ 2113.383409][T20925]  ksys_write+0x127/0x250
[ 2113.387729][T20925]  ? __ia32_sys_read+0xb0/0xb0
[ 2113.392490][T20925]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2113.399082][T20925]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2113.405670][T20925]  __do_fast_syscall_32+0x65/0xf0
[ 2113.410689][T20925]  do_fast_syscall_32+0x2f/0x70
[ 2113.415540][T20925]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2113.421861][T20925] RIP: 0023:0xf7f07549
[ 2113.425915][T20925] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2113.445517][T20925] RSP: 002b:00000000f7f02590 EFLAGS: 00000282 ORIG_RAX: 0000000000000004
[ 2113.453924][T20925] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000020000000
[ 2113.461886][T20925] RDX: 0000000000000092 RSI: 00000000f6f4a000 RDI: 0000000000000000
[ 2113.469845][T20925] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2113.477804][T20925] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000000000000
[ 2113.485774][T20925] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2113.493744][T20925]  </TASK>
15:15:31 executing program 2:
unshare(0x40000400) (async)
mmap(&(0x7f000045c000/0x3000)=nil, 0x3000, 0x3, 0x8031, 0xffffffffffffffff, 0xba173000) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r1, 0xb) (async)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x0) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r1, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:31 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x1000000}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:31 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0)

15:15:31 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x9, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:31 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0)

15:15:31 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:31 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x2000000}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:32 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:32 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0)

15:15:32 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x3000000}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:32 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x3, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:32 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r0 = syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async, rerun: 32)
tkill(r0, 0x39) (async, rerun: 32)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async, rerun: 64)
ioctl$USBDEVFS_IOCTL(r1, 0x8108551b, &(0x7f0000000380)) (async)
r2 = socket$inet(0x2, 0x3, 0x2) (async)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async, rerun: 32)
setsockopt$inet_int(r2, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async, rerun: 32)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000004840)={{r3}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000800)=ANY=[@ANYBLOB="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"]}, @devid})
setsockopt$inet_mreqsrc(r3, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, @loopback}, 0xc)

15:15:32 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000100)={0x1, {{0x2, 0x4e21, @multicast1}}}, 0x84)
shmctl$SHM_LOCK(r1, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:32 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb00000000"], 0x0)

15:15:32 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x4, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:32 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x5000000}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2114.104566][T20968] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:32 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x6000000}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:32 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x8000000}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:32 executing program 5:
syz_emit_ethernet(0xd, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:32 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x5, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:32 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb00000000"], 0x0)

15:15:32 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0xe000000}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:32 executing program 5:
syz_emit_ethernet(0xd2, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2114.392327][T20970] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2114.428404][T20990] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2114.466233][T20970] CPU: 0 PID: 20970 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2114.476705][T20970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2114.486788][T20970] Call Trace:
[ 2114.490088][T20970]  <TASK>
[ 2114.493038][T20970]  dump_stack_lvl+0xcd/0x134
[ 2114.497664][T20970]  dump_header+0x10b/0x7f9
[ 2114.502121][T20970]  oom_kill_process.cold+0x10/0x15
[ 2114.507274][T20970]  out_of_memory+0x358/0x14a0
[ 2114.511991][T20970]  ? find_held_lock+0x2d/0x110
[ 2114.516777][T20970]  ? oom_killer_disable+0x270/0x270
[ 2114.521993][T20970]  ? find_held_lock+0x2d/0x110
[ 2114.526767][T20970]  mem_cgroup_out_of_memory+0x206/0x270
[ 2114.532321][T20970]  ? mem_cgroup_margin+0x130/0x130
[ 2114.537443][T20970]  ? lock_downgrade+0x6e0/0x6e0
[ 2114.542315][T20970]  try_charge_memcg+0xf67/0x13f0
[ 2114.547272][T20970]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2114.553267][T20970]  ? lock_downgrade+0x6e0/0x6e0
[ 2114.558143][T20970]  charge_memcg+0x31/0x320
[ 2114.562572][T20970]  __mem_cgroup_charge+0x27/0x90
[ 2114.567521][T20970]  ? folio_flags.constprop.0+0x53/0x150
[ 2114.573086][T20970]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2114.578655][T20970]  ? shmem_write_end+0xe90/0xe90
[ 2114.583608][T20970]  ? folio_flags.constprop.0+0x53/0x150
[ 2114.589165][T20970]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2114.595076][T20970]  shmem_getpage_gfp+0x8af/0x1f30
[ 2114.600127][T20970]  ? shmem_is_huge+0x330/0x330
[ 2114.604914][T20970]  shmem_fault+0x1b4/0x750
[ 2114.609380][T20970]  ? shmem_getpage+0xa0/0xa0
[ 2114.613989][T20970]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2114.619648][T20970]  __do_fault+0x10d/0x610
[ 2114.623988][T20970]  __handle_mm_fault+0x2130/0x39b0
[ 2114.629116][T20970]  ? vm_iomap_memory+0x190/0x190
[ 2114.634086][T20970]  handle_mm_fault+0x1c8/0x780
[ 2114.638864][T20970]  __get_user_pages+0x4f3/0xfd0
[ 2114.643735][T20970]  ? follow_page_mask+0x1570/0x1570
[ 2114.648964][T20970]  populate_vma_page_range+0x23d/0x320
[ 2114.654440][T20970]  __mm_populate+0x1ea/0x3d0
[ 2114.659050][T20970]  ? faultin_vma_page_range+0x300/0x300
[ 2114.664614][T20970]  ? up_write+0x148/0x470
[ 2114.668959][T20970]  vm_mmap_pgoff+0x1fd/0x270
[ 2114.673562][T20970]  ? randomize_page+0xb0/0xb0
[ 2114.678243][T20970]  ? kfree+0x1fb/0x580
[ 2114.682334][T20970]  ksys_mmap_pgoff+0x79/0x5a0
[ 2114.687026][T20970]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2114.693631][T20970]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2114.698929][T20970]  __do_fast_syscall_32+0x65/0xf0
[ 2114.703964][T20970]  do_fast_syscall_32+0x2f/0x70
[ 2114.708823][T20970]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2114.715162][T20970] RIP: 0023:0xf7fdf549
[ 2114.719581][T20970] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2114.739194][T20970] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2114.747621][T20970] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2114.755606][T20970] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2114.763579][T20970] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2114.771551][T20970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2114.779531][T20970] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2114.787521][T20970]  </TASK>
[ 2114.790634][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2114.816098][T20970] memory: usage 307200kB, limit 307200kB, failcnt 2074
[ 2114.825472][T20970] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2114.877454][T20970] Memory cgroup stats for /syz2:
[ 2114.877702][T20970] anon 110592
[ 2114.877702][T20970] file 310132736
[ 2114.877702][T20970] kernel 4329472
[ 2114.877702][T20970] kernel_stack 98304
[ 2114.877702][T20970] pagetables 77824
[ 2114.877702][T20970] percpu 23680
[ 2114.877702][T20970] sock 0
[ 2114.877702][T20970] vmalloc 0
[ 2114.877702][T20970] shmem 310132736
[ 2114.877702][T20970] zswap 0
[ 2114.877702][T20970] zswapped 0
[ 2114.877702][T20970] file_mapped 2805760
[ 2114.877702][T20970] file_dirty 0
[ 2114.877702][T20970] file_writeback 0
[ 2114.877702][T20970] swapcached 0
[ 2114.877702][T20970] anon_thp 0
[ 2114.877702][T20970] file_thp 0
[ 2114.877702][T20970] shmem_thp 0
[ 2114.877702][T20970] inactive_anon 310075392
[ 2114.877702][T20970] active_anon 167936
[ 2114.877702][T20970] inactive_file 0
[ 2114.877702][T20970] active_file 0
[ 2114.877702][T20970] unevictable 0
[ 2114.877702][T20970] slab_reclaimable 1152832
[ 2114.877702][T20970] slab_unreclaimable 2958824
[ 2114.877702][T20970] slab 4111656
[ 2115.061130][T20970] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=20964,uid=0
[ 2115.090604][T20970] Memory cgroup out of memory: Killed process 20964 (syz-executor.2) total-vm:54492kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:2372kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 2117.232826][   T30] oom_reaper: reaped process 20964 (syz-executor.2), now anon-rss:0kB, file-rss:8192kB, shmem-rss:2512kB
15:15:35 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
tkill(r0, 0x39)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r1, 0x8108551b, &(0x7f0000000380))
r2 = socket$inet(0x2, 0x3, 0x2)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r2, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000004840)={{r3}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000800)=ANY=[@ANYBLOB="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"]}, @devid})
setsockopt$inet_mreqsrc(r3, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, @loopback}, 0xc)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
tkill(r0, 0x39) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="b1ba2e39102dbbad454c95b8806d3ba7074a6c5343147863fa6508d840ac209cdc7c98f38a1cba9f814eb82c514d1ec99006165125abd7ec43678d9a4f85a22276a8afe6fb989b08fb3f0f4298c3f104c92030bd272e824effbc5207392ee0e5a049da251365162137ea490a9e1b6611d5798615101772acf9063c95174abc2237d19fcbd51033660bee98addf79f873c95defed253b00675aeb62205cda9fa4ca01d117c704efd95636ce0d46dd90867969bf5bc8e05af3f459514126baf148488322c2c9152a0872b52660ab79e42a4da81b41b503e034ec26d7afa815c4c3a9be7c4374f57042653bef9f47268ab67abca30d0f8b3bd4a46e40f47268d1e2efc2e06c9da72238e06214c79a8c1fc8ed0677fd900014e9eb5885e1f5379d984bae384fc3543dba129e151396de172e92dbd9e53a"}) (async)
ioctl$USBDEVFS_IOCTL(r1, 0x8108551b, &(0x7f0000000380)) (async)
socket$inet(0x2, 0x3, 0x2) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r2, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000004840)={{r3}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000800)=ANY=[@ANYBLOB="000000000000000002000000000000000001000034efd287bbb548d01b623161d11c8af800000009260000000000000007000000000000000400010000000000080000000000000008080000000000000000008000000000e927b642c69f99a397b8614c2f90f6a58a027de04e9a9a72d69808b4518fb27a490cfe2e0f7a58988ae00311f1a08e8c9026300c3d9b654107cac3b390fa0a2cb089583517aa5ffe8f6946fe14e47901bb9a02e89264fcc1dc830d078be17629b20a4cb2999154d0da01e368a08bd0941208f7fccf65fa78a6f7aacb33077ffe531f57cd03f4b03606498c8b8a9ad0958fc247cd5da1a447ba1ecb2f9ceb97f117d9fbdca72f4c1377767a074abcf411dc216d965ee9796a87879ca0a10fd3150f24a35e360484737ca7a9da201c8ab92781c7eaf28e8da8cc1566548ce68c021448e8d6ab5d"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r3, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, @loopback}, 0xc) (async)

15:15:35 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x1c000000}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:35 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x6, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:35 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb00000000"], 0x0)

15:15:35 executing program 5:
syz_emit_ethernet(0xfdef, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:35 executing program 2:
unshare(0x40000400) (async, rerun: 64)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async, rerun: 64)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (rerun: 64)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000100)={0x1, {{0x2, 0x4e21, @multicast1}}}, 0x84) (async)
shmctl$SHM_LOCK(r1, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:35 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x3f000000}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2117.581504][T20999] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:35 executing program 5:
syz_emit_ethernet(0xfffffdef, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:35 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x7, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:35 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb00000000000000000000000000000000000100"], 0x0)

15:15:35 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x8, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:35 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="00000001ffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2117.774939][T21021] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2118.024325][T21004] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2118.035942][T21004] CPU: 1 PID: 21004 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2118.046385][T21004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2118.056446][T21004] Call Trace:
[ 2118.059724][T21004]  <TASK>
[ 2118.062660][T21004]  dump_stack_lvl+0xcd/0x134
[ 2118.067266][T21004]  dump_header+0x10b/0x7f9
[ 2118.071694][T21004]  oom_kill_process.cold+0x10/0x15
[ 2118.076817][T21004]  out_of_memory+0x358/0x14a0
[ 2118.081509][T21004]  ? find_held_lock+0x2d/0x110
[ 2118.086367][T21004]  ? oom_killer_disable+0x270/0x270
[ 2118.091578][T21004]  ? find_held_lock+0x2d/0x110
[ 2118.096351][T21004]  mem_cgroup_out_of_memory+0x206/0x270
[ 2118.101903][T21004]  ? mem_cgroup_margin+0x130/0x130
[ 2118.107055][T21004]  ? lock_downgrade+0x6e0/0x6e0
[ 2118.111924][T21004]  try_charge_memcg+0xf67/0x13f0
[ 2118.116875][T21004]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2118.122873][T21004]  ? lock_downgrade+0x6e0/0x6e0
[ 2118.127744][T21004]  charge_memcg+0x31/0x320
[ 2118.132172][T21004]  __mem_cgroup_charge+0x27/0x90
[ 2118.137121][T21004]  ? folio_flags.constprop.0+0x53/0x150
[ 2118.142678][T21004]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2118.148242][T21004]  ? shmem_write_end+0xe90/0xe90
[ 2118.153194][T21004]  ? folio_flags.constprop.0+0x53/0x150
[ 2118.158747][T21004]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2118.164677][T21004]  shmem_getpage_gfp+0x8af/0x1f30
[ 2118.169725][T21004]  ? shmem_is_huge+0x330/0x330
[ 2118.174505][T21004]  shmem_fault+0x1b4/0x750
[ 2118.178937][T21004]  ? shmem_getpage+0xa0/0xa0
[ 2118.183540][T21004]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2118.189192][T21004]  __do_fault+0x10d/0x610
[ 2118.193531][T21004]  __handle_mm_fault+0x2130/0x39b0
[ 2118.198658][T21004]  ? vm_iomap_memory+0x190/0x190
[ 2118.203630][T21004]  handle_mm_fault+0x1c8/0x780
[ 2118.208405][T21004]  __get_user_pages+0x4f3/0xfd0
[ 2118.213273][T21004]  ? follow_page_mask+0x1570/0x1570
[ 2118.218495][T21004]  populate_vma_page_range+0x23d/0x320
[ 2118.223969][T21004]  __mm_populate+0x1ea/0x3d0
[ 2118.228568][T21004]  ? faultin_vma_page_range+0x300/0x300
[ 2118.234128][T21004]  ? up_write+0x148/0x470
[ 2118.238469][T21004]  vm_mmap_pgoff+0x1fd/0x270
[ 2118.243068][T21004]  ? randomize_page+0xb0/0xb0
[ 2118.247764][T21004]  ksys_mmap_pgoff+0x79/0x5a0
[ 2118.252447][T21004]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2118.259047][T21004]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2118.264343][T21004]  __do_fast_syscall_32+0x65/0xf0
[ 2118.269374][T21004]  do_fast_syscall_32+0x2f/0x70
[ 2118.274231][T21004]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2118.280567][T21004] RIP: 0023:0xf7fdf549
[ 2118.284639][T21004] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2118.304251][T21004] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2118.312667][T21004] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2118.320645][T21004] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2118.328623][T21004] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2118.336596][T21004] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2118.344572][T21004] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2118.352561][T21004]  </TASK>
[ 2118.361533][T21004] memory: usage 307200kB, limit 307200kB, failcnt 2170
[ 2118.375565][T21004] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2118.390416][T21004] Memory cgroup stats for /syz2:
[ 2118.390619][T21004] anon 110592
[ 2118.390619][T21004] file 311128064
[ 2118.390619][T21004] kernel 3334144
[ 2118.390619][T21004] kernel_stack 98304
[ 2118.390619][T21004] pagetables 77824
[ 2118.390619][T21004] percpu 14208
[ 2118.390619][T21004] sock 0
[ 2118.390619][T21004] vmalloc 0
[ 2118.390619][T21004] shmem 311128064
[ 2118.390619][T21004] zswap 0
[ 2118.390619][T21004] zswapped 0
[ 2118.390619][T21004] file_mapped 3801088
[ 2118.390619][T21004] file_dirty 0
[ 2118.390619][T21004] file_writeback 0
[ 2118.390619][T21004] swapcached 0
[ 2118.390619][T21004] anon_thp 0
[ 2118.390619][T21004] file_thp 0
[ 2118.390619][T21004] shmem_thp 0
[ 2118.390619][T21004] inactive_anon 311033856
[ 2118.390619][T21004] active_anon 167936
[ 2118.390619][T21004] inactive_file 0
[ 2118.390619][T21004] active_file 0
[ 2118.390619][T21004] unevictable 0
[ 2118.390619][T21004] slab_reclaimable 1066128
[ 2118.390619][T21004] slab_unreclaimable 2058344
[ 2118.390619][T21004] slab 3124472
[ 2118.484199][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2118.539075][T21004] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21002,uid=0
[ 2118.561654][T21004] Memory cgroup out of memory: Killed process 21002 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3428kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 2120.672700][   T30] oom_reaper: reaped process 21002 (syz-executor.2), now anon-rss:0kB, file-rss:8192kB, shmem-rss:3484kB
15:15:38 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f00fcffffffffffffff00"/88]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:15:38 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x40000000}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:38 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x9, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:38 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb00000000000000000000000000000000000100"], 0x0)

15:15:38 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="4975f0f7ffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2120.875751][T21031] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:39 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r0 = socket$inet_tcp(0x2, 0x1, 0x0) (rerun: 64)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async, rerun: 32)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000100)={0x1, {{0x2, 0x4e21, @multicast1}}}, 0x84) (rerun: 32)
shmctl$SHM_LOCK(r1, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000) (async, rerun: 32)
shmctl$SHM_UNLOCK(0x0, 0xc) (async, rerun: 32)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:39 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0xa, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:39 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ff00000001ffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:39 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb00000000000000000000000000000000000100"], 0x0)

15:15:39 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0x60000000}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:39 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f00fcffffffffffffff00"/88]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
socket$inet(0x2, 0x3, 0x2) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f00fcffffffffffffff00"/88]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (async)

15:15:39 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0xf4ffffff}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2121.286131][T21042] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:39 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0xb, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:39 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ff4975f0f7ffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:39 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb0000000000000000000000000000000000010000000000000401"], 0x0)

15:15:39 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffff00000001aaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:39 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private=0xfffffff4}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2121.456047][T21060] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2121.746329][T21066] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2121.757234][T21066] CPU: 1 PID: 21066 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2121.767678][T21066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2121.777722][T21066] Call Trace:
[ 2121.780989][T21066]  <TASK>
[ 2121.783911][T21066]  dump_stack_lvl+0xcd/0x134
[ 2121.788498][T21066]  dump_header+0x10b/0x7f9
[ 2121.792908][T21066]  oom_kill_process.cold+0x10/0x15
[ 2121.798017][T21066]  out_of_memory+0x358/0x14a0
[ 2121.802693][T21066]  ? find_held_lock+0x2d/0x110
[ 2121.807466][T21066]  ? oom_killer_disable+0x270/0x270
[ 2121.812656][T21066]  ? find_held_lock+0x2d/0x110
[ 2121.817411][T21066]  mem_cgroup_out_of_memory+0x206/0x270
[ 2121.822971][T21066]  ? mem_cgroup_margin+0x130/0x130
[ 2121.828136][T21066]  ? lock_downgrade+0x6e0/0x6e0
[ 2121.832991][T21066]  try_charge_memcg+0xf67/0x13f0
[ 2121.837928][T21066]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2121.843913][T21066]  ? lock_downgrade+0x6e0/0x6e0
[ 2121.848762][T21066]  charge_memcg+0x31/0x320
[ 2121.853191][T21066]  __mem_cgroup_charge+0x27/0x90
[ 2121.858119][T21066]  ? folio_flags.constprop.0+0x53/0x150
[ 2121.863665][T21066]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2121.869208][T21066]  ? shmem_write_end+0xe90/0xe90
[ 2121.874139][T21066]  ? folio_flags.constprop.0+0x53/0x150
[ 2121.879677][T21066]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2121.885566][T21066]  shmem_getpage_gfp+0x8af/0x1f30
[ 2121.890588][T21066]  ? shmem_is_huge+0x330/0x330
[ 2121.895348][T21066]  shmem_fault+0x1b4/0x750
[ 2121.899757][T21066]  ? shmem_getpage+0xa0/0xa0
[ 2121.904342][T21066]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2121.909974][T21066]  __do_fault+0x10d/0x610
[ 2121.914292][T21066]  __handle_mm_fault+0x2130/0x39b0
[ 2121.919403][T21066]  ? vm_iomap_memory+0x190/0x190
[ 2121.924345][T21066]  handle_mm_fault+0x1c8/0x780
[ 2121.929099][T21066]  __get_user_pages+0x4f3/0xfd0
[ 2121.933950][T21066]  ? follow_page_mask+0x1570/0x1570
[ 2121.939152][T21066]  populate_vma_page_range+0x23d/0x320
[ 2121.944604][T21066]  __mm_populate+0x1ea/0x3d0
[ 2121.949202][T21066]  ? faultin_vma_page_range+0x300/0x300
[ 2121.954757][T21066]  ? up_write+0x148/0x470
[ 2121.959093][T21066]  vm_mmap_pgoff+0x1fd/0x270
[ 2121.963682][T21066]  ? randomize_page+0xb0/0xb0
[ 2121.968363][T21066]  ksys_mmap_pgoff+0x79/0x5a0
[ 2121.973037][T21066]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2121.979625][T21066]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2121.984907][T21066]  __do_fast_syscall_32+0x65/0xf0
[ 2121.989931][T21066]  do_fast_syscall_32+0x2f/0x70
[ 2121.994772][T21066]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2122.001095][T21066] RIP: 0023:0xf7fdf549
[ 2122.005157][T21066] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2122.024763][T21066] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2122.033168][T21066] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2122.041133][T21066] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2122.049100][T21066] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2122.057062][T21066] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2122.065019][T21066] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2122.072990][T21066]  </TASK>
[ 2122.087520][T21066] memory: usage 307200kB, limit 307200kB, failcnt 2223
[ 2122.097312][T21066] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2122.105672][T21066] Memory cgroup stats for /syz2:
[ 2122.105889][T21066] anon 110592
[ 2122.105889][T21066] file 311255040
[ 2122.105889][T21066] kernel 3207168
[ 2122.105889][T21066] kernel_stack 98304
[ 2122.105889][T21066] pagetables 77824
[ 2122.105889][T21066] percpu 15392
[ 2122.105889][T21066] sock 0
[ 2122.105889][T21066] vmalloc 0
[ 2122.105889][T21066] shmem 311255040
[ 2122.105889][T21066] zswap 0
[ 2122.105889][T21066] zswapped 0
[ 2122.105889][T21066] file_mapped 3928064
[ 2122.105889][T21066] file_dirty 0
[ 2122.105889][T21066] file_writeback 0
[ 2122.105889][T21066] swapcached 0
[ 2122.105889][T21066] anon_thp 0
[ 2122.105889][T21066] file_thp 0
[ 2122.105889][T21066] shmem_thp 0
[ 2122.105889][T21066] inactive_anon 311156736
[ 2122.105889][T21066] active_anon 167936
[ 2122.105889][T21066] inactive_file 0
[ 2122.105889][T21066] active_file 0
[ 2122.105889][T21066] unevictable 0
[ 2122.105889][T21066] slab_reclaimable 1026696
[ 2122.105889][T21066] slab_unreclaimable 1969768
[ 2122.105889][T21066] slab 2996464
[ 2122.211796][T21066] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21051,uid=0
[ 2122.232555][T21066] Memory cgroup out of memory: Killed process 21051 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3428kB, UID:0 pgtables:72kB oom_score_adj:1000
15:15:40 executing program 2:
unshare(0x4e020480)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r1, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000)
socket$inet6_tcp(0xa, 0x1, 0x0)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:40 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0xc, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:40 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb0000000000000000000000000000000000010000000000000401"], 0x0)

15:15:40 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffff4975f0f7aaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:40 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2122.327912][T21074] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2122.706622][T21078] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2122.723699][T21078] CPU: 1 PID: 21078 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2122.734168][T21078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2122.744248][T21078] Call Trace:
[ 2122.747542][T21078]  <TASK>
[ 2122.750489][T21078]  dump_stack_lvl+0xcd/0x134
[ 2122.755119][T21078]  dump_header+0x10b/0x7f9
[ 2122.759571][T21078]  oom_kill_process.cold+0x10/0x15
[ 2122.764704][T21078]  out_of_memory+0x358/0x14a0
[ 2122.769393][T21078]  ? find_held_lock+0x2d/0x110
[ 2122.774173][T21078]  ? oom_killer_disable+0x270/0x270
[ 2122.779371][T21078]  ? find_held_lock+0x2d/0x110
[ 2122.784205][T21078]  mem_cgroup_out_of_memory+0x206/0x270
[ 2122.789764][T21078]  ? mem_cgroup_margin+0x130/0x130
[ 2122.794892][T21078]  ? lock_downgrade+0x6e0/0x6e0
[ 2122.799756][T21078]  try_charge_memcg+0xf67/0x13f0
[ 2122.804699][T21078]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2122.810690][T21078]  ? lock_downgrade+0x6e0/0x6e0
[ 2122.815555][T21078]  charge_memcg+0x31/0x320
[ 2122.819971][T21078]  __mem_cgroup_charge+0x27/0x90
[ 2122.824905][T21078]  ? folio_flags.constprop.0+0x53/0x150
[ 2122.830581][T21078]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2122.836147][T21078]  ? shmem_write_end+0xe90/0xe90
[ 2122.841105][T21078]  ? folio_flags.constprop.0+0x53/0x150
[ 2122.846648][T21078]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2122.852544][T21078]  shmem_getpage_gfp+0x8af/0x1f30
[ 2122.857594][T21078]  ? shmem_is_huge+0x330/0x330
[ 2122.862382][T21078]  shmem_fault+0x1b4/0x750
[ 2122.866797][T21078]  ? shmem_getpage+0xa0/0xa0
[ 2122.871388][T21078]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2122.877049][T21078]  __do_fault+0x10d/0x610
[ 2122.881373][T21078]  __handle_mm_fault+0x2130/0x39b0
[ 2122.886483][T21078]  ? vm_iomap_memory+0x190/0x190
[ 2122.891452][T21078]  handle_mm_fault+0x1c8/0x780
[ 2122.896214][T21078]  __get_user_pages+0x4f3/0xfd0
[ 2122.901071][T21078]  ? follow_page_mask+0x1570/0x1570
[ 2122.906275][T21078]  populate_vma_page_range+0x23d/0x320
[ 2122.911747][T21078]  __mm_populate+0x1ea/0x3d0
[ 2122.916371][T21078]  ? faultin_vma_page_range+0x300/0x300
[ 2122.921951][T21078]  ? up_write+0x148/0x470
[ 2122.926304][T21078]  vm_mmap_pgoff+0x1fd/0x270
[ 2122.930902][T21078]  ? randomize_page+0xb0/0xb0
[ 2122.935576][T21078]  ? kfree+0x1fb/0x580
[ 2122.939647][T21078]  ksys_mmap_pgoff+0x79/0x5a0
[ 2122.944327][T21078]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2122.950913][T21078]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2122.956196][T21078]  __do_fast_syscall_32+0x65/0xf0
[ 2122.961258][T21078]  do_fast_syscall_32+0x2f/0x70
[ 2122.966134][T21078]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2122.972486][T21078] RIP: 0023:0xf7fdf549
[ 2122.976554][T21078] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2122.996183][T21078] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2123.004595][T21078] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2123.012569][T21078] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2123.020537][T21078] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2123.028509][T21078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2123.036480][T21078] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2123.044455][T21078]  </TASK>
[ 2123.295805][T21078] memory: usage 307200kB, limit 307200kB, failcnt 2277
[ 2123.310640][T21078] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2123.331399][T21078] Memory cgroup stats for /syz2:
[ 2123.331612][T21078] anon 110592
[ 2123.331612][T21078] file 310562816
[ 2123.331612][T21078] kernel 3899392
[ 2123.331612][T21078] kernel_stack 98304
[ 2123.331612][T21078] pagetables 77824
[ 2123.331612][T21078] percpu 23680
[ 2123.331612][T21078] sock 0
[ 2123.331612][T21078] vmalloc 0
[ 2123.331612][T21078] shmem 310562816
[ 2123.331612][T21078] zswap 0
[ 2123.331612][T21078] zswapped 0
[ 2123.331612][T21078] file_mapped 3235840
[ 2123.331612][T21078] file_dirty 0
[ 2123.331612][T21078] file_writeback 0
[ 2123.331612][T21078] swapcached 0
[ 2123.331612][T21078] anon_thp 0
[ 2123.331612][T21078] file_thp 0
[ 2123.331612][T21078] shmem_thp 0
[ 2123.331612][T21078] inactive_anon 310476800
[ 2123.331612][T21078] active_anon 167936
[ 2123.331612][T21078] inactive_file 0
[ 2123.331612][T21078] active_file 0
[ 2123.331612][T21078] unevictable 0
[ 2123.331612][T21078] slab_reclaimable 1058912
[ 2123.331612][T21078] slab_unreclaimable 2612584
[ 2123.331612][T21078] slab 3671496
[ 2123.444028][T21078] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21076,uid=0
[ 2123.486185][T21078] Memory cgroup out of memory: Killed process 21076 (syz-executor.2) total-vm:54492kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:2900kB, UID:0 pgtables:72kB oom_score_adj:1000
15:15:44 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async, rerun: 64)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async, rerun: 64)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async, rerun: 64)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (rerun: 64)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
r1 = socket$inet(0x2, 0x3, 0x2) (async)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f00fcffffffffffffff00"/88]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:15:44 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa05dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:44 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x2, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:44 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0xd, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:44 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb0000000000000000000000000000000000010000000000000401"], 0x0)

15:15:44 executing program 2:
unshare(0x4e020480)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2) (async)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r1, 0xb) (async)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000)
socket$inet6_tcp(0xa, 0x1, 0x0)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:44 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0xe, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:44 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x3, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:44 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce104000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2126.242483][T21086] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:44 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100"], 0x0)

15:15:44 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x5, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:44 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0xf, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2126.416250][T21104] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:44 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100"], 0x0)

15:15:44 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce105000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:44 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x6, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:44 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2f, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:44 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x8, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2126.598670][T21112] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2126.749464][T21096] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2126.766987][T21096] CPU: 0 PID: 21096 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2126.777456][T21096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2126.787539][T21096] Call Trace:
[ 2126.790839][T21096]  <TASK>
[ 2126.793791][T21096]  dump_stack_lvl+0xcd/0x134
[ 2126.798423][T21096]  dump_header+0x10b/0x7f9
[ 2126.802876][T21096]  oom_kill_process.cold+0x10/0x15
[ 2126.808021][T21096]  out_of_memory+0x358/0x14a0
[ 2126.812735][T21096]  ? find_held_lock+0x2d/0x110
[ 2126.817522][T21096]  ? oom_killer_disable+0x270/0x270
[ 2126.822755][T21096]  ? find_held_lock+0x2d/0x110
[ 2126.827545][T21096]  mem_cgroup_out_of_memory+0x206/0x270
[ 2126.833114][T21096]  ? mem_cgroup_margin+0x130/0x130
[ 2126.838243][T21096]  ? lock_downgrade+0x6e0/0x6e0
[ 2126.843130][T21096]  try_charge_memcg+0xf67/0x13f0
[ 2126.848099][T21096]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2126.854112][T21096]  ? lock_downgrade+0x6e0/0x6e0
[ 2126.859011][T21096]  charge_memcg+0x31/0x320
[ 2126.863456][T21096]  __mem_cgroup_charge+0x27/0x90
[ 2126.868420][T21096]  ? folio_flags.constprop.0+0x53/0x150
[ 2126.873992][T21096]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2126.879576][T21096]  ? shmem_write_end+0xe90/0xe90
[ 2126.884541][T21096]  ? folio_flags.constprop.0+0x53/0x150
[ 2126.890114][T21096]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2126.896038][T21096]  shmem_getpage_gfp+0x8af/0x1f30
[ 2126.901106][T21096]  ? shmem_is_huge+0x330/0x330
[ 2126.905905][T21096]  shmem_fault+0x1b4/0x750
[ 2126.910349][T21096]  ? shmem_getpage+0xa0/0xa0
[ 2126.914964][T21096]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2126.920637][T21096]  __do_fault+0x10d/0x610
[ 2126.924988][T21096]  __handle_mm_fault+0x2130/0x39b0
[ 2126.930118][T21096]  ? vm_iomap_memory+0x190/0x190
[ 2126.935084][T21096]  handle_mm_fault+0x1c8/0x780
[ 2126.939873][T21096]  __get_user_pages+0x4f3/0xfd0
[ 2126.944759][T21096]  ? follow_page_mask+0x1570/0x1570
[ 2126.950002][T21096]  populate_vma_page_range+0x23d/0x320
[ 2126.955488][T21096]  __mm_populate+0x1ea/0x3d0
[ 2126.960095][T21096]  ? faultin_vma_page_range+0x300/0x300
[ 2126.965657][T21096]  ? up_write+0x148/0x470
[ 2126.970005][T21096]  vm_mmap_pgoff+0x1fd/0x270
[ 2126.974609][T21096]  ? randomize_page+0xb0/0xb0
[ 2126.979312][T21096]  ksys_mmap_pgoff+0x79/0x5a0
[ 2126.983998][T21096]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2126.990600][T21096]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2126.995896][T21096]  __do_fast_syscall_32+0x65/0xf0
[ 2127.000931][T21096]  do_fast_syscall_32+0x2f/0x70
[ 2127.005791][T21096]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2127.012125][T21096] RIP: 0023:0xf7fdf549
[ 2127.016208][T21096] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2127.035823][T21096] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2127.044245][T21096] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2127.052222][T21096] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2127.060195][T21096] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2127.068183][T21096] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2127.076171][T21096] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2127.084174][T21096]  </TASK>
[ 2127.087276][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2127.113877][T21096] memory: usage 307200kB, limit 307200kB, failcnt 2337
[ 2127.121094][T21096] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2127.141915][T21096] Memory cgroup stats for /syz2:
[ 2127.142143][T21096] anon 122880
[ 2127.142143][T21096] file 310947840
[ 2127.142143][T21096] kernel 3502080
[ 2127.142143][T21096] kernel_stack 131072
[ 2127.142143][T21096] pagetables 77824
[ 2127.142143][T21096] percpu 15392
[ 2127.142143][T21096] sock 0
[ 2127.142143][T21096] vmalloc 0
[ 2127.142143][T21096] shmem 310947840
[ 2127.142143][T21096] zswap 0
[ 2127.142143][T21096] zswapped 0
[ 2127.142143][T21096] file_mapped 3620864
[ 2127.142143][T21096] file_dirty 0
[ 2127.142143][T21096] file_writeback 0
[ 2127.142143][T21096] swapcached 0
[ 2127.142143][T21096] anon_thp 0
[ 2127.142143][T21096] file_thp 0
[ 2127.142143][T21096] shmem_thp 0
[ 2127.142143][T21096] inactive_anon 310902784
[ 2127.142143][T21096] active_anon 167936
[ 2127.142143][T21096] inactive_file 0
[ 2127.142143][T21096] active_file 0
[ 2127.142143][T21096] unevictable 0
[ 2127.142143][T21096] slab_reclaimable 1072744
[ 2127.142143][T21096] slab_unreclaimable 2183768
[ 2127.142143][T21096] slab 3256512
[ 2127.259595][T21096] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21085,uid=0
[ 2127.283099][T21096] Memory cgroup out of memory: Killed process 21085 (syz-executor.2) total-vm:50784kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3164kB, UID:0 pgtables:72kB oom_score_adj:1000
15:15:45 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100"], 0x0)

15:15:45 executing program 2:
unshare(0x4e020480) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2) (async)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r1, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r1, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:45 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x4, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:45 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0xe, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:45 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce106000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:45 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0xffffd8db, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
recvmmsg(0xffffffffffffffff, &(0x7f0000002200)=[{{&(0x7f0000002280)=@generic, 0x80, &(0x7f0000000740)=[{&(0x7f0000000340)=""/9, 0x9}, {&(0x7f0000000700)=""/43, 0x2b}, {&(0x7f0000000800)=""/166, 0xa6}, {&(0x7f00000008c0)=""/192, 0xc0}], 0x4}, 0xf56}, {{&(0x7f00000009c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @empty}}}, 0x80, &(0x7f0000000b40)=[{&(0x7f0000000780)=""/47, 0x2f}, {&(0x7f0000000a40)=""/97, 0x61}, {&(0x7f0000000ac0)=""/65, 0x41}], 0x3, &(0x7f0000000b80)=""/157, 0x9d}, 0x5}, {{0x0, 0x0, &(0x7f0000001c40)=[{&(0x7f0000000c40)=""/4096, 0x1000}], 0x1, &(0x7f0000001c80)=""/72, 0x48}, 0x800}, {{0x0, 0x0, &(0x7f0000002180)=[{&(0x7f0000001d00)=""/244, 0xf4}, {&(0x7f0000001e00)=""/114, 0x72}, {&(0x7f0000001e80)=""/217, 0xd9}, {&(0x7f0000001f80)=""/237, 0xed}, {&(0x7f0000002080)}, {&(0x7f00000020c0)=""/160, 0xa0}], 0x6, &(0x7f00000021c0)}, 0x5}], 0x4, 0x10000, 0x0)
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000200)=ANY=[@ANYBLOB="00000000100000000200000000000000000100000000000000000000000000092600000000000000040000000000edff0700000052ea86d5b625b880e8ffffff070800000000000000005436af9442f1000a097dbc00000000000000"]}, @devid})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001640)={0x0, ""/256, 0x0, 0x0, <r3=>0x0})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000100)={{}, r3, 0xc, @unused=[0x87, 0x4, 0x10001, 0x7fffffffffffffff], @name="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"})
ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000002300)={{r2}, r3, 0x2, @unused=[0x0, 0x8953, 0x9, 0x101], @name="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"})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:15:45 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce107000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:45 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x1c, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2127.414510][T21124] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2127.435652][T21130] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:45 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x6, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:45 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c204"], 0x0)

15:15:45 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x60, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:45 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r1, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8)
ioctl$BTRFS_IOC_ADD_DEV(0xffffffffffffffff, 0x5000940a, &(0x7f0000000100)={{}, "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"})
shmctl$SHM_UNLOCK(r1, 0xc)
shmctl$IPC_RMID(r1, 0x0)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:45 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce108000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:45 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2"], 0x0)

15:15:45 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x300, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2127.682864][T21150] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:45 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0xa, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:45 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce129000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:45 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2"], 0x0)

15:15:45 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x500, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:45 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0xffffd8db, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (rerun: 32)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
recvmmsg(0xffffffffffffffff, &(0x7f0000002200)=[{{&(0x7f0000002280)=@generic, 0x80, &(0x7f0000000740)=[{&(0x7f0000000340)=""/9, 0x9}, {&(0x7f0000000700)=""/43, 0x2b}, {&(0x7f0000000800)=""/166, 0xa6}, {&(0x7f00000008c0)=""/192, 0xc0}], 0x4}, 0xf56}, {{&(0x7f00000009c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @empty}}}, 0x80, &(0x7f0000000b40)=[{&(0x7f0000000780)=""/47, 0x2f}, {&(0x7f0000000a40)=""/97, 0x61}, {&(0x7f0000000ac0)=""/65, 0x41}], 0x3, &(0x7f0000000b80)=""/157, 0x9d}, 0x5}, {{0x0, 0x0, &(0x7f0000001c40)=[{&(0x7f0000000c40)=""/4096, 0x1000}], 0x1, &(0x7f0000001c80)=""/72, 0x48}, 0x800}, {{0x0, 0x0, &(0x7f0000002180)=[{&(0x7f0000001d00)=""/244, 0xf4}, {&(0x7f0000001e00)=""/114, 0x72}, {&(0x7f0000001e80)=""/217, 0xd9}, {&(0x7f0000001f80)=""/237, 0xed}, {&(0x7f0000002080)}, {&(0x7f00000020c0)=""/160, 0xa0}], 0x6, &(0x7f00000021c0)}, 0x5}], 0x4, 0x10000, 0x0) (async, rerun: 64)
r1 = socket$inet(0x2, 0x3, 0x2) (rerun: 64)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000200)=ANY=[@ANYBLOB="00000000100000000200000000000000000100000000000000000000000000092600000000000000040000000000edff0700000052ea86d5b625b880e8ffffff070800000000000000005436af9442f1000a097dbc00000000000000"]}, @devid})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001640)={0x0, ""/256, 0x0, 0x0, <r3=>0x0})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000100)={{}, r3, 0xc, @unused=[0x87, 0x4, 0x10001, 0x7fffffffffffffff], @name="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"}) (async, rerun: 64)
ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000002300)={{r2}, r3, 0x2, @unused=[0x0, 0x8953, 0x9, 0x101], @name="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"}) (async, rerun: 64)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:15:46 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce12b000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2127.903480][T21161] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:46 executing program 0:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000000000bb000000000000000000000000000000000001000000000000040100040100c2"], 0x0)

15:15:46 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x600, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2128.155163][T21153] syz-executor.2 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=0, oom_score_adj=1000
[ 2128.167106][T21153] CPU: 1 PID: 21153 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2128.177533][T21153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2128.187593][T21153] Call Trace:
[ 2128.190882][T21153]  <TASK>
[ 2128.193841][T21153]  dump_stack_lvl+0xcd/0x134
[ 2128.198446][T21153]  dump_header+0x10b/0x7f9
[ 2128.202880][T21153]  oom_kill_process.cold+0x10/0x15
[ 2128.208019][T21153]  out_of_memory+0x358/0x14a0
[ 2128.212701][T21153]  ? find_held_lock+0x2d/0x110
[ 2128.217460][T21153]  ? oom_killer_disable+0x270/0x270
[ 2128.222657][T21153]  ? find_held_lock+0x2d/0x110
[ 2128.227419][T21153]  mem_cgroup_out_of_memory+0x206/0x270
[ 2128.232959][T21153]  ? mem_cgroup_margin+0x130/0x130
[ 2128.238065][T21153]  ? lock_downgrade+0x6e0/0x6e0
[ 2128.242922][T21153]  try_charge_memcg+0xf67/0x13f0
[ 2128.247863][T21153]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2128.253838][T21153]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2128.259552][T21153]  ? lock_downgrade+0x6e0/0x6e0
[ 2128.264411][T21153]  obj_cgroup_charge+0x2ab/0x5e0
[ 2128.269360][T21153]  kmem_cache_alloc_lru+0x13e/0x720
[ 2128.274571][T21153]  ? xas_nomem+0xf9/0x2b0
[ 2128.278957][T21153]  ? mark_held_locks+0x9f/0xe0
[ 2128.283716][T21153]  xas_nomem+0xf9/0x2b0
[ 2128.287869][T21153]  shmem_add_to_page_cache+0xbe8/0x1680
[ 2128.293418][T21153]  ? shmem_write_end+0xe90/0xe90
[ 2128.298359][T21153]  ? folio_flags.constprop.0+0x53/0x150
[ 2128.303905][T21153]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2128.309805][T21153]  shmem_getpage_gfp+0x8af/0x1f30
[ 2128.314839][T21153]  ? shmem_is_huge+0x330/0x330
[ 2128.319608][T21153]  shmem_fault+0x1b4/0x750
[ 2128.324023][T21153]  ? __lock_acquire+0xbc3/0x56d0
[ 2128.328956][T21153]  ? shmem_getpage+0xa0/0xa0
[ 2128.333548][T21153]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2128.339190][T21153]  __do_fault+0x10d/0x610
[ 2128.343522][T21153]  __handle_mm_fault+0x2130/0x39b0
[ 2128.348638][T21153]  ? vm_iomap_memory+0x190/0x190
[ 2128.353591][T21153]  handle_mm_fault+0x1c8/0x780
[ 2128.358353][T21153]  __get_user_pages+0x4f3/0xfd0
[ 2128.363206][T21153]  ? follow_page_mask+0x1570/0x1570
[ 2128.368413][T21153]  populate_vma_page_range+0x23d/0x320
[ 2128.373876][T21153]  __mm_populate+0x1ea/0x3d0
[ 2128.378469][T21153]  ? faultin_vma_page_range+0x300/0x300
[ 2128.384011][T21153]  ? up_write+0x148/0x470
[ 2128.388354][T21153]  vm_mmap_pgoff+0x1fd/0x270
[ 2128.392960][T21153]  ? randomize_page+0xb0/0xb0
[ 2128.397659][T21153]  ? acct_account_cputime+0x19d/0x310
[ 2128.403082][T21153]  ksys_mmap_pgoff+0x79/0x5a0
[ 2128.407773][T21153]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2128.414373][T21153]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2128.419655][T21153]  __do_fast_syscall_32+0x65/0xf0
[ 2128.424677][T21153]  do_fast_syscall_32+0x2f/0x70
[ 2128.429527][T21153]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2128.435849][T21153] RIP: 0023:0xf7fdf549
[ 2128.439907][T21153] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2128.459540][T21153] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2128.467961][T21153] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2128.475931][T21153] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2128.483899][T21153] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2128.491869][T21153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2128.499835][T21153] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2128.507837][T21153]  </TASK>
[ 2128.534403][T21153] memory: usage 307196kB, limit 307200kB, failcnt 2446
[ 2128.541470][T21153] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2128.548383][T21153] Memory cgroup stats for /syz2:
[ 2128.548480][T21153] anon 110592
[ 2128.548480][T21153] file 310976512
[ 2128.548480][T21153] kernel 3477504
[ 2128.548480][T21153] kernel_stack 98304
[ 2128.548480][T21153] pagetables 77824
[ 2128.548480][T21153] percpu 16576
[ 2128.548480][T21153] sock 0
[ 2128.548480][T21153] vmalloc 0
[ 2128.548480][T21153] shmem 310976512
[ 2128.548480][T21153] zswap 0
[ 2128.548480][T21153] zswapped 0
[ 2128.548480][T21153] file_mapped 3649536
[ 2128.548480][T21153] file_dirty 0
[ 2128.548480][T21153] file_writeback 0
[ 2128.548480][T21153] swapcached 0
[ 2128.548480][T21153] anon_thp 0
[ 2128.548480][T21153] file_thp 0
[ 2128.548480][T21153] shmem_thp 0
[ 2128.548480][T21153] inactive_anon 310898688
[ 2128.548480][T21153] active_anon 167936
[ 2128.548480][T21153] inactive_file 0
[ 2128.548480][T21153] active_file 0
[ 2128.548480][T21153] unevictable 0
[ 2128.548480][T21153] slab_reclaimable 1046888
[ 2128.548480][T21153] slab_unreclaimable 2216520
[ 2128.548480][T21153] slab 3263408
[ 2128.655238][T21153] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21143,uid=0
15:15:46 executing program 2:
unshare(0x40000400) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2) (async)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r1, 0xb) (async)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8) (async)
ioctl$BTRFS_IOC_ADD_DEV(0xffffffffffffffff, 0x5000940a, &(0x7f0000000100)={{}, "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"})
shmctl$SHM_UNLOCK(r1, 0xc) (async)
shmctl$IPC_RMID(r1, 0x0)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:46 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x25, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:46 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0xe00, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:46 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce12c000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:46 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2f, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2128.676851][T21153] Memory cgroup out of memory: Killed process 21143 (syz-executor.2) total-vm:54492kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3164kB, UID:0 pgtables:72kB oom_score_adj:1000
15:15:46 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce12f000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:46 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2f, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2128.750647][T21180] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:46 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x29, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2128.926705][T21194] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2128.980421][T21190] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2128.993276][T21190] CPU: 0 PID: 21190 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2129.003733][T21190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2129.013804][T21190] Call Trace:
[ 2129.017080][T21190]  <TASK>
[ 2129.020005][T21190]  dump_stack_lvl+0xcd/0x134
[ 2129.024596][T21190]  dump_header+0x10b/0x7f9
[ 2129.029010][T21190]  oom_kill_process.cold+0x10/0x15
[ 2129.034123][T21190]  out_of_memory+0x358/0x14a0
[ 2129.038796][T21190]  ? find_held_lock+0x2d/0x110
[ 2129.043570][T21190]  ? oom_killer_disable+0x270/0x270
[ 2129.048799][T21190]  ? find_held_lock+0x2d/0x110
[ 2129.053594][T21190]  mem_cgroup_out_of_memory+0x206/0x270
[ 2129.059154][T21190]  ? mem_cgroup_margin+0x130/0x130
[ 2129.064260][T21190]  ? lock_downgrade+0x6e0/0x6e0
[ 2129.069112][T21190]  try_charge_memcg+0xf67/0x13f0
[ 2129.074050][T21190]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2129.080027][T21190]  ? lock_downgrade+0x6e0/0x6e0
[ 2129.084899][T21190]  charge_memcg+0x31/0x320
[ 2129.089314][T21190]  __mem_cgroup_charge+0x27/0x90
[ 2129.094253][T21190]  ? folio_flags.constprop.0+0x53/0x150
[ 2129.099834][T21190]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2129.105408][T21190]  ? shmem_write_end+0xe90/0xe90
[ 2129.110352][T21190]  ? folio_flags.constprop.0+0x53/0x150
[ 2129.115893][T21190]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2129.121784][T21190]  shmem_getpage_gfp+0x8af/0x1f30
[ 2129.126817][T21190]  ? shmem_is_huge+0x330/0x330
[ 2129.131582][T21190]  shmem_fault+0x1b4/0x750
[ 2129.135995][T21190]  ? shmem_getpage+0xa0/0xa0
[ 2129.140585][T21190]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2129.146237][T21190]  __do_fault+0x10d/0x610
[ 2129.150624][T21190]  __handle_mm_fault+0x2130/0x39b0
[ 2129.155767][T21190]  ? vm_iomap_memory+0x190/0x190
[ 2129.160736][T21190]  handle_mm_fault+0x1c8/0x780
[ 2129.165493][T21190]  __get_user_pages+0x4f3/0xfd0
[ 2129.170346][T21190]  ? follow_page_mask+0x1570/0x1570
[ 2129.175555][T21190]  populate_vma_page_range+0x23d/0x320
[ 2129.181014][T21190]  __mm_populate+0x1ea/0x3d0
[ 2129.185603][T21190]  ? faultin_vma_page_range+0x300/0x300
[ 2129.191146][T21190]  ? up_write+0x148/0x470
[ 2129.195492][T21190]  vm_mmap_pgoff+0x1fd/0x270
[ 2129.200111][T21190]  ? randomize_page+0xb0/0xb0
[ 2129.204812][T21190]  ksys_mmap_pgoff+0x79/0x5a0
[ 2129.209484][T21190]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2129.216070][T21190]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2129.221351][T21190]  __do_fast_syscall_32+0x65/0xf0
[ 2129.226546][T21190]  do_fast_syscall_32+0x2f/0x70
[ 2129.231391][T21190]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2129.237711][T21190] RIP: 0023:0xf7fdf549
[ 2129.241779][T21190] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2129.261411][T21190] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2129.269827][T21190] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2129.277795][T21190] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2129.285765][T21190] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2129.293743][T21190] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2129.301730][T21190] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2129.309721][T21190]  </TASK>
[ 2129.312808][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2129.321983][T21190] memory: usage 307192kB, limit 307200kB, failcnt 2531
[ 2129.329763][T21190] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2129.337449][T21190] Memory cgroup stats for /syz2:
[ 2129.337649][T21190] anon 110592
[ 2129.337649][T21190] file 310771712
[ 2129.337649][T21190] kernel 3682304
[ 2129.337649][T21190] kernel_stack 98304
[ 2129.337649][T21190] pagetables 77824
[ 2129.337649][T21190] percpu 17760
[ 2129.337649][T21190] sock 0
[ 2129.337649][T21190] vmalloc 0
[ 2129.337649][T21190] shmem 310771712
[ 2129.337649][T21190] zswap 0
[ 2129.337649][T21190] zswapped 0
[ 2129.337649][T21190] file_mapped 3444736
[ 2129.337649][T21190] file_dirty 0
[ 2129.337649][T21190] file_writeback 0
[ 2129.337649][T21190] swapcached 0
[ 2129.337649][T21190] anon_thp 0
[ 2129.337649][T21190] file_thp 0
[ 2129.337649][T21190] shmem_thp 0
[ 2129.337649][T21190] inactive_anon 310714368
[ 2129.337649][T21190] active_anon 167936
[ 2129.337649][T21190] inactive_file 0
[ 2129.337649][T21190] active_file 0
[ 2129.337649][T21190] unevictable 0
[ 2129.337649][T21190] slab_reclaimable 1079312
[ 2129.337649][T21190] slab_unreclaimable 2380960
[ 2129.337649][T21190] slab 3460272
[ 2129.435086][T21190] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21186,uid=0
[ 2129.450896][T21190] Memory cgroup out of memory: Killed process 21186 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:2900kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 2131.562140][   T30] oom_reaper: reaped process 21186 (syz-executor.2), now anon-rss:0kB, file-rss:8192kB, shmem-rss:3136kB
15:15:50 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0xffffd8db, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
recvmmsg(0xffffffffffffffff, &(0x7f0000002200)=[{{&(0x7f0000002280)=@generic, 0x80, &(0x7f0000000740)=[{&(0x7f0000000340)=""/9, 0x9}, {&(0x7f0000000700)=""/43, 0x2b}, {&(0x7f0000000800)=""/166, 0xa6}, {&(0x7f00000008c0)=""/192, 0xc0}], 0x4}, 0xf56}, {{&(0x7f00000009c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @empty}}}, 0x80, &(0x7f0000000b40)=[{&(0x7f0000000780)=""/47, 0x2f}, {&(0x7f0000000a40)=""/97, 0x61}, {&(0x7f0000000ac0)=""/65, 0x41}], 0x3, &(0x7f0000000b80)=""/157, 0x9d}, 0x5}, {{0x0, 0x0, &(0x7f0000001c40)=[{&(0x7f0000000c40)=""/4096, 0x1000}], 0x1, &(0x7f0000001c80)=""/72, 0x48}, 0x800}, {{0x0, 0x0, &(0x7f0000002180)=[{&(0x7f0000001d00)=""/244, 0xf4}, {&(0x7f0000001e00)=""/114, 0x72}, {&(0x7f0000001e80)=""/217, 0xd9}, {&(0x7f0000001f80)=""/237, 0xed}, {&(0x7f0000002080)}, {&(0x7f00000020c0)=""/160, 0xa0}], 0x6, &(0x7f00000021c0)}, 0x5}], 0x4, 0x10000, 0x0) (async)
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f0000000200)=ANY=[@ANYBLOB="00000000100000000200000000000000000100000000000000000000000000092600000000000000040000000000edff0700000052ea86d5b625b880e8ffffff070800000000000000005436af9442f1000a097dbc00000000000000"]}, @devid}) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001640)={0x0, ""/256, 0x0, 0x0, <r3=>0x0})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f0000000100)={{}, r3, 0xc, @unused=[0x87, 0x4, 0x10001, 0x7fffffffffffffff], @name="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"}) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000002300)={{r2}, r3, 0x2, @unused=[0x0, 0x8953, 0x9, 0x101], @name="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"}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:15:50 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x1c00, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:50 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce13a000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:50 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2f, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:50 executing program 2:
unshare(0x40000400) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async, rerun: 64)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r0 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2) (async)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async, rerun: 64)
shmctl$SHM_LOCK(r1, 0xb) (rerun: 64)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8) (async)
ioctl$BTRFS_IOC_ADD_DEV(0xffffffffffffffff, 0x5000940a, &(0x7f0000000100)={{}, "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"}) (async, rerun: 64)
shmctl$SHM_UNLOCK(r1, 0xc) (async, rerun: 64)
shmctl$IPC_RMID(r1, 0x0) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:50 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2b, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:50 executing program 0:
syz_emit_ethernet(0x0, 0x0, 0x0)

15:15:50 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce13c000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:50 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x3f00, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:50 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521ad7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
r3 = syz_open_dev$vcsu(&(0x7f0000000200), 0x5, 0x202)
ioctl$USBDEVFS_IOCTL(r3, 0xc00c5512, &(0x7f0000000280)=@usbdevfs_driver={0x87, 0x3, &(0x7f0000000240)="a447468e3d8b2ab69eff977dd1b2257f3502af70013e6872"})
setsockopt$inet_int(r1, 0x0, 0x15, &(0x7f0000000000)=0x7, 0x4)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @name="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"})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:15:50 executing program 0:
syz_emit_ethernet(0x0, 0x0, 0x0)

15:15:50 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x4000, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:50 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce184000000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2132.641775][T21216] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:50 executing program 0:
syz_emit_ethernet(0x0, 0x0, 0x0)

15:15:50 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2f, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:50 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x6000, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2132.924557][T21240] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:53 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r1, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0xffffff02)
ioctl$USBDEVFS_GETDRIVER(r2, 0x41045508, &(0x7f0000000100)={0x4, "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"})
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:53 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100050000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:53 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:53 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:53 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x33, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:53 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521ad7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
r1 = socket$inet(0x2, 0x3, 0x2) (async)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
r3 = syz_open_dev$vcsu(&(0x7f0000000200), 0x5, 0x202)
ioctl$USBDEVFS_IOCTL(r3, 0xc00c5512, &(0x7f0000000280)=@usbdevfs_driver={0x87, 0x3, &(0x7f0000000240)="a447468e3d8b2ab69eff977dd1b2257f3502af70013e6872"})
setsockopt$inet_int(r1, 0x0, 0x15, &(0x7f0000000000)=0x7, 0x4) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @name="e91977af0914696d47f55f020d206f411d2b8d16beea24cf26f2a020f1847bd12ef2522a3dea447cfce27cf1118e9bc61de95a86722ca83fad25f9019c9429afe08e4366f3f5ca0158544d1cb6105c334c3bb3dca8b521d5d7100caaecff6dc78f57d964012e983029f8279b32f49fb4af7e8524183d51d30fd8475a9c7cc1618292c9b1192866d42090cd9df56a8244360aa73d17dc7c2e24edeac057bbc12240b824902e17bfe3d59a19c82e625e43cb45a2799b85a3757aebb66ea12aca8afbc21d97b724ac84bde4178d463a0bb9d69fa6f37469efb93cce99848ab6ace7280ab70ef6b0f9f21d7743a65af4256a5514ff10f5b3f97b9a71d94770339d4989c9714fd95a659ec3d637100172653d61f9147c8be33e7e8f54be4faa61befe889f91095208abe3602abf874d986f8228c1981aaa3cad35648364e6b16b37a22816e73606bc5bd453a6ba5a038dfd65413d08917d7560bb5312c0919c2f901bfc567842b33f802a22d2aa04aebe63f5ae42b19842ea815d80acf75ff20c00e2058ff57d7624b5ba20ebf54a19d2e50b9c0ae75b9f6718da5c4c223175ea03da487c7d3609d34307776595fb5597d1466206d016ac448ae00c8874e8a43c5168b228ad55e360af07cfa7f45269058d0117649ea1fdf31db37c844f0a1c6387f93182cbbdc4c0cdbb53389af45fa2cc2890a82a36e6be26313a87db45382a2d21231d7f8a7d15df41fa234195923dddd2938f91396ba7caff5bc224e61347a01b4add466902fd1fdca0fe9c3cdb27baf0e14537e49f953b30c5c70052e65b18ec9dae80b15a72a3e49ab5268aa53be5b346df9bb26113a05fd058ab010240a6e77fb8ec12a6e7e3a7b1b314ceb20c70ad468a6c372cd80fa71cc2f29b882a8f92e8006cef8386667e3ffc9d08ee8ed21ecc601568aa1f6462df19ec92df4282c69ae070db516a69702faa69d942d21d4f15fb5826ec2ba91b17840f81fbc25f609e3c6bd1454474b3d83323a6dc43f100e7384dc6933433bfdf170291ce2b670f93e116b8ca63c83e434a2145749fa7bd03d8bfe29a40eef1a93ef8f1b021c40ce1b439584ea6a1fbcb544f0aa7976ef966c6971a0f218b5a2db091e2bf5cc8d995b127485e182c88e4724f6a201e0177baf1d0bbd2f2b65caa3a8227f2870ee2fa99542e94988758a8096e5b460bc56d019dbe766554ee3d5674fd96be42846e7db72f740dc7b164360868ac73687d08e0943478f5e56573fc7002be2f700bf94dd893be3fd7bc6fd1dc4a4034f8adb853801b162b30bccb02a3e24f742530fb35b4961b2505f4b8089973f01fdca8c303a371ed51b226bd83f03c0608d2ed1aa58e3d0c656c55cbedc188be405fb80da34fd4adbcc6a1f560d09316b2dd26f68fddb6c4eb48ee53aad4621b63b437041a7b3db61fe33d258a667b97307779f03a810fc9b5dd4765573e3a4d8981682613b2cbe59dd887ad84403cf346f9002022131c7b7bbf285b022103fbe84d5ee03e3353243b7bcba80c337d6ccea71733f986ae947ba0ae0a94452fe2c9bfb09e8a24d03becbbc9c1e0844fa686742ce98b80283c8c4595e86098098fd49b1518fe0ef19b1cd8c70c275aee7cf41484c8e527fd377515c2057199acdde6e960ed3e85bd32547b088237d12e309b4de54b66d4327689ce155681282e888a59d976dad066f72ec565c410b49b7630c5c4287bf0b518d4345ad77098beef12798034a412c56ae57513728de05d11e8cff1a10e0f3e57342344e1f1fed981a485fbf257a54560e34fabce6d9666415de57ad1e48a568e2089546dcff33fbe694dc68eeb93a8fbf45ef95ee966c03510e8e206627e83112a128c5fe1a7e7183738fae7596fd9afafaf7e087204b3d2264f5df1c154eb1d8704ba0ff32d79f10b76651b0cb96849d4699257498d37df048dcb9253c47d1ee18eb795162f8ef63ef46d92af239b375d179fc298f17ac9ec9c75aac925564fb34860ab7f76c50e9af58b3fb9b5e2d0292c716c40f4c09f65f5cc5a8692b351cbdbd3b18ba62c753b60bbe7e8254a97ca770b6bca7ebfeccb0fc7562e0a4574bfe02a9bcd78610fdfadcda4bcb069abfd39a757477356ee5f1d72cd0c38d10542a1e5e54ed820920a968844212a266987f0ef4785d44e4da7d58131a7edc06a65d707b468e187861e06a87e745677a8414646d75d0cf9489057686c1c29a00e684a2ae62072250095c8f68555372c40d8cc07ed3075be9af55d2e8ac40f33c4f89e0328dcd51f16865d54776cfe0b0b01c52944766fc4a9698466a09d1b821e271ccfea9583dbc0606cb3df441faa1af7683c3bd55223d5f03e158fa6cb9e17f78672a1e49cec63174a7db3de1c4992cb7ef16ddffce394b6b22985c5684a5e71d73606b26fd7895e1593577f57cda00d949db435da4db2e9684a46681062d6dc5f5f6b03d40e9388e027c6641fa5624c86ec51f6bbf455236375b3cbbae7dec0bf3f19f0f4503dd8c00ab153c96b25804a231db67c08bcdff0e1ee1954a0af389c46706fb45dd8a6814b5c010de5ef30ca9c18680357b74ce22e246e2a6e4cdc9b1eb66f1bfb0cc1108c0c7ee29385837cbcb8c67e830ecf86690495948e60631daef9eb09f6631ff150852f0a6f1714a36c70bf43177dfb002e3801c38d2b945532f938b62d2ef7301351334517777d207bb95055b9eba94373165dc730d52d83c81de3bd6b5b0eea256eff7f7b4ec6758ee5a6976e12b3753b3e07ca3ad096858ee59b58edee0a1ccd353e2eb21fc8032f8093e94edc162aa7e71bfc76af2ec42ab3e4c4d18ba756fbf96a0348c0ee7c22f85d7e9dfa30fd8bf0ebbb6f58abad316bc8bcca8f4bafa22f69ae8a100b322c800eb193b632a41b9144071b360054fcafc3e3f1441d9ad7c91463ec6a26440811ef2ea128e76ed77a664782a4cf5a666991c91336641986ead4d7d56c8684f26529c60a5b2a34de984550e7d52768610a90e7108da457cb8b2ebbfe1650526433ce39569e38a123f773f075d5ee1c57d45146ca3584a47ea38f796cce72da2d8f0532febd855f9c307bd4537fc1a7069c2c76554eb49fc8c94e8a0808a13570f893a15761b93d74ea7e324473ecc99e6bbac6adf46f07eca83c13d53b95bfca05545f02577371bc6b50c04dd93b98edc4046ea9af49ca09ec06c6176d186bff0006079ac2c9bce6a1c5091b3f46611d06944ae1b545adb0690d344d3bd79d1a1168ab50804174346898b30dfbe84238deefe53af1ccc6fb9be911a728cb9e08328a1096daac67e13fda763ac9ca86b00ce5fdc229090e343c9a0ba9ce2bbcab5d25851f379adacd52a5bbb6962bc59ee3597a04e21b35e63162b07568204a85188798a3ef7d8546e4dfce6b36b397c3d3e72b12fd1f84fd240558dfa59f8b34c0d8a9fd1617b2c8edcdfdc5496a90919caa003ec0ce126c1b120e5ad6fc7e60cd1aaf8425d51da45e5dddea6b254f2e5c028a05765309c2a3f4ed4a591759395eafd143a9f59e3fee6cc93f6a91c7b903bb818ef98787c3f0b06838caf9b7523e19bd5a53f3bce167b4379b45f1e188e2bd7163a8acef2be6204057e1b5d546c49e035d942a81ebb8334705e4c16582b569569a5b9d0fa973964ad3d6ff17c2cbc83ec2511c73ad17975fc1d6ecf651ecf65c9b3d31a7614b4323362945ec7e0d8a83f8f22794ff20f80963547b5d28741aef156ae63c0a36012fccc1c85846ac94ed31368637c72a387ee776bc1cfa48fb78dcc189544f5b48cc39927abca9b2028854f96bf7fe646c87fdaf0006f5c58aebdf62309e9d9cc5a3694bcd5cf6bb63b45c69f5acabb16bfae3813f5e88f0b52a3c297da0a9d2195bf33bbe8983fd9658283d187601369469c238756f2e8ba47906c84e7342ce68d898b145be57be35b93f145923b73ec404e8fa7200537eb56f0c0ef2bb852ff1bc403c7a61da1c8314d31ce521d9aa1865b444aa5440008a4cf8cc9c172928cb09839ba48b6ad6156cad0ecc597afa34e4240f6eeddcc63a72ee0c1c2560b4ddafcdda41ebf657f4911e65fa184826545e637d8a63f213576c393d9fd8fe0c5546453af2966e901f6b7056de1ba5a2ea0f2bb50300373592cfdefdfc82d2b03cdfa7b314c54e8459925388286b942ad1839503182ac88eb0c4b25d08a033986f1556286cac631a4ba922793dfdf142587c3995116c4050366797789edbdd0d62e16204ccc5760f88591abaaec48589a18592a7d3815d6a29a85548c1159a068e730f62c4aa2f0734a28f1e7a16610fcc2d210242d65b02bf747a0d26c53fca4c1edae478d2ce6d2d3995e12c9719e30ddc27658ca9bedca6888b2626a8c4cd9763becb9ee4b2f0d2cef5ed6bdb0596f20b7314625d8f2657a4663495904a2b626cae1ec6c02cf68495c5e1c8fd8c14eb78f4bebbcaceb4c9573aca5426fe6967ac3f1852d0279016b40063be8b9032535a2a06a0744cd8e7bac60d66888e3bedbde52bcdc6ccff745520fb71aa996a0ffeb694a965b145e0f4cf853089b6d74d08acdaef96385312a8b7d9f207c02ba2d36ad28594207d09601409b64733f372253d01ee5718d53d679e1eaf6506168c49571f20c60e7288651aa40ffe1fce55da170d637c345ff37da1c13fc079068e8c230f68b970b9f21305bfbd18b326b23679ef5f3891beb71bdd6fb9d177aac430a01a4200c284986a621282d66a333f0018e6ef0fa65434cfc6a39c27de58375a9b333acc6f5769d9964461adaa6d6f8abcb8d2ba1bc4df97b8bf584dce0e2f4a66211f193fe16590a4b89d4e2d7ed02bb56f1f95e651c89c7320eb2dd017cf1bf0ea6c92d1b1dc0f819c7ae8b35c3bd6f5cf920b4a614494c89367e182c31f11cc5318a98c077262613d20d15e761adcd8f77fa0bda6d6fe5aca9d79b00b36b085373de2aa90bf4be556b1f1131571e70d5c68f42540e87ab7f2255bea1e029dda4102258daba41c649aa0821542f633fd6be56f4b6704dcee430fa328f151eade2f382c0be424a5dba9627358e91ce5b490bbccd4bb63158d42bdaf5a0ca2eccb8b5b9f88c8264e937c4b97dfd98b27346ddfb9104bddb22411d6075f0bb9d1a8eb684d7ad0fc8a1788b9372e6dcc46bd60de69d3a3faf9f8115ac2bd779b918dff8f2dbcdb395aa4df8497181b2d0a2fdff4ed876c1bfa72d14fb7313a5af8914118de718dda54c299c8b0fb687a8de68ece1f83a47fd2fced78807fa567afea582c2131a205aac85e23b10ce52fce2f9314449f109d3744293bade54aee0f9b93c24e5487fd11c9aef09ce217b776c8d7086572c145c0aea4e1422467709cedaed0b4cc0cfaaf871d7bb497d7dbe7c8a708cf250100c517d54539ed2540acc7a6d196b42c5cd4611ecdc57b75f9fec4cdc6717f1d8cdb7fceb1229ffbbc87b73a25db4ade1c771f448af0a2cd31e0eeb9e37474c62fc46c43e151ad6b23e2475533ed2b99b1f857330ff6d5b4e6d0df0c679cac6e4e9e4c5748333ebdf9f055261a4e23c6b7ffb9b5290ee970ad1581ec3721ec73f616c95eb0fc42dd4bce2472e0b67220d77e0df4a7b9ea703b72de8151be32a65ca1f75fc1a70932c316c1215b3e76ec7d15165e9b23eeee302468bd1248e61139be6a21acf2c03c3096f04ead532605a141f0e178682bb576a37eba29a89f1c247131b5dcc1b3b132a860356ad9164f"})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:15:53 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:53 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100060000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:53 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x2, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2135.135153][T21250] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:53 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x3a, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:53 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:53 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100070000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2135.308794][T21265] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2135.491165][T21267] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2135.511322][T21267] CPU: 0 PID: 21267 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2135.521794][T21267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2135.531875][T21267] Call Trace:
[ 2135.535164][T21267]  <TASK>
[ 2135.538091][T21267]  dump_stack_lvl+0xcd/0x134
[ 2135.542685][T21267]  dump_header+0x10b/0x7f9
[ 2135.547099][T21267]  oom_kill_process.cold+0x10/0x15
[ 2135.552228][T21267]  out_of_memory+0x358/0x14a0
[ 2135.556906][T21267]  ? find_held_lock+0x2d/0x110
[ 2135.561679][T21267]  ? oom_killer_disable+0x270/0x270
[ 2135.566895][T21267]  ? find_held_lock+0x2d/0x110
[ 2135.571652][T21267]  mem_cgroup_out_of_memory+0x206/0x270
[ 2135.577193][T21267]  ? mem_cgroup_margin+0x130/0x130
[ 2135.582294][T21267]  ? lock_downgrade+0x6e0/0x6e0
[ 2135.587144][T21267]  try_charge_memcg+0xf67/0x13f0
[ 2135.592077][T21267]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2135.598072][T21267]  ? lock_downgrade+0x6e0/0x6e0
[ 2135.602929][T21267]  charge_memcg+0x31/0x320
[ 2135.607368][T21267]  __mem_cgroup_charge+0x27/0x90
[ 2135.612330][T21267]  ? folio_flags.constprop.0+0x53/0x150
[ 2135.617896][T21267]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2135.623443][T21267]  ? shmem_write_end+0xe90/0xe90
[ 2135.628377][T21267]  ? folio_flags.constprop.0+0x53/0x150
[ 2135.633917][T21267]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2135.639806][T21267]  shmem_getpage_gfp+0x8af/0x1f30
[ 2135.644833][T21267]  ? shmem_is_huge+0x330/0x330
[ 2135.649596][T21267]  shmem_fault+0x1b4/0x750
[ 2135.654023][T21267]  ? shmem_getpage+0xa0/0xa0
[ 2135.658611][T21267]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2135.664246][T21267]  __do_fault+0x10d/0x610
[ 2135.668575][T21267]  __handle_mm_fault+0x2130/0x39b0
[ 2135.673700][T21267]  ? vm_iomap_memory+0x190/0x190
[ 2135.678661][T21267]  handle_mm_fault+0x1c8/0x780
[ 2135.683420][T21267]  __get_user_pages+0x4f3/0xfd0
[ 2135.688298][T21267]  ? follow_page_mask+0x1570/0x1570
[ 2135.693502][T21267]  populate_vma_page_range+0x23d/0x320
[ 2135.698960][T21267]  __mm_populate+0x1ea/0x3d0
[ 2135.703547][T21267]  ? faultin_vma_page_range+0x300/0x300
[ 2135.709090][T21267]  ? up_write+0x148/0x470
[ 2135.713418][T21267]  vm_mmap_pgoff+0x1fd/0x270
[ 2135.718005][T21267]  ? randomize_page+0xb0/0xb0
[ 2135.722672][T21267]  ? kfree+0x1fb/0x580
[ 2135.726740][T21267]  ksys_mmap_pgoff+0x79/0x5a0
[ 2135.731413][T21267]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2135.738170][T21267]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2135.743450][T21267]  __do_fast_syscall_32+0x65/0xf0
[ 2135.748466][T21267]  do_fast_syscall_32+0x2f/0x70
[ 2135.753308][T21267]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2135.759625][T21267] RIP: 0023:0xf7fdf549
[ 2135.763684][T21267] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2135.783282][T21267] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2135.791685][T21267] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2135.799648][T21267] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2135.807606][T21267] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2135.815565][T21267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2135.823547][T21267] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2135.831522][T21267]  </TASK>
[ 2135.834543][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2135.861150][T21267] memory: usage 307200kB, limit 307200kB, failcnt 2605
[ 2135.868775][T21267] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2135.876824][T21267] Memory cgroup stats for /syz2:
[ 2135.877049][T21267] anon 110592
[ 2135.877049][T21267] file 311717888
[ 2135.877049][T21267] kernel 2744320
[ 2135.877049][T21267] kernel_stack 98304
[ 2135.877049][T21267] pagetables 77824
[ 2135.877049][T21267] percpu 8288
[ 2135.877049][T21267] sock 0
[ 2135.877049][T21267] vmalloc 0
[ 2135.877049][T21267] shmem 311717888
[ 2135.877049][T21267] zswap 0
[ 2135.877049][T21267] zswapped 0
[ 2135.877049][T21267] file_mapped 4390912
[ 2135.877049][T21267] file_dirty 0
[ 2135.877049][T21267] file_writeback 0
[ 2135.877049][T21267] swapcached 0
[ 2135.877049][T21267] anon_thp 0
[ 2135.877049][T21267] file_thp 0
[ 2135.877049][T21267] shmem_thp 0
[ 2135.877049][T21267] inactive_anon 311660544
[ 2135.877049][T21267] active_anon 167936
[ 2135.877049][T21267] inactive_file 0
[ 2135.877049][T21267] active_file 0
[ 2135.877049][T21267] unevictable 0
[ 2135.877049][T21267] slab_reclaimable 1019688
[ 2135.877049][T21267] slab_unreclaimable 1521000
[ 2135.877049][T21267] slab 2540688
[ 2135.970503][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2135.980159][T21267] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21261,uid=0
[ 2135.996163][T21267] Memory cgroup out of memory: Killed process 21261 (syz-executor.2) total-vm:54492kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3956kB, UID:0 pgtables:72kB oom_score_adj:1000
15:15:55 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r1, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0xffffff02)
ioctl$USBDEVFS_GETDRIVER(r2, 0x41045508, &(0x7f0000000100)={0x4, "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"})
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)
unshare(0x40000400) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2) (async)
shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r1, 0xb) (async)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r1, 0xc) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) (async)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0xffffff02) (async)
ioctl$USBDEVFS_GETDRIVER(r2, 0x41045508, &(0x7f0000000100)={0x4, "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"}) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50) (async)

15:15:55 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x3, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:55 executing program 0:
syz_emit_ethernet(0x0, 0x0, 0x0)

15:15:55 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100290000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:55 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x3c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:55 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521ad7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
r3 = syz_open_dev$vcsu(&(0x7f0000000200), 0x5, 0x202)
ioctl$USBDEVFS_IOCTL(r3, 0xc00c5512, &(0x7f0000000280)=@usbdevfs_driver={0x87, 0x3, &(0x7f0000000240)="a447468e3d8b2ab69eff977dd1b2257f3502af70013e6872"})
setsockopt$inet_int(r1, 0x0, 0x15, &(0x7f0000000000)=0x7, 0x4)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @name="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"})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521ad7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
socket$inet(0x2, 0x3, 0x2) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
syz_open_dev$vcsu(&(0x7f0000000200), 0x5, 0x202) (async)
ioctl$USBDEVFS_IOCTL(r3, 0xc00c5512, &(0x7f0000000280)=@usbdevfs_driver={0x87, 0x3, &(0x7f0000000240)="a447468e3d8b2ab69eff977dd1b2257f3502af70013e6872"}) (async)
setsockopt$inet_int(r1, 0x0, 0x15, &(0x7f0000000000)=0x7, 0x4) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @name="e91977af0914696d47f55f020d206f411d2b8d16beea24cf26f2a020f1847bd12ef2522a3dea447cfce27cf1118e9bc61de95a86722ca83fad25f9019c9429afe08e4366f3f5ca0158544d1cb6105c334c3bb3dca8b521d5d7100caaecff6dc78f57d964012e983029f8279b32f49fb4af7e8524183d51d30fd8475a9c7cc1618292c9b1192866d42090cd9df56a8244360aa73d17dc7c2e24edeac057bbc12240b824902e17bfe3d59a19c82e625e43cb45a2799b85a3757aebb66ea12aca8afbc21d97b724ac84bde4178d463a0bb9d69fa6f37469efb93cce99848ab6ace7280ab70ef6b0f9f21d7743a65af4256a5514ff10f5b3f97b9a71d94770339d4989c9714fd95a659ec3d637100172653d61f9147c8be33e7e8f54be4faa61befe889f91095208abe3602abf874d986f8228c1981aaa3cad35648364e6b16b37a22816e73606bc5bd453a6ba5a038dfd65413d08917d7560bb5312c0919c2f901bfc567842b33f802a22d2aa04aebe63f5ae42b19842ea815d80acf75ff20c00e2058ff57d7624b5ba20ebf54a19d2e50b9c0ae75b9f6718da5c4c223175ea03da487c7d3609d34307776595fb5597d1466206d016ac448ae00c8874e8a43c5168b228ad55e360af07cfa7f45269058d0117649ea1fdf31db37c844f0a1c6387f93182cbbdc4c0cdbb53389af45fa2cc2890a82a36e6be26313a87db45382a2d21231d7f8a7d15df41fa234195923dddd2938f91396ba7caff5bc224e61347a01b4add466902fd1fdca0fe9c3cdb27baf0e14537e49f953b30c5c70052e65b18ec9dae80b15a72a3e49ab5268aa53be5b346df9bb26113a05fd058ab010240a6e77fb8ec12a6e7e3a7b1b314ceb20c70ad468a6c372cd80fa71cc2f29b882a8f92e8006cef8386667e3ffc9d08ee8ed21ecc601568aa1f6462df19ec92df4282c69ae070db516a69702faa69d942d21d4f15fb5826ec2ba91b17840f81fbc25f609e3c6bd1454474b3d83323a6dc43f100e7384dc6933433bfdf170291ce2b670f93e116b8ca63c83e434a2145749fa7bd03d8bfe29a40eef1a93ef8f1b021c40ce1b439584ea6a1fbcb544f0aa7976ef966c6971a0f218b5a2db091e2bf5cc8d995b127485e182c88e4724f6a201e0177baf1d0bbd2f2b65caa3a8227f2870ee2fa99542e94988758a8096e5b460bc56d019dbe766554ee3d5674fd96be42846e7db72f740dc7b164360868ac73687d08e0943478f5e56573fc7002be2f700bf94dd893be3fd7bc6fd1dc4a4034f8adb853801b162b30bccb02a3e24f742530fb35b4961b2505f4b8089973f01fdca8c303a371ed51b226bd83f03c0608d2ed1aa58e3d0c656c55cbedc188be405fb80da34fd4adbcc6a1f560d09316b2dd26f68fddb6c4eb48ee53aad4621b63b437041a7b3db61fe33d258a667b97307779f03a810fc9b5dd4765573e3a4d8981682613b2cbe59dd887ad84403cf346f9002022131c7b7bbf285b022103fbe84d5ee03e3353243b7bcba80c337d6ccea71733f986ae947ba0ae0a94452fe2c9bfb09e8a24d03becbbc9c1e0844fa686742ce98b80283c8c4595e86098098fd49b1518fe0ef19b1cd8c70c275aee7cf41484c8e527fd377515c2057199acdde6e960ed3e85bd32547b088237d12e309b4de54b66d4327689ce155681282e888a59d976dad066f72ec565c410b49b7630c5c4287bf0b518d4345ad77098beef12798034a412c56ae57513728de05d11e8cff1a10e0f3e57342344e1f1fed981a485fbf257a54560e34fabce6d9666415de57ad1e48a568e2089546dcff33fbe694dc68eeb93a8fbf45ef95ee966c03510e8e206627e83112a128c5fe1a7e7183738fae7596fd9afafaf7e087204b3d2264f5df1c154eb1d8704ba0ff32d79f10b76651b0cb96849d4699257498d37df048dcb9253c47d1ee18eb795162f8ef63ef46d92af239b375d179fc298f17ac9ec9c75aac925564fb34860ab7f76c50e9af58b3fb9b5e2d0292c716c40f4c09f65f5cc5a8692b351cbdbd3b18ba62c753b60bbe7e8254a97ca770b6bca7ebfeccb0fc7562e0a4574bfe02a9bcd78610fdfadcda4bcb069abfd39a757477356ee5f1d72cd0c38d10542a1e5e54ed820920a968844212a266987f0ef4785d44e4da7d58131a7edc06a65d707b468e187861e06a87e745677a8414646d75d0cf9489057686c1c29a00e684a2ae62072250095c8f68555372c40d8cc07ed3075be9af55d2e8ac40f33c4f89e0328dcd51f16865d54776cfe0b0b01c52944766fc4a9698466a09d1b821e271ccfea9583dbc0606cb3df441faa1af7683c3bd55223d5f03e158fa6cb9e17f78672a1e49cec63174a7db3de1c4992cb7ef16ddffce394b6b22985c5684a5e71d73606b26fd7895e1593577f57cda00d949db435da4db2e9684a46681062d6dc5f5f6b03d40e9388e027c6641fa5624c86ec51f6bbf455236375b3cbbae7dec0bf3f19f0f4503dd8c00ab153c96b25804a231db67c08bcdff0e1ee1954a0af389c46706fb45dd8a6814b5c010de5ef30ca9c18680357b74ce22e246e2a6e4cdc9b1eb66f1bfb0cc1108c0c7ee29385837cbcb8c67e830ecf86690495948e60631daef9eb09f6631ff150852f0a6f1714a36c70bf43177dfb002e3801c38d2b945532f938b62d2ef7301351334517777d207bb95055b9eba94373165dc730d52d83c81de3bd6b5b0eea256eff7f7b4ec6758ee5a6976e12b3753b3e07ca3ad096858ee59b58edee0a1ccd353e2eb21fc8032f8093e94edc162aa7e71bfc76af2ec42ab3e4c4d18ba756fbf96a0348c0ee7c22f85d7e9dfa30fd8bf0ebbb6f58abad316bc8bcca8f4bafa22f69ae8a100b322c800eb193b632a41b9144071b360054fcafc3e3f1441d9ad7c91463ec6a26440811ef2ea128e76ed77a664782a4cf5a666991c91336641986ead4d7d56c8684f26529c60a5b2a34de984550e7d52768610a90e7108da457cb8b2ebbfe1650526433ce39569e38a123f773f075d5ee1c57d45146ca3584a47ea38f796cce72da2d8f0532febd855f9c307bd4537fc1a7069c2c76554eb49fc8c94e8a0808a13570f893a15761b93d74ea7e324473ecc99e6bbac6adf46f07eca83c13d53b95bfca05545f02577371bc6b50c04dd93b98edc4046ea9af49ca09ec06c6176d186bff0006079ac2c9bce6a1c5091b3f46611d06944ae1b545adb0690d344d3bd79d1a1168ab50804174346898b30dfbe84238deefe53af1ccc6fb9be911a728cb9e08328a1096daac67e13fda763ac9ca86b00ce5fdc229090e343c9a0ba9ce2bbcab5d25851f379adacd52a5bbb6962bc59ee3597a04e21b35e63162b07568204a85188798a3ef7d8546e4dfce6b36b397c3d3e72b12fd1f84fd240558dfa59f8b34c0d8a9fd1617b2c8edcdfdc5496a90919caa003ec0ce126c1b120e5ad6fc7e60cd1aaf8425d51da45e5dddea6b254f2e5c028a05765309c2a3f4ed4a591759395eafd143a9f59e3fee6cc93f6a91c7b903bb818ef98787c3f0b06838caf9b7523e19bd5a53f3bce167b4379b45f1e188e2bd7163a8acef2be6204057e1b5d546c49e035d942a81ebb8334705e4c16582b569569a5b9d0fa973964ad3d6ff17c2cbc83ec2511c73ad17975fc1d6ecf651ecf65c9b3d31a7614b4323362945ec7e0d8a83f8f22794ff20f80963547b5d28741aef156ae63c0a36012fccc1c85846ac94ed31368637c72a387ee776bc1cfa48fb78dcc189544f5b48cc39927abca9b2028854f96bf7fe646c87fdaf0006f5c58aebdf62309e9d9cc5a3694bcd5cf6bb63b45c69f5acabb16bfae3813f5e88f0b52a3c297da0a9d2195bf33bbe8983fd9658283d187601369469c238756f2e8ba47906c84e7342ce68d898b145be57be35b93f145923b73ec404e8fa7200537eb56f0c0ef2bb852ff1bc403c7a61da1c8314d31ce521d9aa1865b444aa5440008a4cf8cc9c172928cb09839ba48b6ad6156cad0ecc597afa34e4240f6eeddcc63a72ee0c1c2560b4ddafcdda41ebf657f4911e65fa184826545e637d8a63f213576c393d9fd8fe0c5546453af2966e901f6b7056de1ba5a2ea0f2bb50300373592cfdefdfc82d2b03cdfa7b314c54e8459925388286b942ad1839503182ac88eb0c4b25d08a033986f1556286cac631a4ba922793dfdf142587c3995116c4050366797789edbdd0d62e16204ccc5760f88591abaaec48589a18592a7d3815d6a29a85548c1159a068e730f62c4aa2f0734a28f1e7a16610fcc2d210242d65b02bf747a0d26c53fca4c1edae478d2ce6d2d3995e12c9719e30ddc27658ca9bedca6888b2626a8c4cd9763becb9ee4b2f0d2cef5ed6bdb0596f20b7314625d8f2657a4663495904a2b626cae1ec6c02cf68495c5e1c8fd8c14eb78f4bebbcaceb4c9573aca5426fe6967ac3f1852d0279016b40063be8b9032535a2a06a0744cd8e7bac60d66888e3bedbde52bcdc6ccff745520fb71aa996a0ffeb694a965b145e0f4cf853089b6d74d08acdaef96385312a8b7d9f207c02ba2d36ad28594207d09601409b64733f372253d01ee5718d53d679e1eaf6506168c49571f20c60e7288651aa40ffe1fce55da170d637c345ff37da1c13fc079068e8c230f68b970b9f21305bfbd18b326b23679ef5f3891beb71bdd6fb9d177aac430a01a4200c284986a621282d66a333f0018e6ef0fa65434cfc6a39c27de58375a9b333acc6f5769d9964461adaa6d6f8abcb8d2ba1bc4df97b8bf584dce0e2f4a66211f193fe16590a4b89d4e2d7ed02bb56f1f95e651c89c7320eb2dd017cf1bf0ea6c92d1b1dc0f819c7ae8b35c3bd6f5cf920b4a614494c89367e182c31f11cc5318a98c077262613d20d15e761adcd8f77fa0bda6d6fe5aca9d79b00b36b085373de2aa90bf4be556b1f1131571e70d5c68f42540e87ab7f2255bea1e029dda4102258daba41c649aa0821542f633fd6be56f4b6704dcee430fa328f151eade2f382c0be424a5dba9627358e91ce5b490bbccd4bb63158d42bdaf5a0ca2eccb8b5b9f88c8264e937c4b97dfd98b27346ddfb9104bddb22411d6075f0bb9d1a8eb684d7ad0fc8a1788b9372e6dcc46bd60de69d3a3faf9f8115ac2bd779b918dff8f2dbcdb395aa4df8497181b2d0a2fdff4ed876c1bfa72d14fb7313a5af8914118de718dda54c299c8b0fb687a8de68ece1f83a47fd2fced78807fa567afea582c2131a205aac85e23b10ce52fce2f9314449f109d3744293bade54aee0f9b93c24e5487fd11c9aef09ce217b776c8d7086572c145c0aea4e1422467709cedaed0b4cc0cfaaf871d7bb497d7dbe7c8a708cf250100c517d54539ed2540acc7a6d196b42c5cd4611ecdc57b75f9fec4cdc6717f1d8cdb7fceb1229ffbbc87b73a25db4ade1c771f448af0a2cd31e0eeb9e37474c62fc46c43e151ad6b23e2475533ed2b99b1f857330ff6d5b4e6d0df0c679cac6e4e9e4c5748333ebdf9f055261a4e23c6b7ffb9b5290ee970ad1581ec3721ec73f616c95eb0fc42dd4bce2472e0b67220d77e0df4a7b9ea703b72de8151be32a65ca1f75fc1a70932c316c1215b3e76ec7d15165e9b23eeee302468bd1248e61139be6a21acf2c03c3096f04ead532605a141f0e178682bb576a37eba29a89f1c247131b5dcc1b3b132a860356ad9164f"}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (async)

15:15:55 executing program 0:
syz_emit_ethernet(0x0, 0x0, 0x0)

15:15:55 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce1002b0000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:56 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x5, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2137.853861][T21284] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:15:56 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x46, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:56 executing program 0:
syz_emit_ethernet(0x0, 0x0, 0x0)

15:15:56 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce1002c0000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2138.035387][T21303] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2138.246774][T21301] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2138.257223][T21301] CPU: 0 PID: 21301 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2138.267664][T21301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2138.277737][T21301] Call Trace:
[ 2138.281034][T21301]  <TASK>
[ 2138.283987][T21301]  dump_stack_lvl+0xcd/0x134
[ 2138.288610][T21301]  dump_header+0x10b/0x7f9
[ 2138.293054][T21301]  oom_kill_process.cold+0x10/0x15
[ 2138.298196][T21301]  out_of_memory+0x358/0x14a0
[ 2138.302903][T21301]  ? find_held_lock+0x2d/0x110
[ 2138.307689][T21301]  ? oom_killer_disable+0x270/0x270
[ 2138.312917][T21301]  ? find_held_lock+0x2d/0x110
[ 2138.317704][T21301]  mem_cgroup_out_of_memory+0x206/0x270
[ 2138.323277][T21301]  ? mem_cgroup_margin+0x130/0x130
[ 2138.328408][T21301]  ? lock_downgrade+0x6e0/0x6e0
[ 2138.333297][T21301]  try_charge_memcg+0xf67/0x13f0
[ 2138.338265][T21301]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2138.344279][T21301]  ? lock_downgrade+0x6e0/0x6e0
[ 2138.349168][T21301]  charge_memcg+0x31/0x320
[ 2138.353604][T21301]  __mem_cgroup_charge+0x27/0x90
[ 2138.358548][T21301]  ? folio_flags.constprop.0+0x53/0x150
[ 2138.364219][T21301]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2138.369799][T21301]  ? shmem_write_end+0xe90/0xe90
[ 2138.374758][T21301]  ? folio_flags.constprop.0+0x53/0x150
[ 2138.380298][T21301]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2138.386195][T21301]  shmem_getpage_gfp+0x8af/0x1f30
[ 2138.391239][T21301]  ? shmem_is_huge+0x330/0x330
[ 2138.396020][T21301]  shmem_fault+0x1b4/0x750
[ 2138.400432][T21301]  ? shmem_getpage+0xa0/0xa0
[ 2138.405018][T21301]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2138.410652][T21301]  __do_fault+0x10d/0x610
[ 2138.414989][T21301]  __handle_mm_fault+0x2130/0x39b0
[ 2138.420131][T21301]  ? vm_iomap_memory+0x190/0x190
[ 2138.425094][T21301]  handle_mm_fault+0x1c8/0x780
[ 2138.429852][T21301]  __get_user_pages+0x4f3/0xfd0
[ 2138.434713][T21301]  ? follow_page_mask+0x1570/0x1570
[ 2138.439936][T21301]  populate_vma_page_range+0x23d/0x320
[ 2138.445407][T21301]  __mm_populate+0x1ea/0x3d0
[ 2138.450016][T21301]  ? faultin_vma_page_range+0x300/0x300
[ 2138.455562][T21301]  ? up_write+0x148/0x470
[ 2138.459890][T21301]  vm_mmap_pgoff+0x1fd/0x270
[ 2138.464497][T21301]  ? randomize_page+0xb0/0xb0
[ 2138.469212][T21301]  ksys_mmap_pgoff+0x79/0x5a0
[ 2138.473911][T21301]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2138.480516][T21301]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2138.485800][T21301]  __do_fast_syscall_32+0x65/0xf0
[ 2138.490818][T21301]  do_fast_syscall_32+0x2f/0x70
[ 2138.495670][T21301]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2138.502014][T21301] RIP: 0023:0xf7fdf549
[ 2138.506073][T21301] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2138.525676][T21301] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2138.534081][T21301] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2138.542044][T21301] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2138.550004][T21301] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2138.557965][T21301] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2138.565937][T21301] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2138.573945][T21301]  </TASK>
[ 2138.577031][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2138.586418][T21301] memory: usage 307200kB, limit 307200kB, failcnt 2663
[ 2138.594074][T21301] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2138.601033][T21301] Memory cgroup stats for /syz2:
[ 2138.601574][T21301] anon 110592
[ 2138.601574][T21301] file 311255040
[ 2138.601574][T21301] kernel 3207168
[ 2138.601574][T21301] kernel_stack 98304
[ 2138.601574][T21301] pagetables 77824
[ 2138.601574][T21301] percpu 15392
[ 2138.601574][T21301] sock 0
[ 2138.601574][T21301] vmalloc 0
[ 2138.601574][T21301] shmem 311255040
[ 2138.601574][T21301] zswap 0
[ 2138.601574][T21301] zswapped 0
[ 2138.601574][T21301] file_mapped 3928064
[ 2138.601574][T21301] file_dirty 0
[ 2138.601574][T21301] file_writeback 0
[ 2138.601574][T21301] swapcached 0
[ 2138.601574][T21301] anon_thp 0
[ 2138.601574][T21301] file_thp 0
[ 2138.601574][T21301] shmem_thp 0
[ 2138.601574][T21301] inactive_anon 311144448
[ 2138.601574][T21301] active_anon 167936
[ 2138.601574][T21301] inactive_file 0
[ 2138.601574][T21301] active_file 0
[ 2138.601574][T21301] unevictable 0
[ 2138.601574][T21301] slab_reclaimable 1026696
[ 2138.601574][T21301] slab_unreclaimable 1969768
[ 2138.601574][T21301] slab 2996464
[ 2138.695020][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2138.704866][T21301] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21294,uid=0
[ 2138.720862][T21301] Memory cgroup out of memory: Killed process 21294 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3428kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 2138.738341][    C0] vkms_vblank_simulate: vblank timer overrun
15:15:56 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2) (async)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r1, 0xb) (async)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r1, 0xc)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000)=ANY=[], 0xffffff02)
ioctl$USBDEVFS_GETDRIVER(r2, 0x41045508, &(0x7f0000000100)={0x4, "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"}) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:56 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0) (fail_nth: 1)

15:15:56 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x6, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:56 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x52, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:56 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce1002f0000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2138.804638][T21314] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2138.995974][T21316] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2139.011819][T21316] CPU: 1 PID: 21316 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2139.022277][T21316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2139.032357][T21316] Call Trace:
[ 2139.035652][T21316]  <TASK>
[ 2139.038599][T21316]  dump_stack_lvl+0xcd/0x134
[ 2139.043214][T21316]  dump_header+0x10b/0x7f9
[ 2139.047649][T21316]  oom_kill_process.cold+0x10/0x15
[ 2139.052781][T21316]  out_of_memory+0x358/0x14a0
[ 2139.057470][T21316]  ? find_held_lock+0x2d/0x110
[ 2139.062243][T21316]  ? oom_killer_disable+0x270/0x270
[ 2139.067455][T21316]  ? find_held_lock+0x2d/0x110
[ 2139.072235][T21316]  mem_cgroup_out_of_memory+0x206/0x270
[ 2139.077789][T21316]  ? mem_cgroup_margin+0x130/0x130
[ 2139.082903][T21316]  ? lock_downgrade+0x6e0/0x6e0
[ 2139.087774][T21316]  try_charge_memcg+0xf67/0x13f0
[ 2139.092724][T21316]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2139.098720][T21316]  ? lock_downgrade+0x6e0/0x6e0
[ 2139.103596][T21316]  charge_memcg+0x31/0x320
[ 2139.108023][T21316]  __mem_cgroup_charge+0x27/0x90
[ 2139.112972][T21316]  ? _compound_head+0x5d/0x150
[ 2139.117746][T21316]  wp_page_copy+0x27c/0x1b60
[ 2139.122350][T21316]  ? restore_exclusive_pte+0x8b0/0x8b0
[ 2139.127832][T21316]  ? lock_downgrade+0x6e0/0x6e0
[ 2139.132689][T21316]  ? vm_normal_page+0x146/0x2a0
[ 2139.137558][T21316]  do_wp_page+0x52c/0x1910
[ 2139.141989][T21316]  __handle_mm_fault+0x1813/0x39b0
[ 2139.147115][T21316]  ? vm_iomap_memory+0x190/0x190
[ 2139.152080][T21316]  handle_mm_fault+0x1c8/0x780
[ 2139.156855][T21316]  do_user_addr_fault+0x475/0x1210
[ 2139.161985][T21316]  exc_page_fault+0x94/0x170
[ 2139.166590][T21316]  asm_exc_page_fault+0x22/0x30
[ 2139.171447][T21316] RIP: 0023:0xf6e1c06a
[ 2139.175525][T21316] Code: ec ef ff ff 83 c4 10 83 c3 01 83 c7 20 39 eb 75 d7 8b 44 24 18 89 30 8b 74 24 10 8b 86 00 e0 02 00 8b 96 e0 b2 f6 00 83 c0 01 <89> 86 00 e0 02 00 89 02 83 c4 2c 5b 5e 5f 5d c3 8d b6 00 00 00 00
[ 2139.195137][T21316] RSP: 002b:00000000f74afad0 EFLAGS: 00010202
[ 2139.201210][T21316] RAX: 0000000000000001 RBX: 000000002f220018 RCX: 000000002f220024
[ 2139.209184][T21316] RDX: 000000002f220000 RSI: 00000000f6f4a000 RDI: 00000000ffffffff
[ 2139.217158][T21316] RBP: 00000000f6f7afc0 R08: 0000000000000000 R09: 0000000000000000
[ 2139.225131][T21316] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 2139.233103][T21316] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2139.241095][T21316]  </TASK>
[ 2139.251644][T21316] memory: usage 307200kB, limit 307200kB, failcnt 2731
[ 2139.265663][T21316] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2139.276019][T21316] Memory cgroup stats for /syz2:
[ 2139.276292][T21316] anon 110592
[ 2139.276292][T21316] file 310591488
[ 2139.276292][T21316] kernel 3870720
[ 2139.276292][T21316] kernel_stack 98304
[ 2139.276292][T21316] pagetables 77824
[ 2139.276292][T21316] percpu 23680
[ 2139.276292][T21316] sock 0
[ 2139.276292][T21316] vmalloc 0
[ 2139.276292][T21316] shmem 310591488
[ 2139.276292][T21316] zswap 0
[ 2139.276292][T21316] zswapped 0
[ 2139.276292][T21316] file_mapped 3264512
[ 2139.276292][T21316] file_dirty 0
[ 2139.276292][T21316] file_writeback 0
[ 2139.276292][T21316] swapcached 0
[ 2139.276292][T21316] anon_thp 0
[ 2139.276292][T21316] file_thp 0
[ 2139.276292][T21316] shmem_thp 0
[ 2139.276292][T21316] inactive_anon 310505472
[ 2139.276292][T21316] active_anon 167936
[ 2139.276292][T21316] inactive_file 0
[ 2139.276292][T21316] active_file 0
[ 2139.276292][T21316] unevictable 0
[ 2139.276292][T21316] slab_reclaimable 1058528
[ 2139.276292][T21316] slab_unreclaimable 2591296
[ 2139.276292][T21316] slab 3649824
[ 2139.369786][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2139.378241][T21316] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21316,uid=0
[ 2139.393959][T21316] Memory cgroup out of memory: Killed process 21316 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:2900kB, UID:0 pgtables:72kB oom_score_adj:1000
15:15:59 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:59 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce1003a0000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:59 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x8, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:59 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0) (fail_nth: 2)

15:15:59 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8)
fcntl$dupfd(r0, 0x406, 0xffffffffffffffff)
shmctl$SHM_LOCK(r1, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:15:59 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0xfff)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0081000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000500000000000000000000000008080000000000000000008000000000ff7f000100000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0xffffff02)
ioctl$USBDEVFS_IOCTL(r3, 0xc00c5512, &(0x7f00000002c0)=@usbdevfs_driver={0xffffff7f, 0x1ff, &(0x7f0000000200)="40577cfb0f73737a42ce91dcfbe71ed93dbc4bfcabb776800bae7898cb64cde216a2d3375e32c4227afa3a62e06a7b987939ed462896ef727c91c034d4aba87cbe895ec946753e51df6b863f04caa3b4c322f2719011f419366e7e4d8e53350959e8c6677a1cfdeda25d0157276ddc3530d508bf761033e85e43723f1e51de7903d1cacd31bba41a6a489b0786a6c7121e962e76f97b4f6d2b1e00643fce72f070ba465a51b0f48f6349a57f18cec70859aa8f3f605cf86407204d"})

15:15:59 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce1003c0000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2141.002251][T21326] FAULT_INJECTION: forcing a failure.
[ 2141.002251][T21326] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2141.052452][T21326] CPU: 1 PID: 21326 Comm: syz-executor.0 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2141.062936][T21326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2141.073018][T21326] Call Trace:
[ 2141.076316][T21326]  <TASK>
[ 2141.079269][T21326]  dump_stack_lvl+0xcd/0x134
[ 2141.083900][T21326]  should_fail.cold+0x5/0xa
[ 2141.088453][T21326]  copyin+0x19/0x120
[ 2141.092382][T21326]  _copy_from_iter+0x1ca/0x11c0
15:15:59 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0xe, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2141.097271][T21326]  ? __alloc_pages_slowpath.constprop.0+0x2300/0x2300
[ 2141.104078][T21326]  ? _copy_mc_to_iter+0x1430/0x1430
[ 2141.109320][T21326]  ? tun_build_skb+0x186/0x1160
[ 2141.114197][T21326]  copy_page_from_iter+0x321/0x520
[ 2141.119302][T21326]  ? skb_page_frag_refill+0x1f9/0x360
[ 2141.124671][T21326]  tun_build_skb+0x27c/0x1160
[ 2141.129345][T21326]  ? tun_net_xmit+0x17a0/0x17a0
[ 2141.134190][T21326]  ? __lock_acquire+0xbc3/0x56d0
[ 2141.139140][T21326]  tun_get_user+0x7ef/0x3a00
[ 2141.143733][T21326]  ? tun_build_skb+0x1160/0x1160
[ 2141.148662][T21326]  ? lock_downgrade+0x6e0/0x6e0
[ 2141.153512][T21326]  tun_chr_write_iter+0xdb/0x200
[ 2141.158443][T21326]  vfs_write+0x9e9/0xdd0
[ 2141.162681][T21326]  ? kernel_write+0x630/0x630
[ 2141.167350][T21326]  ? __fget_files+0x26a/0x440
[ 2141.172022][T21326]  ? __fget_light+0xe5/0x270
[ 2141.176606][T21326]  ksys_write+0x127/0x250
[ 2141.180926][T21326]  ? __ia32_sys_read+0xb0/0xb0
[ 2141.185679][T21326]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2141.192262][T21326]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2141.198844][T21326]  __do_fast_syscall_32+0x65/0xf0
[ 2141.203862][T21326]  do_fast_syscall_32+0x2f/0x70
[ 2141.208704][T21326]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2141.215021][T21326] RIP: 0023:0xf7f34549
[ 2141.219076][T21326] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2141.238675][T21326] RSP: 002b:00000000f7f2f590 EFLAGS: 00000282 ORIG_RAX: 0000000000000004
15:15:59 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x2, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2141.247074][T21326] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000020000000
[ 2141.255206][T21326] RDX: 0000000000000046 RSI: 00000000f6f4a000 RDI: 0000000000000000
[ 2141.263186][T21326] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2141.271144][T21326] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000000000000
[ 2141.279105][T21326] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2141.287076][T21326]  </TASK>
15:15:59 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100840000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:59 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x1c, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:59 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x3, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:59 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100ff0000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:15:59 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x4, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:15:59 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x60, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2141.497014][T21332] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2141.586498][T21332] CPU: 1 PID: 21332 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2141.596973][T21332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2141.607049][T21332] Call Trace:
[ 2141.610343][T21332]  <TASK>
[ 2141.613294][T21332]  dump_stack_lvl+0xcd/0x134
[ 2141.617924][T21332]  dump_header+0x10b/0x7f9
[ 2141.622385][T21332]  oom_kill_process.cold+0x10/0x15
[ 2141.627532][T21332]  out_of_memory+0x358/0x14a0
[ 2141.632249][T21332]  ? find_held_lock+0x2d/0x110
[ 2141.637032][T21332]  ? oom_killer_disable+0x270/0x270
[ 2141.642226][T21332]  ? find_held_lock+0x2d/0x110
[ 2141.646981][T21332]  mem_cgroup_out_of_memory+0x206/0x270
[ 2141.652519][T21332]  ? mem_cgroup_margin+0x130/0x130
[ 2141.657632][T21332]  ? lock_downgrade+0x6e0/0x6e0
[ 2141.662482][T21332]  try_charge_memcg+0xf67/0x13f0
[ 2141.667414][T21332]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2141.673387][T21332]  ? lock_downgrade+0x6e0/0x6e0
[ 2141.678235][T21332]  charge_memcg+0x31/0x320
[ 2141.682646][T21332]  __mem_cgroup_charge+0x27/0x90
[ 2141.687574][T21332]  ? folio_flags.constprop.0+0x53/0x150
[ 2141.693113][T21332]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2141.698657][T21332]  ? shmem_write_end+0xe90/0xe90
[ 2141.703589][T21332]  ? folio_flags.constprop.0+0x53/0x150
[ 2141.709125][T21332]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2141.715019][T21332]  shmem_getpage_gfp+0x8af/0x1f30
[ 2141.720045][T21332]  ? shmem_is_huge+0x330/0x330
[ 2141.724812][T21332]  shmem_fault+0x1b4/0x750
[ 2141.729227][T21332]  ? shmem_getpage+0xa0/0xa0
[ 2141.733815][T21332]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2141.739449][T21332]  __do_fault+0x10d/0x610
[ 2141.743771][T21332]  __handle_mm_fault+0x2130/0x39b0
[ 2141.748880][T21332]  ? vm_iomap_memory+0x190/0x190
[ 2141.753822][T21332]  handle_mm_fault+0x1c8/0x780
[ 2141.758579][T21332]  __get_user_pages+0x4f3/0xfd0
[ 2141.763428][T21332]  ? follow_page_mask+0x1570/0x1570
[ 2141.768801][T21332]  populate_vma_page_range+0x23d/0x320
[ 2141.774254][T21332]  __mm_populate+0x1ea/0x3d0
[ 2141.778836][T21332]  ? faultin_vma_page_range+0x300/0x300
[ 2141.784380][T21332]  ? up_write+0x148/0x470
[ 2141.788704][T21332]  vm_mmap_pgoff+0x1fd/0x270
[ 2141.793289][T21332]  ? randomize_page+0xb0/0xb0
[ 2141.797954][T21332]  ? kfree+0x1fb/0x580
[ 2141.802025][T21332]  ksys_mmap_pgoff+0x79/0x5a0
[ 2141.806713][T21332]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2141.813294][T21332]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2141.818597][T21332]  __do_fast_syscall_32+0x65/0xf0
[ 2141.823614][T21332]  do_fast_syscall_32+0x2f/0x70
[ 2141.828542][T21332]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2141.834864][T21332] RIP: 0023:0xf7fdf549
[ 2141.838922][T21332] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2141.858530][T21332] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2141.866935][T21332] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2141.874900][T21332] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2141.882860][T21332] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2141.890822][T21332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2141.898783][T21332] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2141.906761][T21332]  </TASK>
15:16:00 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2141.981526][T21332] memory: usage 307196kB, limit 307200kB, failcnt 2784
[ 2141.990667][T21332] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2142.007919][T21332] Memory cgroup stats for /syz2:
[ 2142.008163][T21332] anon 110592
[ 2142.008163][T21332] file 309952512
[ 2142.008163][T21332] kernel 4505600
[ 2142.008163][T21332] kernel_stack 98304
[ 2142.008163][T21332] pagetables 77824
[ 2142.008163][T21332] percpu 31968
[ 2142.008163][T21332] sock 0
[ 2142.008163][T21332] vmalloc 0
[ 2142.008163][T21332] shmem 309952512
[ 2142.008163][T21332] zswap 0
[ 2142.008163][T21332] zswapped 0
[ 2142.008163][T21332] file_mapped 2625536
[ 2142.008163][T21332] file_dirty 0
[ 2142.008163][T21332] file_writeback 0
[ 2142.008163][T21332] swapcached 0
[ 2142.008163][T21332] anon_thp 0
[ 2142.008163][T21332] file_thp 0
[ 2142.008163][T21332] shmem_thp 0
[ 2142.008163][T21332] inactive_anon 309895168
[ 2142.008163][T21332] active_anon 167936
[ 2142.008163][T21332] inactive_file 0
[ 2142.008163][T21332] active_file 0
[ 2142.008163][T21332] unevictable 0
[ 2142.008163][T21332] slab_reclaimable 1091072
[ 2142.008163][T21332] slab_unreclaimable 3190024
[ 2142.008163][T21332] slab 4281096
[ 2142.121310][T21332] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21321,uid=0
[ 2142.151954][T21332] Memory cgroup out of memory: Killed process 21321 (syz-executor.2) total-vm:54492kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:2108kB, UID:0 pgtables:72kB oom_score_adj:1000
15:16:00 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8)
fcntl$dupfd(r0, 0x406, 0xffffffffffffffff)
shmctl$SHM_LOCK(r1, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)
unshare(0x40000400) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2) (async)
shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8) (async)
fcntl$dupfd(r0, 0x406, 0xffffffffffffffff) (async)
shmctl$SHM_LOCK(r1, 0xb) (async)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r1, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50) (async)

15:16:00 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000001000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:00 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x300, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:00 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x5, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:00 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0xfff)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0081000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000500000000000000000000000008080000000000000000008000000000ff7f000100000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0xffffff02)
ioctl$USBDEVFS_IOCTL(r3, 0xc00c5512, &(0x7f00000002c0)=@usbdevfs_driver={0xffffff7f, 0x1ff, &(0x7f0000000200)="40577cfb0f73737a42ce91dcfbe71ed93dbc4bfcabb776800bae7898cb64cde216a2d3375e32c4227afa3a62e06a7b987939ed462896ef727c91c034d4aba87cbe895ec946753e51df6b863f04caa3b4c322f2719011f419366e7e4d8e53350959e8c6677a1cfdeda25d0157276ddc3530d508bf761033e85e43723f1e51de7903d1cacd31bba41a6a489b0786a6c7121e962e76f97b4f6d2b1e00643fce72f070ba465a51b0f48f6349a57f18cec70859aa8f3f605cf86407204d"})
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="b1ba2e39102dbbad454c95b8806d3ba7074a6c5343147863fa6508d840ac209cdc7c98f38a1cba9f814eb82c514d1ec99006165125abd7ec43678d9a4f85a22276a8afe6fb989b08fb3f0f4298c3f104c92030bd272e824effbc5207392ee0e5a049da251365162137ea490a9e1b6611d5798615101772acf9063c95174abc2237d19fcbd51033660bee98addf79f873c95defed253b00675aeb62205cda9fa4ca01d117c704efd95636ce0d46dd90867969bf5bc8e05af3f459514126baf148488322c2c9152a0872b52660ab79e42a4da81b41b503e034ec26d7afa815c4c3a9be7c4374f57042653bef9f47268ab67abca30d0f8b3bd4a46e40f47268d1e2efc2e06c9da72238e06214c79a8c1fc8ed0677fd900014e9eb5885e1f5379d984bae384fc3543dba129e151396de172e92dbd9e53a"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
socket$inet(0x2, 0x3, 0xfff) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0081000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000500000000000000000000000008080000000000000000008000000000ff7f000100000000"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) (async)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0xffffff02) (async)
ioctl$USBDEVFS_IOCTL(r3, 0xc00c5512, &(0x7f00000002c0)=@usbdevfs_driver={0xffffff7f, 0x1ff, &(0x7f0000000200)="40577cfb0f73737a42ce91dcfbe71ed93dbc4bfcabb776800bae7898cb64cde216a2d3375e32c4227afa3a62e06a7b987939ed462896ef727c91c034d4aba87cbe895ec946753e51df6b863f04caa3b4c322f2719011f419366e7e4d8e53350959e8c6677a1cfdeda25d0157276ddc3530d508bf761033e85e43723f1e51de7903d1cacd31bba41a6a489b0786a6c7121e962e76f97b4f6d2b1e00643fce72f070ba465a51b0f48f6349a57f18cec70859aa8f3f605cf86407204d"}) (async)

15:16:00 executing program 0:
syz_emit_ethernet(0xd, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:00 executing program 0:
syz_emit_ethernet(0x86, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:00 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x500, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:00 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000004000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:00 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x6, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:00 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x7, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:00 executing program 0:
syz_emit_ethernet(0xfdef, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2142.590579][T21368] syz-executor.2 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=1, oom_score_adj=1000
[ 2142.619507][T21368] CPU: 1 PID: 21368 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2142.629945][T21368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2142.639997][T21368] Call Trace:
[ 2142.643267][T21368]  <TASK>
[ 2142.646190][T21368]  dump_stack_lvl+0xcd/0x134
[ 2142.650780][T21368]  dump_header+0x10b/0x7f9
[ 2142.655195][T21368]  oom_kill_process.cold+0x10/0x15
[ 2142.660303][T21368]  out_of_memory+0x358/0x14a0
[ 2142.664977][T21368]  ? find_held_lock+0x2d/0x110
[ 2142.669737][T21368]  ? oom_killer_disable+0x270/0x270
[ 2142.674933][T21368]  ? find_held_lock+0x2d/0x110
[ 2142.679690][T21368]  mem_cgroup_out_of_memory+0x206/0x270
[ 2142.685234][T21368]  ? mem_cgroup_margin+0x130/0x130
[ 2142.690335][T21368]  ? lock_downgrade+0x6e0/0x6e0
[ 2142.695187][T21368]  try_charge_memcg+0xf67/0x13f0
[ 2142.700123][T21368]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2142.706096][T21368]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2142.711815][T21368]  ? lock_downgrade+0x6e0/0x6e0
[ 2142.716697][T21368]  obj_cgroup_charge+0x2ab/0x5e0
[ 2142.721654][T21368]  __kmalloc_track_caller+0xad/0x340
[ 2142.726945][T21368]  ? neigh_sysctl_register+0x9a/0x5e0
[ 2142.732331][T21368]  kmemdup+0x23/0x50
[ 2142.736239][T21368]  neigh_sysctl_register+0x9a/0x5e0
[ 2142.741447][T21368]  ? neigh_stat_seq_show+0x420/0x420
[ 2142.746742][T21368]  ? inetdev_init+0x23d/0x580
[ 2142.751452][T21368]  ? inetdev_event+0xa85/0x1610
[ 2142.756318][T21368]  ? notifier_call_chain+0xb5/0x200
[ 2142.761523][T21368]  ? call_netdevice_notifiers_info+0xb5/0x130
[ 2142.767596][T21368]  ? register_netdevice+0x1127/0x1680
[ 2142.772975][T21368]  ? register_netdev+0x2d/0x50
[ 2142.777742][T21368]  ? sit_init_net+0x350/0xa30
[ 2142.782474][T21368]  ? ops_init+0xaf/0x470
[ 2142.786723][T21368]  ? setup_net+0x5d1/0xc50
[ 2142.791144][T21368]  ? copy_net_ns+0x318/0x760
[ 2142.795744][T21368]  ? create_new_namespaces+0x3f6/0xb20
[ 2142.801213][T21368]  ? unshare_nsproxy_namespaces+0xc1/0x1f0
[ 2142.807027][T21368]  ? ksys_unshare+0x445/0x920
[ 2142.811716][T21368]  ? __ia32_sys_unshare+0x2c/0x40
[ 2142.816745][T21368]  ? __do_fast_syscall_32+0x65/0xf0
[ 2142.821962][T21368]  devinet_sysctl_register+0xb1/0x230
[ 2142.827350][T21368]  inetdev_init+0x286/0x580
[ 2142.831863][T21368]  inetdev_event+0xa85/0x1610
[ 2142.836552][T21368]  ? devinet_init_net+0x640/0x640
[ 2142.841586][T21368]  ? skb_dequeue+0x125/0x180
[ 2142.846190][T21368]  ? __sanitizer_cov_trace_switch+0x50/0x90
[ 2142.852098][T21368]  notifier_call_chain+0xb5/0x200
[ 2142.857171][T21368]  call_netdevice_notifiers_info+0xb5/0x130
[ 2142.863076][T21368]  register_netdevice+0x1127/0x1680
[ 2142.868288][T21368]  ? netdev_change_features+0xb0/0xb0
[ 2142.873667][T21368]  ? memcpy+0x39/0x60
[ 2142.877667][T21368]  ? alloc_netdev_mqs+0xd5d/0x1180
[ 2142.882791][T21368]  register_netdev+0x2d/0x50
[ 2142.887388][T21368]  sit_init_net+0x350/0xa30
[ 2142.891895][T21368]  ? ipip6_tunnel_ctl+0x1040/0x1040
[ 2142.897104][T21368]  ops_init+0xaf/0x470
[ 2142.901185][T21368]  setup_net+0x5d1/0xc50
[ 2142.905438][T21368]  ? down_read_killable+0x1a7/0x490
[ 2142.910649][T21368]  ? ops_init+0x470/0x470
[ 2142.914982][T21368]  ? trace_kmalloc+0x32/0x100
[ 2142.919672][T21368]  copy_net_ns+0x318/0x760
[ 2142.924103][T21368]  create_new_namespaces+0x3f6/0xb20
[ 2142.929407][T21368]  unshare_nsproxy_namespaces+0xc1/0x1f0
[ 2142.935050][T21368]  ksys_unshare+0x445/0x920
[ 2142.939572][T21368]  ? unshare_fd+0x1c0/0x1c0
[ 2142.944114][T21368]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2142.950730][T21368]  __ia32_sys_unshare+0x2c/0x40
[ 2142.955600][T21368]  __do_fast_syscall_32+0x65/0xf0
[ 2142.960640][T21368]  do_fast_syscall_32+0x2f/0x70
[ 2142.965507][T21368]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2142.971847][T21368] RIP: 0023:0xf7fdf549
[ 2142.975921][T21368] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2142.995560][T21368] RSP: 002b:00000000f7fda5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000136
[ 2143.003979][T21368] RAX: ffffffffffffffda RBX: 0000000040000400 RCX: 0000000000000000
[ 2143.011959][T21368] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2143.019932][T21368] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2143.027904][T21368] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 2143.035877][T21368] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2143.043872][T21368]  </TASK>
[ 2143.053698][T21368] memory: usage 307200kB, limit 307200kB, failcnt 2881
[ 2143.061479][T21368] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2143.068362][T21368] Memory cgroup stats for /syz2:
[ 2143.068839][T21368] anon 110592
[ 2143.068839][T21368] file 309796864
[ 2143.068839][T21368] kernel 4591616
[ 2143.068839][T21368] kernel_stack 98304
[ 2143.068839][T21368] pagetables 77824
[ 2143.068839][T21368] percpu 29600
[ 2143.068839][T21368] sock 0
[ 2143.068839][T21368] vmalloc 0
[ 2143.068839][T21368] shmem 309796864
[ 2143.068839][T21368] zswap 0
[ 2143.068839][T21368] zswapped 0
[ 2143.068839][T21368] file_mapped 2469888
[ 2143.068839][T21368] file_dirty 0
[ 2143.068839][T21368] file_writeback 0
[ 2143.068839][T21368] swapcached 0
[ 2143.068839][T21368] anon_thp 0
[ 2143.068839][T21368] file_thp 0
[ 2143.068839][T21368] shmem_thp 0
[ 2143.068839][T21368] inactive_anon 309657600
[ 2143.068839][T21368] active_anon 167936
[ 2143.068839][T21368] inactive_file 0
[ 2143.068839][T21368] active_file 0
[ 2143.068839][T21368] unevictable 0
[ 2143.068839][T21368] slab_reclaimable 1105800
[ 2143.068839][T21368] slab_unreclaimable 3259144
[ 2143.068839][T21368] slab 4364944
[ 2143.162340][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2143.174047][T21368] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21364,uid=0
[ 2143.192877][T21368] Memory cgroup out of memory: Killed process 21364 (syz-executor.2) total-vm:50652kB, anon-rss:420kB, file-rss:8920kB, shmem-rss:2176kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 2144.675849][T11270] kworker/dying (11270) used greatest stack depth: 18640 bytes left
[ 2145.232288][   T30] oom_reaper: reaped process 21364 (syz-executor.2), now anon-rss:0kB, file-rss:8192kB, shmem-rss:2180kB
15:16:04 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2) (async)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) (async)
connect$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000000)={0x0, 0x5}, 0x8) (async)
fcntl$dupfd(r0, 0x406, 0xffffffffffffffff) (async)
shmctl$SHM_LOCK(r1, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r1, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:16:04 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000005000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:04 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x600, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:04 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x8, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:04 executing program 0:
syz_emit_ethernet(0xfffffdef, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:04 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
r1 = socket$inet(0x2, 0x3, 0xfff) (async)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0081000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000500000000000000000000000008080000000000000000008000000000ff7f000100000000"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000)=ANY=[], 0xffffff02) (async)
ioctl$USBDEVFS_IOCTL(r3, 0xc00c5512, &(0x7f00000002c0)=@usbdevfs_driver={0xffffff7f, 0x1ff, &(0x7f0000000200)="40577cfb0f73737a42ce91dcfbe71ed93dbc4bfcabb776800bae7898cb64cde216a2d3375e32c4227afa3a62e06a7b987939ed462896ef727c91c034d4aba87cbe895ec946753e51df6b863f04caa3b4c322f2719011f419366e7e4d8e53350959e8c6677a1cfdeda25d0157276ddc3530d508bf761033e85e43723f1e51de7903d1cacd31bba41a6a489b0786a6c7121e962e76f97b4f6d2b1e00643fce72f070ba465a51b0f48f6349a57f18cec70859aa8f3f605cf86407204d"})

15:16:04 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x0}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:04 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0xa, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:04 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0xe00, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:04 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000006000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:04 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0xe, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:04 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000007000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2146.679583][T21412] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2146.701125][T21412] CPU: 1 PID: 21412 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2146.711598][T21412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2146.721675][T21412] Call Trace:
[ 2146.724958][T21412]  <TASK>
[ 2146.727881][T21412]  dump_stack_lvl+0xcd/0x134
[ 2146.732485][T21412]  dump_header+0x10b/0x7f9
[ 2146.736931][T21412]  oom_kill_process.cold+0x10/0x15
[ 2146.742074][T21412]  out_of_memory+0x358/0x14a0
[ 2146.746769][T21412]  ? find_held_lock+0x2d/0x110
[ 2146.751536][T21412]  ? oom_killer_disable+0x270/0x270
[ 2146.756763][T21412]  ? find_held_lock+0x2d/0x110
[ 2146.761553][T21412]  mem_cgroup_out_of_memory+0x206/0x270
[ 2146.767135][T21412]  ? mem_cgroup_margin+0x130/0x130
[ 2146.772250][T21412]  ? lock_downgrade+0x6e0/0x6e0
[ 2146.777142][T21412]  try_charge_memcg+0xf67/0x13f0
[ 2146.782111][T21412]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2146.788110][T21412]  ? lock_downgrade+0x6e0/0x6e0
[ 2146.792984][T21412]  charge_memcg+0x31/0x320
[ 2146.797436][T21412]  __mem_cgroup_charge+0x27/0x90
[ 2146.802396][T21412]  ? folio_flags.constprop.0+0x53/0x150
[ 2146.807973][T21412]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2146.813538][T21412]  ? shmem_write_end+0xe90/0xe90
[ 2146.818489][T21412]  ? folio_flags.constprop.0+0x53/0x150
[ 2146.824044][T21412]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2146.829951][T21412]  shmem_getpage_gfp+0x8af/0x1f30
[ 2146.834998][T21412]  ? shmem_is_huge+0x330/0x330
[ 2146.839781][T21412]  shmem_fault+0x1b4/0x750
[ 2146.844217][T21412]  ? shmem_getpage+0xa0/0xa0
[ 2146.848821][T21412]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2146.854473][T21412]  __do_fault+0x10d/0x610
[ 2146.858809][T21412]  __handle_mm_fault+0x2130/0x39b0
[ 2146.863934][T21412]  ? vm_iomap_memory+0x190/0x190
[ 2146.868901][T21412]  handle_mm_fault+0x1c8/0x780
[ 2146.873680][T21412]  __get_user_pages+0x4f3/0xfd0
[ 2146.878549][T21412]  ? follow_page_mask+0x1570/0x1570
[ 2146.883773][T21412]  populate_vma_page_range+0x23d/0x320
[ 2146.889247][T21412]  __mm_populate+0x1ea/0x3d0
[ 2146.893849][T21412]  ? faultin_vma_page_range+0x300/0x300
[ 2146.899493][T21412]  ? up_write+0x148/0x470
[ 2146.903838][T21412]  vm_mmap_pgoff+0x1fd/0x270
[ 2146.908446][T21412]  ? randomize_page+0xb0/0xb0
[ 2146.913158][T21412]  ksys_mmap_pgoff+0x79/0x5a0
[ 2146.917845][T21412]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2146.924447][T21412]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2146.929742][T21412]  __do_fast_syscall_32+0x65/0xf0
[ 2146.934781][T21412]  do_fast_syscall_32+0x2f/0x70
[ 2146.939640][T21412]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2146.945977][T21412] RIP: 0023:0xf7fdf549
[ 2146.950046][T21412] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2146.969674][T21412] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2146.978105][T21412] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2146.986089][T21412] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2146.994067][T21412] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2147.002047][T21412] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2147.010020][T21412] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2147.018013][T21412]  </TASK>
[ 2147.032562][T21412] memory: usage 307172kB, limit 307200kB, failcnt 2962
[ 2147.049441][T21412] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2147.056999][T21412] Memory cgroup stats for /syz2:
[ 2147.057204][T21412] anon 110592
[ 2147.057204][T21412] file 311050240
[ 2147.057204][T21412] kernel 3371008
[ 2147.057204][T21412] kernel_stack 98304
[ 2147.057204][T21412] pagetables 77824
[ 2147.057204][T21412] percpu 16576
[ 2147.057204][T21412] sock 0
[ 2147.057204][T21412] vmalloc 0
[ 2147.057204][T21412] shmem 311050240
[ 2147.057204][T21412] zswap 0
[ 2147.057204][T21412] zswapped 0
[ 2147.057204][T21412] file_mapped 3723264
[ 2147.057204][T21412] file_dirty 0
[ 2147.057204][T21412] file_writeback 0
[ 2147.057204][T21412] swapcached 0
[ 2147.057204][T21412] anon_thp 0
[ 2147.057204][T21412] file_thp 0
[ 2147.057204][T21412] shmem_thp 0
[ 2147.057204][T21412] inactive_anon 310951936
[ 2147.057204][T21412] active_anon 167936
[ 2147.057204][T21412] inactive_file 0
[ 2147.057204][T21412] active_file 0
[ 2147.057204][T21412] unevictable 0
[ 2147.057204][T21412] slab_reclaimable 1047600
[ 2147.057204][T21412] slab_unreclaimable 2112288
[ 2147.057204][T21412] slab 3159888
[ 2147.150758][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2147.162161][T21412] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21400,uid=0
[ 2147.178347][T21412] Memory cgroup out of memory: Killed process 21400 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3164kB, UID:0 pgtables:72kB oom_score_adj:1000
[ 2149.232890][   T30] oom_reaper: reaped process 21400 (syz-executor.2), now anon-rss:0kB, file-rss:8192kB, shmem-rss:3408kB
15:16:07 executing program 2:
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmctl$IPC_RMID(0x0, 0x0)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="01000000000000000000140000003c0007800c00040000000000000000000800020000000000080001000000000008000100000000000800020000100000160003000000000000000000"], 0x50}}, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="d026c1c9a00748923c593ac8798e31e55af08f31f0a91e23c7cdd4725e84", @ANYRES16=r3, @ANYBLOB="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"], 0x2a0}, 0x1, 0x0, 0x0, 0x80}, 0x4000014)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
dup(r1)
shmctl$SHM_UNLOCK(r2, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:16:07 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x1c00, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:07 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000008000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:07 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x10, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:07 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x2}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:07 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
prctl$PR_SET_PTRACER(0x59616d61, r0)
ioctl$USBDEVFS_IOCTL(r1, 0x8108551b, &(0x7f0000000380))
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000000340)=[{&(0x7f0000000200)=""/160, 0xa0}, {&(0x7f00000002c0)=""/1, 0x1}, {&(0x7f0000000700)=""/67, 0x43}, {&(0x7f0000000800)=""/159, 0x9f}, {&(0x7f00000008c0)=""/92, 0x5c}, {&(0x7f0000000940)=""/176, 0xb0}, {&(0x7f0000000a00)=""/221, 0xdd}], 0x7, &(0x7f0000000780), 0x0, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000780)=<r4=>0x0)
process_vm_readv(r4, &(0x7f0000000e40)=[{&(0x7f0000001a40)=""/4096, 0x1000}, {&(0x7f0000000b00)=""/204, 0xcc}, {&(0x7f0000000c00)=""/170, 0xaa}, {&(0x7f0000000cc0)=""/135, 0x87}, {&(0x7f0000002a40)=""/4096, 0x1000}, {&(0x7f0000000d80)=""/168, 0xa8}], 0x6, &(0x7f0000000f40)=[{&(0x7f0000000e80)=""/156, 0x9c}], 0x1, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(0xffffffffffffffff, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x4b, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:16:07 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000029000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:07 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x2c, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:07 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x3}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:07 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x3f00, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:07 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce10000002b000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:07 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x33, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2150.073149][T21434] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2150.091283][T21434] CPU: 0 PID: 21434 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2150.101741][T21434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2150.111814][T21434] Call Trace:
[ 2150.115110][T21434]  <TASK>
[ 2150.118056][T21434]  dump_stack_lvl+0xcd/0x134
[ 2150.122678][T21434]  dump_header+0x10b/0x7f9
[ 2150.127135][T21434]  oom_kill_process.cold+0x10/0x15
[ 2150.132289][T21434]  out_of_memory+0x358/0x14a0
[ 2150.136995][T21434]  ? find_held_lock+0x2d/0x110
[ 2150.141778][T21434]  ? oom_killer_disable+0x270/0x270
[ 2150.147005][T21434]  ? find_held_lock+0x2d/0x110
[ 2150.151790][T21434]  mem_cgroup_out_of_memory+0x206/0x270
[ 2150.157347][T21434]  ? mem_cgroup_margin+0x130/0x130
[ 2150.162463][T21434]  ? lock_downgrade+0x6e0/0x6e0
[ 2150.167337][T21434]  try_charge_memcg+0xf67/0x13f0
[ 2150.172290][T21434]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2150.178291][T21434]  ? lock_downgrade+0x6e0/0x6e0
[ 2150.183182][T21434]  charge_memcg+0x31/0x320
[ 2150.187611][T21434]  __mem_cgroup_charge+0x27/0x90
[ 2150.192560][T21434]  ? folio_flags.constprop.0+0x53/0x150
[ 2150.198118][T21434]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2150.203682][T21434]  ? shmem_write_end+0xe90/0xe90
[ 2150.208641][T21434]  ? folio_flags.constprop.0+0x53/0x150
[ 2150.214199][T21434]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2150.220119][T21434]  shmem_getpage_gfp+0x8af/0x1f30
[ 2150.225167][T21434]  ? shmem_is_huge+0x330/0x330
[ 2150.229955][T21434]  shmem_fault+0x1b4/0x750
[ 2150.234385][T21434]  ? shmem_getpage+0xa0/0xa0
[ 2150.238992][T21434]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2150.244645][T21434]  __do_fault+0x10d/0x610
[ 2150.248983][T21434]  __handle_mm_fault+0x2130/0x39b0
[ 2150.254108][T21434]  ? vm_iomap_memory+0x190/0x190
[ 2150.259076][T21434]  handle_mm_fault+0x1c8/0x780
[ 2150.263849][T21434]  __get_user_pages+0x4f3/0xfd0
[ 2150.268723][T21434]  ? follow_page_mask+0x1570/0x1570
[ 2150.273965][T21434]  populate_vma_page_range+0x23d/0x320
[ 2150.279438][T21434]  __mm_populate+0x1ea/0x3d0
[ 2150.284042][T21434]  ? faultin_vma_page_range+0x300/0x300
[ 2150.289601][T21434]  ? up_write+0x148/0x470
[ 2150.293949][T21434]  vm_mmap_pgoff+0x1fd/0x270
[ 2150.298549][T21434]  ? randomize_page+0xb0/0xb0
[ 2150.303230][T21434]  ? kfree+0x1fb/0x580
[ 2150.307321][T21434]  ksys_mmap_pgoff+0x79/0x5a0
[ 2150.312007][T21434]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2150.318611][T21434]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2150.323912][T21434]  __do_fast_syscall_32+0x65/0xf0
[ 2150.328947][T21434]  do_fast_syscall_32+0x2f/0x70
[ 2150.333807][T21434]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2150.340147][T21434] RIP: 0023:0xf7fdf549
[ 2150.344224][T21434] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2150.363838][T21434] RSP: 002b:00000000f7fda5cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2150.372257][T21434] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2150.380233][T21434] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2150.388209][T21434] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2150.396183][T21434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2150.404162][T21434] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2150.412157][T21434]  </TASK>
[ 2150.415242][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2150.471296][T21434] memory: usage 307200kB, limit 307200kB, failcnt 2994
[ 2150.478293][T21434] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2150.497228][T21434] Memory cgroup stats for /syz2:
[ 2150.497410][T21434] anon 106496
[ 2150.497410][T21434] file 311840768
[ 2150.497410][T21434] kernel 2625536
[ 2150.497410][T21434] kernel_stack 65536
[ 2150.497410][T21434] pagetables 81920
[ 2150.497410][T21434] percpu 7104
[ 2150.497410][T21434] sock 0
[ 2150.497410][T21434] vmalloc 0
[ 2150.497410][T21434] shmem 311840768
[ 2150.497410][T21434] zswap 0
[ 2150.497410][T21434] zswapped 0
[ 2150.497410][T21434] file_mapped 4513792
[ 2150.497410][T21434] file_dirty 0
[ 2150.497410][T21434] file_writeback 0
[ 2150.497410][T21434] swapcached 0
[ 2150.497410][T21434] anon_thp 0
[ 2150.497410][T21434] file_thp 0
[ 2150.497410][T21434] shmem_thp 0
[ 2150.497410][T21434] inactive_anon 311771136
[ 2150.497410][T21434] active_anon 167936
[ 2150.497410][T21434] inactive_file 0
[ 2150.497410][T21434] active_file 0
[ 2150.497410][T21434] unevictable 0
[ 2150.497410][T21434] slab_reclaimable 1015768
[ 2150.497410][T21434] slab_unreclaimable 1435104
[ 2150.497410][T21434] slab 2450872
[ 2150.593735][T21434] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21426,uid=0
[ 2150.610943][T21434] Memory cgroup out of memory: Killed process 21426 (syz-executor.2) total-vm:54360kB, anon-rss:416kB, file-rss:8920kB, shmem-rss:4024kB, UID:0 pgtables:76kB oom_score_adj:1000
15:16:08 executing program 2:
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2) (async)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async)
shmctl$IPC_RMID(0x0, 0x0) (async)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="01000000000000000000140000003c0007800c00040000000000000000000800020000000000080001000000000008000100000000000800020000100000160003000000000000000000"], 0x50}}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="d026c1c9a00748923c593ac8798e31e55af08f31f0a91e23c7cdd4725e84", @ANYRES16=r3, @ANYBLOB="000228bd7000fbdbdf25030000005400028008000200020000000400040008000100040000003c0003800800020007000000080001000600000008000100abd2000008000100000000800800010000000100080001000600000008000100fcffffff100005800c00028008000300030000000c00078008000200008000002c000680080001000080000008000600ffffff7f040002000400020008000100800000000400020004000200900004800900010073797a31000000000900010073797a30000000000900010073797a30000000000900010073797a31000000000900010073797a300000000044000780080001001800000008000200f40000000800030086c2d41c080004000100000008000300fffffeff08000200908f0000080002000010000008000200018000000900010073797a31000000001c00038008000300b2c3000008000100000400000800030001000000a800058007000100696200001c0002800800010018000000080002000400000008000300000800000800010075647000080001007564700034000280080002003f000000080002000100000008000300000000000800010020000000080003000900000008000100030000003c00028008000400ffffffff080002000600000008000300bd60000008000100130000000800040001000100080004000800000008000100190000004c0006800400020008000600080000003c00040067636d286165732900000000000000000000000000000000000000000000000014000000970278b139e15306dda2ac58a077063a96ff7353500004800c00078008000200200000001c0007800800040007000000080004000900000008000200040000000900010073797a30000000000900010073797a31000000000900010073797a3100000000"], 0x2a0}, 0x1, 0x0, 0x0, 0x80}, 0x4000014)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
dup(r1)
shmctl$SHM_UNLOCK(r2, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:16:08 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x5}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:08 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce10000002c000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:08 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x4000, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:08 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x38, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:08 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
r0 = syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
prctl$PR_SET_PTRACER(0x59616d61, r0)
ioctl$USBDEVFS_IOCTL(r1, 0x8108551b, &(0x7f0000000380)) (async, rerun: 32)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (rerun: 32)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000000340)=[{&(0x7f0000000200)=""/160, 0xa0}, {&(0x7f00000002c0)=""/1, 0x1}, {&(0x7f0000000700)=""/67, 0x43}, {&(0x7f0000000800)=""/159, 0x9f}, {&(0x7f00000008c0)=""/92, 0x5c}, {&(0x7f0000000940)=""/176, 0xb0}, {&(0x7f0000000a00)=""/221, 0xdd}], 0x7, &(0x7f0000000780), 0x0, 0x0) (async)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000780)=<r4=>0x0)
process_vm_readv(r4, &(0x7f0000000e40)=[{&(0x7f0000001a40)=""/4096, 0x1000}, {&(0x7f0000000b00)=""/204, 0xcc}, {&(0x7f0000000c00)=""/170, 0xaa}, {&(0x7f0000000cc0)=""/135, 0x87}, {&(0x7f0000002a40)=""/4096, 0x1000}, {&(0x7f0000000d80)=""/168, 0xa8}], 0x6, &(0x7f0000000f40)=[{&(0x7f0000000e80)=""/156, 0x9c}], 0x1, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(0xffffffffffffffff, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x4b, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:16:08 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x6}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:08 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce10000002f000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:08 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x6000, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:08 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x48, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:08 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x8}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:08 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce10000003a000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2151.040140][T21456] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2151.064081][T21456] CPU: 0 PID: 21456 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2151.074538][T21456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2151.084594][T21456] Call Trace:
[ 2151.087881][T21456]  <TASK>
[ 2151.090812][T21456]  dump_stack_lvl+0xcd/0x134
[ 2151.095418][T21456]  dump_header+0x10b/0x7f9
[ 2151.099849][T21456]  oom_kill_process.cold+0x10/0x15
[ 2151.104992][T21456]  out_of_memory+0x358/0x14a0
[ 2151.109685][T21456]  ? find_held_lock+0x2d/0x110
[ 2151.114452][T21456]  ? oom_killer_disable+0x270/0x270
[ 2151.119656][T21456]  ? find_held_lock+0x2d/0x110
[ 2151.124431][T21456]  mem_cgroup_out_of_memory+0x206/0x270
[ 2151.129984][T21456]  ? mem_cgroup_margin+0x130/0x130
[ 2151.135097][T21456]  ? lock_downgrade+0x6e0/0x6e0
[ 2151.139966][T21456]  try_charge_memcg+0xf67/0x13f0
[ 2151.144915][T21456]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2151.150920][T21456]  ? lock_downgrade+0x6e0/0x6e0
[ 2151.155785][T21456]  charge_memcg+0x31/0x320
[ 2151.160208][T21456]  __mem_cgroup_charge+0x27/0x90
[ 2151.165156][T21456]  ? folio_flags.constprop.0+0x53/0x150
[ 2151.170709][T21456]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2151.176270][T21456]  ? shmem_write_end+0xe90/0xe90
[ 2151.181219][T21456]  ? folio_flags.constprop.0+0x53/0x150
[ 2151.186771][T21456]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2151.192679][T21456]  shmem_getpage_gfp+0x8af/0x1f30
[ 2151.197721][T21456]  ? shmem_is_huge+0x330/0x330
[ 2151.202501][T21456]  shmem_fault+0x1b4/0x750
[ 2151.206927][T21456]  ? shmem_getpage+0xa0/0xa0
[ 2151.211526][T21456]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2151.217174][T21456]  __do_fault+0x10d/0x610
[ 2151.221510][T21456]  __handle_mm_fault+0x2130/0x39b0
[ 2151.226629][T21456]  ? vm_iomap_memory+0x190/0x190
[ 2151.231596][T21456]  handle_mm_fault+0x1c8/0x780
[ 2151.236366][T21456]  __get_user_pages+0x4f3/0xfd0
[ 2151.241230][T21456]  ? follow_page_mask+0x1570/0x1570
[ 2151.246448][T21456]  populate_vma_page_range+0x23d/0x320
[ 2151.251915][T21456]  __mm_populate+0x1ea/0x3d0
[ 2151.256510][T21456]  ? faultin_vma_page_range+0x300/0x300
[ 2151.262064][T21456]  ? up_write+0x148/0x470
[ 2151.266402][T21456]  vm_mmap_pgoff+0x1fd/0x270
[ 2151.271000][T21456]  ? randomize_page+0xb0/0xb0
[ 2151.275693][T21456]  ksys_mmap_pgoff+0x79/0x5a0
[ 2151.280373][T21456]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2151.286968][T21456]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2151.292259][T21456]  __do_fast_syscall_32+0x65/0xf0
[ 2151.297290][T21456]  do_fast_syscall_32+0x2f/0x70
[ 2151.302144][T21456]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2151.308475][T21456] RIP: 0023:0xf7fdf549
[ 2151.312551][T21456] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2151.332163][T21456] RSP: 002b:00000000f7fda5cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2151.340583][T21456] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2151.348554][T21456] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2151.356523][T21456] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2151.364491][T21456] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2151.372459][T21456] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2151.380447][T21456]  </TASK>
[ 2151.383515][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2151.404925][T21456] memory: usage 307184kB, limit 307200kB, failcnt 3031
[ 2151.415543][T21456] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2151.423304][T21456] Memory cgroup stats for /syz2:
[ 2151.423522][T21456] anon 114688
[ 2151.423522][T21456] file 311836672
[ 2151.423522][T21456] kernel 2596864
[ 2151.423522][T21456] kernel_stack 98304
[ 2151.423522][T21456] pagetables 81920
[ 2151.423522][T21456] percpu 7104
[ 2151.423522][T21456] sock 0
[ 2151.423522][T21456] vmalloc 0
[ 2151.423522][T21456] shmem 311836672
[ 2151.423522][T21456] zswap 0
[ 2151.423522][T21456] zswapped 0
[ 2151.423522][T21456] file_mapped 4509696
[ 2151.423522][T21456] file_dirty 0
[ 2151.423522][T21456] file_writeback 0
[ 2151.423522][T21456] swapcached 0
[ 2151.423522][T21456] anon_thp 0
[ 2151.423522][T21456] file_thp 0
[ 2151.423522][T21456] shmem_thp 0
[ 2151.423522][T21456] inactive_anon 311783424
[ 2151.423522][T21456] active_anon 167936
[ 2151.423522][T21456] inactive_file 0
[ 2151.423522][T21456] active_file 0
[ 2151.423522][T21456] unevictable 0
[ 2151.423522][T21456] slab_reclaimable 998008
[ 2151.423522][T21456] slab_unreclaimable 1387440
[ 2151.423522][T21456] slab 2385448
[ 2151.519704][T21456] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21455,uid=0
[ 2151.535470][T21456] Memory cgroup out of memory: Killed process 21455 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3956kB, UID:0 pgtables:76kB oom_score_adj:1000
15:16:09 executing program 2:
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmctl$IPC_RMID(0x0, 0x0)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="01000000000000000000140000003c0007800c00040000000000000000000800020000000000080001000000000008000100000000000800020000100000160003000000000000000000"], 0x50}}, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="d026c1c9a00748923c593ac8798e31e55af08f31f0a91e23c7cdd4725e84", @ANYRES16=r3, @ANYBLOB="000228bd7000fbdbdf25030000005400028008000200020000000400040008000100040000003c0003800800020007000000080001000600000008000100abd2000008000100000000800800010000000100080001000600000008000100fcffffff100005800c00028008000300030000000c00078008000200008000002c000680080001000080000008000600ffffff7f040002000400020008000100800000000400020004000200900004800900010073797a31000000000900010073797a30000000000900010073797a30000000000900010073797a31000000000900010073797a300000000044000780080001001800000008000200f40000000800030086c2d41c080004000100000008000300fffffeff08000200908f0000080002000010000008000200018000000900010073797a31000000001c00038008000300b2c3000008000100000400000800030001000000a800058007000100696200001c0002800800010018000000080002000400000008000300000800000800010075647000080001007564700034000280080002003f000000080002000100000008000300000000000800010020000000080003000900000008000100030000003c00028008000400ffffffff080002000600000008000300bd60000008000100130000000800040001000100080004000800000008000100190000004c0006800400020008000600080000003c00040067636d286165732900000000000000000000000000000000000000000000000014000000970278b139e15306dda2ac58a077063a96ff7353500004800c00078008000200200000001c0007800800040007000000080004000900000008000200040000000900010073797a30000000000900010073797a31000000000900010073797a3100000000"], 0x2a0}, 0x1, 0x0, 0x0, 0x80}, 0x4000014)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
dup(r1)
shmctl$SHM_UNLOCK(r2, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2) (async)
shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async)
shmctl$IPC_RMID(0x0, 0x0) (async)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff) (async)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES16=r3, @ANYBLOB="01000000000000000000140000003c0007800c00040000000000000000000800020000000000080001000000000008000100000000000800020000100000160003000000000000000000"], 0x50}}, 0x0) (async)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="d026c1c9a00748923c593ac8798e31e55af08f31f0a91e23c7cdd4725e84", @ANYRES16=r3, @ANYBLOB="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"], 0x2a0}, 0x1, 0x0, 0x0, 0x80}, 0x4000014) (async)
shmctl$SHM_LOCK(r2, 0xb) (async)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
dup(r1) (async)
shmctl$SHM_UNLOCK(r2, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50) (async)

15:16:09 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:09 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:09 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x4c, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:09 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce10000003c000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:09 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
prctl$PR_SET_PTRACER(0x59616d61, r0)
ioctl$USBDEVFS_IOCTL(r1, 0x8108551b, &(0x7f0000000380))
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000000340)=[{&(0x7f0000000200)=""/160, 0xa0}, {&(0x7f00000002c0)=""/1, 0x1}, {&(0x7f0000000700)=""/67, 0x43}, {&(0x7f0000000800)=""/159, 0x9f}, {&(0x7f00000008c0)=""/92, 0x5c}, {&(0x7f0000000940)=""/176, 0xb0}, {&(0x7f0000000a00)=""/221, 0xdd}], 0x7, &(0x7f0000000780), 0x0, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000780)=<r4=>0x0)
process_vm_readv(r4, &(0x7f0000000e40)=[{&(0x7f0000001a40)=""/4096, 0x1000}, {&(0x7f0000000b00)=""/204, 0xcc}, {&(0x7f0000000c00)=""/170, 0xaa}, {&(0x7f0000000cc0)=""/135, 0x87}, {&(0x7f0000002a40)=""/4096, 0x1000}, {&(0x7f0000000d80)=""/168, 0xa8}], 0x6, &(0x7f0000000f40)=[{&(0x7f0000000e80)=""/156, 0x9c}], 0x1, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(0xffffffffffffffff, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x4b, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="b1ba2e39102dbbad454c95b8806d3ba7074a6c5343147863fa6508d840ac209cdc7c98f38a1cba9f814eb82c514d1ec99006165125abd7ec43678d9a4f85a22276a8afe6fb989b08fb3f0f4298c3f104c92030bd272e824effbc5207392ee0e5a049da251365162137ea490a9e1b6611d5798615101772acf9063c95174abc2237d19fcbd51033660bee98addf79f873c95defed253b00675aeb62205cda9fa4ca01d117c704efd95636ce0d46dd90867969bf5bc8e05af3f459514126baf148488322c2c9152a0872b52660ab79e42a4da81b41b503e034ec26d7afa815c4c3a9be7c4374f57042653bef9f47268ab67abca30d0f8b3bd4a46e40f47268d1e2efc2e06c9da72238e06214c79a8c1fc8ed0677fd900014e9eb5885e1f5379d984bae384fc3543dba129e151396de172e92dbd9e53a"}) (async)
prctl$PR_SET_PTRACER(0x59616d61, r0) (async)
ioctl$USBDEVFS_IOCTL(r1, 0x8108551b, &(0x7f0000000380)) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
getpid() (async)
process_vm_readv(r3, &(0x7f0000000340)=[{&(0x7f0000000200)=""/160, 0xa0}, {&(0x7f00000002c0)=""/1, 0x1}, {&(0x7f0000000700)=""/67, 0x43}, {&(0x7f0000000800)=""/159, 0x9f}, {&(0x7f00000008c0)=""/92, 0x5c}, {&(0x7f0000000940)=""/176, 0xb0}, {&(0x7f0000000a00)=""/221, 0xdd}], 0x7, &(0x7f0000000780), 0x0, 0x0) (async)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000780)) (async)
process_vm_readv(r4, &(0x7f0000000e40)=[{&(0x7f0000001a40)=""/4096, 0x1000}, {&(0x7f0000000b00)=""/204, 0xcc}, {&(0x7f0000000c00)=""/170, 0xaa}, {&(0x7f0000000cc0)=""/135, 0x87}, {&(0x7f0000002a40)=""/4096, 0x1000}, {&(0x7f0000000d80)=""/168, 0xa8}], 0x6, &(0x7f0000000f40)=[{&(0x7f0000000e80)=""/156, 0x9c}], 0x1, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(0xffffffffffffffff, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x4b, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (async)

15:16:09 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x2}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:09 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x60, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:09 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:09 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000084000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:09 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x3}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:09 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce1ffffff89000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2152.014389][T21490] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2152.024722][T21490] CPU: 0 PID: 21490 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2152.035126][T21490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2152.045173][T21490] Call Trace:
[ 2152.048449][T21490]  <TASK>
[ 2152.051370][T21490]  dump_stack_lvl+0xcd/0x134
[ 2152.055958][T21490]  dump_header+0x10b/0x7f9
[ 2152.060371][T21490]  oom_kill_process.cold+0x10/0x15
[ 2152.065481][T21490]  out_of_memory+0x358/0x14a0
[ 2152.070156][T21490]  ? find_held_lock+0x2d/0x110
[ 2152.074911][T21490]  ? oom_killer_disable+0x270/0x270
[ 2152.080101][T21490]  ? find_held_lock+0x2d/0x110
[ 2152.084878][T21490]  mem_cgroup_out_of_memory+0x206/0x270
[ 2152.090451][T21490]  ? mem_cgroup_margin+0x130/0x130
[ 2152.095583][T21490]  ? lock_downgrade+0x6e0/0x6e0
[ 2152.100457][T21490]  try_charge_memcg+0xf67/0x13f0
[ 2152.105391][T21490]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2152.111369][T21490]  ? lock_downgrade+0x6e0/0x6e0
[ 2152.116219][T21490]  charge_memcg+0x31/0x320
[ 2152.120629][T21490]  __mem_cgroup_charge+0x27/0x90
[ 2152.125557][T21490]  ? folio_flags.constprop.0+0x53/0x150
[ 2152.131100][T21490]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2152.136657][T21490]  ? shmem_write_end+0xe90/0xe90
[ 2152.141614][T21490]  ? folio_flags.constprop.0+0x53/0x150
[ 2152.147173][T21490]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2152.153083][T21490]  shmem_getpage_gfp+0x8af/0x1f30
[ 2152.158131][T21490]  ? shmem_is_huge+0x330/0x330
[ 2152.162916][T21490]  shmem_fault+0x1b4/0x750
[ 2152.167347][T21490]  ? shmem_getpage+0xa0/0xa0
[ 2152.171949][T21490]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2152.177603][T21490]  __do_fault+0x10d/0x610
[ 2152.181942][T21490]  __handle_mm_fault+0x2130/0x39b0
[ 2152.187065][T21490]  ? vm_iomap_memory+0x190/0x190
[ 2152.192030][T21490]  handle_mm_fault+0x1c8/0x780
[ 2152.196806][T21490]  __get_user_pages+0x4f3/0xfd0
[ 2152.201674][T21490]  ? follow_page_mask+0x1570/0x1570
[ 2152.206898][T21490]  populate_vma_page_range+0x23d/0x320
[ 2152.212371][T21490]  __mm_populate+0x1ea/0x3d0
[ 2152.216973][T21490]  ? faultin_vma_page_range+0x300/0x300
[ 2152.222533][T21490]  ? up_write+0x148/0x470
[ 2152.226877][T21490]  vm_mmap_pgoff+0x1fd/0x270
[ 2152.231478][T21490]  ? randomize_page+0xb0/0xb0
[ 2152.236183][T21490]  ksys_mmap_pgoff+0x79/0x5a0
[ 2152.240881][T21490]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2152.247483][T21490]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2152.252798][T21490]  __do_fast_syscall_32+0x65/0xf0
[ 2152.257833][T21490]  do_fast_syscall_32+0x2f/0x70
[ 2152.262691][T21490]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2152.269026][T21490] RIP: 0023:0xf7fdf549
[ 2152.273097][T21490] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2152.292711][T21490] RSP: 002b:00000000f7fda5cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2152.301146][T21490] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2152.309148][T21490] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2152.317122][T21490] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2152.325095][T21490] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2152.333067][T21490] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2152.341057][T21490]  </TASK>
[ 2152.344137][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2152.360171][T21490] memory: usage 307200kB, limit 307200kB, failcnt 3065
[ 2152.370878][T21490] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2152.378290][T21490] Memory cgroup stats for /syz2:
[ 2152.378487][T21490] anon 106496
[ 2152.378487][T21490] file 311922688
[ 2152.378487][T21490] kernel 2543616
[ 2152.378487][T21490] kernel_stack 65536
[ 2152.378487][T21490] pagetables 81920
[ 2152.378487][T21490] percpu 7104
[ 2152.378487][T21490] sock 0
[ 2152.378487][T21490] vmalloc 0
[ 2152.378487][T21490] shmem 311922688
[ 2152.378487][T21490] zswap 0
[ 2152.378487][T21490] zswapped 0
[ 2152.378487][T21490] file_mapped 4595712
[ 2152.378487][T21490] file_dirty 0
[ 2152.378487][T21490] file_writeback 0
[ 2152.378487][T21490] swapcached 0
[ 2152.378487][T21490] anon_thp 0
[ 2152.378487][T21490] file_thp 0
[ 2152.378487][T21490] shmem_thp 0
[ 2152.378487][T21490] inactive_anon 311812096
[ 2152.378487][T21490] active_anon 167936
[ 2152.378487][T21490] inactive_file 0
[ 2152.378487][T21490] active_file 0
[ 2152.378487][T21490] unevictable 0
[ 2152.378487][T21490] slab_reclaimable 994152
[ 2152.378487][T21490] slab_unreclaimable 1368152
[ 2152.378487][T21490] slab 2362304
[ 2152.471798][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2152.478697][T21490] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21489,uid=0
[ 2152.499324][T21490] Memory cgroup out of memory: Killed process 21489 (syz-executor.2) total-vm:50520kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:4220kB, UID:0 pgtables:76kB oom_score_adj:1000
15:16:10 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$int_in(r0, 0x5421, &(0x7f0000000000)=0x2)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r2, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:16:10 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x68, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:10 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:10 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x4}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:10 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce1000000ff000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:10 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d30406008849099f1f521abafadbd6c64e3a6748eeb44cb248b4b06232f5f1b8d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:16:10 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x5}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:10 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce189ffffff000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:10 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:10 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x6c, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:10 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x6}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:10 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x74, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2153.045807][T21524] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2153.071700][T21524] CPU: 1 PID: 21524 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2153.082168][T21524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2153.092240][T21524] Call Trace:
[ 2153.095534][T21524]  <TASK>
[ 2153.098478][T21524]  dump_stack_lvl+0xcd/0x134
[ 2153.103101][T21524]  dump_header+0x10b/0x7f9
[ 2153.107550][T21524]  oom_kill_process.cold+0x10/0x15
[ 2153.112701][T21524]  out_of_memory+0x358/0x14a0
[ 2153.117411][T21524]  ? find_held_lock+0x2d/0x110
[ 2153.122193][T21524]  ? oom_killer_disable+0x270/0x270
[ 2153.127421][T21524]  ? find_held_lock+0x2d/0x110
[ 2153.132207][T21524]  mem_cgroup_out_of_memory+0x206/0x270
[ 2153.137767][T21524]  ? mem_cgroup_margin+0x130/0x130
[ 2153.142883][T21524]  ? lock_downgrade+0x6e0/0x6e0
[ 2153.147754][T21524]  try_charge_memcg+0xf67/0x13f0
[ 2153.152715][T21524]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2153.158714][T21524]  ? lock_downgrade+0x6e0/0x6e0
[ 2153.163585][T21524]  charge_memcg+0x31/0x320
[ 2153.168013][T21524]  __mem_cgroup_charge+0x27/0x90
[ 2153.172958][T21524]  ? folio_flags.constprop.0+0x53/0x150
[ 2153.178515][T21524]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2153.184081][T21524]  ? shmem_write_end+0xe90/0xe90
[ 2153.189039][T21524]  ? folio_flags.constprop.0+0x53/0x150
[ 2153.194595][T21524]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2153.200505][T21524]  shmem_getpage_gfp+0x8af/0x1f30
[ 2153.205557][T21524]  ? shmem_is_huge+0x330/0x330
[ 2153.210340][T21524]  shmem_fault+0x1b4/0x750
[ 2153.214770][T21524]  ? shmem_getpage+0xa0/0xa0
[ 2153.219376][T21524]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2153.225030][T21524]  __do_fault+0x10d/0x610
[ 2153.229370][T21524]  __handle_mm_fault+0x2130/0x39b0
[ 2153.234495][T21524]  ? vm_iomap_memory+0x190/0x190
[ 2153.239464][T21524]  handle_mm_fault+0x1c8/0x780
[ 2153.244240][T21524]  __get_user_pages+0x4f3/0xfd0
[ 2153.249110][T21524]  ? follow_page_mask+0x1570/0x1570
[ 2153.254342][T21524]  populate_vma_page_range+0x23d/0x320
[ 2153.259815][T21524]  __mm_populate+0x1ea/0x3d0
[ 2153.264421][T21524]  ? faultin_vma_page_range+0x300/0x300
[ 2153.269979][T21524]  ? up_write+0x148/0x470
[ 2153.274329][T21524]  vm_mmap_pgoff+0x1fd/0x270
[ 2153.278932][T21524]  ? randomize_page+0xb0/0xb0
[ 2153.283610][T21524]  ? kfree+0x1fb/0x580
[ 2153.287699][T21524]  ksys_mmap_pgoff+0x79/0x5a0
[ 2153.292395][T21524]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2153.298999][T21524]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2153.304299][T21524]  __do_fast_syscall_32+0x65/0xf0
[ 2153.309333][T21524]  do_fast_syscall_32+0x2f/0x70
[ 2153.314190][T21524]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2153.320526][T21524] RIP: 0023:0xf7fdf549
[ 2153.324604][T21524] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2153.344220][T21524] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2153.352640][T21524] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2153.360627][T21524] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2153.368601][T21524] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2153.376576][T21524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2153.384551][T21524] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2153.392545][T21524]  </TASK>
[ 2153.411369][T21524] memory: usage 307200kB, limit 307200kB, failcnt 3143
[ 2153.418358][T21524] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2153.425736][T21524] Memory cgroup stats for /syz2:
[ 2153.425914][T21524] anon 110592
[ 2153.425914][T21524] file 311345152
[ 2153.425914][T21524] kernel 3117056
[ 2153.425914][T21524] kernel_stack 98304
[ 2153.425914][T21524] pagetables 77824
[ 2153.425914][T21524] percpu 13024
[ 2153.425914][T21524] sock 0
[ 2153.425914][T21524] vmalloc 0
[ 2153.425914][T21524] shmem 311345152
[ 2153.425914][T21524] zswap 0
[ 2153.425914][T21524] zswapped 0
[ 2153.425914][T21524] file_mapped 4018176
[ 2153.425914][T21524] file_dirty 0
[ 2153.425914][T21524] file_writeback 0
[ 2153.425914][T21524] swapcached 0
[ 2153.425914][T21524] anon_thp 0
[ 2153.425914][T21524] file_thp 0
[ 2153.425914][T21524] shmem_thp 0
[ 2153.425914][T21524] inactive_anon 311238656
[ 2153.425914][T21524] active_anon 167936
[ 2153.425914][T21524] inactive_file 0
[ 2153.425914][T21524] active_file 0
[ 2153.425914][T21524] unevictable 0
[ 2153.425914][T21524] slab_reclaimable 1020520
[ 2153.425914][T21524] slab_unreclaimable 1880096
[ 2153.425914][T21524] slab 2900616
[ 2153.535849][T21524] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21518,uid=0
[ 2153.564519][T21524] Memory cgroup out of memory: Killed process 21518 (syz-executor.2) total-vm:54492kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3428kB, UID:0 pgtables:72kB oom_score_adj:1000
15:16:13 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$int_in(r0, 0x5421, &(0x7f0000000000)=0x2) (async, rerun: 32)
r1 = socket$inet_tcp(0x2, 0x1, 0x0) (async, rerun: 32)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async, rerun: 64)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (rerun: 64)
mlockall(0x2) (async, rerun: 32)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async, rerun: 32)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r2, 0xb) (async, rerun: 64)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000) (rerun: 64)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r2, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:16:13 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x7}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:13 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x7a, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:13 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:13 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100040000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:13 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d30406008849099f1f521abafadbd6c64e3a6748eeb44cb248b4b06232f5f1b8d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d30406008849099f1f521abafadbd6c64e3a6748eeb44cb248b4b06232f5f1b8d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async)
socket$inet(0x2, 0x3, 0x2) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (async)

15:16:13 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x8}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:13 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:13 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:13 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100050000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:13 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0xe}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:13 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2155.919516][T21561] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2155.949784][T21561] CPU: 0 PID: 21561 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2155.960248][T21561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2155.970320][T21561] Call Trace:
[ 2155.973615][T21561]  <TASK>
[ 2155.976559][T21561]  dump_stack_lvl+0xcd/0x134
[ 2155.981177][T21561]  dump_header+0x10b/0x7f9
[ 2155.985621][T21561]  oom_kill_process.cold+0x10/0x15
[ 2155.990767][T21561]  out_of_memory+0x358/0x14a0
[ 2155.995476][T21561]  ? find_held_lock+0x2d/0x110
[ 2156.000259][T21561]  ? oom_killer_disable+0x270/0x270
[ 2156.005485][T21561]  ? find_held_lock+0x2d/0x110
[ 2156.010276][T21561]  mem_cgroup_out_of_memory+0x206/0x270
[ 2156.015847][T21561]  ? mem_cgroup_margin+0x130/0x130
[ 2156.020977][T21561]  ? lock_downgrade+0x6e0/0x6e0
[ 2156.025868][T21561]  try_charge_memcg+0xf67/0x13f0
[ 2156.030837][T21561]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2156.036846][T21561]  ? lock_downgrade+0x6e0/0x6e0
[ 2156.041741][T21561]  charge_memcg+0x31/0x320
[ 2156.046183][T21561]  __mem_cgroup_charge+0x27/0x90
[ 2156.051141][T21561]  ? folio_flags.constprop.0+0x53/0x150
[ 2156.056716][T21561]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2156.062327][T21561]  ? shmem_write_end+0xe90/0xe90
[ 2156.067294][T21561]  ? folio_flags.constprop.0+0x53/0x150
[ 2156.072869][T21561]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2156.078800][T21561]  shmem_getpage_gfp+0x8af/0x1f30
[ 2156.083881][T21561]  ? shmem_is_huge+0x330/0x330
[ 2156.088695][T21561]  shmem_fault+0x1b4/0x750
[ 2156.093164][T21561]  ? shmem_getpage+0xa0/0xa0
[ 2156.097792][T21561]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2156.103474][T21561]  __do_fault+0x10d/0x610
[ 2156.107836][T21561]  __handle_mm_fault+0x2130/0x39b0
[ 2156.112983][T21561]  ? vm_iomap_memory+0x190/0x190
[ 2156.117976][T21561]  handle_mm_fault+0x1c8/0x780
[ 2156.122765][T21561]  __get_user_pages+0x4f3/0xfd0
[ 2156.127655][T21561]  ? follow_page_mask+0x1570/0x1570
[ 2156.132898][T21561]  populate_vma_page_range+0x23d/0x320
[ 2156.138390][T21561]  __mm_populate+0x1ea/0x3d0
[ 2156.143006][T21561]  ? faultin_vma_page_range+0x300/0x300
[ 2156.148587][T21561]  ? up_write+0x148/0x470
[ 2156.152945][T21561]  vm_mmap_pgoff+0x1fd/0x270
[ 2156.157563][T21561]  ? randomize_page+0xb0/0xb0
[ 2156.162281][T21561]  ksys_mmap_pgoff+0x79/0x5a0
[ 2156.166982][T21561]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2156.173597][T21561]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2156.178905][T21561]  __do_fast_syscall_32+0x65/0xf0
[ 2156.183955][T21561]  do_fast_syscall_32+0x2f/0x70
[ 2156.188828][T21561]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2156.195186][T21561] RIP: 0023:0xf7fdf549
[ 2156.199285][T21561] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2156.218925][T21561] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2156.227363][T21561] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2156.235350][T21561] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2156.243337][T21561] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2156.251328][T21561] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2156.259315][T21561] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2156.267325][T21561]  </TASK>
[ 2156.270437][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2156.279839][T21561] memory: usage 307200kB, limit 307200kB, failcnt 3211
[ 2156.286938][T21561] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2156.294113][T21561] Memory cgroup stats for /syz2:
[ 2156.294322][T21561] anon 110592
[ 2156.294322][T21561] file 311255040
[ 2156.294322][T21561] kernel 3207168
[ 2156.294322][T21561] kernel_stack 98304
[ 2156.294322][T21561] pagetables 77824
[ 2156.294322][T21561] percpu 15392
[ 2156.294322][T21561] sock 0
[ 2156.294322][T21561] vmalloc 0
[ 2156.294322][T21561] shmem 311255040
[ 2156.294322][T21561] zswap 0
[ 2156.294322][T21561] zswapped 0
[ 2156.294322][T21561] file_mapped 3928064
[ 2156.294322][T21561] file_dirty 0
[ 2156.294322][T21561] file_writeback 0
[ 2156.294322][T21561] swapcached 0
[ 2156.294322][T21561] anon_thp 0
[ 2156.294322][T21561] file_thp 0
[ 2156.294322][T21561] shmem_thp 0
[ 2156.294322][T21561] inactive_anon 311132160
[ 2156.294322][T21561] active_anon 167936
[ 2156.294322][T21561] inactive_file 0
[ 2156.294322][T21561] active_file 0
[ 2156.294322][T21561] unevictable 0
[ 2156.294322][T21561] slab_reclaimable 1026696
[ 2156.294322][T21561] slab_unreclaimable 1969768
[ 2156.294322][T21561] slab 2996464
[ 2156.387760][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2156.420798][T21561] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21542,uid=0
[ 2156.451405][T21561] Memory cgroup out of memory: Killed process 21542 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:3428kB, UID:0 pgtables:72kB oom_score_adj:1000
15:16:14 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$int_in(r0, 0x5421, &(0x7f0000000000)=0x2)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r2, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)
unshare(0x40000400) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$int_in(r0, 0x5421, &(0x7f0000000000)=0x2) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2) (async)
shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r2, 0xb) (async)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r2, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r1, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50) (async)

15:16:14 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100060000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:14 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x2}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:14 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x38}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:14 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2156.603978][T21577] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2157.021079][T21579] syz-executor.2 invoked oom-killer: gfp_mask=0x400cc0(GFP_KERNEL_ACCOUNT), order=2, oom_score_adj=1000
[ 2157.034314][T21579] CPU: 1 PID: 21579 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2157.044755][T21579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2157.054806][T21579] Call Trace:
[ 2157.058077][T21579]  <TASK>
[ 2157.061002][T21579]  dump_stack_lvl+0xcd/0x134
[ 2157.065610][T21579]  dump_header+0x10b/0x7f9
[ 2157.070039][T21579]  oom_kill_process.cold+0x10/0x15
[ 2157.075153][T21579]  out_of_memory+0x358/0x14a0
[ 2157.079830][T21579]  ? find_held_lock+0x2d/0x110
[ 2157.084591][T21579]  ? oom_killer_disable+0x270/0x270
[ 2157.089794][T21579]  ? find_held_lock+0x2d/0x110
[ 2157.094558][T21579]  mem_cgroup_out_of_memory+0x206/0x270
[ 2157.100107][T21579]  ? mem_cgroup_margin+0x130/0x130
[ 2157.105217][T21579]  ? lock_downgrade+0x6e0/0x6e0
[ 2157.110083][T21579]  try_charge_memcg+0xf67/0x13f0
[ 2157.115037][T21579]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2157.121037][T21579]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2157.126751][T21579]  ? lock_downgrade+0x6e0/0x6e0
[ 2157.131606][T21579]  obj_cgroup_charge+0x2ab/0x5e0
[ 2157.136542][T21579]  __kmalloc_track_caller+0xad/0x340
[ 2157.141821][T21579]  ? __devinet_sysctl_register+0x98/0x280
[ 2157.147539][T21579]  kmemdup+0x23/0x50
[ 2157.151429][T21579]  __devinet_sysctl_register+0x98/0x280
[ 2157.156969][T21579]  ? inet_netconf_notify_devconf+0x260/0x260
[ 2157.162958][T21579]  ? register_netdev+0x2d/0x50
[ 2157.167736][T21579]  ? ip6gre_init_net+0x3cd/0x630
[ 2157.172666][T21579]  ? ops_init+0xaf/0x470
[ 2157.176902][T21579]  ? setup_net+0x5d1/0xc50
[ 2157.181304][T21579]  ? copy_net_ns+0x318/0x760
[ 2157.185880][T21579]  ? create_new_namespaces+0x3f6/0xb20
[ 2157.191336][T21579]  ? unshare_nsproxy_namespaces+0xc1/0x1f0
[ 2157.197132][T21579]  ? ksys_unshare+0x445/0x920
[ 2157.201797][T21579]  ? __ia32_sys_unshare+0x2c/0x40
[ 2157.206809][T21579]  ? __do_fast_syscall_32+0x65/0xf0
[ 2157.212003][T21579]  devinet_sysctl_register+0x160/0x230
[ 2157.217460][T21579]  inetdev_init+0x286/0x580
[ 2157.221958][T21579]  inetdev_event+0xa85/0x1610
[ 2157.226629][T21579]  ? devinet_init_net+0x640/0x640
[ 2157.231644][T21579]  ? skb_dequeue+0x125/0x180
[ 2157.236223][T21579]  ? __sanitizer_cov_trace_switch+0x50/0x90
[ 2157.242114][T21579]  notifier_call_chain+0xb5/0x200
[ 2157.247221][T21579]  call_netdevice_notifiers_info+0xb5/0x130
[ 2157.253119][T21579]  register_netdevice+0x1127/0x1680
[ 2157.258325][T21579]  ? netdev_change_features+0xb0/0xb0
[ 2157.263690][T21579]  ? memcpy+0x39/0x60
[ 2157.267669][T21579]  ? alloc_netdev_mqs+0xd5d/0x1180
[ 2157.272789][T21579]  register_netdev+0x2d/0x50
[ 2157.277390][T21579]  ip6gre_init_net+0x3cd/0x630
[ 2157.282145][T21579]  ? ip6gre_tunnel_uninit+0x460/0x460
[ 2157.287509][T21579]  ops_init+0xaf/0x470
[ 2157.291577][T21579]  setup_net+0x5d1/0xc50
[ 2157.295811][T21579]  ? down_read_killable+0x1a7/0x490
[ 2157.301012][T21579]  ? ops_init+0x470/0x470
[ 2157.305335][T21579]  ? trace_kmalloc+0x32/0x100
[ 2157.310005][T21579]  copy_net_ns+0x318/0x760
[ 2157.314426][T21579]  create_new_namespaces+0x3f6/0xb20
[ 2157.319710][T21579]  unshare_nsproxy_namespaces+0xc1/0x1f0
[ 2157.325339][T21579]  ksys_unshare+0x445/0x920
[ 2157.329836][T21579]  ? unshare_fd+0x1c0/0x1c0
[ 2157.334333][T21579]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2157.340916][T21579]  __ia32_sys_unshare+0x2c/0x40
[ 2157.345763][T21579]  __do_fast_syscall_32+0x65/0xf0
[ 2157.350785][T21579]  do_fast_syscall_32+0x2f/0x70
[ 2157.355624][T21579]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2157.361941][T21579] RIP: 0023:0xf7fdf549
[ 2157.365995][T21579] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2157.385592][T21579] RSP: 002b:00000000f7fda5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000136
[ 2157.393996][T21579] RAX: ffffffffffffffda RBX: 0000000040000400 RCX: 0000000000000000
[ 2157.402042][T21579] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2157.410001][T21579] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2157.417959][T21579] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 2157.425918][T21579] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2157.433888][T21579]  </TASK>
[ 2157.473792][T21579] memory: usage 307200kB, limit 307200kB, failcnt 3301
[ 2157.488131][T21579] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2157.497784][T21579] Memory cgroup stats for /syz2:
[ 2157.498759][T21579] anon 110592
[ 2157.498759][T21579] file 310648832
[ 2157.498759][T21579] kernel 3809280
[ 2157.498759][T21579] kernel_stack 98304
[ 2157.498759][T21579] pagetables 77824
[ 2157.498759][T21579] percpu 22496
[ 2157.498759][T21579] sock 0
[ 2157.498759][T21579] vmalloc 0
[ 2157.498759][T21579] shmem 310648832
[ 2157.498759][T21579] zswap 0
[ 2157.498759][T21579] zswapped 0
[ 2157.498759][T21579] file_mapped 3321856
[ 2157.498759][T21579] file_dirty 0
[ 2157.498759][T21579] file_writeback 0
[ 2157.498759][T21579] swapcached 0
[ 2157.498759][T21579] anon_thp 0
[ 2157.498759][T21579] file_thp 0
[ 2157.498759][T21579] shmem_thp 0
[ 2157.498759][T21579] inactive_anon 310571008
[ 2157.498759][T21579] active_anon 167936
[ 2157.498759][T21579] inactive_file 0
[ 2157.498759][T21579] active_file 0
[ 2157.498759][T21579] unevictable 0
[ 2157.498759][T21579] slab_reclaimable 1052352
[ 2157.498759][T21579] slab_unreclaimable 2537816
[ 2157.498759][T21579] slab 3590168
[ 2157.592240][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2157.616146][T21579] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21578,uid=0
[ 2157.639575][T21579] Memory cgroup out of memory: Killed process 21578 (syz-executor.2) total-vm:50652kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:2900kB, UID:0 pgtables:72kB oom_score_adj:1000
15:16:16 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d30406008849099f1f521abafadbd6c64e3a6748eeb44cb248b4b06232f5f1b8d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async)
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:16:16 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x60}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:16 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100070000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:16 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:16 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x3}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:16 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2158.732038][T21586] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:16:16 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100080000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2159.712739][   T30] oom_reaper: reaped process 21578 (syz-executor.2), now anon-rss:0kB, file-rss:8192kB, shmem-rss:3016kB
[ 2160.043387][ T1239] ieee802154 phy0 wpan0: encryption failed: -22
[ 2160.049697][ T1239] ieee802154 phy1 wpan1: encryption failed: -22
15:16:18 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x4}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:18 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x5, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:18 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:16:18 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x2}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:18 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100290000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:18 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x3}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:18 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce1002b0000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:18 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x6, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:18 executing program 2:
unshare(0x20020d80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x110, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xffffff02)
ioctl$TIOCMIWAIT(0xffffffffffffffff, 0x545c, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
r2 = shmget$private(0x0, 0x4000, 0x28, &(0x7f0000ffb000/0x4000)=nil)
shmat(r2, &(0x7f0000ffd000/0x1000)=nil, 0x3000)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

[ 2160.211636][T21599] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:16:18 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x4}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:18 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce1002c0000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:18 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x5}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:18 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x5}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2160.396054][T21618] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:16:18 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce1002f0000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2160.630925][T21609] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2160.667424][T21609] CPU: 1 PID: 21609 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
15:16:18 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async)
socket$inet(0x2, 0x3, 0x2) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (async)

15:16:18 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x6}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:18 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:18 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce1003a0000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:18 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x6}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2160.677900][T21609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2160.687978][T21609] Call Trace:
[ 2160.691280][T21609]  <TASK>
[ 2160.694235][T21609]  dump_stack_lvl+0xcd/0x134
[ 2160.698862][T21609]  dump_header+0x10b/0x7f9
[ 2160.703313][T21609]  oom_kill_process.cold+0x10/0x15
[ 2160.708458][T21609]  out_of_memory+0x358/0x14a0
[ 2160.713174][T21609]  ? find_held_lock+0x2d/0x110
[ 2160.717968][T21609]  ? oom_killer_disable+0x270/0x270
[ 2160.723190][T21609]  ? find_held_lock+0x2d/0x110
[ 2160.727952][T21609]  mem_cgroup_out_of_memory+0x206/0x270
[ 2160.733494][T21609]  ? mem_cgroup_margin+0x130/0x130
[ 2160.738594][T21609]  ? lock_downgrade+0x6e0/0x6e0
[ 2160.743443][T21609]  try_charge_memcg+0xf67/0x13f0
[ 2160.748385][T21609]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2160.754363][T21609]  ? lock_downgrade+0x6e0/0x6e0
[ 2160.759215][T21609]  charge_memcg+0x31/0x320
[ 2160.763630][T21609]  __mem_cgroup_charge+0x27/0x90
[ 2160.768563][T21609]  ? _compound_head+0x5d/0x150
[ 2160.773323][T21609]  __handle_mm_fault+0x17df/0x39b0
[ 2160.778430][T21609]  ? vm_iomap_memory+0x190/0x190
[ 2160.783374][T21609]  handle_mm_fault+0x1c8/0x780
[ 2160.788132][T21609]  __get_user_pages+0x4f3/0xfd0
[ 2160.792984][T21609]  ? follow_page_mask+0x1570/0x1570
[ 2160.798176][T21609]  ? anon_vma_clone+0x436/0x600
[ 2160.803038][T21609]  ? prot_none_hugetlb_entry+0x100/0x100
[ 2160.808704][T21609]  ? vma_wants_writenotify+0x1f8/0x370
[ 2160.814171][T21609]  populate_vma_page_range+0x23d/0x320
[ 2160.819633][T21609]  mprotect_fixup+0x648/0x970
[ 2160.824312][T21609]  ? change_protection+0x4280/0x4280
[ 2160.829588][T21609]  ? vmacache_find+0x62/0x330
[ 2160.834264][T21609]  do_mprotect_pkey+0x6c5/0x9e0
[ 2160.839111][T21609]  ? mprotect_fixup+0x970/0x970
[ 2160.843965][T21609]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2160.850555][T21609]  __ia32_sys_mprotect+0x71/0xb0
[ 2160.855487][T21609]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2160.862077][T21609]  __do_fast_syscall_32+0x65/0xf0
[ 2160.867101][T21609]  do_fast_syscall_32+0x2f/0x70
[ 2160.871949][T21609]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2160.878282][T21609] RIP: 0023:0xf7fdf549
[ 2160.882344][T21609] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2160.902116][T21609] RSP: 002b:00000000f74afa98 EFLAGS: 00000286 ORIG_RAX: 000000000000007d
[ 2160.910622][T21609] RAX: ffffffffffffffda RBX: 00000000f7f9a000 RCX: 0000000000020000
[ 2160.918597][T21609] RDX: 0000000000000003 RSI: 0000000000021000 RDI: 0000000000000000
[ 2160.926579][T21609] RBP: 00000000f74afb48 R08: 0000000000000000 R09: 0000000000000000
[ 2160.934545][T21609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2160.942507][T21609] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2160.950486][T21609]  </TASK>
[ 2160.966870][T21635] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:16:19 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce1003c0000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2161.011417][T21609] memory: usage 307200kB, limit 307200kB, failcnt 3374
[ 2161.023908][T21609] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2161.106725][T21609] Memory cgroup stats for /syz2:
[ 2161.107241][T21609] anon 167936
[ 2161.107241][T21609] file 311762944
[ 2161.107241][T21609] kernel 2641920
[ 2161.107241][T21609] kernel_stack 65536
[ 2161.107241][T21609] pagetables 81920
[ 2161.107241][T21609] percpu 7104
[ 2161.107241][T21609] sock 0
[ 2161.107241][T21609] vmalloc 0
[ 2161.107241][T21609] shmem 311762944
[ 2161.107241][T21609] zswap 0
[ 2161.107241][T21609] zswapped 0
[ 2161.107241][T21609] file_mapped 4435968
[ 2161.107241][T21609] file_dirty 0
[ 2161.107241][T21609] file_writeback 0
[ 2161.107241][T21609] swapcached 0
[ 2161.107241][T21609] anon_thp 0
[ 2161.107241][T21609] file_thp 0
[ 2161.107241][T21609] shmem_thp 0
[ 2161.107241][T21609] inactive_anon 307548160
[ 2161.107241][T21609] active_anon 167936
[ 2161.107241][T21609] inactive_file 0
[ 2161.107241][T21609] active_file 0
[ 2161.107241][T21609] unevictable 4214784
[ 2161.107241][T21609] slab_reclaimable 1019296
[ 2161.107241][T21609] slab_unreclaimable 1450432
[ 2161.107241][T21609] slab 2469728
[ 2161.201382][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2161.264840][T21609] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21609,uid=0
[ 2161.302274][T21609] Memory cgroup out of memory: Killed process 21609 (syz-executor.2) total-vm:54492kB, anon-rss:412kB, file-rss:8256kB, shmem-rss:3948kB, UID:0 pgtables:76kB oom_score_adj:1000
15:16:19 executing program 2:
unshare(0x20020d80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x110, 0xffffffffffffffff, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async, rerun: 64)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (rerun: 64)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xffffff02) (async, rerun: 32)
ioctl$TIOCMIWAIT(0xffffffffffffffff, 0x545c, 0x0) (async, rerun: 32)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async, rerun: 64)
mlockall(0x2) (async, rerun: 64)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
r2 = shmget$private(0x0, 0x4000, 0x28, &(0x7f0000ffb000/0x4000)=nil)
shmat(r2, &(0x7f0000ffd000/0x1000)=nil, 0x3000) (async, rerun: 32)
shmctl$SHM_LOCK(r2, 0xb) (async, rerun: 32)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:16:19 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0xe, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:19 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x7}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:19 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x7}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:19 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100840000000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:19 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="b1ba2e39102dbbad454c95b8806d3ba7074a6c5343147863fa6508d840ac209cdc7c98f38a1cba9f814eb82c514d1ec99006165125abd7ec43678d9a4f85a22276a8afe6fb989b08fb3f0f4298c3f104c92030bd272e824effbc5207392ee0e5a049da251365162137ea490a9e1b6611d5798615101772acf9063c95174abc2237d19fcbd51033660bee98addf79f873c95defed253b00675aeb62205cda9fa4ca01d117c704efd95636ce0d46dd90867969bf5bc8e05af3f459514126baf148488322c2c9152a0872b52660ab79e42a4da81b41b503e034ec26d7afa815c4c3a9be7c4374f57042653bef9f47268ab67abca30d0f8b3bd4a46e40f47268d1e2efc2e06c9da72238e06214c79a8c1fc8ed0677fd900014e9eb5885e1f5379d984bae384fc3543dba129e151396de172e92dbd9e53a"})
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async)
socket$inet(0x2, 0x3, 0x2) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid}) (async)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (async)

15:16:19 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x8}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:19 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:19 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000500000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2161.408039][T21646] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:16:19 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x8}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:19 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0xe}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:19 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2161.594765][T21656] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2161.663572][T21671] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2161.701626][T21656] CPU: 1 PID: 21656 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2161.712096][T21656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2161.722156][T21656] Call Trace:
[ 2161.725439][T21656]  <TASK>
[ 2161.728375][T21656]  dump_stack_lvl+0xcd/0x134
[ 2161.732981][T21656]  dump_header+0x10b/0x7f9
[ 2161.737412][T21656]  oom_kill_process.cold+0x10/0x15
[ 2161.742539][T21656]  out_of_memory+0x358/0x14a0
[ 2161.747229][T21656]  ? find_held_lock+0x2d/0x110
[ 2161.752000][T21656]  ? oom_killer_disable+0x270/0x270
[ 2161.757236][T21656]  ? find_held_lock+0x2d/0x110
[ 2161.762024][T21656]  mem_cgroup_out_of_memory+0x206/0x270
[ 2161.767595][T21656]  ? mem_cgroup_margin+0x130/0x130
[ 2161.772716][T21656]  ? lock_downgrade+0x6e0/0x6e0
[ 2161.777606][T21656]  try_charge_memcg+0xf67/0x13f0
[ 2161.782578][T21656]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2161.788585][T21656]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2161.794329][T21656]  ? lock_downgrade+0x6e0/0x6e0
[ 2161.799198][T21656]  ? lock_downgrade+0x6e0/0x6e0
[ 2161.804056][T21656]  ? rcu_read_unlock+0x9/0x60
[ 2161.808755][T21656]  obj_cgroup_charge+0x2ab/0x5e0
[ 2161.813706][T21656]  ? alloc_pid+0xcf/0xd70
[ 2161.818059][T21656]  kmem_cache_alloc+0x96/0x3b0
[ 2161.822838][T21656]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2161.828409][T21656]  alloc_pid+0xcf/0xd70
[ 2161.832607][T21656]  ? copy_thread+0x5dc/0xa00
[ 2161.837215][T21656]  ? copy_namespaces+0x1c1/0x450
[ 2161.842255][T21656]  copy_process+0x3db9/0x7090
[ 2161.846969][T21656]  ? __cleanup_sighand+0xb0/0xb0
[ 2161.851928][T21656]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 2161.857921][T21656]  kernel_clone+0xe7/0xab0
[ 2161.862349][T21656]  ? create_io_thread+0xe0/0xe0
[ 2161.867208][T21656]  ? find_held_lock+0x2d/0x110
[ 2161.871988][T21656]  ? __ct_user_exit+0xff/0x150
[ 2161.876780][T21656]  ? lock_downgrade+0x6e0/0x6e0
[ 2161.881641][T21656]  __do_compat_sys_ia32_clone+0x9e/0xd0
[ 2161.887200][T21656]  ? __do_compat_sys_ia32_fstat64+0xd0/0xd0
[ 2161.893118][T21656]  ? lockdep_hardirqs_on+0x79/0x100
[ 2161.898326][T21656]  ? syscall_enter_from_user_mode+0x22/0xb0
[ 2161.904230][T21656]  do_int80_syscall_32+0x46/0x90
[ 2161.909178][T21656]  entry_INT80_compat+0x8b/0x90
[ 2161.914034][T21656] RIP: 0023:0xf6e5ba44
[ 2161.918114][T21656] Code: 8b 44 24 04 89 41 08 c7 41 04 00 00 00 00 53 56 57 8b 74 24 24 8b 54 24 20 8b 5c 24 18 8b 7c 24 28 b8 78 00 00 00 89 19 cd 80 <5f> 5e 5b 85 c0 0f 8c 61 81 00 00 74 01 c3 89 f5 ff d3 e8 00 00 00
[ 2161.937736][T21656] RSP: 002b:00000000f74afa30 EFLAGS: 00000292 ORIG_RAX: 0000000000000078
[ 2161.946170][T21656] RAX: ffffffffffffffda RBX: 00000000003d0f00 RCX: 00000000f7f987a4
[ 2161.954149][T21656] RDX: 00000000f7f98ba8 RSI: 00000000f74afa7c RDI: 00000000f7f98ba8
[ 2161.962129][T21656] RBP: 00000000f6f4a000 R08: 0000000000000000 R09: 0000000000000000
[ 2161.970110][T21656] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000
[ 2161.978095][T21656] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2161.986093][T21656]  </TASK>
[ 2162.050126][T21656] memory: usage 307196kB, limit 307200kB, failcnt 3434
[ 2162.063649][T21656] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2162.070633][T21656] Memory cgroup stats for /syz2:
[ 2162.070975][T21656] anon 126976
[ 2162.070975][T21656] file 311762944
[ 2162.070975][T21656] kernel 2678784
[ 2162.070975][T21656] kernel_stack 131072
[ 2162.070975][T21656] pagetables 69632
[ 2162.070975][T21656] percpu 7104
[ 2162.070975][T21656] sock 0
[ 2162.070975][T21656] vmalloc 0
[ 2162.070975][T21656] shmem 311762944
[ 2162.070975][T21656] zswap 0
[ 2162.070975][T21656] zswapped 0
[ 2162.070975][T21656] file_mapped 241664
[ 2162.070975][T21656] file_dirty 0
[ 2162.070975][T21656] file_writeback 0
[ 2162.070975][T21656] swapcached 0
[ 2162.070975][T21656] anon_thp 0
[ 2162.070975][T21656] file_thp 0
[ 2162.070975][T21656] shmem_thp 0
[ 2162.070975][T21656] inactive_anon 311721984
[ 2162.070975][T21656] active_anon 167936
[ 2162.070975][T21656] inactive_file 0
[ 2162.070975][T21656] active_file 0
[ 2162.070975][T21656] unevictable 0
[ 2162.070975][T21656] slab_reclaimable 1006944
[ 2162.070975][T21656] slab_unreclaimable 1441120
[ 2162.070975][T21656] slab 2448064
[ 2162.208232][T21656] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21656,uid=0
[ 2162.234092][T21656] Memory cgroup out of memory: Killed process 21656 (syz-executor.2) total-vm:50784kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
15:16:20 executing program 2:
unshare(0x20020d80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x110, 0xffffffffffffffff, 0x0) (async, rerun: 32)
socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r0 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async, rerun: 32)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async, rerun: 32)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xffffff02)
ioctl$TIOCMIWAIT(0xffffffffffffffff, 0x545c, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async, rerun: 32)
r2 = shmget$private(0x0, 0x4000, 0x28, &(0x7f0000ffb000/0x4000)=nil) (rerun: 32)
shmat(r2, &(0x7f0000ffd000/0x1000)=nil, 0x3000) (async)
shmctl$SHM_LOCK(r2, 0xb) (async)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r1, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:16:20 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000600000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:20 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:20 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0xa}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:20 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x38}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:20 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e02038e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf8893f0000007b31bea2c0971edd2a4590a88d10adbc858200"/78, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
read$FUSE(r2, &(0x7f0000001a40)={0x2020, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x2020)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r3, r2, 0x0, 0x15, &(0x7f0000000200)='/dev/bus/usb/00#/00#\x00'}, 0x30)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:16:20 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000700000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:20 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2162.309725][T21683] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:16:20 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x60}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:20 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0xe}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2162.408749][T21689] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
15:16:20 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:20 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2162.523327][T21689] CPU: 0 PID: 21689 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2162.533785][T21689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2162.543837][T21689] Call Trace:
[ 2162.547106][T21689]  <TASK>
[ 2162.550028][T21689]  dump_stack_lvl+0xcd/0x134
[ 2162.554626][T21689]  dump_header+0x10b/0x7f9
[ 2162.559048][T21689]  oom_kill_process.cold+0x10/0x15
[ 2162.564154][T21689]  out_of_memory+0x358/0x14a0
[ 2162.568824][T21689]  ? find_held_lock+0x2d/0x110
[ 2162.573582][T21689]  ? oom_killer_disable+0x270/0x270
[ 2162.578775][T21689]  ? find_held_lock+0x2d/0x110
[ 2162.583542][T21689]  mem_cgroup_out_of_memory+0x206/0x270
[ 2162.589098][T21689]  ? mem_cgroup_margin+0x130/0x130
[ 2162.594208][T21689]  ? lock_downgrade+0x6e0/0x6e0
[ 2162.599068][T21689]  try_charge_memcg+0xf67/0x13f0
[ 2162.604006][T21689]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2162.609978][T21689]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2162.615693][T21689]  ? lock_downgrade+0x6e0/0x6e0
[ 2162.620534][T21689]  ? lock_downgrade+0x6e0/0x6e0
[ 2162.625396][T21689]  obj_cgroup_charge+0x2ab/0x5e0
[ 2162.630332][T21689]  kmem_cache_alloc_lru+0x13e/0x720
[ 2162.635521][T21689]  ? __d_alloc+0x32/0x960
[ 2162.639844][T21689]  __d_alloc+0x32/0x960
[ 2162.644026][T21689]  ? alloc_fd+0x2f0/0x6f0
[ 2162.648349][T21689]  d_alloc_pseudo+0x19/0x70
[ 2162.652848][T21689]  alloc_file_pseudo+0xc6/0x250
[ 2162.657694][T21689]  ? alloc_file+0x800/0x800
[ 2162.662192][T21689]  ? _raw_spin_unlock+0x24/0x40
[ 2162.667031][T21689]  ? alloc_fd+0x2f0/0x6f0
[ 2162.671367][T21689]  sock_alloc_file+0x4f/0x190
[ 2162.676072][T21689]  __sys_socket+0x1a4/0x240
[ 2162.680600][T21689]  ? __sys_socket_file+0x1f0/0x1f0
[ 2162.685709][T21689]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2162.692295][T21689]  __ia32_sys_socket+0x6f/0xb0
[ 2162.697046][T21689]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2162.703627][T21689]  __do_fast_syscall_32+0x65/0xf0
[ 2162.708641][T21689]  do_fast_syscall_32+0x2f/0x70
[ 2162.713482][T21689]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2162.719806][T21689] RIP: 0023:0xf7fdf549
[ 2162.723863][T21689] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2162.743462][T21689] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 0000000000000167
[ 2162.751862][T21689] RAX: ffffffffffffffda RBX: 0000000000000010 RCX: 0000000000000003
[ 2162.759821][T21689] RDX: 0000000000000010 RSI: 0000000000000000 RDI: 0000000000000000
[ 2162.767778][T21689] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2162.775739][T21689] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 2162.783697][T21689] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2162.791668][T21689]  </TASK>
[ 2162.794772][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2162.817308][T21702] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2162.961225][T21689] memory: usage 307200kB, limit 307200kB, failcnt 3528
[ 2162.970051][T21689] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2162.977839][T21689] Memory cgroup stats for /syz2:
[ 2162.978064][T21689] anon 131072
[ 2162.978064][T21689] file 311762944
[ 2162.978064][T21689] kernel 2678784
[ 2162.978064][T21689] kernel_stack 131072
[ 2162.978064][T21689] pagetables 69632
[ 2162.978064][T21689] percpu 7104
[ 2162.978064][T21689] sock 0
[ 2162.978064][T21689] vmalloc 0
[ 2162.978064][T21689] shmem 311762944
[ 2162.978064][T21689] zswap 0
[ 2162.978064][T21689] zswapped 0
[ 2162.978064][T21689] file_mapped 241664
[ 2162.978064][T21689] file_dirty 0
[ 2162.978064][T21689] file_writeback 0
[ 2162.978064][T21689] swapcached 0
[ 2162.978064][T21689] anon_thp 0
[ 2162.978064][T21689] file_thp 0
[ 2162.978064][T21689] shmem_thp 0
[ 2162.978064][T21689] inactive_anon 311726080
[ 2162.978064][T21689] active_anon 167936
[ 2162.978064][T21689] inactive_file 0
[ 2162.978064][T21689] active_file 0
[ 2162.978064][T21689] unevictable 0
[ 2162.978064][T21689] slab_reclaimable 1010792
[ 2162.978064][T21689] slab_unreclaimable 1422096
[ 2162.978064][T21689] slab 2432888
[ 2163.092701][T21689] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21686,uid=0
15:16:21 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:21 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100002900000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:21 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x10}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:21 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:21 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e02038e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf8893f0000007b31bea2c0971edd2a4590a88d10adbc858200"/78, @ANYRES64]) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (async)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380))
r1 = socket$inet(0x2, 0x3, 0x2) (async)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
read$FUSE(r2, &(0x7f0000001a40)={0x2020, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x2020)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r3, r2, 0x0, 0x15, &(0x7f0000000200)='/dev/bus/usb/00#/00#\x00'}, 0x30)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

[ 2163.108681][T21689] Memory cgroup out of memory: Killed process 21686 (syz-executor.2) total-vm:50916kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:64kB oom_score_adj:1000
15:16:21 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:21 executing program 2:
unshare(0x20600)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xf36f1000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x24}}, 0x10)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r1, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
r2 = shmget$private(0x0, 0x4000, 0x28, &(0x7f0000ffb000/0x4000)=nil)
shmat(r2, &(0x7f0000ffd000/0x1000)=nil, 0x3000)
shmctl$SHM_LOCK(r2, 0xb)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00', 0x0, 0x0, 0x0, [0x2, 0x0, 0x0, 0x6, 0x0, 0x7]}, &(0x7f0000000040)=0x50)

[ 2163.167168][T21708] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2163.194214][T21718] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:16:21 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="d888dbc159826bbdd98e02038e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf8893f0000007b31bea2c0971edd2a4590a88d10adbc858200"/78, @ANYRES64])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async, rerun: 32)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0) (rerun: 32)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r0, 0x8108551b, &(0x7f0000000380)) (async, rerun: 64)
r1 = socket$inet(0x2, 0x3, 0x2) (rerun: 64)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
read$FUSE(r2, &(0x7f0000001a40)={0x2020, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x2020)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r3, r2, 0x0, 0x15, &(0x7f0000000200)='/dev/bus/usb/00#/00#\x00'}, 0x30)
setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000004840)={{r2}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid}) (async, rerun: 32)
setsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc) (rerun: 32)

15:16:21 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100002b00000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:21 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:21 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0xe, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:21 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x2c}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:21 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100002c00000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2163.326545][T21724] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:16:21 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x4}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:21 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:21 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:21 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100002f00000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2163.454014][T21738] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2163.491444][T21740] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:16:21 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x33}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2163.635237][T21747] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 2163.706490][T21748] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2163.716968][T21748] CPU: 1 PID: 21748 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2163.727405][T21748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2163.737646][T21748] Call Trace:
[ 2163.740953][T21748]  <TASK>
[ 2163.743903][T21748]  dump_stack_lvl+0xcd/0x134
[ 2163.748520][T21748]  dump_header+0x10b/0x7f9
[ 2163.752952][T21748]  oom_kill_process.cold+0x10/0x15
[ 2163.758110][T21748]  out_of_memory+0x358/0x14a0
[ 2163.762830][T21748]  ? find_held_lock+0x2d/0x110
[ 2163.767618][T21748]  ? oom_killer_disable+0x270/0x270
[ 2163.772841][T21748]  ? find_held_lock+0x2d/0x110
[ 2163.777632][T21748]  mem_cgroup_out_of_memory+0x206/0x270
[ 2163.783212][T21748]  ? mem_cgroup_margin+0x130/0x130
[ 2163.788345][T21748]  ? lock_downgrade+0x6e0/0x6e0
[ 2163.793230][T21748]  try_charge_memcg+0xf67/0x13f0
[ 2163.798205][T21748]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2163.804235][T21748]  ? lock_downgrade+0x6e0/0x6e0
[ 2163.809117][T21748]  charge_memcg+0x31/0x320
[ 2163.813550][T21748]  __mem_cgroup_charge+0x27/0x90
[ 2163.818507][T21748]  ? folio_flags.constprop.0+0x53/0x150
[ 2163.824065][T21748]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2163.829637][T21748]  ? shmem_write_end+0xe90/0xe90
[ 2163.834585][T21748]  ? folio_flags.constprop.0+0x53/0x150
[ 2163.840147][T21748]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2163.846059][T21748]  shmem_getpage_gfp+0x8af/0x1f30
[ 2163.851110][T21748]  ? shmem_is_huge+0x330/0x330
[ 2163.855892][T21748]  shmem_fault+0x1b4/0x750
[ 2163.860326][T21748]  ? shmem_getpage+0xa0/0xa0
[ 2163.864926][T21748]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2163.870583][T21748]  __do_fault+0x10d/0x610
[ 2163.874924][T21748]  __handle_mm_fault+0x2130/0x39b0
[ 2163.880066][T21748]  ? vm_iomap_memory+0x190/0x190
[ 2163.885056][T21748]  handle_mm_fault+0x1c8/0x780
[ 2163.889835][T21748]  __get_user_pages+0x4f3/0xfd0
[ 2163.894708][T21748]  ? follow_page_mask+0x1570/0x1570
[ 2163.899932][T21748]  populate_vma_page_range+0x23d/0x320
[ 2163.905399][T21748]  __mm_populate+0x1ea/0x3d0
[ 2163.910005][T21748]  ? faultin_vma_page_range+0x300/0x300
[ 2163.915564][T21748]  ? up_write+0x148/0x470
[ 2163.919911][T21748]  vm_mmap_pgoff+0x1fd/0x270
[ 2163.924509][T21748]  ? randomize_page+0xb0/0xb0
[ 2163.929221][T21748]  ksys_mmap_pgoff+0x79/0x5a0
[ 2163.933912][T21748]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2163.940528][T21748]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2163.945831][T21748]  __do_fast_syscall_32+0x65/0xf0
[ 2163.950879][T21748]  do_fast_syscall_32+0x2f/0x70
[ 2163.955738][T21748]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2163.962098][T21748] RIP: 0023:0xf7fdf549
[ 2163.966190][T21748] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2163.985835][T21748] RSP: 002b:00000000f7fda5cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2163.994282][T21748] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2164.002288][T21748] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2164.010275][T21748] RBP: 00000000f36f1000 R08: 0000000000000000 R09: 0000000000000000
[ 2164.018244][T21748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2164.026223][T21748] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2164.034245][T21748]  </TASK>
[ 2164.040244][T21748] memory: usage 307200kB, limit 307200kB, failcnt 3585
[ 2164.056856][T21748] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2164.066825][T21748] Memory cgroup stats for /syz2:
[ 2164.067058][T21748] anon 143360
[ 2164.067058][T21748] file 311869440
[ 2164.067058][T21748] kernel 2555904
[ 2164.067058][T21748] kernel_stack 65536
[ 2164.067058][T21748] pagetables 73728
[ 2164.067058][T21748] percpu 7104
[ 2164.067058][T21748] sock 0
[ 2164.067058][T21748] vmalloc 0
[ 2164.067058][T21748] shmem 311869440
[ 2164.067058][T21748] zswap 0
[ 2164.067058][T21748] zswapped 0
[ 2164.067058][T21748] file_mapped 348160
[ 2164.067058][T21748] file_dirty 0
[ 2164.067058][T21748] file_writeback 0
[ 2164.067058][T21748] swapcached 0
[ 2164.067058][T21748] anon_thp 0
[ 2164.067058][T21748] file_thp 0
[ 2164.067058][T21748] shmem_thp 0
[ 2164.067058][T21748] inactive_anon 311799808
[ 2164.067058][T21748] active_anon 167936
[ 2164.067058][T21748] inactive_file 0
[ 2164.067058][T21748] active_file 0
[ 2164.067058][T21748] unevictable 0
[ 2164.067058][T21748] slab_reclaimable 994920
[ 2164.067058][T21748] slab_unreclaimable 1389480
15:16:22 executing program 2:
unshare(0x20600)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xf36f1000)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x24}}, 0x10)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r1, 0xb)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
r2 = shmget$private(0x0, 0x4000, 0x28, &(0x7f0000ffb000/0x4000)=nil)
shmat(r2, &(0x7f0000ffd000/0x1000)=nil, 0x3000)
shmctl$SHM_LOCK(r2, 0xb)
mlockall(0x1)
shmctl$SHM_UNLOCK(r1, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00', 0x0, 0x0, 0x0, [0x2, 0x0, 0x0, 0x6, 0x0, 0x7]}, &(0x7f0000000040)=0x50)
unshare(0x20600) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xf36f1000) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async)
mlockall(0x2) (async)
shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x24}}, 0x10) (async)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r1, 0xb) (async)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
shmget$private(0x0, 0x4000, 0x28, &(0x7f0000ffb000/0x4000)=nil) (async)
shmat(r2, &(0x7f0000ffd000/0x1000)=nil, 0x3000) (async)
shmctl$SHM_LOCK(r2, 0xb) (async)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r1, 0xc) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00', 0x0, 0x0, 0x0, [0x2, 0x0, 0x0, 0x6, 0x0, 0x7]}, &(0x7f0000000040)=0x50) (async)

15:16:22 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:22 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x5}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:22 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000000800)=ANY=[@ANYRES64, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRESOCT, @ANYRES8=r0])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"})
ioctl$USBDEVFS_IOCTL(r1, 0x8108551b, &(0x7f0000000380))
r2 = socket$inet(0x2, 0x3, 0x2)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r2, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18)
ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000004840)={{r3}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
syz_clone(0x400, &(0x7f0000000200)="d4ae57bfeb5e7df64ce4f2e4b6bec8e7f3e11d7213ac496543b1f26da7a6ad12bab4c2c2c770001e8f2c55d50baaefac829be4e45548dda49532e8bc390882e0f41ae36082e1dc53e00ad8e1b950ff6702bdf62085fe23f4086242c8", 0x5c, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000700)="8e3d8129ee1ce93bd7bc65fcf47eeb7d0b40db2864d2d8cb6959768e189758af73ac2b6cfd926ab9985caa28933f2fb183b01e2a79010b130e5bdce04cb9c07ffa1c87311afdb7af868748234516a02fd2e35027e8b3a489aece03cf1bf60eb4cbafc0a5b5706c3f2778a33dc5e5da3ea7a56297c368ca52c7ae5612604304615e6a83618ea8ffca0850a2d24b65e5d8d8180e6931f4472a2fe65a2044599cb41e0f05f52dbfddf5")
ioctl$VHOST_VDPA_SET_STATUS(r3, 0x4001af72, &(0x7f0000000340)=0x1f)
setsockopt$inet_mreqsrc(r3, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:16:22 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100003a00000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:22 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x38}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2164.067058][T21748] slab 2384400
[ 2164.160541][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2164.172429][T21748] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21719,uid=0
[ 2164.188707][T21748] Memory cgroup out of memory: Killed process 21719 (syz-executor.2) total-vm:54360kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:1000
15:16:22 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x6}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2164.241072][T21754] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
15:16:22 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x48}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:22 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100003c00000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:22 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:22 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x7}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2164.393460][T21760] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
15:16:22 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100008400000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

[ 2164.492038][T21760] CPU: 0 PID: 21760 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2164.502503][T21760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2164.512638][T21760] Call Trace:
[ 2164.515906][T21760]  <TASK>
[ 2164.518829][T21760]  dump_stack_lvl+0xcd/0x134
[ 2164.523416][T21760]  dump_header+0x10b/0x7f9
[ 2164.527831][T21760]  oom_kill_process.cold+0x10/0x15
[ 2164.532942][T21760]  out_of_memory+0x358/0x14a0
[ 2164.537614][T21760]  ? find_held_lock+0x2d/0x110
[ 2164.542384][T21760]  ? oom_killer_disable+0x270/0x270
[ 2164.547621][T21760]  ? find_held_lock+0x2d/0x110
[ 2164.552421][T21760]  mem_cgroup_out_of_memory+0x206/0x270
[ 2164.558006][T21760]  ? mem_cgroup_margin+0x130/0x130
[ 2164.563137][T21760]  ? lock_downgrade+0x6e0/0x6e0
[ 2164.567989][T21760]  try_charge_memcg+0xf67/0x13f0
[ 2164.572928][T21760]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2164.578902][T21760]  ? lock_downgrade+0x6e0/0x6e0
[ 2164.583749][T21760]  charge_memcg+0x31/0x320
[ 2164.588157][T21760]  __mem_cgroup_charge+0x27/0x90
[ 2164.593083][T21760]  ? folio_flags.constprop.0+0x53/0x150
[ 2164.598628][T21760]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2164.604171][T21760]  ? shmem_write_end+0xe90/0xe90
[ 2164.609105][T21760]  ? folio_flags.constprop.0+0x53/0x150
[ 2164.614641][T21760]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2164.620528][T21760]  shmem_getpage_gfp+0x8af/0x1f30
[ 2164.625556][T21760]  ? shmem_is_huge+0x330/0x330
[ 2164.630318][T21760]  shmem_fault+0x1b4/0x750
[ 2164.634732][T21760]  ? shmem_getpage+0xa0/0xa0
[ 2164.639315][T21760]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2164.644950][T21760]  __do_fault+0x10d/0x610
[ 2164.649271][T21760]  __handle_mm_fault+0x2130/0x39b0
[ 2164.654376][T21760]  ? vm_iomap_memory+0x190/0x190
[ 2164.659313][T21760]  handle_mm_fault+0x1c8/0x780
[ 2164.664070][T21760]  __get_user_pages+0x4f3/0xfd0
[ 2164.668928][T21760]  ? follow_page_mask+0x1570/0x1570
[ 2164.674127][T21760]  populate_vma_page_range+0x23d/0x320
[ 2164.679580][T21760]  __mm_populate+0x1ea/0x3d0
[ 2164.684161][T21760]  ? faultin_vma_page_range+0x300/0x300
[ 2164.689708][T21760]  ? up_write+0x148/0x470
[ 2164.694037][T21760]  vm_mmap_pgoff+0x1fd/0x270
[ 2164.698623][T21760]  ? randomize_page+0xb0/0xb0
[ 2164.703298][T21760]  ksys_mmap_pgoff+0x79/0x5a0
[ 2164.707965][T21760]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2164.714545][T21760]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2164.719822][T21760]  __do_fast_syscall_32+0x65/0xf0
[ 2164.724847][T21760]  do_fast_syscall_32+0x2f/0x70
[ 2164.729699][T21760]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2164.736018][T21760] RIP: 0023:0xf7fdf549
[ 2164.740074][T21760] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2164.759687][T21760] RSP: 002b:00000000f7fda5cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2164.768099][T21760] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2164.776059][T21760] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2164.784024][T21760] RBP: 00000000f36f1000 R08: 0000000000000000 R09: 0000000000000000
[ 2164.791994][T21760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2164.799977][T21760] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2164.807961][T21760]  </TASK>
[ 2164.811051][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2164.846594][T21760] memory: usage 307200kB, limit 307200kB, failcnt 3633
[ 2164.857838][T21760] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2164.870413][T21760] Memory cgroup stats for /syz2:
[ 2164.870643][T21760] anon 110592
[ 2164.870643][T21760] file 311902208
[ 2164.870643][T21760] kernel 2560000
[ 2164.870643][T21760] kernel_stack 65536
[ 2164.870643][T21760] pagetables 73728
[ 2164.870643][T21760] percpu 7104
[ 2164.870643][T21760] sock 0
[ 2164.870643][T21760] vmalloc 0
[ 2164.870643][T21760] shmem 311902208
[ 2164.870643][T21760] zswap 0
[ 2164.870643][T21760] zswapped 0
[ 2164.870643][T21760] file_mapped 380928
[ 2164.870643][T21760] file_dirty 0
[ 2164.870643][T21760] file_writeback 0
[ 2164.870643][T21760] swapcached 0
[ 2164.870643][T21760] anon_thp 0
[ 2164.870643][T21760] file_thp 0
[ 2164.870643][T21760] shmem_thp 0
[ 2164.870643][T21760] inactive_anon 311844864
[ 2164.870643][T21760] active_anon 167936
[ 2164.870643][T21760] inactive_file 0
[ 2164.870643][T21760] active_file 0
[ 2164.870643][T21760] unevictable 0
[ 2164.870643][T21760] slab_reclaimable 994920
[ 2164.870643][T21760] slab_unreclaimable 1389480
[ 2164.870643][T21760] slab 2384400
[ 2164.964060][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2165.010345][T21760] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21759,uid=0
15:16:23 executing program 2:
unshare(0x20600) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xf36f1000) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
syz_open_dev$tty1(0xc, 0x4, 0x1) (async)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) (async, rerun: 64)
mlockall(0x2) (async, rerun: 64)
r1 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil) (async)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x24}}, 0x10)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0) (async)
shmctl$SHM_LOCK(r1, 0xb) (async)
shmat(r1, &(0x7f0000157000/0x4000)=nil, 0x6000) (async)
shmctl$SHM_UNLOCK(0x0, 0xc) (async)
r2 = shmget$private(0x0, 0x4000, 0x28, &(0x7f0000ffb000/0x4000)=nil)
shmat(r2, &(0x7f0000ffd000/0x1000)=nil, 0x3000) (async, rerun: 64)
shmctl$SHM_LOCK(r2, 0xb) (rerun: 64)
mlockall(0x1) (async)
shmctl$SHM_UNLOCK(r1, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00', 0x0, 0x0, 0x0, [0x2, 0x0, 0x0, 0x6, 0x0, 0x7]}, &(0x7f0000000040)=0x50)

15:16:23 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x6, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:23 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x4c}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:23 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce10000ff00000000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:23 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x8}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:23 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0) (async)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000000800)=ANY=[@ANYRES64, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRESOCT, @ANYRES8=r0])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
r1 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async, rerun: 64)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="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"}) (async, rerun: 64)
ioctl$USBDEVFS_IOCTL(r1, 0x8108551b, &(0x7f0000000380)) (async, rerun: 64)
r2 = socket$inet(0x2, 0x3, 0x2) (async, rerun: 32)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0) (async, rerun: 32)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300))
setsockopt$inet_int(r2, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000004840)={{r3}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid})
syz_clone(0x400, &(0x7f0000000200)="d4ae57bfeb5e7df64ce4f2e4b6bec8e7f3e11d7213ac496543b1f26da7a6ad12bab4c2c2c770001e8f2c55d50baaefac829be4e45548dda49532e8bc390882e0f41ae36082e1dc53e00ad8e1b950ff6702bdf62085fe23f4086242c8", 0x5c, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000700)="8e3d8129ee1ce93bd7bc65fcf47eeb7d0b40db2864d2d8cb6959768e189758af73ac2b6cfd926ab9985caa28933f2fb183b01e2a79010b130e5bdce04cb9c07ffa1c87311afdb7af868748234516a02fd2e35027e8b3a489aece03cf1bf60eb4cbafc0a5b5706c3f2778a33dc5e5da3ea7a56297c368ca52c7ae5612604304615e6a83618ea8ffca0850a2d24b65e5d8d8180e6931f4472a2fe65a2044599cb41e0f05f52dbfddf5")
ioctl$VHOST_VDPA_SET_STATUS(r3, 0x4001af72, &(0x7f0000000340)=0x1f) (async)
setsockopt$inet_mreqsrc(r3, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

[ 2165.067487][T21760] Memory cgroup out of memory: Killed process 21759 (syz-executor.2) total-vm:50520kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:1000
15:16:23 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x60}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:23 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:23 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000010000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:23 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:23 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x68}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:23 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x38}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2165.371590][T21790] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2165.426373][T21790] CPU: 1 PID: 21790 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2165.436836][T21790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2165.446885][T21790] Call Trace:
[ 2165.450155][T21790]  <TASK>
[ 2165.453075][T21790]  dump_stack_lvl+0xcd/0x134
[ 2165.457672][T21790]  dump_header+0x10b/0x7f9
[ 2165.462085][T21790]  oom_kill_process.cold+0x10/0x15
[ 2165.467192][T21790]  out_of_memory+0x358/0x14a0
[ 2165.471863][T21790]  ? find_held_lock+0x2d/0x110
[ 2165.476618][T21790]  ? oom_killer_disable+0x270/0x270
[ 2165.481808][T21790]  ? find_held_lock+0x2d/0x110
[ 2165.486560][T21790]  mem_cgroup_out_of_memory+0x206/0x270
[ 2165.492096][T21790]  ? mem_cgroup_margin+0x130/0x130
[ 2165.497193][T21790]  ? lock_downgrade+0x6e0/0x6e0
[ 2165.502044][T21790]  try_charge_memcg+0xf67/0x13f0
[ 2165.506974][T21790]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2165.512944][T21790]  ? get_mem_cgroup_from_objcg+0xa1/0x260
[ 2165.518653][T21790]  ? lock_downgrade+0x6e0/0x6e0
[ 2165.523494][T21790]  ? lock_downgrade+0x6e0/0x6e0
[ 2165.528335][T21790]  ? rcu_read_unlock+0x9/0x60
[ 2165.533010][T21790]  obj_cgroup_charge+0x2ab/0x5e0
[ 2165.537949][T21790]  ? sk_prot_alloc+0x5f/0x290
[ 2165.542617][T21790]  kmem_cache_alloc+0x96/0x3b0
[ 2165.547370][T21790]  ? inet_create+0x320/0xea0
[ 2165.551955][T21790]  sk_prot_alloc+0x5f/0x290
[ 2165.556449][T21790]  sk_alloc+0x36/0x770
[ 2165.560506][T21790]  inet_create+0x395/0xea0
[ 2165.564918][T21790]  __sock_create+0x355/0x790
[ 2165.569502][T21790]  __sys_socket+0x12f/0x240
[ 2165.574000][T21790]  ? __sys_socket_file+0x1f0/0x1f0
[ 2165.579107][T21790]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2165.585693][T21790]  __ia32_sys_socket+0x6f/0xb0
[ 2165.590448][T21790]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2165.597031][T21790]  __do_fast_syscall_32+0x65/0xf0
[ 2165.602045][T21790]  do_fast_syscall_32+0x2f/0x70
[ 2165.606885][T21790]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2165.613206][T21790] RIP: 0023:0xf7fdf549
[ 2165.617262][T21790] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2165.636860][T21790] RSP: 002b:00000000f7fda5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000167
[ 2165.645262][T21790] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 0000000000000001
[ 2165.653222][T21790] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2165.661186][T21790] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2165.669161][T21790] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[ 2165.677122][T21790] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2165.685093][T21790]  </TASK>
[ 2165.824418][T21790] memory: usage 307200kB, limit 307200kB, failcnt 3695
[ 2165.844362][T21790] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2165.867004][T21790] Memory cgroup stats for /syz2:
[ 2165.867241][T21790] anon 122880
[ 2165.867241][T21790] file 311803904
[ 2165.867241][T21790] kernel 2646016
[ 2165.867241][T21790] kernel_stack 131072
[ 2165.867241][T21790] pagetables 73728
[ 2165.867241][T21790] percpu 7104
[ 2165.867241][T21790] sock 0
[ 2165.867241][T21790] vmalloc 0
[ 2165.867241][T21790] shmem 311803904
[ 2165.867241][T21790] zswap 0
[ 2165.867241][T21790] zswapped 0
[ 2165.867241][T21790] file_mapped 282624
[ 2165.867241][T21790] file_dirty 0
[ 2165.867241][T21790] file_writeback 0
[ 2165.867241][T21790] swapcached 0
[ 2165.867241][T21790] anon_thp 0
[ 2165.867241][T21790] file_thp 0
[ 2165.867241][T21790] shmem_thp 0
[ 2165.867241][T21790] inactive_anon 311758848
[ 2165.867241][T21790] active_anon 167936
[ 2165.867241][T21790] inactive_file 0
[ 2165.867241][T21790] active_file 0
[ 2165.867241][T21790] unevictable 0
[ 2165.867241][T21790] slab_reclaimable 998392
[ 2165.867241][T21790] slab_unreclaimable 1407792
[ 2165.867241][T21790] slab 2406184
[ 2165.961198][    C0] vkms_vblank_simulate: vblank timer overrun
[ 2165.990167][T21790] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21789,uid=0
[ 2166.018885][T21790] Memory cgroup out of memory: Killed process 21789 (syz-executor.2) total-vm:50784kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:1000
[ 2166.036115][    C0] vkms_vblank_simulate: vblank timer overrun
15:16:24 executing program 2:
unshare(0x40000400)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000200)="2a2ace1e19471a8c52b5523a51a9a702b86c28ecc6e51823aec08d0e3b59336bf53177a7f62c7e70ca6da42481219907f007cccc9ef2966c82a0ed43cec52884038e6873f745f526ea2bf009655af57fa8d829506c745b4443119d7b2e483fd9f918e6387c4056af3b483bce11a622faff0652584900"/127, 0x7f, 0x20040001, &(0x7f0000000000)={0xa, 0x4e22, 0x40, @loopback, 0x7}, 0x1c)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
mlockall(0x2)
r1 = openat$ptmx(0xffffff9c, &(0x7f0000000180), 0x10202, 0x0)
lseek(r1, 0x3f, 0x0)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x84}, 0x1, 0x0, 0x0, 0x4000815}, 0x24004041)
r2 = shmget$private(0x0, 0x400000, 0x0, &(0x7f000000e000/0x400000)=nil)
shmat(0x0, &(0x7f0000000000/0x13000)=nil, 0x0)
shmctl$SHM_LOCK(r2, 0xb)
shmat(r2, &(0x7f0000157000/0x4000)=nil, 0x6000)
shmctl$SHM_UNLOCK(0x0, 0xc)
mlockall(0x0)
shmctl$SHM_UNLOCK(r2, 0xc)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000040)=0x50)

15:16:24 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x6c}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:24 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000040000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:24 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x2, "618664"}}}}}}}, 0x0)

15:16:24 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x60}, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:24 executing program 4:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000180)={0x0, 0x2}, 0x8)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000000800)=ANY=[@ANYRES64, @ANYBLOB="d888dbc159826bbdd98e020340226bc7eb040091f17fd7d3048e4e8849099f1f521abafadbd6c64e3a6748eeb44cb206aebfd7bbf889a2d2954e7b31bea2c0971edd2a4590a88d10adbc858200"/89, @ANYRESOCT, @ANYRES8=r0])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_clone(0x4b100000, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x0) (async)
r1 = syz_open_dev$usbfs(&(0x7f0000000180), 0x77, 0x20a01) (async)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) (async)
process_vm_readv(0x0, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/127, 0x7f}, {&(0x7f0000000440)=""/139, 0x8b}, {&(0x7f00000007c0)=""/37, 0x25}, {&(0x7f0000000500)=""/70, 0x46}], 0x4, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000040)=@usbdevfs_driver={0x6, 0x1, &(0x7f00000005c0)="b1ba2e39102dbbad454c95b8806d3ba7074a6c5343147863fa6508d840ac209cdc7c98f38a1cba9f814eb82c514d1ec99006165125abd7ec43678d9a4f85a22276a8afe6fb989b08fb3f0f4298c3f104c92030bd272e824effbc5207392ee0e5a049da251365162137ea490a9e1b6611d5798615101772acf9063c95174abc2237d19fcbd51033660bee98addf79f873c95defed253b00675aeb62205cda9fa4ca01d117c704efd95636ce0d46dd90867969bf5bc8e05af3f459514126baf148488322c2c9152a0872b52660ab79e42a4da81b41b503e034ec26d7afa815c4c3a9be7c4374f57042653bef9f47268ab67abca30d0f8b3bd4a46e40f47268d1e2efc2e06c9da72238e06214c79a8c1fc8ed0677fd900014e9eb5885e1f5379d984bae384fc3543dba129e151396de172e92dbd9e53a"}) (async)
ioctl$USBDEVFS_IOCTL(r1, 0x8108551b, &(0x7f0000000380))
r2 = socket$inet(0x2, 0x3, 0x2) (async)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x256401, 0x0)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000300)) (async)
setsockopt$inet_int(r2, 0x0, 0xca, &(0x7f0000000000)=0x40000, 0x10) (async)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f00000001c0)={0x2, 'tunl0\x00'}, 0x18) (async)
ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000004840)={{r3}, 0x0, 0xc, @inherit={0x58, &(0x7f00000019c0)=ANY=[@ANYBLOB="0000000000000000020000000000000000010000000000000000000000000009260000000000000007000000000000000400000000000000080000000000000008080000000000000000008000000000ff7f000000000000"]}, @devid}) (async)
syz_clone(0x400, &(0x7f0000000200)="d4ae57bfeb5e7df64ce4f2e4b6bec8e7f3e11d7213ac496543b1f26da7a6ad12bab4c2c2c770001e8f2c55d50baaefac829be4e45548dda49532e8bc390882e0f41ae36082e1dc53e00ad8e1b950ff6702bdf62085fe23f4086242c8", 0x5c, &(0x7f0000000280), &(0x7f00000002c0), &(0x7f0000000700)="8e3d8129ee1ce93bd7bc65fcf47eeb7d0b40db2864d2d8cb6959768e189758af73ac2b6cfd926ab9985caa28933f2fb183b01e2a79010b130e5bdce04cb9c07ffa1c87311afdb7af868748234516a02fd2e35027e8b3a489aece03cf1bf60eb4cbafc0a5b5706c3f2778a33dc5e5da3ea7a56297c368ca52c7ae5612604304615e6a83618ea8ffca0850a2d24b65e5d8d8180e6931f4472a2fe65a2044599cb41e0f05f52dbfddf5") (async)
ioctl$VHOST_VDPA_SET_STATUS(r3, 0x4001af72, &(0x7f0000000340)=0x1f) (async)
setsockopt$inet_mreqsrc(r3, 0x0, 0x25, &(0x7f0000000080)={@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @loopback}, 0xc)

15:16:24 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:24 executing program 3:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x3, "618664"}}}}}}}, 0x0)

15:16:24 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x74}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:24 executing program 5:
syz_emit_ethernet(0x92, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd60c2fce100000000050000bb000000000000000000000000000000000001000000000000040100040100c2040040"], 0x0)

15:16:24 executing program 0:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x2, 0x6, "8e2192", 0x2, 0x2c, 0x0, @mcast2={0x0}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

15:16:24 executing program 1:
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local, @local, @void, {@ipv6={0x86dd, @dccp_packet={0x0, 0x6, "8e2192", 0x10, 0x2c, 0x0, @mcast2={0x7a}, @ipv4={'\x00', '\xff\xff', @private}, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "a069d2", 0x0, "618664"}}}}}}}, 0x0)

[ 2166.376828][T21836] syz-executor.2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000
[ 2166.456866][T21836] CPU: 1 PID: 21836 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2166.467344][T21836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2166.477420][T21836] Call Trace:
[ 2166.480718][T21836]  <TASK>
[ 2166.483666][T21836]  dump_stack_lvl+0xcd/0x134
[ 2166.488288][T21836]  dump_header+0x10b/0x7f9
[ 2166.492738][T21836]  oom_kill_process.cold+0x10/0x15
[ 2166.497880][T21836]  out_of_memory+0x358/0x14a0
[ 2166.502591][T21836]  ? find_held_lock+0x2d/0x110
[ 2166.507381][T21836]  ? oom_killer_disable+0x270/0x270
[ 2166.512611][T21836]  ? find_held_lock+0x2d/0x110
[ 2166.517406][T21836]  mem_cgroup_out_of_memory+0x206/0x270
[ 2166.522979][T21836]  ? mem_cgroup_margin+0x130/0x130
[ 2166.528110][T21836]  ? lock_downgrade+0x6e0/0x6e0
[ 2166.533007][T21836]  try_charge_memcg+0xf67/0x13f0
[ 2166.537984][T21836]  ? mem_cgroup_handle_over_high+0x510/0x510
[ 2166.544002][T21836]  ? lock_downgrade+0x6e0/0x6e0
[ 2166.548897][T21836]  charge_memcg+0x31/0x320
[ 2166.553349][T21836]  __mem_cgroup_charge+0x27/0x90
[ 2166.558308][T21836]  ? folio_flags.constprop.0+0x53/0x150
[ 2166.563884][T21836]  shmem_add_to_page_cache+0x9ea/0x1680
[ 2166.569470][T21836]  ? shmem_write_end+0xe90/0xe90
[ 2166.574441][T21836]  ? folio_flags.constprop.0+0x53/0x150
[ 2166.580019][T21836]  ? shmem_alloc_and_acct_folio+0x1af/0x5d0
[ 2166.585956][T21836]  shmem_getpage_gfp+0x8af/0x1f30
[ 2166.591029][T21836]  ? shmem_is_huge+0x330/0x330
[ 2166.595838][T21836]  shmem_fault+0x1b4/0x750
[ 2166.600292][T21836]  ? shmem_getpage+0xa0/0xa0
[ 2166.604916][T21836]  ? filemap_unaccount_folio+0x9f0/0x9f0
[ 2166.610601][T21836]  __do_fault+0x10d/0x610
[ 2166.614962][T21836]  __handle_mm_fault+0x2130/0x39b0
[ 2166.620103][T21836]  ? vm_iomap_memory+0x190/0x190
[ 2166.625094][T21836]  handle_mm_fault+0x1c8/0x780
[ 2166.629890][T21836]  __get_user_pages+0x4f3/0xfd0
[ 2166.634789][T21836]  ? follow_page_mask+0x1570/0x1570
[ 2166.640033][T21836]  populate_vma_page_range+0x23d/0x320
[ 2166.645527][T21836]  __mm_populate+0x1ea/0x3d0
[ 2166.650146][T21836]  ? faultin_vma_page_range+0x300/0x300
[ 2166.655753][T21836]  ? up_write+0x148/0x470
[ 2166.660117][T21836]  vm_mmap_pgoff+0x1fd/0x270
[ 2166.664738][T21836]  ? randomize_page+0xb0/0xb0
[ 2166.669435][T21836]  ? kfree+0x1fb/0x580
[ 2166.673539][T21836]  ksys_mmap_pgoff+0x79/0x5a0
[ 2166.678252][T21836]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2166.684869][T21836]  ? __ia32_sys_mmap_pgoff+0xd/0x1b0
[ 2166.690184][T21836]  __do_fast_syscall_32+0x65/0xf0
[ 2166.695241][T21836]  do_fast_syscall_32+0x2f/0x70
[ 2166.700116][T21836]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2166.706472][T21836] RIP: 0023:0xf7fdf549
[ 2166.710562][T21836] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2166.730202][T21836] RSP: 002b:00000000f7fb95cc EFLAGS: 00000296 ORIG_RAX: 00000000000000c0
[ 2166.738643][T21836] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000b36000
[ 2166.746636][T21836] RDX: 0000000000000003 RSI: 0000000000008031 RDI: 00000000ffffffff
[ 2166.754654][T21836] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2166.762646][T21836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2166.770638][T21836] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2166.778654][T21836]  </TASK>
[ 2166.837433][T21836] memory: usage 307200kB, limit 307200kB, failcnt 3785
[ 2166.851721][T21836] swap: usage 0kB, limit 9007199254740988kB, failcnt 0
[ 2166.858620][T21836] Memory cgroup stats for /syz2:
[ 2166.858845][T21836] anon 110592
[ 2166.858845][T21836] file 311857152
[ 2166.858845][T21836] kernel 2605056
[ 2166.858845][T21836] kernel_stack 98304
[ 2166.858845][T21836] pagetables 73728
[ 2166.858845][T21836] percpu 7104
[ 2166.858845][T21836] sock 0
[ 2166.858845][T21836] vmalloc 0
[ 2166.858845][T21836] shmem 311857152
[ 2166.858845][T21836] zswap 0
[ 2166.858845][T21836] zswapped 0
[ 2166.858845][T21836] file_mapped 335872
[ 2166.858845][T21836] file_dirty 0
[ 2166.858845][T21836] file_writeback 0
[ 2166.858845][T21836] swapcached 0
[ 2166.858845][T21836] anon_thp 0
[ 2166.858845][T21836] file_thp 0
[ 2166.858845][T21836] shmem_thp 0
[ 2166.858845][T21836] inactive_anon 311799808
[ 2166.858845][T21836] active_anon 167936
[ 2166.858845][T21836] inactive_file 0
[ 2166.858845][T21836] active_file 0
[ 2166.858845][T21836] unevictable 0
[ 2166.858845][T21836] slab_reclaimable 1001096
[ 2166.858845][T21836] slab_unreclaimable 1397896
[ 2166.858845][T21836] slab 2398992
[ 2166.958038][T21836] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz-executor.2,pid=21829,uid=0
[ 2166.975006][T21836] Memory cgroup out of memory: Killed process 21829 (syz-executor.2) total-vm:54492kB, anon-rss:408kB, file-rss:8192kB, shmem-rss:0kB, UID:0 pgtables:68kB oom_score_adj:1000
[ 2167.028719][T21830] ==================================================================
[ 2167.036822][T21830] BUG: KASAN: use-after-free in ip6mr_sk_done+0x139/0x400
[ 2167.044034][T21830] Read of size 4 at addr ffff888077e25688 by task syz-executor.2/21830
[ 2167.052290][T21830] 
[ 2167.054616][T21830] CPU: 1 PID: 21830 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2167.065054][T21830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2167.075139][T21830] Call Trace:
[ 2167.078425][T21830]  <TASK>
[ 2167.081366][T21830]  dump_stack_lvl+0xcd/0x134
[ 2167.085983][T21830]  print_report.cold+0x2ba/0x719
[ 2167.090949][T21830]  ? ip6mr_sk_done+0x139/0x400
[ 2167.095738][T21830]  kasan_report+0xb1/0x1e0
[ 2167.100178][T21830]  ? pde_put+0x70/0x1e0
[ 2167.104355][T21830]  ? ip6mr_sk_done+0x139/0x400
[ 2167.109135][T21830]  kasan_check_range+0x13d/0x180
[ 2167.114090][T21830]  ip6mr_sk_done+0x139/0x400
[ 2167.118697][T21830]  rawv6_close+0x58/0x80
[ 2167.122952][T21830]  inet_release+0x12e/0x270
[ 2167.127476][T21830]  inet6_release+0x4c/0x70
[ 2167.131917][T21830]  sock_release+0x87/0x1b0
[ 2167.136353][T21830]  igmp6_net_exit+0x6b/0x170
[ 2167.140955][T21830]  ? dst_output+0x170/0x170
[ 2167.145473][T21830]  ops_exit_list+0xb0/0x170
[ 2167.149993][T21830]  setup_net+0x7fb/0xc50
[ 2167.154253][T21830]  ? ops_init+0x470/0x470
[ 2167.158596][T21830]  ? trace_kmalloc+0x32/0x100
[ 2167.163286][T21830]  copy_net_ns+0x318/0x760
[ 2167.167721][T21830]  create_new_namespaces+0x3f6/0xb20
[ 2167.173028][T21830]  unshare_nsproxy_namespaces+0xc1/0x1f0
[ 2167.178681][T21830]  ksys_unshare+0x445/0x920
[ 2167.183219][T21830]  ? unshare_fd+0x1c0/0x1c0
[ 2167.187763][T21830]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2167.194379][T21830]  __ia32_sys_unshare+0x2c/0x40
[ 2167.199249][T21830]  __do_fast_syscall_32+0x65/0xf0
[ 2167.204289][T21830]  do_fast_syscall_32+0x2f/0x70
[ 2167.209178][T21830]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2167.215521][T21830] RIP: 0023:0xf7fdf549
[ 2167.219599][T21830] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2167.239221][T21830] RSP: 002b:00000000f7fda5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000136
[ 2167.247653][T21830] RAX: ffffffffffffffda RBX: 0000000040000400 RCX: 0000000000000000
[ 2167.255636][T21830] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2167.263614][T21830] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2167.271597][T21830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2167.279592][T21830] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2167.287580][T21830]  </TASK>
[ 2167.290638][T21830] 
[ 2167.292962][T21830] Allocated by task 21830:
[ 2167.297376][T21830]  kasan_save_stack+0x1e/0x40
[ 2167.302072][T21830]  __kasan_kmalloc+0xa9/0xd0
[ 2167.306675][T21830]  kmemdup+0x23/0x50
[ 2167.310580][T21830]  addrconf_init_net+0x1be/0x870
[ 2167.315532][T21830]  ops_init+0xaf/0x470
[ 2167.319617][T21830]  setup_net+0x5d1/0xc50
[ 2167.323872][T21830]  copy_net_ns+0x318/0x760
[ 2167.328299][T21830]  create_new_namespaces+0x3f6/0xb20
[ 2167.333601][T21830]  unshare_nsproxy_namespaces+0xc1/0x1f0
[ 2167.339252][T21830]  ksys_unshare+0x445/0x920
[ 2167.344288][T21830]  __ia32_sys_unshare+0x2c/0x40
[ 2167.349152][T21830]  __do_fast_syscall_32+0x65/0xf0
[ 2167.354201][T21830]  do_fast_syscall_32+0x2f/0x70
[ 2167.359061][T21830]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2167.365405][T21830] 
[ 2167.367730][T21830] Freed by task 21830:
[ 2167.371798][T21830]  kasan_save_stack+0x1e/0x40
[ 2167.376488][T21830]  kasan_set_track+0x21/0x30
[ 2167.381090][T21830]  kasan_set_free_info+0x20/0x30
[ 2167.386043][T21830]  ____kasan_slab_free+0x166/0x1c0
[ 2167.391169][T21830]  slab_free_freelist_hook+0x8b/0x1c0
[ 2167.396551][T21830]  kfree+0xe2/0x580
[ 2167.400368][T21830]  addrconf_init_net+0x649/0x870
[ 2167.405320][T21830]  ops_init+0xaf/0x470
[ 2167.409398][T21830]  setup_net+0x5d1/0xc50
[ 2167.413651][T21830]  copy_net_ns+0x318/0x760
[ 2167.418075][T21830]  create_new_namespaces+0x3f6/0xb20
[ 2167.423375][T21830]  unshare_nsproxy_namespaces+0xc1/0x1f0
[ 2167.429024][T21830]  ksys_unshare+0x445/0x920
[ 2167.433541][T21830]  __ia32_sys_unshare+0x2c/0x40
[ 2167.438404][T21830]  __do_fast_syscall_32+0x65/0xf0
[ 2167.443444][T21830]  do_fast_syscall_32+0x2f/0x70
[ 2167.448315][T21830]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2167.454681][T21830] 
[ 2167.456997][T21830] Last potentially related work creation:
[ 2167.462702][T21830]  kasan_save_stack+0x1e/0x40
[ 2167.467420][T21830]  __kasan_record_aux_stack+0xbe/0xd0
[ 2167.472795][T21830]  kvfree_call_rcu+0x74/0x940
[ 2167.477471][T21830]  drop_sysctl_table+0x3c0/0x4e0
[ 2167.482406][T21830]  unregister_sysctl_table+0xc0/0x190
[ 2167.487778][T21830]  addrconf_exit_net+0x9d/0x3f0
[ 2167.492626][T21830]  ops_exit_list+0xb0/0x170
[ 2167.497140][T21830]  cleanup_net+0x4ea/0xb00
[ 2167.501551][T21830]  process_one_work+0x991/0x1610
[ 2167.506488][T21830]  worker_thread+0x665/0x1080
[ 2167.511162][T21830]  kthread+0x2e4/0x3a0
[ 2167.515233][T21830]  ret_from_fork+0x1f/0x30
[ 2167.519649][T21830] 
[ 2167.521961][T21830] Second to last potentially related work creation:
[ 2167.528531][T21830]  kasan_save_stack+0x1e/0x40
[ 2167.533206][T21830]  __kasan_record_aux_stack+0xbe/0xd0
[ 2167.538575][T21830]  kvfree_call_rcu+0x74/0x940
[ 2167.543249][T21830]  drop_sysctl_table+0x3c0/0x4e0
[ 2167.548184][T21830]  unregister_sysctl_table+0xc0/0x190
[ 2167.553552][T21830]  addrconf_sysctl_unregister+0xee/0x1c0
[ 2167.559185][T21830]  addrconf_ifdown.isra.0+0x128c/0x1830
[ 2167.564731][T21830]  addrconf_notify+0xeb/0x1c10
[ 2167.569491][T21830]  notifier_call_chain+0xb5/0x200
[ 2167.574514][T21830]  call_netdevice_notifiers_info+0xb5/0x130
[ 2167.580403][T21830]  unregister_netdevice_many+0xa62/0x1980
[ 2167.586118][T21830]  default_device_exit_batch+0x449/0x590
[ 2167.591746][T21830]  ops_exit_list+0x125/0x170
[ 2167.596328][T21830]  cleanup_net+0x4ea/0xb00
[ 2167.600741][T21830]  process_one_work+0x991/0x1610
[ 2167.605673][T21830]  worker_thread+0x665/0x1080
[ 2167.610347][T21830]  kthread+0x2e4/0x3a0
[ 2167.614408][T21830]  ret_from_fork+0x1f/0x30
[ 2167.618825][T21830] 
[ 2167.621144][T21830] The buggy address belongs to the object at ffff888077e25600
[ 2167.621144][T21830]  which belongs to the cache kmalloc-256 of size 256
[ 2167.635190][T21830] The buggy address is located 136 bytes inside of
[ 2167.635190][T21830]  256-byte region [ffff888077e25600, ffff888077e25700)
[ 2167.648458][T21830] 
[ 2167.650774][T21830] The buggy address belongs to the physical page:
[ 2167.657174][T21830] page:ffffea0001df8900 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x77e24
[ 2167.667317][T21830] head:ffffea0001df8900 order:1 compound_mapcount:0 compound_pincount:0
[ 2167.675631][T21830] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 2167.683613][T21830] raw: 00fff00000010200 0000000000000000 dead000000000001 ffff888011841b40
[ 2167.692193][T21830] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 2167.700766][T21830] page dumped because: kasan: bad access detected
[ 2167.707165][T21830] page_owner tracks the page as allocated
[ 2167.712873][T21830] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 3667, tgid 3667 (syz-executor.1), ts 144995542531, free_ts 144989420526
[ 2167.734575][T21830]  get_page_from_freelist+0x109b/0x2ce0
[ 2167.740121][T21830]  __alloc_pages+0x1c7/0x510
[ 2167.744710][T21830]  alloc_pages+0x1a6/0x270
[ 2167.749124][T21830]  allocate_slab+0x27e/0x3d0
[ 2167.753711][T21830]  ___slab_alloc+0x7f1/0xe10
[ 2167.758296][T21830]  __slab_alloc.constprop.0+0x4d/0xa0
[ 2167.763665][T21830]  __kmalloc+0x32b/0x340
[ 2167.767958][T21830]  fib_create_info+0xdbe/0x4ac0
[ 2167.772819][T21830]  fib_table_insert+0x195/0x1be0
[ 2167.777766][T21830]  fib_magic+0x455/0x540
[ 2167.782009][T21830]  fib_add_ifaddr+0x389/0x540
[ 2167.786689][T21830]  fib_netdev_event+0x462/0x680
[ 2167.791544][T21830]  notifier_call_chain+0xb5/0x200
[ 2167.796584][T21830]  call_netdevice_notifiers_info+0xb5/0x130
[ 2167.802482][T21830]  __dev_notify_flags+0x110/0x2b0
[ 2167.807502][T21830]  dev_change_flags+0x112/0x170
[ 2167.812350][T21830] page last free stack trace:
[ 2167.817012][T21830]  free_pcp_prepare+0x5e4/0xd20
[ 2167.821865][T21830]  free_unref_page+0x19/0x4d0
[ 2167.826542][T21830]  qlist_free_all+0x6a/0x170
[ 2167.831170][T21830]  kasan_quarantine_reduce+0x180/0x200
[ 2167.836638][T21830]  __kasan_slab_alloc+0xa2/0xc0
[ 2167.841493][T21830]  kmem_cache_alloc_trace+0x2c0/0x3e0
[ 2167.846871][T21830]  ref_tracker_alloc+0x14c/0x550
[ 2167.851865][T21830]  netdev_queue_update_kobjects+0x1a7/0x4e0
[ 2167.857765][T21830]  netdev_register_kobject+0x330/0x400
[ 2167.863230][T21830]  register_netdevice+0xe01/0x1680
[ 2167.868360][T21830]  nsim_create+0x3c3/0x520
[ 2167.872841][T21830]  __nsim_dev_port_add+0x2bb/0x880
[ 2167.877958][T21830]  nsim_drv_probe+0xd80/0x1310
[ 2167.882729][T21830]  really_probe+0x249/0xb90
[ 2167.887274][T21830]  __driver_probe_device+0x1df/0x4d0
[ 2167.892560][T21830]  driver_probe_device+0x4c/0x1a0
[ 2167.897589][T21830] 
[ 2167.899907][T21830] Memory state around the buggy address:
[ 2167.905526][T21830]  ffff888077e25580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 2167.913582][T21830]  ffff888077e25600: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2167.921636][T21830] >ffff888077e25680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2167.929685][T21830]                       ^
[ 2167.934004][T21830]  ffff888077e25700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 2167.942059][T21830]  ffff888077e25780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 2167.950110][T21830] ==================================================================
[ 2167.992539][T21830] Kernel panic - not syncing: panic_on_warn set ...
[ 2167.999162][T21830] CPU: 1 PID: 21830 Comm: syz-executor.2 Not tainted 6.0.0-rc7-syzkaller-00239-gb357fd1c2afc #0
[ 2168.009597][T21830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 2168.019664][T21830] Call Trace:
[ 2168.023013][T21830]  <TASK>
[ 2168.025963][T21830]  dump_stack_lvl+0xcd/0x134
[ 2168.030583][T21830]  panic+0x2c8/0x627
[ 2168.034531][T21830]  ? panic_print_sys_info.part.0+0x10b/0x10b
[ 2168.040534][T21830]  ? preempt_schedule_common+0x59/0xc0
[ 2168.046019][T21830]  ? preempt_schedule_thunk+0x16/0x18
[ 2168.051417][T21830]  ? ip6mr_sk_done+0x139/0x400
[ 2168.056196][T21830]  end_report.part.0+0x3f/0x7c
[ 2168.060983][T21830]  kasan_report.cold+0xa/0xf
[ 2168.065593][T21830]  ? pde_put+0x70/0x1e0
[ 2168.069766][T21830]  ? ip6mr_sk_done+0x139/0x400
[ 2168.074549][T21830]  kasan_check_range+0x13d/0x180
[ 2168.079509][T21830]  ip6mr_sk_done+0x139/0x400
[ 2168.084117][T21830]  rawv6_close+0x58/0x80
[ 2168.088382][T21830]  inet_release+0x12e/0x270
[ 2168.092906][T21830]  inet6_release+0x4c/0x70
[ 2168.097340][T21830]  sock_release+0x87/0x1b0
[ 2168.101782][T21830]  igmp6_net_exit+0x6b/0x170
[ 2168.106392][T21830]  ? dst_output+0x170/0x170
[ 2168.110905][T21830]  ops_exit_list+0xb0/0x170
[ 2168.115425][T21830]  setup_net+0x7fb/0xc50
[ 2168.119682][T21830]  ? ops_init+0x470/0x470
[ 2168.124016][T21830]  ? trace_kmalloc+0x32/0x100
[ 2168.128698][T21830]  copy_net_ns+0x318/0x760
[ 2168.133132][T21830]  create_new_namespaces+0x3f6/0xb20
[ 2168.138421][T21830]  unshare_nsproxy_namespaces+0xc1/0x1f0
[ 2168.144055][T21830]  ksys_unshare+0x445/0x920
[ 2168.148563][T21830]  ? unshare_fd+0x1c0/0x1c0
[ 2168.153069][T21830]  ? syscall_enter_from_user_mode_prepare+0x19/0x80
[ 2168.159662][T21830]  __ia32_sys_unshare+0x2c/0x40
[ 2168.164514][T21830]  __do_fast_syscall_32+0x65/0xf0
[ 2168.169537][T21830]  do_fast_syscall_32+0x2f/0x70
[ 2168.174390][T21830]  entry_SYSENTER_compat_after_hwframe+0x70/0x82
[ 2168.180718][T21830] RIP: 0023:0xf7fdf549
[ 2168.184778][T21830] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 2168.204383][T21830] RSP: 002b:00000000f7fda5cc EFLAGS: 00000296 ORIG_RAX: 0000000000000136
[ 2168.212792][T21830] RAX: ffffffffffffffda RBX: 0000000040000400 RCX: 0000000000000000
[ 2168.220760][T21830] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2168.228728][T21830] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 2168.236691][T21830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2168.244660][T21830] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 2168.252632][T21830]  </TASK>
[ 2168.255795][T21830] Kernel Offset: disabled
[ 2168.260112][T21830] Rebooting in 86400 seconds..